| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
16.11.2016, 02:09
| #1 |
 |  Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbung Hallo, ich habe durch eine Zip datei virus bekommen und mein Laptop hat jetzt immer 100% Datenträger, sofort nachdem neustart. Ich habe Virusscanner COMODO runtergeladet hat scheinbar aber nicht geklappt, habe immer noch 100% Datenträger.Wenn ich auf Task-Manager gehe merke ich dass da sehr verrückt spielt und manchmal ist die Datei System sehr hoch. Ich habe sehr wenig ahnung von Pc. Bitte um Hilfe. |
|
16.11.2016, 02:19
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbung Hallo und
__________________ +++ WICHTIGER HINWEIS +++ Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache. Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung! Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben. Gelesen und verstanden? Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
16.11.2016, 02:56
| #3 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2016
durchgeführt von ducanh (Administrator) auf VIP (16-11-2016 02:48:15)
Gestartet von C:\Users\ducanh\Downloads
Geladene Profile: ducanh (Verfügbare Profile: ducanh & Administrator)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Softex Inc.) C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe
(Pokki) C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(%CFullName%) C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Pokki) C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Pokki) C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Spotify Ltd) C:\Users\ducanh\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Spotify Ltd) C:\Users\ducanh\AppData\Roaming\Spotify\Spotify.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
(Spotify Ltd) C:\Users\ducanh\AppData\Roaming\Spotify\SpotifyCrashService.exe
(IO3O LLC) C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\mywifi.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Spotify Ltd) C:\Users\ducanh\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\ducanh\AppData\Roaming\Spotify\Spotify.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Pokki) C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\ServiceStartMenuIndexer.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
(Farbar) C:\Users\ducanh\Downloads\FRST64 (1).exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7642328 2016-01-25] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2198872 2014-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2811120 2014-03-13] (Synaptics Incorporated)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5250280 2015-12-04] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-10-28] (Apple Inc.)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1610936 2016-09-14] (COMODO)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-02-13] (Hewlett-Packard Company)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896608 2015-12-01] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [653576 2015-06-29] (Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27021952 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [Power2GoExpress8] => C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe [1728952 2015-06-22] (CyberLink Corp.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [Spotify Web Helper] => C:\Users\ducanh\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1431664 2016-11-13] (Spotify Ltd)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [Spotify] => C:\Users\ducanh\AppData\Roaming\Spotify\Spotify.exe [6987376 2016-11-13] (Spotify Ltd)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Run: [ProxyGate] => C:\Users\ducanh\AppData\Roaming\ProxyGate\MainService.exe <===== ACHTUNG
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\RunOnce: [Application Restart #5] => C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [7874024 2016-09-18] (Pokki)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\MountPoints2: {4002a6a9-1392-11e5-8288-a08869bf085f} - "G:\HTC_Sync_Manager_PC.exe"
ShellExecuteHooks: - {2B5FE6D2-A5AB-11E6-AA81-64006A5CFC23} - C:\Users\ducanh\AppData\Roaming\Phuvighqerley\Chaqury.dll Keine Datei [ ]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ISCTSystray.lnk [2014-05-12]
ShortcutTarget: ISCTSystray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2015-12-04]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Who Is On My Wifi.lnk [2016-08-30]
ShortcutTarget: Who Is On My Wifi.lnk -> C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\mywifi.exe (IO3O LLC)
GroupPolicy: Beschränkung - Chrome <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4BDC64C7-1BFA-40ED-BBD8-617C53B4CA6F}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{BB2EEAC3-52F6-42A4-8DFE-2CDFECA0FAF2}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{DC171AA7-770F-4C4A-9599-6C9E21E36C8C}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/4
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131237249141147113&GUID=DDE61BD2-0B14-9938-4ABA-529488C50ADF
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT14/4
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxps://startpage-home.com/?s=hp&m=start
SearchScopes: HKLM -> {A1646118-552A-42A1-A4E7-A43AB3F0603F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {A1646118-552A-42A1-A4E7-A43AB3F0603F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001 -> DefaultScope {ABAA9DAC-E150-11E4-825E-A08869BF085F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001 -> {A1646118-552A-42A1-A4E7-A43AB3F0603F} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001 -> {ABAA9DAC-E150-11E4-825E-A08869BF085F} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-07-21] (HP Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-12] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-03-04] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-12] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
FireFox:
========
FF ProfilePath: C:\Users\ducanh\AppData\Roaming\TomTom\HOME\Profiles\27zmdx5y.default [2016-04-15]
FF Extension: (Map status indicator) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [2015-11-02] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt
FF Extension: (HP SimplePass) - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt [2016-01-14] [ist nicht signiert]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-12] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-08] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
Chrome:
=======
CHR DefaultProfile: Profile 1
CHR StartupUrls: Profile 1 -> "","hxxp://www.google.de/","hxxp://homepage-web.com/?s=hp&m=start"
CHR Profile: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default [2016-11-16]
CHR Extension: (ProxFlow) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-10-11]
CHR Extension: (Google Slides) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-12]
CHR Extension: (Google Docs) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-12]
CHR Extension: (Google Drive) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Adblock Plus) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-28]
CHR Extension: (Adblock for Youtube™) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-05]
CHR Extension: (Google Search) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Kein Name) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkgcomhcmhlbdokplmbpkejkojkmjglg [2016-11-16]
CHR Extension: (Google Sheets) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-12]
CHR Extension: (HP SimplePass) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\fidikogfgleiaefnjbmnjaplmgknppkg [2016-06-05]
CHR Extension: (iCloud Bookmarks) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2016-05-16]
CHR Extension: (Google Docs Offline) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-12]
CHR Extension: (Chrome Media Router) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-29]
CHR Profile: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1 [2016-11-16]
CHR Extension: (ProxFlow) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aakchaleigkohafkfjfjbblobjifikek [2016-11-16]
CHR Extension: (Google Trang trình bày) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-16]
CHR Extension: (Google Tài liệu) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-16]
CHR Extension: (Google Drive) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-16]
CHR Extension: (YouTube) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-16]
CHR Extension: (Adblock Plus) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-16]
CHR Extension: (Adblock cho Youtube™) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-11-16]
CHR Extension: (Adblocker for Youtube™) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dkgcomhcmhlbdokplmbpkejkojkmjglg [2016-11-16]
CHR Extension: (Google Bảng tính) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-16]
CHR Extension: (HP SimplePass) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fidikogfgleiaefnjbmnjaplmgknppkg [2016-11-16]
CHR Extension: (Google Tài liệu ngoại tuyến) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-16]
CHR Extension: (Skype) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-16]
CHR Extension: (Thanh toán trên cửa hàng Chrome trực tuyến) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-16]
CHR Extension: (Gmail) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-16]
CHR Extension: (Chrome Media Router) - C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-16]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1360896 2016-05-12] (Microsoft Corporation) [Datei ist nicht signiert]
R2 nsi; C:\WINDOWS\System32\nsisvc.dll [28672 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinHttpAutoProxySvc; C:\WINDOWS\system32\winhttp.dll [796672 2016-06-11] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinHttpAutoProxySvc; C:\WINDOWS\SysWOW64\winhttp.dll [626176 2016-06-11] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AeLookupSvc; C:\WINDOWS\System32\aelupsvc.dll [214528 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ALG; C:\WINDOWS\System32\alg.exe [96768 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 AppHostSvc; C:\WINDOWS\system32\inetsrv\apphostsvc.dll [66048 2014-04-02] (Microsoft Corporation) [Datei ist nicht signiert]
U2 AppHostSvc; C:\WINDOWS\SysWOW64\inetsrv\apphostsvc.dll [62464 2014-04-02] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [39936 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [110080 2016-01-31] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
U3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [562688 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [1348096 2016-02-08] (Microsoft Corporation) [Datei ist nicht signiert]
U2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [230400 2015-05-30] (Microsoft Corporation) [Datei ist nicht signiert]
R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [911360 2015-05-30] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [111104 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [348672 2016-04-01] (Microsoft Corporation) [Datei ist nicht signiert]
U2 BFE; C:\WINDOWS\System32\bfe.dll [845312 2016-02-05] (Microsoft Corporation) [Datei ist nicht signiert]
U2 BITS; C:\WINDOWS\System32\qmgr.dll [933376 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 BrokerInfrastructure; C:\WINDOWS\System32\bisrv.dll [270336 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Browser; C:\WINDOWS\System32\browser.dll [135168 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433760 2015-12-01] (BlueStack Systems, Inc.)
U2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413280 2015-12-01] (BlueStack Systems, Inc.)
U2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [855648 2015-12-01] (BlueStack Systems, Inc.)
U3 BthHFSrv; C:\WINDOWS\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 bthserv; C:\WINDOWS\system32\bthserv.dll [94720 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [156160 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [5817256 2016-09-15] (COMODO)
U3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2271928 2016-09-14] (COMODO)
R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [131584 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [816128 2016-04-09] (Microsoft Corporation) [Datei ist nicht signiert]
U3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [524288 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 DeviceAssociationService; C:\WINDOWS\system32\das.dll [407040 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [116736 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [365056 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Dhcp; C:\WINDOWS\SysWOW64\dhcpcore.dll [292864 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [1628672 2016-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [252416 2016-01-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [262144 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 DPS; C:\WINDOWS\system32\dps.dll [174080 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [206848 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [110592 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 EFS; C:\WINDOWS\system32\efssvc.dll [41472 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1696256 2015-03-06] (Microsoft Corporation) [Datei ist nicht signiert]
U2 EventSystem; C:\WINDOWS\system32\es.dll [516608 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 EventSystem; C:\WINDOWS\SysWOW64\es.dll [367616 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Fax; C:\WINDOWS\system32\fxssvc.exe [658944 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [22016 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [34816 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 fhsvc; C:\WINDOWS\system32\fhsvc.dll [121856 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 FontCache; C:\WINDOWS\system32\FntCache.dll [1377792 2016-09-07] (Microsoft Corporation) [Datei ist nicht signiert]
U2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-28] (WildTangent)
U3 hidserv; C:\WINDOWS\system32\hidserv.dll [33792 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 hidserv; C:\WINDOWS\SysWOW64\hidserv.dll [30720 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 hkmsvc; C:\WINDOWS\system32\kmsvc.dll [101376 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HomeGroupListener; C:\WINDOWS\system32\ListSvc.dll [275968 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HomeGroupProvider; C:\WINDOWS\system32\provsvc.dll [445952 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HomeGroupProvider; C:\WINDOWS\SysWOW64\provsvc.dll [366080 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
U2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [602888 2015-06-29] (Hewlett-Packard Development Company, L.P.)
U2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-08] (Intel Corporation)
U3 IEEtwCollectorService; C:\WINDOWS\system32\IEEtwCollector.exe [114688 2014-10-31] (Microsoft Corporation) [Datei ist nicht signiert]
U2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [315376 2016-01-25] (Intel Corporation)
U3 IKEEXT; C:\WINDOWS\System32\ikeext.dll [1080320 2016-07-07] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert]
U3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
U2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
U2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [927744 2016-04-07] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
U2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
U3 KeyIso; C:\WINDOWS\system32\keyiso.dll [62464 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 KeyIso; C:\WINDOWS\SysWOW64\keyiso.dll [46592 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [373248 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [329216 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [289280 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 lfsvc; C:\WINDOWS\System32\GeofenceMonitorService.dll [522240 2015-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
U3 lfsvc; C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll [367104 2015-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
U3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [279040 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [24576 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 LSM; C:\WINDOWS\System32\lsm.dll [780800 2015-02-21] (Microsoft Corporation) [Datei ist nicht signiert]
U2 MMCSS; C:\WINDOWS\system32\mmcss.dll [71168 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 MpsSvc; C:\WINDOWS\system32\mpssvc.dll [881152 2016-04-09] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSDTC; C:\WINDOWS\System32\msdtc.exe [144384 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [151040 2016-09-03] (Microsoft Corporation) [Datei ist nicht signiert]
S3 msiserver; C:\WINDOWS\System32\msiexec.exe [65024 2016-05-05] (Microsoft Corporation) [Datei ist nicht signiert]
S3 msiserver; C:\WINDOWS\SysWOW64\msiexec.exe [59904 2016-05-05] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MyWiFiDHCPDNS; c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-04-22] ()
U3 napagent; C:\WINDOWS\system32\qagentRT.dll [446464 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [166400 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NcbService; C:\WINDOWS\System32\ncbservice.dll [154112 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [74752 2015-07-16] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Netlogon; C:\WINDOWS\system32\netlogon.dll [840704 2016-10-08] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Netlogon; C:\WINDOWS\SysWOW64\netlogon.dll [696832 2016-07-08] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Netman; C:\WINDOWS\System32\netman.dll [266752 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [550912 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [391680 2014-12-06] (Microsoft Corporation) [Datei ist nicht signiert]
U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1615192 2014-03-28] (NVIDIA Corporation)
U2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [20539168 2014-03-28] (NVIDIA Corporation)
U2 omniserv; C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe [124928 2015-07-02] (Softex Inc.) [Datei ist nicht signiert]
U3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [380416 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [440832 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 PcaSvc; C:\WINDOWS\System32\pcasvc.dll [474112 2016-10-09] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PerfHost; C:\WINDOWS\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 pla; C:\WINDOWS\system32\pla.dll [1526784 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 pla; C:\WINDOWS\SysWOW64\pla.dll [1534464 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Pleketherderbotion; C:\WINDOWS\system32\svchost.exe [38792 1601-01-01] (Microsoft Corporation)
U2 Pleketherderbotion; C:\WINDOWS\SysWOW64\svchost.exe [33088 2014-10-29] (Microsoft Corporation)
U3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [116736 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [26624 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [380416 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [398848 2016-05-12] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Power; C:\WINDOWS\system32\umpo.dll [80384 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [2987520 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [228864 2015-07-09] (Microsoft Corporation) [Datei ist nicht signiert]
U3 QWAVE; C:\WINDOWS\system32\qwave.dll [303104 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 QWAVE; C:\WINDOWS\SysWOW64\qwave.dll [261632 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [102912 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
S3 RasMan; C:\WINDOWS\System32\rasmans.dll [542720 2016-07-07] (Microsoft Corporation) [Datei ist nicht signiert]
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [233472 2016-07-07] (Microsoft Corporation) [Datei ist nicht signiert]
S4 RemoteAccess; C:\WINDOWS\SysWOW64\mprdim.dll [187392 2016-07-07] (Microsoft Corporation) [Datei ist nicht signiert]
U4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [166400 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [80896 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RpcLocator; C:\WINDOWS\system32\locator.exe [10240 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [816128 2016-04-09] (Microsoft Corporation) [Datei ist nicht signiert]
U2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [292568 2016-01-25] (Realtek Semiconductor)
U4 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [194048 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [131072 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Schedule; C:\WINDOWS\system32\schedsvc.dll [1265152 2015-08-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [156160 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 seclogon; C:\WINDOWS\system32\seclogon.dll [31744 2016-02-06] (Microsoft Corporation) [Datei ist nicht signiert]
R2 SENS; C:\WINDOWS\System32\sens.dll [73728 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [243200 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [342528 2016-09-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SessionEnv; C:\WINDOWS\SysWOW64\sessenv.dll [296960 2016-09-01] (Microsoft Corporation) [Datei ist nicht signiert]
U2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5250280 2015-12-04] (SoftEther VPN Project at University of Tsukuba, Japan.)
U4 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [452608 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [640000 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ShellHWDetection; C:\WINDOWS\SysWOW64\shsvcs.dll [576512 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 smphost; C:\WINDOWS\System32\smphost.dll [13312 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 smphost; C:\WINDOWS\SysWOW64\smphost.dll [11776 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [14848 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [827392 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [249344 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [142848 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 stisvc; C:\WINDOWS\System32\wiaservc.dll [670720 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 StorSvc; C:\WINDOWS\system32\storsvc.dll [20480 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 StorSvc; C:\WINDOWS\SysWOW64\storsvc.dll [17920 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 svsvc; C:\WINDOWS\system32\svsvc.dll [13312 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 swprv; C:\WINDOWS\System32\swprv.dll [706048 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [190704 2014-03-13] (Synaptics Incorporated)
U2 SysMain; C:\WINDOWS\system32\sysmain.dll [1217024 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [294912 2015-05-12] (Microsoft Corporation) [Datei ist nicht signiert]
U2 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [154624 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [313344 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TapiSrv; C:\WINDOWS\SysWOW64\tapisrv.dll [254464 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 TermService; C:\WINDOWS\System32\termsrv.dll [1114624 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
R2 Themes; C:\WINDOWS\system32\themeservice.dll [59392 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 THREADORDER; C:\WINDOWS\system32\mmcss.dll [71168 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TimeBroker; C:\WINDOWS\System32\TimeBrokerServer.dll [262656 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 TrkWks; C:\WINDOWS\System32\trkwks.dll [124416 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [106496 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UI0Detect; C:\WINDOWS\system32\UI0Detect.exe [41984 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [300032 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 upnphost; C:\WINDOWS\System32\upnphost.dll [457728 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 upnphost; C:\WINDOWS\SysWOW64\upnphost.dll [331776 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 VaultSvc; C:\Windows\System32\vaultsvc.dll [260608 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vds; C:\WINDOWS\System32\vds.exe [1313792 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicguestinterface; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicheartbeat; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmickvpexchange; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicrdv; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicshutdown; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmictimesync; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vmicvss; C:\WINDOWS\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 VSS; C:\WINDOWS\system32\vssvc.exe [1455104 2016-02-05] (Microsoft Corporation) [Datei ist nicht signiert]
U2 W32Time; C:\WINDOWS\system32\w32time.dll [411648 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 w3logsvc; C:\WINDOWS\system32\inetsrv\w3logsvc.dll [76800 2014-04-02] (Microsoft Corporation) [Datei ist nicht signiert]
U3 w3logsvc; C:\WINDOWS\SysWOW64\inetsrv\w3logsvc.dll [66560 2014-04-02] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WAS; C:\WINDOWS\system32\inetsrv\iisw3adm.dll [546304 2014-04-02] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WAS; C:\WINDOWS\SysWOW64\inetsrv\iisw3adm.dll [475648 2014-04-02] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wbengine; C:\WINDOWS\system32\wbengine.exe [1574912 2016-08-11] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [465920 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [374784 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [465920 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WcsPlugInService; C:\WINDOWS\System32\WcsPlugInService.dll [43520 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WcsPlugInService; C:\WINDOWS\SysWOW64\WcsPlugInService.dll [34304 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [95744 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiServiceHost; C:\WINDOWS\SysWOW64\wdi.dll [84992 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [95744 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdiSystemHost; C:\WINDOWS\SysWOW64\wdi.dll [84992 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
U3 WebClient; C:\WINDOWS\System32\webclnt.dll [228864 2016-06-09] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WebClient; C:\WINDOWS\SysWOW64\webclnt.dll [199168 2016-06-09] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [209408 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [26112 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [84992 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [108544 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [67584 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
U2 Winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [230400 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2609152 2016-02-02] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WinRM; C:\WINDOWS\SysWOW64\WsmSvc.dll [2170880 2016-02-02] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WlanSvc; C:\WINDOWS\System32\wlansvc.dll [1547264 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [1639424 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [201728 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1478144 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1673728 2016-02-03] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WPCSvc; C:\WINDOWS\System32\wpcsvc.dll [12288 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WPCSvc; C:\WINDOWS\SysWOW64\wpcsvc.dll [10240 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [87040 2016-07-09] (Microsoft Corporation) [Datei ist nicht signiert]
U2 wscsvc; C:\WINDOWS\System32\wscsvc.dll [146944 2016-01-06] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [903168 2015-04-01] (Microsoft Corporation) [Datei ist nicht signiert]
U2 WSearch; C:\WINDOWS\SysWOW64\SearchIndexer.exe [710144 2015-04-01] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wuauserv; C:\WINDOWS\system32\wuaueng.dll [3667968 2016-05-13] (Microsoft Corporation) [Datei ist nicht signiert]
U3 wudfsvc; C:\WINDOWS\System32\WUDFSvc.dll [104960 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [513536 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 ZeroConfigService; c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2015-04-22] (Intel® Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
U3 1394ohci; C:\WINDOWS\System32\drivers\1394ohci.sys [231424 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 acpipagr; C:\WINDOWS\System32\drivers\acpipagr.sys [10240 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AcpiPmi; C:\WINDOWS\System32\drivers\acpipmi.sys [12288 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 acpitime; C:\WINDOWS\System32\drivers\acpitime.sys [10752 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 AFD; C:\WINDOWS\system32\drivers\afd.sys [559616 2015-10-13] (Microsoft Corporation) [Datei ist nicht signiert]
U1 ahcache; C:\WINDOWS\System32\DRIVERS\ahcache.sys [80384 2015-03-20] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AmdK8; C:\WINDOWS\System32\drivers\amdk8.sys [95744 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AmdPPM; C:\WINDOWS\System32\drivers\amdppm.sys [98816 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AppID; C:\WINDOWS\system32\drivers\appid.sys [82944 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 AsyncMac; C:\WINDOWS\system32\DRIVERS\asyncmac.sys [26624 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 BasicDisplay; C:\WINDOWS\System32\drivers\BasicDisplay.sys [50688 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [33280 2014-03-18] (Microsoft Corporation) [Datei ist nicht signiert]
U1 Beep; C:\Windows\System32\Drivers\Beep.sys [7680 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 bowser; C:\WINDOWS\System32\DRIVERS\bowser.sys [101376 2016-10-04] (Microsoft Corporation) [Datei ist nicht signiert]
U2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146016 2015-12-01] (BlueStack Systems)
U3 BthAvrcpTg; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthEnum; C:\WINDOWS\System32\drivers\BthEnum.sys [53248 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [57856 2015-03-09] (Microsoft Corporation) [Datei ist nicht signiert]
U3 bthhfhid; C:\WINDOWS\System32\drivers\BthHFHid.sys [30720 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthLEEnum; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [64000 2014-03-18] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BthPan; C:\WINDOWS\System32\drivers\bthpan.sys [118272 2015-07-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BTHPORT; C:\WINDOWS\System32\Drivers\BTHport.sys [1201664 2015-05-11] (Microsoft Corporation) [Datei ist nicht signiert]
U3 BTHUSB; C:\WINDOWS\System32\Drivers\BTHUSB.sys [81920 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U4 cdfs; C:\WINDOWS\System32\DRIVERS\cdfs.sys [88576 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 cdrom; C:\WINDOWS\System32\drivers\cdrom.sys [164352 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 circlass; C:\WINDOWS\System32\drivers\circlass.sys [44032 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [100624 2015-06-08] (CyberLink)
U3 CmBatt; C:\WINDOWS\System32\drivers\CmBatt.sys [25472 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [32224 2016-08-31] (COMODO)
U1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [853904 2016-08-31] (COMODO)
U1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [45592 2016-08-31] (COMODO)
U3 CompositeBus; C:\WINDOWS\System32\drivers\CompositeBus.sys [36352 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 condrv; C:\WINDOWS\System32\drivers\condrv.sys [43008 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 Dfsc; C:\WINDOWS\System32\Drivers\dfsc.sys [138240 2016-09-08] (Microsoft Corporation) [Datei ist nicht signiert]
U3 dmvsc; C:\WINDOWS\System32\drivers\dmvsc.sys [29696 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U0 ebdrv; C:\WINDOWS\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
U3 ErrDev; C:\WINDOWS\System32\drivers\errdev.sys [10240 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 exfat; C:\Windows\System32\Drivers\exfat.sys [200704 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 fdc; C:\WINDOWS\System32\drivers\fdc.sys [30720 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Filetrace; C:\WINDOWS\System32\drivers\filetrace.sys [34816 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 flpydisk; C:\WINDOWS\System32\drivers\flpydisk.sys [25088 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 FxPPM; C:\WINDOWS\System32\drivers\fxppm.sys [27136 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 gencounter; C:\WINDOWS\System32\drivers\vmgencounter.sys [11264 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HdAudAddService; C:\WINDOWS\system32\drivers\HdAudio.sys [395776 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HDAudBus; C:\WINDOWS\System32\drivers\HDAudBus.sys [76800 2014-07-24] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidBatt; C:\WINDOWS\System32\drivers\HidBatt.sys [26624 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidBth; C:\WINDOWS\System32\drivers\hidbth.sys [97792 2015-01-30] (Microsoft Corporation) [Datei ist nicht signiert]
U3 hidi2c; C:\WINDOWS\System32\drivers\hidi2c.sys [41472 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidIr; C:\WINDOWS\System32\drivers\hidir.sys [45568 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HidUsb; C:\WINDOWS\System32\drivers\hidusb.sys [32768 2016-05-14] (Microsoft Corporation) [Datei ist nicht signiert]
U3 hyperkbd; C:\WINDOWS\System32\drivers\hyperkbd.sys [13824 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 HyperVideo; C:\WINDOWS\system32\DRIVERS\HyperVideo.sys [22016 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 i8042prt; C:\WINDOWS\System32\drivers\i8042prt.sys [108544 2014-11-04] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [162512 2014-02-14] (Intel Corporation)
U3 igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [3789824 2016-01-25] (Intel Corporation) [Datei ist nicht signiert]
U3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
U3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
U3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
U1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [138560 2016-08-31] (COMODO)
U3 intelppm; C:\WINDOWS\System32\drivers\intelppm.sys [98816 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IpFilterDriver; C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys [84992 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IPMIDRV; C:\WINDOWS\System32\drivers\IPMIDrv.sys [80896 2016-02-03] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IPNAT; C:\WINDOWS\System32\drivers\ipnat.sys [142848 2014-03-18] (Microsoft Corporation) [Datei ist nicht signiert]
U3 IRENUM; C:\WINDOWS\System32\drivers\irenum.sys [17920 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
U3 kbdhid; C:\WINDOWS\System32\drivers\kbdhid.sys [32256 2014-11-04] (Microsoft Corporation) [Datei ist nicht signiert]
U3 kdnic; C:\WINDOWS\system32\DRIVERS\kdnic.sys [19456 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 ksthunk; C:\WINDOWS\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U2 lltdio; C:\WINDOWS\system32\DRIVERS\lltdio.sys [59392 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U2 luafv; C:\WINDOWS\system32\drivers\luafv.sys [124416 2014-03-18] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
U3 Modem; C:\WINDOWS\System32\drivers\modem.sys [40960 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 monitor; C:\WINDOWS\System32\drivers\monitor.sys [30208 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mouhid; C:\WINDOWS\System32\drivers\mouhid.sys [30208 2014-11-04] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mpsdrv; C:\WINDOWS\System32\drivers\mpsdrv.sys [74240 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MRxDAV; C:\WINDOWS\system32\drivers\mrxdav.sys [140800 2016-09-08] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mrxsmb; C:\WINDOWS\System32\DRIVERS\mrxsmb.sys [401408 2016-08-21] (Microsoft Corporation) [Datei ist nicht signiert]
U2 mrxsmb10; C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys [284672 2016-08-21] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mrxsmb20; C:\WINDOWS\System32\DRIVERS\mrxsmb20.sys [201728 2016-08-21] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MsBridge; C:\WINDOWS\system32\DRIVERS\bridge.sys [115712 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mshidkmdf; C:\WINDOWS\System32\drivers\mshidkmdf.sys [8192 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 mshidumdf; C:\WINDOWS\System32\drivers\mshidumdf.sys [9728 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSKSSRV; C:\WINDOWS\system32\drivers\MSKSSRV.sys [10624 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MsLldp; C:\WINDOWS\system32\DRIVERS\mslldp.sys [66560 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSPCLOCK; C:\WINDOWS\system32\drivers\MSPCLOCK.sys [7040 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSPQM; C:\WINDOWS\system32\drivers\MSPQM.sys [6784 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MSTEE; C:\WINDOWS\system32\drivers\MSTEE.sys [7936 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 MTConfig; C:\WINDOWS\System32\drivers\MTConfig.sys [13312 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U2 NativeWifiP; C:\WINDOWS\system32\DRIVERS\nwifi.sys [445440 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisCap; C:\WINDOWS\system32\DRIVERS\ndiscap.sys [43008 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisImPlatform; C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys [126464 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisTapi; C:\WINDOWS\system32\DRIVERS\ndistapi.sys [24576 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Ndisuio; C:\WINDOWS\system32\DRIVERS\ndisuio.sys [60416 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisVirtualBus; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisWan; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [205824 2016-04-05] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NdisWanLegacy; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [205824 2016-04-05] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [72192 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U2 Ndu; C:\WINDOWS\System32\drivers\Ndu.sys [103424 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Neo_VPN; C:\WINDOWS\system32\DRIVERS\Neo_VPN.sys [38432 2015-12-04] (SoftEther Corporation)
U3 Netaapl; C:\WINDOWS\system32\DRIVERS\netaapl64.sys [23040 2014-08-15] (Apple Inc.) [Datei ist nicht signiert]
U1 NetBIOS; C:\WINDOWS\System32\DRIVERS\netbios.sys [48128 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U1 NetBT; C:\WINDOWS\System32\DRIVERS\netbt.sys [281088 2016-05-14] (Microsoft Corporation) [Datei ist nicht signiert]
U3 netvsc; C:\WINDOWS\System32\drivers\netvsc63.sys [87040 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 NETwNb64; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [3497752 2015-04-16] (Intel Corporation)
U1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [58880 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 npsvctrig; C:\WINDOWS\System32\drivers\npsvctrig.sys [23040 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 nsiproxy; C:\WINDOWS\System32\drivers\nsiproxy.sys [39424 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U1 Null; C:\Windows\System32\Drivers\Null.sys [5632 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [40392 2014-03-28] (NVIDIA Corporation)
U3 Parport; C:\WINDOWS\System32\drivers\parport.sys [96256 2016-08-11] (Microsoft Corporation) [Datei ist nicht signiert]
U2 PEAUTH; C:\WINDOWS\System32\drivers\peauth.sys [663040 2014-03-18] (Microsoft Corporation) [Datei ist nicht signiert]
U3 PptpMiniport; C:\WINDOWS\system32\DRIVERS\raspptp.sys [107520 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Processor; C:\WINDOWS\System32\drivers\processr.sys [92160 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U1 Psched; C:\WINDOWS\system32\DRIVERS\pacer.sys [151040 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 QWAVEdrv; C:\WINDOWS\system32\drivers\qwavedrv.sys [47104 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasAcd; C:\WINDOWS\System32\DRIVERS\rasacd.sys [17408 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasAgileVpn; C:\WINDOWS\system32\DRIVERS\AgileVpn.sys [95744 2016-07-07] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Rasl2tp; C:\WINDOWS\system32\DRIVERS\rasl2tp.sys [112640 2016-02-02] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasPppoe; C:\WINDOWS\system32\DRIVERS\raspppoe.sys [84992 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RasSstp; C:\WINDOWS\system32\DRIVERS\rassstp.sys [93696 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U1 rdbss; C:\WINDOWS\System32\DRIVERS\rdbss.sys [402432 2016-04-06] (Microsoft Corporation) [Datei ist nicht signiert]
U3 rdpbus; C:\WINDOWS\System32\drivers\rdpbus.sys [22528 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RDPDR; C:\WINDOWS\System32\drivers\rdpdr.sys [195584 2014-03-18] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RFCOMM; C:\WINDOWS\System32\drivers\rfcomm.sys [167424 2015-01-30] (Microsoft Corporation) [Datei ist nicht signiert]
U2 rspndr; C:\WINDOWS\system32\DRIVERS\rspndr.sys [80384 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [506072 2016-06-15] (Realsil Semiconductor Corporation)
U3 s3cap; C:\WINDOWS\System32\drivers\vms3cap.sys [7168 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 scfilter; C:\WINDOWS\System32\DRIVERS\scfilter.sys [40960 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2013-08-22] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Datei ist nicht signiert]
U1 SeLow; C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys [51232 2015-12-04] (SoftEther Corporation)
U3 Serenum; C:\WINDOWS\System32\drivers\serenum.sys [23040 2016-08-11] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Serial; C:\WINDOWS\System32\drivers\serial.sys [83456 2016-08-11] (Microsoft Corporation) [Datei ist nicht signiert]
U3 sermouse; C:\WINDOWS\System32\drivers\sermouse.sys [26112 2014-11-04] (Microsoft Corporation) [Datei ist nicht signiert]
U3 sfloppy; C:\WINDOWS\System32\drivers\sfloppy.sys [17408 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [30448 2014-03-13] (Synaptics Incorporated)
U3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-03-13] (Synaptics Incorporated)
U2 srv; C:\WINDOWS\System32\DRIVERS\srv.sys [416768 2016-08-04] (Microsoft Corporation) [Datei ist nicht signiert]
U3 srv2; C:\WINDOWS\System32\DRIVERS\srv2.sys [675328 2016-08-03] (Microsoft Corporation) [Datei ist nicht signiert]
U3 srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [243712 2016-08-03] (Microsoft Corporation) [Datei ist nicht signiert]
U2 tcpipreg; C:\WINDOWS\System32\drivers\tcpipreg.sys [49152 2014-05-07] (Microsoft Corporation) [Datei ist nicht signiert]
U1 tdx; C:\WINDOWS\system32\DRIVERS\tdx.sys [108032 2015-10-13] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TsUsbFlt; C:\WINDOWS\System32\drivers\tsusbflt.sys [56320 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 TsUsbGD; C:\WINDOWS\System32\drivers\TsUsbGD.sys [29696 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 tunnel; C:\WINDOWS\system32\DRIVERS\tunnel.sys [154112 2015-09-04] (Microsoft Corporation) [Datei ist nicht signiert]
U4 udfs; C:\WINDOWS\System32\DRIVERS\udfs.sys [316416 2015-03-13] (Microsoft Corporation) [Datei ist nicht signiert]
U3 umbus; C:\WINDOWS\System32\drivers\umbus.sys [46080 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 UmPass; C:\WINDOWS\System32\drivers\umpass.sys [11776 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Apple, Inc.) [Datei ist nicht signiert]
U3 usbcir; C:\WINDOWS\System32\drivers\usbcir.sys [98304 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbohci; C:\WINDOWS\System32\drivers\usbohci.sys [30208 2015-10-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbprint; C:\WINDOWS\System32\drivers\usbprint.sys [26112 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbuhci; C:\WINDOWS\System32\drivers\usbuhci.sys [37376 2015-10-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usbvideo; C:\WINDOWS\System32\Drivers\usbvideo.sys [212736 2014-06-21] (Microsoft Corporation) [Datei ist nicht signiert]
U3 usb_rndisx; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [20992 2015-04-25] (Microsoft Corporation) [Datei ist nicht signiert]
U1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [127432 2015-09-16] (BigNox Corporation)
U3 VMBusHID; C:\WINDOWS\System32\drivers\VMBusHID.sys [21760 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vwifibus; C:\WINDOWS\System32\drivers\vwifibus.sys [24576 2016-08-13] (Microsoft Corporation) [Datei ist nicht signiert]
U1 vwififlt; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [71680 2016-08-13] (Microsoft Corporation) [Datei ist nicht signiert]
U3 vwifimp; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [38912 2016-08-13] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WacomPen; C:\WINDOWS\System32\drivers\wacompen.sys [26752 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 Wanarp; C:\WINDOWS\system32\DRIVERS\wanarp.sys [80896 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U1 Wanarpv6; C:\WINDOWS\system32\DRIVERS\wanarp.sys [80896 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
U3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
U3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
U3 WinUsb; C:\WINDOWS\System32\drivers\WinUSB.sys [78848 2015-10-10] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WirelessButtonDriver; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30384 2015-06-23] (HP Inc.)
U3 WmiAcpi; C:\WINDOWS\System32\drivers\wmiacpi.sys [16384 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U4 ws2ifsl; C:\WINDOWS\system32\drivers\ws2ifsl.sys [21504 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WSDPrintDevice; C:\WINDOWS\System32\drivers\WSDPrint.sys [20992 2013-08-22] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WSDScan; C:\WINDOWS\System32\drivers\WSDScan.sys [23040 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WudfPf; C:\WINDOWS\System32\drivers\WudfPf.sys [113664 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WUDFRd; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WUDFWpdFs; C:\WINDOWS\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation) [Datei ist nicht signiert]
U1 XQHDrv; C:\WINDOWS\system32\DRIVERS\XQHDrv.sys [253384 2015-09-16] (BigNox Corporation)
U1 XQHDrv; C:\Windows\SysWOW64\DRIVERS\XQHDrv.sys [253384 2015-09-16] (BigNox Corporation)
U2 zdwfp; C:\WINDOWS\system32\Drivers\zdwfp64.sys [46352 2016-09-01] (zdengine)
U3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
U3 X6va062; \??\C:\WINDOWS\SysWOW64\Drivers\X6va062 [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-16 02:47 - 2016-11-16 02:47 - 02411520 _____ (Farbar) C:\Users\ducanh\Downloads\FRST64 (1).exe
2016-11-16 02:34 - 2016-11-16 02:34 - 00000000 _____ C:\WINDOWS\1f747ad7d0fb402cc27e6c08e14b619a.exe
2016-11-16 02:32 - 2016-11-16 02:48 - 00073538 _____ C:\Users\ducanh\Downloads\FRST.txt
2016-11-16 02:31 - 2016-11-16 02:32 - 00000000 ____D C:\FRST
2016-11-16 02:31 - 2016-11-16 02:31 - 00000000 ___HD C:\VTRoot
2016-11-16 02:30 - 2016-11-16 02:47 - 00011782 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2016-11-16 02:30 - 2016-11-16 02:30 - 02411520 _____ (Farbar) C:\Users\ducanh\Downloads\FRST64.exe
2016-11-16 01:43 - 2016-11-16 01:43 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2016-11-16 01:31 - 2016-11-16 01:31 - 04479640 _____ (Avira Operations GmbH & Co. KG) C:\Users\ducanh\Downloads\avira_de_av_57b55e848ca82__ws.exe
2016-11-16 01:21 - 2016-11-16 01:21 - 00001141 _____ C:\Users\ducanh\Desktop\Battle.net.lnk
2016-11-16 00:23 - 2016-11-16 00:23 - 00000000 ____D C:\NVIDIA Corporation
2016-11-16 00:20 - 2016-11-16 02:40 - 01113200 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2016-11-16 00:20 - 2016-11-16 00:20 - 00001904 _____ C:\Users\Public\Desktop\COMODO Internet Security.lnk
2016-11-16 00:20 - 2016-11-16 00:20 - 00000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2016-11-16 00:20 - 2016-11-16 00:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2016-11-16 00:19 - 2016-11-16 00:19 - 00000000 ____D C:\Program Files\COMODO
2016-11-16 00:17 - 2016-11-16 00:18 - 00000000 ____D C:\ProgramData\Comodo
2016-11-16 00:17 - 2016-11-16 00:17 - 71955456 _____ (COMODO) C:\Users\ducanh\Downloads\cispremium_only_installer.exe
2016-11-16 00:17 - 2016-11-16 00:17 - 00000000 ____D C:\ProgramData\Shared Space
2016-11-16 00:13 - 2016-11-16 00:13 - 00000306 __RSH C:\Users\ducanh\ntuser.pol
2016-11-16 00:10 - 2016-11-16 02:41 - 00000344 _____ C:\WINDOWS\Tasks\Update Service for Youtube AdBlock.job
2016-11-16 00:10 - 2016-11-16 00:12 - 00000344 _____ C:\WINDOWS\Tasks\Update Service for Youtube AdBlock2.job
2016-11-16 00:10 - 2016-11-16 00:10 - 00002946 _____ C:\WINDOWS\System32\Tasks\Update Service for Youtube AdBlock2
2016-11-16 00:10 - 2016-11-16 00:10 - 00002644 _____ C:\WINDOWS\System32\Tasks\Update Service for Youtube AdBlock
2016-11-16 00:10 - 2016-11-16 00:10 - 00000306 __RSH C:\ProgramData\ntuser.pol
2016-11-16 00:10 - 2016-11-16 00:10 - 00000000 ____D C:\Program Files (x86)\Youtube AdBlock
2016-11-16 00:08 - 2016-11-16 02:45 - 00000000 ____D C:\ProgramData\Avira
2016-11-16 00:08 - 2016-11-16 01:30 - 00000000 ____D C:\Users\ducanh\AppData\Roaming\ProxyGate
2016-11-16 00:08 - 2016-11-16 00:08 - 00000000 ____D C:\ProgramData\Avg
2016-11-16 00:08 - 2016-11-16 00:08 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-16 00:07 - 2016-11-16 00:07 - 00594944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Users\ducanh\Documents\libeay32.dll
2016-11-16 00:07 - 2016-11-16 00:07 - 00152576 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Users\ducanh\Documents\ssleay32.dll
2016-11-16 00:07 - 2016-11-16 00:07 - 00011848 _____ C:\WINDOWS\SysWOW64\zdengineOff.ini
2016-11-16 00:07 - 2016-11-16 00:07 - 00011848 _____ C:\WINDOWS\system32\zdengineOff.ini
2016-11-16 00:07 - 2016-11-16 00:07 - 00006022 _____ C:\WINDOWS\System32\Tasks\Ckucosp Core
2016-11-16 00:07 - 2016-11-16 00:07 - 00000002 _____ C:\END
2016-11-16 00:07 - 2016-09-01 11:24 - 00046352 _____ (zdengine) C:\WINDOWS\system32\Drivers\zdwfp64.sys
2016-11-16 00:06 - 2016-11-16 02:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Socia2Sear Browser Enhancer
2016-11-16 00:06 - 2016-11-16 02:00 - 00000000 ____D C:\Program Files\d57653e819183b317db1095a42c99dc6
2016-11-16 00:06 - 2016-11-16 02:00 - 00000000 ____D C:\Program Files (x86)\Zojecultdalert
2016-11-16 00:06 - 2016-11-16 00:30 - 00000000 ____D C:\WINDOWS\system32\SSL
2016-11-16 00:06 - 2016-11-16 00:12 - 00000000 ____D C:\Users\ducanh\AppData\Roaming\Phuvighqerley
2016-11-16 00:06 - 2016-11-16 00:08 - 00000000 ____D C:\Users\ducanh\AppData\Local\Ftentmuverph
2016-11-16 00:05 - 2016-11-16 02:04 - 04741848 _____ (A files company ) C:\Users\ducanh\Documents\TweakBit Driver Updater 1.7.2.exe
2016-11-15 23:58 - 2016-11-16 00:01 - 73981120 _____ (NVIDIA Corporation) C:\Users\ducanh\Documents\GeForce_Experience_v3.1.0.52.exe
2016-11-15 23:58 - 2016-11-15 23:58 - 00000000 ____D C:\ProgramData\TweakBit
2016-11-15 23:58 - 2016-11-15 23:58 - 00000000 ____D C:\ProgramData\BSD
2016-11-15 23:57 - 2016-11-15 23:57 - 00396800 _____ (TweakBit) C:\Users\ducanh\Documents\GeForce-driver-updater.exe
2016-11-14 19:03 - 2016-11-16 02:39 - 00000000 ____D C:\Users\ducanh\AppData\Roaming\TS3Client
2016-11-14 19:03 - 2016-11-14 19:03 - 00000986 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2016-11-14 19:03 - 2016-11-14 19:03 - 00000948 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-11-14 19:03 - 2016-11-14 19:03 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2016-11-14 01:53 - 2016-11-14 01:53 - 00000219 _____ C:\Users\ducanh\Desktop\Counter-Strike Global Offensive.url
2016-11-09 16:40 - 2016-10-27 19:28 - 25763328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-09 16:39 - 2016-11-02 21:48 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-09 16:39 - 2016-11-02 21:48 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-11-09 16:39 - 2016-11-02 15:03 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-09 16:39 - 2016-11-02 15:00 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-11-09 16:39 - 2016-10-27 19:53 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-11-09 16:39 - 2016-10-27 19:51 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-09 16:39 - 2016-10-27 19:37 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-11-09 16:39 - 2016-10-27 19:19 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-09 16:39 - 2016-10-27 19:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-11-09 16:39 - 2016-10-27 19:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-09 16:39 - 2016-10-27 19:05 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-09 16:39 - 2016-10-27 18:57 - 01033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-11-09 16:39 - 2016-10-27 18:49 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-11-09 16:39 - 2016-10-27 18:47 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-11-09 16:39 - 2016-10-27 18:46 - 00806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-11-09 16:39 - 2016-10-27 18:46 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-11-09 16:39 - 2016-10-27 18:44 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-11-09 16:39 - 2016-10-27 18:17 - 15257088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-09 16:39 - 2016-10-27 18:16 - 02920448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-09 16:39 - 2016-10-27 18:03 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-09 16:39 - 2016-10-27 17:54 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 16:39 - 2016-10-27 16:05 - 20304896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-11-09 16:39 - 2016-10-25 15:11 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-09 16:39 - 2016-10-22 18:35 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-11-09 16:39 - 2016-10-22 18:34 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-11-09 16:39 - 2016-10-22 18:27 - 02287616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-11-09 16:39 - 2016-10-22 18:21 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-11-09 16:39 - 2016-10-22 17:58 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2016-11-09 16:39 - 2016-10-22 17:57 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-11-09 16:39 - 2016-10-22 17:56 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-11-09 16:39 - 2016-10-22 17:51 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-11-09 16:39 - 2016-10-22 17:46 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-11-09 16:39 - 2016-10-22 17:45 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-11-09 16:39 - 2016-10-22 17:45 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-11-09 16:39 - 2016-10-22 17:44 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-11-09 16:39 - 2016-10-22 17:43 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-11-09 16:39 - 2016-10-22 17:30 - 13654016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-11-09 16:39 - 2016-10-22 17:12 - 02444800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-11-09 16:39 - 2016-10-22 17:09 - 01312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-11-09 16:39 - 2016-10-22 17:09 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-11-09 16:39 - 2016-10-13 20:06 - 01385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-09 16:39 - 2016-10-13 20:06 - 01124376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2016-11-09 16:39 - 2016-10-12 09:01 - 00377176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-09 16:39 - 2016-10-11 21:21 - 00497448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-09 16:39 - 2016-10-11 21:21 - 00399776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2016-11-09 16:39 - 2016-10-11 19:34 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 16:39 - 2016-10-11 18:47 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-09 16:39 - 2016-10-11 17:55 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\input.dll
2016-11-09 16:39 - 2016-10-10 22:17 - 00444248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-09 16:39 - 2016-10-10 22:17 - 00333656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-11-09 16:39 - 2016-10-09 23:59 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-09 16:39 - 2016-10-09 00:12 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-11-09 16:39 - 2016-10-08 23:53 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 16:39 - 2016-10-08 23:21 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-09 16:39 - 2016-10-08 23:18 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-11-09 16:39 - 2016-10-08 23:07 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 16:39 - 2016-10-08 23:02 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-11-09 16:39 - 2016-10-08 22:49 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2016-11-09 16:39 - 2016-10-08 22:21 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAnimation.dll
2016-11-09 16:39 - 2016-10-08 02:34 - 01660040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-09 16:39 - 2016-10-08 02:34 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-11-09 16:39 - 2016-10-04 21:39 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-09 16:39 - 2016-10-04 21:23 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-09 16:39 - 2016-10-04 21:08 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-11-09 16:39 - 2016-10-04 21:08 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2016-11-09 16:39 - 2016-09-09 23:52 - 00921944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2016-11-09 16:39 - 2016-09-09 23:14 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2016-11-09 16:39 - 2016-09-09 15:15 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-11-09 16:39 - 2016-09-09 15:09 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-11-09 16:39 - 2016-09-09 15:04 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-11-09 16:39 - 2016-09-09 15:03 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-11-09 16:39 - 2016-09-09 15:02 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2016-11-09 16:39 - 2016-09-09 14:38 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-09 16:39 - 2016-09-03 19:20 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsidsc.dll
2016-11-09 16:39 - 2016-09-03 19:06 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiexe.dll
2016-11-09 16:39 - 2016-09-03 18:21 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsidsc.dll
2016-11-09 16:39 - 2016-09-03 17:12 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-11-09 16:39 - 2016-09-03 17:05 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-11-09 16:39 - 2016-09-03 16:58 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2016-11-09 16:39 - 2016-09-02 15:05 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2016-11-09 16:39 - 2016-09-02 15:05 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2016-11-09 16:39 - 2016-09-01 15:33 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2016-11-09 16:39 - 2016-09-01 15:33 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2016-11-09 16:39 - 2016-09-01 15:31 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2016-11-09 16:39 - 2016-08-30 15:11 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-09 16:39 - 2016-08-30 03:45 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-11-09 16:39 - 2016-08-30 03:18 - 00871936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-11-09 16:39 - 2016-08-30 03:18 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2016-11-09 16:39 - 2016-08-30 03:03 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2016-11-09 16:39 - 2016-08-22 14:34 - 01628672 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-11-01 19:36 - 2016-11-01 19:36 - 00001772 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-01 19:36 - 2016-11-01 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-01 19:35 - 2016-11-01 19:36 - 00000000 ____D C:\Program Files\iTunes
2016-11-01 19:35 - 2016-11-01 19:35 - 00000000 ____D C:\Program Files\iPod
2016-10-31 17:03 - 2016-10-31 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2016-10-25 17:34 - 2016-10-25 17:34 - 00000000 ____D C:\Users\ducanh\AppData\Local\Arktos Entertainment
2016-10-25 17:25 - 2016-10-25 17:25 - 00000000 ____D C:\Users\ducanh\Documents\FredaikisAB
2016-10-25 17:25 - 2016-10-25 17:25 - 00000000 ____D C:\Users\ducanh\AppData\Local\FredaikisAB
2016-10-25 17:23 - 2016-10-25 17:23 - 00007270 _____ C:\Users\ducanh\Desktop\Crosshair Styles NewZ.rar
2016-10-25 17:23 - 2016-10-25 17:23 - 00000000 ____D C:\Users\ducanh\Desktop\a
2016-10-23 16:50 - 2016-10-23 16:50 - 00000000 ____D C:\Users\ducanh\Desktop\gamer mu
2016-10-23 16:49 - 2016-10-23 16:52 - 00000000 ____D C:\Users\ducanh\Documents\gamer mu
2016-10-23 16:49 - 2016-10-23 16:49 - 00000000 ____D C:\Users\ducanh\Documents\Neuer Ordner
2016-10-23 02:14 - 2016-11-03 19:30 - 00000000 ___RD C:\Users\ducanh\Desktop\dfgg
2016-10-23 02:14 - 2016-10-23 02:14 - 13775126 _____ C:\Users\ducanh\Desktop\Impactor_0.9.34.zip
2016-10-19 08:41 - 2016-10-19 08:41 - 00000990 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 11.lnk
2016-10-19 08:41 - 2016-10-19 08:41 - 00000978 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2016-10-19 08:40 - 2016-10-19 08:40 - 00000000 ____D C:\Users\ducanh\AppData\Roaming\TeamViewer
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-16 02:48 - 2016-02-16 19:11 - 00000000 ____D C:\Users\ducanh\AppData\Roaming\Spotify
2016-11-16 02:47 - 2015-04-12 16:24 - 00000000 ____D C:\Users\ducanh\AppData\Local\SweetLabs App Platform
2016-11-16 02:46 - 2015-04-16 21:12 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2016-11-16 02:46 - 2015-04-12 16:35 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4038466168-2714463032-1615967804-1001
2016-11-16 02:45 - 2014-05-12 19:24 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-16 02:44 - 2014-06-06 14:31 - 00000000 ____D C:\Users\ducanh\Documents\Youcam
2016-11-16 02:43 - 2016-08-30 21:20 - 00000000 ____D C:\wifidata
2016-11-16 02:43 - 2016-05-16 01:52 - 00000000 ___RD C:\Users\ducanh\iCloudDrive
2016-11-16 02:43 - 2016-02-16 19:11 - 00000000 ____D C:\Users\ducanh\AppData\Local\Spotify
2016-11-16 02:42 - 2016-01-27 17:22 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-16 02:41 - 2015-12-04 19:52 - 00000000 ____D C:\Program Files\SoftEther VPN Client
2016-11-16 02:41 - 2015-04-12 16:33 - 00000998 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-16 02:40 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-16 02:34 - 2015-04-12 16:24 - 00000000 ____D C:\Users\ducanh
2016-11-16 02:13 - 2015-04-12 16:33 - 00001002 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-16 00:51 - 2016-02-21 13:42 - 00000000 ____D C:\Wooxy
2016-11-16 00:51 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-16 00:51 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-11-16 00:50 - 2015-12-03 18:40 - 00000000 ____D C:\Boom
2016-11-16 00:39 - 2015-04-16 21:12 - 00000000 ____D C:\Program Files (x86)\AutoIt3
2016-11-16 00:38 - 2013-08-22 16:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-16 00:23 - 2015-04-12 16:49 - 00000000 ____D C:\NVIDIA
2016-11-16 00:23 - 2015-04-12 16:34 - 00002248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-16 00:15 - 2015-05-01 18:40 - 00000000 ____D C:\Users\ducanh\AppData\Roaming\Skype
2016-11-16 00:10 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\GroupPolicy
2016-11-16 00:08 - 2016-10-09 22:41 - 00000000 ____D C:\Program Files (x86)\InfestationNewZ
2016-11-16 00:08 - 2016-08-30 21:20 - 00000000 ____D C:\Program Files (x86)\IO3O LLC
2016-11-16 00:08 - 2016-04-28 15:54 - 00000000 ____D C:\Program Files (x86)\Heroes of the Storm
2016-11-16 00:08 - 2016-04-20 23:52 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2016-11-16 00:08 - 2016-04-15 23:11 - 00000000 ____D C:\Program Files (x86)\7-Zip
2016-11-16 00:08 - 2016-01-16 21:32 - 00000000 ____D C:\Program Files (x86)\Bonjour
2016-11-16 00:08 - 2016-01-14 18:16 - 00000000 ____D C:\Program Files (x86)\Cisco
2016-11-16 00:08 - 2016-01-14 16:50 - 00000000 ____D C:\Program Files (x86)\HP
2016-11-16 00:08 - 2015-12-26 19:53 - 00000000 ____D C:\Program Files (x86)\Opera
2016-11-16 00:08 - 2015-12-14 16:03 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2016-11-16 00:08 - 2015-11-29 01:20 - 00000000 ____D C:\Program Files (x86)\Boom
2016-11-16 00:08 - 2015-11-02 23:59 - 00000000 ____D C:\Program Files (x86)\MyDrive Connect
2016-11-16 00:08 - 2015-11-02 23:50 - 00000000 ____D C:\Program Files (x86)\TomTom HOME 2
2016-11-16 00:08 - 2015-11-02 23:49 - 00000000 ____D C:\Program Files (x86)\TomTom International B.V
2016-11-16 00:08 - 2015-10-20 19:05 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2016-11-16 00:08 - 2015-10-20 18:59 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-11-16 00:08 - 2015-06-21 19:42 - 00000000 ____D C:\Program Files (x86)\NortonInstaller
2016-11-16 00:08 - 2015-06-21 19:40 - 00000000 ____D C:\Program Files (x86)\FreeCodecPack
2016-11-16 00:08 - 2015-06-21 19:40 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2016-11-16 00:08 - 2015-06-11 22:03 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2016-11-16 00:08 - 2015-05-01 18:40 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-16 00:08 - 2015-05-01 14:34 - 00000000 ____D C:\Program Files (x86)\PhotoScape
2016-11-16 00:08 - 2015-04-20 00:03 - 00000000 ____D C:\Program Files (x86)\CDBurnerXP
2016-11-16 00:08 - 2015-04-19 10:04 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-16 00:08 - 2015-04-12 22:17 - 00000000 ____D C:\Program Files (x86)\Java
2016-11-16 00:08 - 2015-04-12 16:54 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2016-11-16 00:08 - 2015-04-12 16:33 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-16 00:08 - 2014-07-20 23:42 - 00000000 ____D C:\csmtalk
2016-11-16 00:08 - 2014-07-20 12:39 - 00000000 ____D C:\Temp
2016-11-16 00:08 - 2014-05-12 19:43 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-11-16 00:08 - 2014-05-12 19:36 - 00000000 ____D C:\Program Files (x86)\WildTangent Games
2016-11-16 00:08 - 2014-05-12 19:36 - 00000000 ____D C:\Program Files (x86)\WildGames
2016-11-16 00:08 - 2014-05-12 19:34 - 00000000 ____D C:\Program Files (x86)\CyberLink
2016-11-16 00:08 - 2014-05-12 19:21 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-16 00:08 - 2014-05-12 19:18 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-11-16 00:08 - 2014-05-12 19:17 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-11-16 00:08 - 2014-05-12 19:12 - 00000000 ____D C:\Program Files (x86)\Intel
2016-11-16 00:08 - 2014-05-06 20:59 - 00000000 ___RD C:\Program Files (x86)\Online Services
2016-11-16 00:08 - 2014-05-06 20:59 - 00000000 ____D C:\Program Files (x86)\Evernote
2016-11-16 00:08 - 2014-05-06 20:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-11-16 00:08 - 2014-05-06 20:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-11-16 00:08 - 2014-05-06 20:50 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-11-16 00:08 - 2014-04-02 10:50 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-11-16 00:08 - 2014-04-02 10:50 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-11-16 00:08 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2016-11-16 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-11-16 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices
2016-11-16 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows NT
2016-11-16 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files (x86)\Windows Multimedia Platform
2016-11-16 00:08 - 2013-08-22 16:36 - 00000000 ____D C:\PerfLogs
2016-11-15 23:58 - 2013-08-22 14:25 - 00000223 _____ C:\WINDOWS\win.ini
2016-11-15 23:37 - 2014-05-12 19:21 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-15 12:28 - 2014-05-07 06:28 - 00787018 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-15 12:28 - 2014-05-07 06:28 - 00170888 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-15 12:28 - 2014-03-18 10:53 - 01924576 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-15 01:17 - 2015-04-12 16:34 - 00002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-14 17:06 - 2016-01-27 17:07 - 00000000 ____D C:\Users\ducanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-11-14 14:52 - 2016-08-30 21:01 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForducanh.job
2016-11-14 10:31 - 2016-08-30 21:01 - 00003160 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForducanh
2016-11-12 00:09 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-11-11 20:43 - 2015-04-12 16:44 - 00000000 ____D C:\Users\ducanh\AppData\Local\CrashDumps
2016-11-11 00:41 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-10 16:16 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-11-10 14:18 - 2013-08-22 15:44 - 00378816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-10 00:25 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-11-09 18:57 - 2015-04-22 08:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 18:54 - 2015-04-22 08:31 - 141011376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 16:52 - 2016-04-13 16:09 - 00000000 ____D C:\Users\ducanh\Desktop\PBE
2016-11-03 19:52 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-01 20:41 - 2016-03-19 17:12 - 00000000 ____D C:\Users\ducanh\AppData\LocalLow\Smartly Dressed Games
2016-11-01 19:35 - 2015-04-12 16:50 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-10-29 21:13 - 2015-04-12 16:33 - 00000000 ____D C:\Users\ducanh\AppData\Local\Google
2016-10-28 22:04 - 2013-08-22 16:38 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-10-28 22:04 - 2013-08-22 16:38 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-10-28 16:31 - 2015-05-01 18:40 - 00000000 ____D C:\ProgramData\Skype
2016-10-28 02:22 - 2015-05-08 15:38 - 00485032 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-10-23 02:15 - 2016-10-09 13:27 - 00000000 ____D C:\Users\ducanh\Desktop\fkkkkkkkkkk
2016-10-23 02:10 - 2016-09-05 22:49 - 00001002 _____ C:\Users\ducanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iPadian.lnk
2016-10-23 02:09 - 2016-09-05 22:49 - 03003904 _____ (Microsoft Corporation) C:\Users\ducanh\Downloads\ipadians.exe
2016-10-20 22:35 - 2014-06-21 21:48 - 00000000 ____D C:\Users\ducanh\Desktop\Originals
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-11-25 18:10 - 2015-11-25 18:17 - 0002633 _____ () C:\Users\ducanh\AppData\Roaming\droid4xinstaller.log
2016-05-10 14:09 - 2016-05-10 14:09 - 0007608 _____ () C:\Users\ducanh\AppData\Local\Resmon.ResmonCfg
Einige Dateien in TEMP:
====================
C:\Users\ducanh\AppData\Local\Temp\CPU-V.dll
C:\Users\ducanh\AppData\Local\Temp\Extract.exe
C:\Users\ducanh\AppData\Local\Temp\HD-ShortcutHandler.dll
C:\Users\ducanh\AppData\Local\Temp\HPSFUpdater.exe
C:\Users\ducanh\AppData\Local\Temp\mccspuninstall.exe
C:\Users\ducanh\AppData\Local\Temp\oct1872.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct1A86.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct2547.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct3E70.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct462E.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct47F3.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct6394.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct64DE.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct6B74.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct6CF5.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct6D5D.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct738D.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct753C.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct7816.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct7D50.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct8971.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\oct962D.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octA64A.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octB0AC.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octBB99.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octBE3A.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octC0F0.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octC760.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octCD83.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octD62C.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octD8B8.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octDB78.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octF366.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\octFE57.tmp.exe
C:\Users\ducanh\AppData\Local\Temp\Opera_NI_stable.exe
C:\Users\ducanh\AppData\Local\Temp\SkypeSetup.exe
C:\Users\ducanh\AppData\Local\Temp\SP67743.exe
C:\Users\ducanh\AppData\Local\Temp\SP68117.exe
C:\Users\ducanh\AppData\Local\Temp\SP69618.exe
C:\Users\ducanh\AppData\Local\Temp\SP70271.exe
C:\Users\ducanh\AppData\Local\Temp\SP70781.exe
C:\Users\ducanh\AppData\Local\Temp\SP70782.exe
C:\Users\ducanh\AppData\Local\Temp\SP71531.exe
C:\Users\ducanh\AppData\Local\Temp\SP71716.exe
C:\Users\ducanh\AppData\Local\Temp\SP71729.exe
C:\Users\ducanh\AppData\Local\Temp\SP71829.exe
C:\Users\ducanh\AppData\Local\Temp\SP71875.exe
C:\Users\ducanh\AppData\Local\Temp\SP72853.exe
C:\Users\ducanh\AppData\Local\Temp\uninstall.exe
C:\Users\ducanh\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\ducanh\AppData\Local\Temp\USkinDLL.dll
Einige mit null Byte Größe Dateien/Ordner:
==========================
C:\Windows\1f747ad7d0fb402cc27e6c08e14b619a.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe
[2016-03-10 10:06] - [2016-01-05 16:00] - 0570880 ____A (Microsoft Corporation) B1102BBDDD9C87B3D609D6C08F7A3DBD
C:\WINDOWS\system32\wininit.exe
[2015-12-09 13:52] - [2015-10-05 19:28] - 0146432 ____A (Microsoft Corporation) EC302D06155F8E3C383750993FCB6B27
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll
[2016-09-13 21:54] - [2016-08-14 17:14] - 1376768 ____A (Microsoft Corporation) 6416D52BE6D1030DF1B5B8B6090C6E09
C:\WINDOWS\system32\userinit.exe => MD5 ist legitim
C:\WINDOWS\SysWOW64\userinit.exe => MD5 ist legitim
C:\WINDOWS\system32\rpcss.dll
[2016-08-14 17:46] - [2016-04-09 23:10] - 0816128 ____A (Microsoft Corporation) 7830CEA509693DE0817DF2F3F2D80E89
C:\WINDOWS\system32\dnsapi.dll
[2016-10-07 20:59] - [2016-07-04 04:33] - 0657920 ____A (Microsoft Corporation) 9DFB604E2A2B842599CF803B84774B46
C:\WINDOWS\SysWOW64\dnsapi.dll
[2016-10-07 20:59] - [2016-07-04 04:02] - 0498688 ____A (Microsoft Corporation) 1ED58A2A65A540827E93706ADC5F402B
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-11-09 18:50
==================== Ende von FRST.txt ============================
|
|
16.11.2016, 03:05
| #4 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-11-2016
durchgefĂ¼hrt von ducanh (16-11-2016 02:51:03)
Gestartet von C:\Users\ducanh\Downloads
Windows 8.1 (Update) (X64) (2015-04-12 15:26:00)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4038466168-2714463032-1615967804-500 - Administrator - Disabled) => C:\Users\Administrator
ducanh (S-1-5-21-4038466168-2714463032-1615967804-1001 - Administrator - Enabled) => C:\Users\ducanh
Gast (S-1-5-21-4038466168-2714463032-1615967804-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4038466168-2714463032-1615967804-1003 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 15.14 (HKLM-x32\...\7-Zip) (Version: 15.14 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
AutoIt v3.3.12.0 (HKLM-x32\...\AutoItv3) (Version: 3.3.12.0 - AutoIt Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
BlueStacks App Player (HKLM-x32\...\{D080F290-4B2A-4C67-9757-63DA0C6E8855}) (Version: 2.0.0.1011 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
COMODO Internet Security Premium (HKLM\...\{C7C71F0C-4CC1-4B17-943C-96E5196DDA74}) (Version: 8.4.0.5165 - COMODO Security Solutions Inc.)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.9.4928 - CyberLink Corp.)
CyberLink MediaEspresso 6.7 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.7.4.6127 - CyberLink Corp.)
CyberLink Power Media Player 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.6.5104 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.10.5422 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3604 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.6.5011 - CyberLink Corp.)
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Evernote v. 5.2 (HKLM-x32\...\{412F6426-A3C7-11E3-8A71-00163E98E7D6}) (Version: 5.2.0.2951 - Evernote Corp.)
Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Free YouTube Download version 3.2.59.616 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.59.616 - DVDVideoSoft Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
Host App Service (HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\SweetLabs_AP) (Version: 0.269.7.983 - Pokki)
HĂ´̀ƒ trÆ¡̀£ Ừng dù£ng Apple (32 bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
HĂ´̀ƒ trÆ¡̀£ Ừng dù£ng Apple (64 bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
HP 3D DriveGuard (HKLM-x32\...\{F90A86C9-7779-47DD-AC06-8EE832C55F55}) (Version: 6.0.18.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{ADE2F6A7-E7BD-4955-BD66-30903B223DDF}) (Version: 2.20.41 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{4BBA238C-9E5D-40F9-8AC6-FACB736752B9}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.46 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{E959FD01-BD01-4CC4-9BB8-4EBE8309BF37}) (Version: 8.3.34.7 - HP)
HP Support Solutions Framework (HKLM-x32\...\{E2CB09C1-3C76-4395-BB47-50C066535CF8}) (Version: 12.5.32.37 - HP)
HP System Event Utility (HKLM-x32\...\{8B4EE87E-6D40-4C91-B5E8-0DC77DC412F1}) (Version: 1.4.1 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{36F80C5F-DC0D-4DF4-AF09-DC1867F0EB0A}) (Version: 2.4.4 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)
iCloud (HKLM\...\{29AAC3D3-23FC-496D-8266-0E3833686758}) (Version: 6.0.2.10 - Apple Inc.)
Infestation New Z (HKLM-x32\...\Infestation New Z) (Version: v26.01.16 Beta - Fredaikis AB)
Inst5675 (Version: 8.01.46 - Softex Inc.) Hidden
Inst5676 (Version: 8.01.46 - Softex Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) PRO/Wireless Driver (HKLM\...\{c1a7f0cd-91ec-424a-8edf-e0606e915765}) (Version: 17.16.0002.2705 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3574 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.9.1000 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{8B4EA042-9E21-46FB-8286-225F4D51CC52}) (Version: 4.2.41.2710 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{33AD9A5D-209C-4D2A-91BB-C1F3B4BF87A3}) (Version: 17.0.1407.02 - Intel Corporation)
iTunes (HKLM\...\{2C49F336-2E86-4407-83E2-16AC65598EF4}) (Version: 12.5.3.16 - Apple Inc.)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead (HKLM\...\Steam App 500) (Version: - Valve)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MyDriveConnect 4.0.7.2442 (HKLM-x32\...\MyDriveConnect) (Version: 4.0.7.2442 - TomTom)
NARUTO SHIPPUDEN: Ultimate Ninja STORM 4 (HKLM\...\Steam App 349040) (Version: - CyberConnect2 Co. Ltd.)
NVIDIA GeForce Experience 2.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.22 - NVIDIA Corporation)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.273.55 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7358 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 1.8.315 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skypeâ„¢ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Social2Search (HKLM\...\d57653e819183b317db1095a42c99dc6) (Version: 11.12.1.77 (i1.0) - Social2Search) <==== ACHTUNG
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.19.9599 - SoftEther VPN Project)
Spotify (HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\Spotify) (Version: 1.0.42.151.g19de0aa6 - Spotify AB)
Start Menu (HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\SweetLabs_Start_Menu) (Version: 0.269.7.983 - Pokki)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.1.5.2 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
UniKey 4.0 RC2 (build 1101) (HKLM-x32\...\{AC006985-A51F-42AC-A7E9-5E66D8AC8063}_is1) (Version: - Pham Kim Long)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Vacation Questâ„¢ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Warface (HKLM\...\Steam App 291480) (Version: - Crytek)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Who Is On My Wifi version 4.0.0 (HKLM-x32\...\{010D45A1-093D-4534-8147-4E10E80F81CC}_is1) (Version: 4.0.0 - IO3O LLC)
WildTangent Games App fĂ¼r HP (x32 Version: 4.0.11.2 - WildTangent) Hidden
WildTangent-Spiele (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden
Youtube AdBlock (HKLM-x32\...\Youtube AdBlock) (Version: 2.0.0.71 - Company Inc.) <==== ACHTUNG
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0981CC5D-8635-4B09-8DC1-7D4C4C494A55} - System32\Tasks\Update Service for Youtube AdBlock2 => C:\Program Files (x86)\Youtube AdBlock\arR1cs9.exe [2016-11-16] () <==== ACHTUNG
Task: {0A7EACC3-DEAE-4B6E-9DD1-B6EF8757BDDB} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2015-02-11] (CyberLink Corp.)
Task: {25AFB360-0501-453E-B66B-942CBCD209A6} - System32\Tasks\Start OPBHOBrokerDesktop => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBrokerDsktop.exe [2015-07-02] (Hewlett-Packard)
Task: {262E31D1-4BC7-42F2-810C-47E4CE191273} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2016-09-14] (COMODO)
Task: {2C8B0ECD-BB47-42A5-936C-A8DD005607D5} - System32\Tasks\Ckucosp Core => C:\Program Files (x86)\Zojecultdalert\erdey.exe [2016-11-16] (Glarysoft Ltd)
Task: {2E0E4990-D6CA-4B3F-90E3-C53BBB2EA1C9} - System32\Tasks\Start SimplePass => C:\Program Files\Hewlett-Packard\SimplePass\ClientCore.exe [2015-07-02] (Hewlett-Packard)
Task: {490ACCF5-5986-4FBA-89BB-59A80068417A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-12] (Google Inc.)
Task: {4C55E198-6AA8-4231-9608-CE0D9EFC2219} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.)
Task: {60598810-6A5A-41A1-91DF-B26610F04CA5} - \updengine -> Keine Datei <==== ACHTUNG
Task: {815B3BEA-45AB-4DEF-A4EE-4DBEF2B686EC} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2014-05-19] (Hewlett-Packard Development Company, L.P.)
Task: {86332851-384A-4B5F-8499-401DE9423E9E} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-09-14] (COMODO)
Task: {8BEBFA66-B6B8-4EFD-8FFC-A63F78C13EBD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.)
Task: {8C5FFB7E-7A76-4390-A06C-C368847DDA03} - System32\Tasks\Update Service for Youtube AdBlock => C:\Program Files (x86)\Youtube AdBlock\arR1cs9.exe [2016-11-16] () <==== ACHTUNG
Task: {8D8A7F56-8AB0-4AE9-8A83-46E349D7C9CD} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-08-18] (HP Inc.)
Task: {9548583C-07A4-4D26-970D-7B7BB77D570F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.)
Task: {9751F857-8DFA-4B1C-B96C-EF4766B6AAB3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {988FF597-F2E1-4F14-ABB9-006C4887B2E8} - System32\Tasks\{DA8E6507-0DF1-41D5-AB60-6D254E02F562} => pcalua.exe -a "C:\Riot Games\League of Legends\lol.launcher.exe" -d "C:\Riot Games\League of Legends"
Task: {A204AACC-0F2A-4BB1-9B58-0D9A04867A1F} - System32\Tasks\SweetLabs App Platform => C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2016-09-18] (Pokki)
Task: {B5FABC50-B368-461E-ACCB-410EC6B77A38} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-09-14] (COMODO)
Task: {BAFB62B2-E8DE-40BC-8FC9-7E7028D05F22} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-09-14] (COMODO)
Task: {BF5A4D78-AD90-4CFE-ACAE-4851D3C0C96D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-12] (Google Inc.)
Task: {C958479A-1F6D-4E7B-A5B5-114E93DB467D} - System32\Tasks\HPCeeScheduleForducanh => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {D3424280-2D97-41CF-84CC-7955A5092B96} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-09-14] (COMODO)
Task: {EE5AB25E-8C16-41E2-9FBA-AA8170CF0D96} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {F3568130-C271-40EF-AC99-BDE3D504FC29} - System32\Tasks\Start OPBHOBroker => C:\Program Files\Hewlett-Packard\SimplePass\OPBHOBroker.exe [2015-07-02] (Hewlett-Packard)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleForducanh.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\WINDOWS\Tasks\Update Service for Youtube AdBlock.job => C:\Program Files (x86)\Youtube AdBlock\arR1cs9.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\Update Service for Youtube AdBlock2.job => C:\Program Files (x86)\Youtube AdBlock\arR1cs9.exe <==== ACHTUNG
==================== VerknĂ¼pfungen =============================
(Die Einträge können gelistet werden, um sie zurĂ¼ckzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\ducanh\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\Users\ducanh\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-05-12 19:21 - 2015-03-13 17:16 - 00118472 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-04 07:44 - 2013-12-04 07:44 - 00200168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2013-12-04 07:44 - 2013-12-04 07:44 - 00054760 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2013-12-04 07:44 - 2013-12-04 07:44 - 00034792 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2016-03-16 11:25 - 2016-03-16 11:25 - 00073912 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
2016-11-15 01:17 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-15 01:17 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-09-15 18:05 - 2016-09-15 18:05 - 00569856 _____ () C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\ppGoogleNaClPluginChrome.dll
2016-09-15 18:05 - 2016-09-15 18:05 - 01400846 _____ () C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\avcodec-54.dll
2016-09-15 18:05 - 2016-09-15 18:05 - 00151054 _____ () C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\avutil-51.dll
2016-09-15 18:05 - 2016-09-15 18:05 - 00222734 _____ () C:\Users\ducanh\AppData\Local\SweetLabs App Platform\Engine\avformat-54.dll
2016-01-27 17:24 - 2016-09-08 04:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-01-27 17:24 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-01-27 17:24 - 2016-10-13 02:58 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll
2016-01-27 17:24 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-01-27 17:24 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-01-27 17:23 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-01-27 17:23 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-01-27 17:23 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-01-27 17:23 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-01-27 17:23 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-01-27 17:23 - 2016-10-13 02:58 - 00836896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 14:59 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-02-16 19:11 - 2016-11-13 15:23 - 51776112 _____ () C:\Users\ducanh\AppData\Roaming\Spotify\libcef.dll
2016-10-05 18:18 - 2016-10-05 18:18 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-10-05 18:18 - 2016-10-05 18:18 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-09-01 17:13 - 2016-09-01 17:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-08-30 21:20 - 2015-07-09 11:26 - 00839680 _____ () C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\System.Data.SQLite.dll
2016-02-16 19:11 - 2016-11-13 15:23 - 01803888 _____ () C:\Users\ducanh\AppData\Roaming\Spotify\libglesv2.dll
2016-02-16 19:11 - 2016-11-13 15:23 - 00086128 _____ () C:\Users\ducanh\AppData\Roaming\Spotify\libegl.dll
2016-10-13 23:37 - 2016-08-04 21:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll
2014-05-12 19:13 - 2013-12-10 16:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\ducanh:Heroes & Generals [0]
AlternateDataStreams: C:\Users\ducanh\Downloads\avira_de_av_57b55e848ca82__ws.exe:$CmdTcID [64]
AlternateDataStreams: C:\Users\ducanh\Downloads\avira_de_av_57b55e848ca82__ws.exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\ducanh\Downloads\FRST64 (1).exe:$CmdTcID [64]
AlternateDataStreams: C:\Users\ducanh\Downloads\FRST64 (1).exe:$CmdZnID [26]
AlternateDataStreams: C:\Users\ducanh\Downloads\FRST64.exe:$CmdTcID [64]
AlternateDataStreams: C:\Users\ducanh\Downloads\FRST64.exe:$CmdZnID [26]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\zdwfp => ""="Driver"
==================== VerknĂ¼pfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurĂ¼ckgesetzt oder entfernt.)
==================== Internet Explorer VertrauenswĂ¼rdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurĂ¼ckzusetzen.)
2013-08-22 14:25 - 2015-12-07 21:58 - 00000855 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix fĂ¼r diesen Bereich.)
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ducanh\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
mpsdrv => Firewall Dienst läuft nicht.
MpsSvc => Firewall Dienst läuft nicht.
bfe => Firewall Dienst läuft nicht.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
HKLM\...\StartupApproved\Run32: => "BlueStacks Agent"
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\StartupApproved\Run: => "Power2GoExpress8"
HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\...\StartupApproved\Run: => "Skype"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{5FD27008-3998-46BB-90B6-3044A679D7A0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{64F99A8C-0877-4B8C-94CE-390678F196D6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E9824D4A-D2B9-4603-88DD-9D56AC1FEEC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{8318E001-968B-4E8B-B17F-15FDE8954A84}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{E661CB3D-9069-4F87-A514-EC4D8B6F4088}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0920AF33-0DFE-4A94-A7C1-63FE973AC765}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2A275877-CB2D-4E34-A912-B976EC447341}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{396C0FA5-1015-42CA-9895-03D56641FF4B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{082F1F63-8E15-431E-B321-4DBB5C5B9D56}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{95A44F63-5CFD-4E3E-88E5-4C665149614D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B5942159-CBB5-4928-9D64-B7815B446120}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{62A8800F-1117-49C0-AD8B-5BA97820C29C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [TCP Query User{76F28D64-EBEC-456E-A8D9-503CDF2EB27D}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{B711A844-DC15-4414-95BE-3FA7897FB2C7}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{E74A733F-BEAA-476E-9114-150E3C14580E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{9156F99C-8455-4C89-A59F-B80AD9CD8B0F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{E21E1587-5C8F-480D-932B-2B77CFDE28BE}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [UDP Query User{10C5B7F5-93B8-434B-AA1F-0A1C9031B5FC}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe
FirewallRules: [TCP Query User{76A9F238-5454-4462-8B76-749BFD216B86}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{15C931F1-6174-4C65-B36A-B53C8FA5446A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{D614E9CD-5AF0-4D8C-ADCF-D0A3A3CBA7D9}C:\users\ducanh\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\ducanh\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{45281AB2-57C6-40DA-952D-0BC19F57C46C}] => (Allow) C:\Program Files (x86)\Droid4X\Droid4X.exe
FirewallRules: [{D8DC9170-2FA1-402E-9D5C-6907DBF9578D}] => (Allow) C:\Program Files (x86)\Droid4X\download\MiniThunderPlatform.exe
FirewallRules: [{C0951403-CA57-4A47-B041-4099A689E3E3}] => (Allow) C:\Program Files\Oracle\VirtualBox\vboxheadless.exe
FirewallRules: [{85BA7E11-3AC1-4B62-9C6A-A2384EA9611F}] => (Allow) C:\Boom\ca.exe
FirewallRules: [{367AEB9A-0BB0-4C4E-A795-6C81A2990669}] => (Allow) C:\Boom\ca.exe
FirewallRules: [{FB2064E3-BD41-4CE6-A627-6655F4CC3EA2}] => (Allow) C:\Boom\nmcosrv.exe
FirewallRules: [{85B63B22-A0EF-48F7-B7C5-738BE83463B9}] => (Allow) C:\Boom\nmcosrv.exe
FirewallRules: [{D31C5AD3-7853-48D2-AD3A-3035A6D503E7}] => (Allow) C:\Program Files (x86)\Boom\ca.exe
FirewallRules: [{93EA3A94-BC0F-4152-AFFC-799A3061ADE7}] => (Allow) C:\Program Files (x86)\Boom\ca.exe
FirewallRules: [{41263AB9-849C-4D24-8F97-0A41C1F2403D}] => (Allow) C:\Program Files (x86)\Boom\nmcosrv.exe
FirewallRules: [{9DAB86AD-92FF-4BF8-BF33-38059B62327A}] => (Allow) C:\Program Files (x86)\Boom\nmcosrv.exe
FirewallRules: [{F9F6192B-03EA-48CF-A1C5-62BEF33A20AC}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe
FirewallRules: [{FC378735-65A8-40D2-9D47-36EF65CA149E}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
FirewallRules: [{0E5F91E2-C802-45EC-B715-DFB6C960AE20}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
FirewallRules: [{439FBE5B-9690-4221-8657-0CD1BB8AF005}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe
FirewallRules: [{9A06B6DC-85D5-49F0-82A1-A943F92BAA8F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe
FirewallRules: [{7D8DA4FC-676F-4284-ADDD-24CA9ADF3DE0}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe
FirewallRules: [{C3B6062E-B56A-4ABB-A84F-8C34A2D8E1DE}] => (Allow) C:\Boom\nmcosrv.exe
FirewallRules: [{2470A7F5-F78C-4814-9D37-E76E36716462}] => (Allow) C:\Boom\nmcosrv.exe
FirewallRules: [{382B10B0-19C0-4AE0-AAF8-7D98F533CB71}] => (Allow) C:\Users\ducanh\AppData\Roaming\Nox\bin\Nox.exe
FirewallRules: [{846B9078-B408-4788-B348-D8A6FA88FD97}] => (Allow) C:\Program Files\Bignox\BigNoxVM\RTNoxVMHandle.exe
FirewallRules: [{2EF23D5D-277A-4B5F-AB8E-3988077F787C}] => (Allow) C:\Program Files (x86)\Droid4X\MultiMgr.exe
FirewallRules: [{95992841-61AA-48D5-84D6-2DCB39A68E39}] => (Allow) c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{6668C0E0-D29D-4941-B3C8-42970422DB28}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{04AF7958-E784-454F-A088-772C3543FC45}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DA1D80AD-9BF7-421A-B6FE-DFF148586062}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{84783F8B-58B8-49CA-AB34-55FBDE757613}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3E4BFE81-9293-41BD-B3FE-E61300D856C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{69CE4CFA-269D-4E32-9AC8-1CB7BFFA33AC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D659635A-7148-4ED0-882B-06E2EA6F4BEE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{BEFB88BD-7CDF-46D8-A2CF-6F0EA6E403FF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{E6D9AC72-E5BE-4FBD-B090-654100676F13}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [TCP Query User{7D95D3DE-E2B6-4355-9493-E89AE643F390}C:\users\ducanh\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ducanh\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{DF26136E-B4DF-4ECF-9D2C-E63F82020023}C:\users\ducanh\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\ducanh\appdata\roaming\spotify\spotify.exe
FirewallRules: [{7839A1E7-EA87-4EB6-853B-A177DF252E00}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{E64B121A-2694-4BD7-AFB4-4B3EF3028433}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{A4BA125A-BD9D-4A3A-897B-BE25C39B6405}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{3C2D556D-AEE2-4818-A30F-3EBD74EC48FF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{D8FC0380-D597-4FE1-BC00-E3961317FD29}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{5D481C33-F3A2-4607-A335-DE4DBC2F3D77}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{86C66020-9F98-4E62-A7D1-CE52367E5511}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\left 4 dead\left4dead.exe
FirewallRules: [{63CAA03B-43A1-4565-9A80-6F9887E5AFD9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\left 4 dead\left4dead.exe
FirewallRules: [TCP Query User{FCEFE5C2-56FC-4EE6-B4F0-8E0D5F1F2B48}C:\program files (x86)\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{4BF2E0CC-BE2E-44B4-9562-EE11152BF53F}C:\program files (x86)\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base42506\heroesofthestorm_x64.exe
FirewallRules: [{86EFA35B-AD4F-4DB3-A3E8-9767BD0F55BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe
FirewallRules: [{439FA976-2AB3-45D2-9A33-C1628236ACAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\NARUTO SHIPPUDEN Ultimate Ninja STORM 4\NSUNS4.exe
FirewallRules: [TCP Query User{11393079-3F70-4D54-AFE4-1D3946AF999C}C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{6CB31187-B9F8-43A6-AEC1-063A49F197E9}C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base42958\heroesofthestorm_x64.exe
FirewallRules: [{93D407C5-8B80-41A8-809A-AD366D51CFD9}] => (Allow) C:\Program Files (x86)\InfestationNewZ\TheNewZ.exe
FirewallRules: [{EA806DA6-D1A4-4FBC-969A-B2F0FF62DC72}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{04158EE1-B463-4DFE-A444-985B2459D19F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C65052DE-9427-42F8-823E-D85B6EAA2BC2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B0C481B7-05FF-42FE-9416-751BAB294F6E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{120CB8E8-3B92-40CF-A8AB-A36B92E5B739}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{31F30A1A-11AB-4A3C-A98F-FC1B86AA1143}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{4374C69D-EF14-4B24-9CA4-CB6C3EC832FD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{29FF15C1-E9F7-4D92-ADBB-849AD8CCF1FB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D29037BC-9560-42A6-82CA-C2D6DEE1B3E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{1F67818F-2A18-44B2-B659-A138AAE2D7F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Wiederherstellungspunkte =========================
Wiederherstellungspunkte konnten nicht aufgelistet werden
ĂœberprĂ¼fen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.
==================== Fehlerhafte Geräte im Gerätemanager =============
Konnte Geräte nicht auflisten. ĂœberprĂ¼fen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Der Dienst der Ereignisanzeige konnte nicht gestartet werden, Einträge konnten nicht gelesen werden.
Systemfehler 123 aufgetreten.
Die Syntax für den Dateinamen, Verzeichnisnamen oder die Datenträgerbezeichnung ist falsch.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz
Prozentuale Nutzung des RAM: 31%
Installierter physikalischer RAM: 12218.15 MB
Verfügbarer physikalischer RAM: 8394.66 MB
Summe virtueller Speicher: 14074.15 MB
Verfügbarer virtueller Speicher: 10174.02 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:910.44 GB) (Free:650.88 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:20.05 GB) (Free:2.01 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E1B0F7F4)
Partition: GPT.
==================== Ende von Addition.txt ============================
und Datenträger sinken massiv, doch immer wenn ich etwas anmache bzw Chrome, League of Legends erhöht sich es wieder auf 100% und sinkt manchmal wieder ab. Falls ich da was zeigen sollte bitte um Hinweise. Danke |
|
16.11.2016, 09:43
| #5 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungZitat:
Wenn du Hilfe willst musst du Fakten posten (also Logs von deinem Virenscanner), nicht so einen nichtsagenden Kram...
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
16.11.2016, 14:03
| #6 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter <html>
<head>
<META http-equiv="Content-Type" content="text/html; charset=UTF-16">
<title>Defense+-Ereignisse</title>
</head>
<body>
<table width="100%" bgcolor="#CFCFE5" border="0">
<tr>
<td>
<font face="Arial" size="+1">COMODO Internet Security Premium Einträge</font>
</td>
</tr>
</table>
<table width="100%" cellspacing="0" cellpadding="0" border="0">
<tr>
<td width="0" bgcolor="#EDEDF5">*</td>
<td width="0" bgcolor="#FFFFFF">*</td>
<td width="20%">
<h4>Tabelle</h4>
</td>
<td width="0">
<h4>:</h4>
</td>
<td width="*">
<h4>Defense+-Ereignisse</h4>
</td>
</tr>
<tr>
<td width="0" bgcolor="#EDEDF5">*</td>
<td width="0" bgcolor="#FFFFFF">*</td>
<td width="20%">
<h4>Erstellungsdatum</h4>
</td>
<td width="0">
<h4>:</h4>
</td>
<td width="*">
<h4>2016-11-16 13:57:06</h4>
</td>
</tr>
<tr>
<td width="0" bgcolor="#EDEDF5">*</td>
<td width="0" bgcolor="#FFFFFF">*</td>
<td width="20%">
<h4>Anzahl der Einträge</h4>
</td>
<td width="0">
<h4>:</h4>
</td>
<td width="*">
<h4>1471</h4>
</td>
</tr>
</table>
<table width="100%" cellspacing="0" cellpadding="0" border="1">
<tr>
<th>Datum</th>
<th>Anwendung</th>
<th>Aktion</th>
<th>Ziel</th>
</tr>
<tr>
<td>2016-11-16 03:06:32*
</td>
<td>C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:19*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:19*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:19*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:14*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:14*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:12*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:11*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:09*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:57:09*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:36*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:29*
</td>
<td>C:\Windows\System32\notepad.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:26*
</td>
<td>C:\Windows\System32\notepad.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:22*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:21*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:18*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:17*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:16*
</td>
<td>C:\Windows\System32\net.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:16*
</td>
<td>C:\Windows\System32\net1.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:15*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:11*
</td>
<td>C:\Windows\System32\sc.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:56:10*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:55:32*
</td>
<td>C:\VTRoot\HarddiskVolume4\Windows\mod_frst.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:55:02*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:55:02*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:55:02*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:55:02*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:55:01*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:54:59*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:54:59*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:54:57*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:54:56*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:54:18*
</td>
<td>C:\Windows\System32\notepad.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:54:15*
</td>
<td>C:\Windows\System32\notepad.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:34*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:34*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:32*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:32*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:31*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:30*
</td>
<td>C:\Windows\System32\net.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:30*
</td>
<td>C:\Windows\System32\net1.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:29*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:23*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:53:23*
</td>
<td>C:\Windows\System32\sc.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:52:26*
</td>
<td>C:\VTRoot\HarddiskVolume4\Windows\mod_frst.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:51:08*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:51:08*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:51:08*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Direkt auf Laufwerk zugreifen*
</td>
<td>\Device\HarddiskVolume2*
</td>
</tr>
<tr>
<td>2016-11-16 02:51:00*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:51:00*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:50:58*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:50:57*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:50:54*
</td>
<td>C:\Windows\System32\bcdedit.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:50:53*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:48:03*
</td>
<td>C:\VTRoot\HarddiskVolume4\Windows\ERUNT.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:48:01*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:47:57*
</td>
<td>C:\Users\ducanh\Downloads\FRST64 (1).exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:31:30*
</td>
<td>C:\VTRoot\HarddiskVolume4\Windows\ERUNT.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:31:28*
</td>
<td>C:\Windows\System32\cmd.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 02:31:08*
</td>
<td>C:\Users\ducanh\Downloads\FRST64.exe*
</td>
<td>Virtualisiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:38:02*
</td>
<td>c:\windows\system32\drivers\mskssrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:38:02*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:38:01*
</td>
<td>c:\windows\system32\drivers\kbdhid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:38:01*
</td>
<td>C:\WINDOWS\system32\ncryptsslp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:38:00*
</td>
<td>c:\windows\system32\msmpeg2enc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:38:00*
</td>
<td>C:\WINDOWS\system32\WSClient.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:38:00*
</td>
<td>C:\WINDOWS\system32\SettingMonitor.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:59*
</td>
<td>c:\windows\system32\drivers\bthport.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:59*
</td>
<td>C:\WINDOWS\SYSTEM32\wininitext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:59*
</td>
<td>c:\windows\system32\drivers\vwifibus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:58*
</td>
<td>c:\windows\system32\l3codeca.acm*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:57*
</td>
<td>c:\windows\system32\drivers\volmgr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:57*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:57*
</td>
<td>c:\windows\system32\drivers\wof.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:57*
</td>
<td>c:\windows\system32\drivers\partmgr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:53*
</td>
<td>c:\windows\system32\DAB.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:52*
</td>
<td>c:\windows\system32\evr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:52*
</td>
<td>c:\windows\system32\drivers\fxppm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:51*
</td>
<td>C:\WINDOWS\SYSTEM32\SETTINGSYNCPOLICY.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:51*
</td>
<td>c:\windows\system32\quartz.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:51*
</td>
<td>c:\windows\system32\drivers\amdsata.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:51*
</td>
<td>c:\windows\syswow64\advapi32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:51*
</td>
<td>c:\program files (x86)\openoffice 4\program\scalc.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:51*
</td>
<td>C:\WINDOWS\system32\WINBRAND.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:50*
</td>
<td>c:\windows\system32\drivers\imsevent.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:49*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:49*
</td>
<td>c:\windows\syswow64\setupapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:47*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:46*
</td>
<td>C:\WINDOWS\system32\prnfldr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:44*
</td>
<td>C:\WINDOWS\System32\wlansvcpal.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:44*
</td>
<td>c:\program files\windows mail\wabmig.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:44*
</td>
<td>c:\program files (x86)\cyberlink\photodirector\photodirector3.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:43*
</td>
<td>c:\windows\syswow64\msvcrt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:43*
</td>
<td>c:\windows\system32\drivers\sbp2port.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:43*
</td>
<td>C:\WINDOWS\system32\NCI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:42*
</td>
<td>C:\Windows\System32\fdproxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:42*
</td>
<td>c:\windows\system32\drivers\tsusbgd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:39*
</td>
<td>C:\Windows\System32\FunDisc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:39*
</td>
<td>c:\windows\system32\l2gpstore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:39*
</td>
<td>c:\windows\system32\drivers\ksecpkg.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:39*
</td>
<td>c:\windows\syswow64\itss.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:38*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTPlatformCheck.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:38*
</td>
<td>C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:38*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\HP.SSF.Controllers.ProductDetection.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:35*
</td>
<td>C:\WINDOWS\System32\PrintIsolationProxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:35*
</td>
<td>c:\windows\system32\swprv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:35*
</td>
<td>c:\windows\system32\drivers\netio.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:34*
</td>
<td>c:\windows\system32\UBPM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:33*
</td>
<td>c:\windows\system32\wbem\wmiapsrv.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:32*
</td>
<td>C:\WINDOWS\system32\dafBth.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:32*
</td>
<td>c:\windows\syswow64\msmpeg2vdec.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:32*
</td>
<td>c:\windows\system32\drivers\rspndr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:31*
</td>
<td>C:\Program Files\Common Files\microsoft shared\ink\TipRes.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:28*
</td>
<td>C:\WINDOWS\system32\msprivs.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:26*
</td>
<td>C:\Program Files\internet explorer\ieproxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:26*
</td>
<td>c:\windows\syswow64\zipfldr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:24*
</td>
<td>c:\windows\system32\drivers\filetrace.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:17*
</td>
<td>C:\Windows\system32\guard64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:17*
</td>
<td>C:\WINDOWS\system32\SSCORE.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:16*
</td>
<td>c:\windows\syswow64\smartcardcredentialprovider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:16*
</td>
<td>c:\windows\system32\upnphost.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:15*
</td>
<td>c:\windows\system32\fdphost.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:14*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\f342452332d6cfd39ef868521f1ae376\System.Windows.Forms.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:12*
</td>
<td>c:\windows\system32\wsservice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:11*
</td>
<td>c:\windows\system32\drivers\clfs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:10*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\4684b155d0a630f37ae6e6e4b4a9727a\System.Runtime.Serialization.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:06*
</td>
<td>c:\windows\system32\drivers\ndisuio.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:05*
</td>
<td>c:\windows\system32\drivers\1394ohci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:04*
</td>
<td>C:\Windows\System32\dlnashext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:04*
</td>
<td>c:\windows\system32\drivers\netwbw02.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:04*
</td>
<td>C:\Windows\System32\fdssdp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:04*
</td>
<td>c:\windows\system32\profsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:03*
</td>
<td>c:\windows\system32\drivers\vwififlt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:03*
</td>
<td>c:\windows\system32\drivers\inetmon.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:03*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Collections\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Collections.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:02*
</td>
<td>c:\windows\system32\ipnathlp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:02*
</td>
<td>C:\WINDOWS\System32\IDStore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:02*
</td>
<td>c:\windows\system32\drivers\mslldp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:01*
</td>
<td>c:\windows\system32\snippingtool.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:01*
</td>
<td>c:\windows\system32\appxdeploymentserver.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:00*
</td>
<td>c:\windows\system32\dxgwdi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:00*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Runtime.InteropServices.WindowsRuntime\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.InteropServices.WindowsRuntime.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:00*
</td>
<td>c:\windows\system32\drivers\ndu.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:00*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\DetectionInterop.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:37:00*
</td>
<td>C:\WINDOWS\SYSTEM32\MSVCR100.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:59*
</td>
<td>c:\windows\system32\drivers\tdi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:59*
</td>
<td>c:\windows\system32\bisrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:58*
</td>
<td>c:\program files\internet explorer\iexplore.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:58*
</td>
<td>c:\windows\system32\drivers\fltmgr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:58*
</td>
<td>c:\windows\system32\iyuv_32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:57*
</td>
<td>c:\windows\system32\itss.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:57*
</td>
<td>c:\windows\system32\axinstsv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:57*
</td>
<td>c:\windows\syswow64\comdlg32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:56*
</td>
<td>c:\windows\system32\sysmain.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:56*
</td>
<td>C:\WINDOWS\system32\dwmcore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:56*
</td>
<td>C:\WINDOWS\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_88dcdb0b2fb19957\MSVCR80.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:56*
</td>
<td>c:\windows\system32\drivers\rtsuvstor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:56*
</td>
<td>c:\windows\system32\drivers\acpi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:56*
</td>
<td>c:\windows\system32\fhsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:56*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\RestSharp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:55*
</td>
<td>c:\windows\system32\wpcsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:55*
</td>
<td>C:\WINDOWS\system32\upnp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:55*
</td>
<td>C:\WINDOWS\SYSTEM32\oledlg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:55*
</td>
<td>c:\windows\system32\ieetwcollector.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:54*
</td>
<td>C:\Windows\System32\Windows.Globalization.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:54*
</td>
<td>c:\windows\system32\drivers\srv2.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:54*
</td>
<td>c:\windows\syswow64\qasf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:54*
</td>
<td>c:\windows\system32\ncsi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:54*
</td>
<td>c:\windows\system32\cngcredui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:53*
</td>
<td>c:\windows\system32\drivers\syntp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:53*
</td>
<td>C:\WINDOWS\SYSTEM32\tabbtn.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:52*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.344_x64__8wekyb3d8bbwe\Microsoft.Bing.AppEx.Telemetry.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:50*
</td>
<td>c:\Program Files\Intel\WiFi\bin\MurocApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:50*
</td>
<td>c:\windows\system32\srvsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:49*
</td>
<td>C:\WINDOWS\SYSTEM32\MSVCP120.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:48*
</td>
<td>c:\program files (x86)\bluestacks\hd-agent.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:48*
</td>
<td>c:\windows\system32\nsisvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:48*
</td>
<td>c:\windows\system32\drivers\mrxsmb10.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:48*
</td>
<td>c:\program files\itunes\itunes.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:47*
</td>
<td>C:\WINDOWS\System32\dnsext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:47*
</td>
<td>C:\WINDOWS\SYSTEM32\winlogonext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:46*
</td>
<td>c:\windows\system32\drivers\vmbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:46*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.IO\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.IO.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:46*
</td>
<td>C:\WINDOWS\system32\wbem\esscli.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:45*
</td>
<td>c:\windows\system32\sensrsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:45*
</td>
<td>C:\Windows\System32\TabBtnEx.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:44*
</td>
<td>C:\WINDOWS\system32\wwanapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:44*
</td>
<td>c:\program files (x86)\cyberlink\youcam\clcredprov\x64\clcredprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:44*
</td>
<td>C:\WINDOWS\system32\RtkCfg64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:44*
</td>
<td>c:\windows\system32\drivers\ikbevent.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:43*
</td>
<td>c:\windows\system32\svsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:43*
</td>
<td>c:\windows\system32\drivers\storvsc.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:42*
</td>
<td>c:\windows\system32\drivers\intcdaud.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:42*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\mscorlib\fc9860df7e7c03efd26ad5311301dfcb\mscorlib.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:36*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.Foundation.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:36*
</td>
<td>c:\windows\syswow64\nsi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:35*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Threading\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Threading.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:34*
</td>
<td>C:\WINDOWS\system32\livessp.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:34*
</td>
<td>c:\windows\system32\wcnnetsh.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:33*
</td>
<td>c:\windows\system32\appreadiness.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:33*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\Wbf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:32*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.ServiceProcess.resources\v4.0_4.0.0.0_de_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:32*
</td>
<td>c:\windows\system32\drivers\afd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:32*
</td>
<td>c:\windows\system32\slpts.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:32*
</td>
<td>c:\windows\system32\tsddd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:32*
</td>
<td>c:\windows\system32\drivers\amdsbs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:31*
</td>
<td>C:\Windows\System32\comsvcs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:31*
</td>
<td>c:\windows\system32\drivers\bxvbda.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:31*
</td>
<td>c:\windows\system32\nshhttp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:31*
</td>
<td>C:\WINDOWS\SYSTEM32\globinputhost.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:22*
</td>
<td>c:\windows\system32\drivers\compositebus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:22*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTENSData.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:22*
</td>
<td>C:\Windows\System32\LocationApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:20*
</td>
<td>c:\windows\syswow64\sechost.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:20*
</td>
<td>C:\WINDOWS\system32\DAFWSD.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:19*
</td>
<td>c:\windows\syswow64\msctf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:19*
</td>
<td>c:\windows\system32\drivers\modem.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:18*
</td>
<td>c:\windows\system32\drivers\iastora.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:18*
</td>
<td>C:\WINDOWS\system32\wbem\wmidcprv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:17*
</td>
<td>c:\windows\system32\wlidsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:16*
</td>
<td>c:\windows\system32\drivers\vmgencounter.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:15*
</td>
<td>c:\windows\system32\rpcnsh.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:15*
</td>
<td>c:\windows\system32\drivers\wdf01000.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:15*
</td>
<td>c:\windows\system32\drivers\mvumis.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:15*
</td>
<td>C:\Windows\System32\PlayToDevice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:15*
</td>
<td>c:\windows\system32\drivers\wpdupfltr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:14*
</td>
<td>C:\WINDOWS\SYSTEM32\wbemcomn.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:14*
</td>
<td>c:\windows\system32\credssp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:14*
</td>
<td>C:\WINDOWS\System32\IWMSSvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:14*
</td>
<td>c:\windows\system32\drivers\serial.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:14*
</td>
<td>c:\windows\system32\authfwcfg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:13*
</td>
<td>c:\windows\system32\diagtrack.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:13*
</td>
<td>c:\windows\system32\drivers\vsmraid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:12*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\0710058637a1bd90cad8b59f0d7d32fc\System.ServiceProcess.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:12*
</td>
<td>C:\WINDOWS\System32\van.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:11*
</td>
<td>C:\WINDOWS\system32\nvaudcap64v.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:11*
</td>
<td>c:\windows\system32\ktmw32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:10*
</td>
<td>c:\program files (x86)\windows media player\wmplayer.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:09*
</td>
<td>c:\windows\syswow64\mshtml.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:09*
</td>
<td>c:\windows\system32\drivers\disk.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:09*
</td>
<td>c:\program files (x86)\bonjour\mdnsnsp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:09*
</td>
<td>c:\windows\system32\drivers\npsvctrig.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:09*
</td>
<td>c:\windows\system32\locator.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:08*
</td>
<td>C:\WINDOWS\SYSTEM32\MsftEdit.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:08*
</td>
<td>c:\windows\system32\lmhsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:08*
</td>
<td>c:\windows\syswow64\rshx32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:08*
</td>
<td>c:\windows\system32\wephostsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:08*
</td>
<td>C:\WINDOWS\System32\wscinterop.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:08*
</td>
<td>c:\windows\system32\whealogr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:08*
</td>
<td>C:\Windows\System32\HelpPaneProxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:07*
</td>
<td>C:\WINDOWS\System32\AltTab.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:07*
</td>
<td>c:\windows\syswow64\quartz.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:06*
</td>
<td>c:\windows\system32\BrokerLib.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:06*
</td>
<td>c:\windows\system32\drivers\srvnet.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:05*
</td>
<td>c:\windows\system32\msyuv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:05*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.Globalization.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:05*
</td>
<td>c:\windows\system32\mpeg2data.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:05*
</td>
<td>C:\WINDOWS\SYSTEM32\WLDP.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:05*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:05*
</td>
<td>c:\windows\system32\drivers\msiscsi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:04*
</td>
<td>c:\windows\system32\drivers\dmvsc.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:04*
</td>
<td>C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:04*
</td>
<td>c:\windows\system32\drivers\fs_rec.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:04*
</td>
<td>c:\windows\system32\dps.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:03*
</td>
<td>C:\WINDOWS\system32\stobject.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:03*
</td>
<td>c:\windows\system32\drivers\hyperkbd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:03*
</td>
<td>c:\windows\system32\inetsrv\iisw3adm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:03*
</td>
<td>C:\WINDOWS\system32\wbem\wmiutils.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:02*
</td>
<td>c:\windows\system32\drivers\cmdguard.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:01*
</td>
<td>C:\WINDOWS\system32\dxp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:01*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:00*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\ssleay32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:00*
</td>
<td>c:\windows\system32\dnsrslvr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:36:00*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\Qt5Core.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:55*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:55*
</td>
<td>C:\WINDOWS\system32\wmidcom.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:55*
</td>
<td>c:\windows\system32\drivers\uaspstor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:54*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\icudt55.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:50*
</td>
<td>c:\windows\system32\drivers\http.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:49*
</td>
<td>c:\windows\system32\mpssvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:48*
</td>
<td>C:\WINDOWS\system32\NVSVC64.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:47*
</td>
<td>C:\WINDOWS\SYSTEM32\dxva2.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:47*
</td>
<td>c:\windows\system32\drivers\nsiproxy.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:46*
</td>
<td>c:\program files (x86)\openoffice 4\program\simpress.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:46*
</td>
<td>c:\windows\syswow64\cngcredui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:46*
</td>
<td>c:\windows\system32\drivers\ucx01000.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:46*
</td>
<td>C:\Program Files\Windows Portable Devices\SqmApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:46*
</td>
<td>c:\windows\system32\drivers\hidbatt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:45*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\LServ.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:45*
</td>
<td>C:\WINDOWS\SYSTEM32\Nv3DAppShExtR.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:42*
</td>
<td>C:\Windows\System32\ieframe.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:42*
</td>
<td>C:\Windows\system32\SynCOM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:42*
</td>
<td>c:\windows\system32\drivers\usbccgp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:39*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Serv759bfb78#\91c5027b4e3f924eb45b13524ac825e2\System.ServiceProcess.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:39*
</td>
<td>c:\windows\system32\drivers\sdbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:39*
</td>
<td>C:\WINDOWS\SYSTEM32\ntmarta.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:38*
</td>
<td>c:\windows\system32\fntcache.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:38*
</td>
<td>c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\hpnetworkcheckpluginx64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:38*
</td>
<td>C:\Program Files\Common Files\Microsoft Shared\Ink\IpsPlugin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:38*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.344_x64__8wekyb3d8bbwe\Sqlite3.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:38*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Runtime\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:37*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Web\aeb502a203b98c5a79a78d5ff613845b\System.Web.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:37*
</td>
<td>c:\windows\system32\drivers\usbuhci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:37*
</td>
<td>c:\windows\system32\drivers\wmilib.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:37*
</td>
<td>c:\windows\system32\drivers\cdfs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:37*
</td>
<td>C:\WINDOWS\system32\audioeng.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:37*
</td>
<td>c:\windows\system32\storsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:37*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00_12.0.21005.1_x64__8wekyb3d8bbwe\msvcp120_app.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:36*
</td>
<td>c:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:33*
</td>
<td>C:\Windows\System32\Windows.Networking.Connectivity.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:33*
</td>
<td>C:\WINDOWS\SYSTEM32\uxinit.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:33*
</td>
<td>c:\windows\system32\netiohlp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:33*
</td>
<td>c:\windows\system32\nvshext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:32*
</td>
<td>c:\windows\system32\drivers\nvstor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:32*
</td>
<td>c:\windows\system32\themeservice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:31*
</td>
<td>C:\WINDOWS\SYSTEM32\newdev.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:30*
</td>
<td>c:\windows\system32\drivers\clvirtualdrive.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:30*
</td>
<td>c:\windows\system32\drivers\usbhub.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:30*
</td>
<td>C:\WINDOWS\system32\lockscreencn.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:30*
</td>
<td>c:\windows\system32\drivers\ssudbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:29*
</td>
<td>C:\WINDOWS\system32\ncryptprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:29*
</td>
<td>C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:29*
</td>
<td>c:\windows\system32\drivers\usbxhci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:28*
</td>
<td>c:\windows\system32\drivers\drmkaud.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:28*
</td>
<td>C:\WINDOWS\SYSTEM32\rtutils.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:28*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Diagnostics.Tracing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Diagnostics.Tracing.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:28*
</td>
<td>C:\WINDOWS\SYSTEM32\VERSION.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:27*
</td>
<td>c:\windows\system32\unregmp2.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:27*
</td>
<td>c:\windows\system32\drivers\mssmbios.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:27*
</td>
<td>c:\windows\system32\certprop.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:27*
</td>
<td>c:\windows\system32\drivers\tm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:26*
</td>
<td>C:\WINDOWS\system32\taskcomp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:26*
</td>
<td>c:\windows\system32\rshx32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:26*
</td>
<td>c:\windows\system32\drivers\fdc.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:25*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTRWHelper.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:24*
</td>
<td>C:\WINDOWS\system32\ProximityCommonPal.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:23*
</td>
<td>c:\windows\system32\ncasvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:23*
</td>
<td>C:\WINDOWS\system32\TetheringStation.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:23*
</td>
<td>c:\windows\system32\drivers\battc.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:23*
</td>
<td>c:\program files (x86)\cyberlink\power2go8\power2go8.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:23*
</td>
<td>c:\windows\system32\drivers\ehstortcgdrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:22*
</td>
<td>C:\Windows\System32\crypttpmeksvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:22*
</td>
<td>c:\windows\system32\cca.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:22*
</td>
<td>C:\WINDOWS\SYSTEM32\msvproc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:22*
</td>
<td>c:\windows\syswow64\qdv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:21*
</td>
<td>C:\WINDOWS\system32\dafupnp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:21*
</td>
<td>C:\WINDOWS\System32\wpncore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:21*
</td>
<td>c:\windows\system32\drivers\iastorv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:20*
</td>
<td>C:\WINDOWS\system32\wiatrace.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:20*
</td>
<td>c:\windows\system32\drivers\evbda.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:20*
</td>
<td>C:\WINDOWS\System32\wpnprv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:20*
</td>
<td>c:\windows\system32\lpk.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:19*
</td>
<td>c:\windows\system32\drivers\amdppm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:19*
</td>
<td>C:\Program Files\NVIDIA Corporation\Update Core\NvGFTrayPluginR.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:18*
</td>
<td>C:\WINDOWS\SYSTEM32\WSOCK32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:18*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Runt0d283adf#\217ff2360f71a4579bd72923c4085a3a\System.Runtime.WindowsRuntime.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:18*
</td>
<td>c:\windows\system32\drivers\mspqm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:17*
</td>
<td>C:\WINDOWS\system32\dtsh.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:17*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\SmarttceTransferInterface.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:16*
</td>
<td>c:\windows\system32\drivers\ndis.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:16*
</td>
<td>c:\windows\system32\wersvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:15*
</td>
<td>c:\windows\system32\wlidcredprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:15*
</td>
<td>C:\Windows\System32\msxml6.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:15*
</td>
<td>c:\windows\system32\drivers\msgpiowin32.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:14*
</td>
<td>C:\Windows\System32\imapi2.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:13*
</td>
<td>c:\windows\syswow64\mscoree.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:13*
</td>
<td>C:\WINDOWS\SYSTEM32\ksuser.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:13*
</td>
<td>c:\windows\system32\drivers\lltdio.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:13*
</td>
<td>c:\windows\syswow64\user32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:13*
</td>
<td>c:\windows\system32\aelupsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:13*
</td>
<td>c:\windows\system32\drivers\ks.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:12*
</td>
<td>c:\windows\system32\nshipsec.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:12*
</td>
<td>c:\windows\system32\drivers\3ware.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:11*
</td>
<td>c:\windows\system32\bfe.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:10*
</td>
<td>c:\program files\windows mail\winmail.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:10*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTSoftwareUpdate.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:09*
</td>
<td>c:\windows\syswow64\ole32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:09*
</td>
<td>c:\program files (x86)\evernote\evernote\evernoteie.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:09*
</td>
<td>c:\windows\syswow64\difxapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:08*
</td>
<td>c:\windows\system32\drivers\pci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:08*
</td>
<td>C:\Windows\System32\Windows.UI.Xaml.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:08*
</td>
<td>c:\windows\system32\trkwks.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:07*
</td>
<td>c:\windows\system32\drivers\dfsc.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:07*
</td>
<td>c:\windows\system32\drivers\netaapl64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:06*
</td>
<td>C:\WINDOWS\System32\twinui.appcore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:05*
</td>
<td>c:\windows\system32\drivers\netbios.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:05*
</td>
<td>c:\windows\syswow64\certcredprovider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:05*
</td>
<td>c:\windows\system32\drivers\lsi_sas.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:04*
</td>
<td>c:\windows\system32\sbe.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:04*
</td>
<td>c:\windows\system32\fwcfg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:03*
</td>
<td>c:\windows\system32\drivers\rdbss.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:03*
</td>
<td>c:\windows\system32\drivers\cmdhlp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:02*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\HP.SSF.Controllers.ACLM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:01*
</td>
<td>C:\WINDOWS\SYSTEM32\sscoreext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:01*
</td>
<td>c:\windows\syswow64\l3codeca.acm*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:35:00*
</td>
<td>C:\WINDOWS\System32\UIAnimation.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:59*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Collections.Concurrent\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Collections.Concurrent.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:59*
</td>
<td>C:\WINDOWS\system32\wbem\wbemprox.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:56*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\IdfSoftware.Contracts.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:56*
</td>
<td>C:\WINDOWS\System32\faultrep.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:55*
</td>
<td>c:\windows\system32\inetsrv\w3logsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:55*
</td>
<td>c:\windows\system32\inetsrv\apphostsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:55*
</td>
<td>c:\windows\system32\drivers\monitor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:54*
</td>
<td>c:\windows\system32\drivers\bthhfhid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:54*
</td>
<td>C:\Windows\System32\windows.immersiveshell.serviceprovider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:54*
</td>
<td>c:\windows\system32\DABAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:54*
</td>
<td>c:\windows\system32\drivers\terminpt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:53*
</td>
<td>C:\WINDOWS\system32\pku2u.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:53*
</td>
<td>C:\WINDOWS\SYSTEM32\mfc110u.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:53*
</td>
<td>C:\WINDOWS\System32\msxml3.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:52*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:52*
</td>
<td>c:\windows\system32\drivers\udfs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:51*
</td>
<td>C:\Windows\System32\Windows.Devices.Geolocation.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:51*
</td>
<td>c:\windows\system32\wshelper.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:51*
</td>
<td>c:\windows\syswow64\vbicodec.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:51*
</td>
<td>C:\WINDOWS\System32\Wlanhlp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:50*
</td>
<td>C:\WINDOWS\system32\DeviceCenter.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:49*
</td>
<td>c:\windows\system32\drivers\vpci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:49*
</td>
<td>c:\windows\system32\drivers\ndiscap.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:49*
</td>
<td>c:\windows\system32\WLANMSM.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:49*
</td>
<td>c:\windows\system32\drivers\vmbushid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:49*
</td>
<td>c:\windows\system32\lsm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:48*
</td>
<td>c:\windows\system32\qmgr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:48*
</td>
<td>c:\windows\system32\audioendpointbuilder.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:48*
</td>
<td>C:\WINDOWS\system32\kerberos.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:48*
</td>
<td>c:\windows\system32\drivers\hpsamd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:47*
</td>
<td>c:\windows\system32\drivers\storahci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:46*
</td>
<td>C:\WINDOWS\SYSTEM32\dnssd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:46*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:45*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\PresentationCore\f11b8c35351975aa2e0555b2c979351c\PresentationCore.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:45*
</td>
<td>c:\windows\system32\eapsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:45*
</td>
<td>C:\WINDOWS\SYSTEM32\kernel.appcore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:45*
</td>
<td>C:\Windows\System32\netcfgx.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:45*
</td>
<td>c:\windows\syswow64\imagehlp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:44*
</td>
<td>c:\windows\system32\drivers\ibtusb.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:44*
</td>
<td>c:\windows\system32\wiarpc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:42*
</td>
<td>c:\windows\system32\drivers\ntfs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:40*
</td>
<td>c:\windows\system32\wbiosrvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:40*
</td>
<td>c:\windows\system32\drivers\rdyboost.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:40*
</td>
<td>C:\Windows\System32\wbem\krnlprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:40*
</td>
<td>C:\WINDOWS\System32\SubscriptionMgr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:39*
</td>
<td>C:\WINDOWS\system32\d3d11.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:39*
</td>
<td>c:\windows\system32\drivers\tsusbflt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:39*
</td>
<td>c:\program files\internet explorer\iediagcmd.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:39*
</td>
<td>c:\windows\system32\umrdp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:39*
</td>
<td>c:\windows\system32\wlancfg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:38*
</td>
<td>C:\WINDOWS\system32\wscisvif.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:37*
</td>
<td>C:\WINDOWS\system32\CredentialMigrationHandler.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:37*
</td>
<td>C:\WINDOWS\system32\WSShared.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:36*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Diagnostics.Debug\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Diagnostics.Debug.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:36*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Management\2f021195b0396cbd177fdbddbe720736\System.Management.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:36*
</td>
<td>C:\WINDOWS\system32\ProximityServicePAL.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:36*
</td>
<td>C:\WINDOWS\system32\bcd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:36*
</td>
<td>c:\windows\system32\geofencemonitorservice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:35*
</td>
<td>c:\windows\system32\workfoldersshell.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:35*
</td>
<td>c:\windows\system32\defragsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:35*
</td>
<td>c:\program files\windows defender\msmpeng.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:34*
</td>
<td>c:\windows\system32\audiosrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:34*
</td>
<td>c:\windows\syswow64\ws2_32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:34*
</td>
<td>c:\windows\syswow64\intelcphecisvc.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:33*
</td>
<td>c:\windows\system32\wwancfg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:33*
</td>
<td>C:\WINDOWS\system32\dcomp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:32*
</td>
<td>C:\WINDOWS\System32\NLSLexicons002a.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:32*
</td>
<td>C:\WINDOWS\system32\adhapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:31*
</td>
<td>c:\program files\windows defender\nissrv.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:31*
</td>
<td>c:\program files (x86)\google\chrome\application\54.0.2840.99\installer\chrmstp.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:31*
</td>
<td>C:\Windows\System32\PortableDeviceTypes.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:30*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:30*
</td>
<td>c:\windows\system32\drivers\wmiacpi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:30*
</td>
<td>c:\windows\system32\drivers\volsnap.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:29*
</td>
<td>C:\WINDOWS\system32\dpapisrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:29*
</td>
<td>c:\windows\system32\drivers\usbd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:29*
</td>
<td>c:\windows\system32\drivers\bthmodem.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:29*
</td>
<td>c:\windows\system32\WMsgAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:27*
</td>
<td>c:\windows\system32\oobefldr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:27*
</td>
<td>c:\windows\system32\msg711.acm*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:27*
</td>
<td>C:\WINDOWS\system32\WinLangdb.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:26*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\userdata.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:25*
</td>
<td>c:\windows\system32\hnetmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:25*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HP.SSF.WebService.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:25*
</td>
<td>C:\WINDOWS\system32\COMDLG32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:25*
</td>
<td>c:\windows\system32\mscories.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:25*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\platforms\qwindows.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:24*
</td>
<td>c:\windows\system32\drivers\wdfldr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:24*
</td>
<td>c:\windows\system32\ntshrui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:24*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Runtime.Extensions\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Extensions.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:23*
</td>
<td>c:\windows\system32\ikeext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:23*
</td>
<td>C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.9600.17810_none_34ae2abd958aedeb\COMCTL32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:23*
</td>
<td>c:\windows\system32\drivers\exfat.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:23*
</td>
<td>C:\WINDOWS\system32\msi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:22*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:21*
</td>
<td>C:\WINDOWS\SYSTEM32\mtxoci.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:21*
</td>
<td>C:\WINDOWS\system32\mssprxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:20*
</td>
<td>c:\windows\system32\drivers\fvevol.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:20*
</td>
<td>C:\WINDOWS\SYSTEM32\ACTIVEDS.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:20*
</td>
<td>C:\Windows\System32\rasadhlp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:20*
</td>
<td>c:\program files\bonjour\mdnsnsp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:19*
</td>
<td>C:\WINDOWS\SYSTEM32\sfc_os.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:19*
</td>
<td>c:\program files (x86)\cyberlink\powerdirector10\pdr10.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:19*
</td>
<td>c:\windows\system32\bootvid.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:19*
</td>
<td>c:\windows\system32\win32k.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:19*
</td>
<td>c:\windows\system32\drivers\amdk8.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:17*
</td>
<td>C:\WINDOWS\system32\MSHTML.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:17*
</td>
<td>C:\WINDOWS\System32\nduprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:17*
</td>
<td>c:\windows\system32\drivers\hidbth.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:17*
</td>
<td>c:\windows\system32\drivers\vboxusbmon.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:14*
</td>
<td>c:\windows\system32\wevtsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:11*
</td>
<td>C:\WINDOWS\system32\msimtf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:07*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:07*
</td>
<td>C:\Windows\System32\Dxtrans.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:06*
</td>
<td>c:\windows\system32\rpcepmap.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:06*
</td>
<td>C:\WINDOWS\system32\jscript9.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:05*
</td>
<td>c:\windows\system32\drivers\rtsper.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:04*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Servd1dec626#\5cdb8e97fb603f9a9c3c5481ecdc337e\System.ServiceModel.Internals.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:03*
</td>
<td>C:\Windows\System32\taskschd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:03*
</td>
<td>C:\Program Files\Common Files\microsoft shared\ink\tipskins.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:03*
</td>
<td>c:\windows\system32\drivers\lsi_sas2.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:03*
</td>
<td>C:\Windows\System32\Windows.Networking.HostName.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:02*
</td>
<td>c:\windows\syswow64\docprop.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:02*
</td>
<td>C:\WINDOWS\System32\PlaySndSrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:02*
</td>
<td>C:\WINDOWS\System32\MPR.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:01*
</td>
<td>c:\windows\system32\fxssvc.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:01*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.ServiceModel.resources\v4.0_4.0.0.0_de_b77a5c561934e089\System.ServiceModel.resources.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:01*
</td>
<td>c:\windows\system32\drivers\vms3cap.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:34:01*
</td>
<td>c:\windows\system32\sessenv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:55*
</td>
<td>C:\WINDOWS\system32\igfxLHM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:54*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Xml\29f20b9b1b51b4d6128df384fd58853a\System.Xml.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:54*
</td>
<td>C:\Windows\System32\thumbcache.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:54*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.344_x64__8wekyb3d8bbwe\Microsoft.PerfTrack.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:54*
</td>
<td>c:\program files (x86)\cyberlink\mediaespresso\mediaespresso.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:54*
</td>
<td>c:\program files (x86)\cyberlink\mediaespresso\mediaespresso.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:53*
</td>
<td>c:\windows\system32\spool\drivers\x64\3\printconfig.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:49*
</td>
<td>C:\WINDOWS\System32\credui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:49*
</td>
<td>C:\WINDOWS\System32\wcmapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:48*
</td>
<td>c:\windows\system32\drivers\cng.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:48*
</td>
<td>c:\windows\system32\drivers\amdxata.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:48*
</td>
<td>c:\windows\system32\psisrndr.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:48*
</td>
<td>c:\windows\system32\drivers\storport.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:48*
</td>
<td>c:\windows\system32\dhcpcmonitor.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:48*
</td>
<td>C:\Windows\System32\cryptcatsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:47*
</td>
<td>C:\WINDOWS\System32\pnidui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:47*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Core\a65903d601491ac0085dfb7950274b20\System.Core.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:47*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:46*
</td>
<td>c:\windows\system32\drivers\ahcache.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:45*
</td>
<td>c:\windows\system32\drivers\stexstor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:45*
</td>
<td>c:\windows\system32\wow64win.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:45*
</td>
<td>c:\program files (x86)\openoffice 4\program\soffice.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:44*
</td>
<td>c:\windows\syswow64\evr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:44*
</td>
<td>C:\WINDOWS\system32\WMALFXGFXDSP.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:44*
</td>
<td>c:\windows\system32\drivers\mrxsmb20.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:44*
</td>
<td>C:\Windows\System32\WwaApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:43*
</td>
<td>c:\windows\system32\drivers\uliagpkx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:43*
</td>
<td>c:\windows\system32\drivers\fsdepends.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:43*
</td>
<td>C:\Windows\System32\pngfilt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:43*
</td>
<td>c:\windows\system32\netprofmsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:43*
</td>
<td>c:\windows\system32\drivers\acpipagr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:42*
</td>
<td>C:\WINDOWS\SYSTEM32\mfc100.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:41*
</td>
<td>C:\WINDOWS\system32\themeui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:41*
</td>
<td>c:\windows\system32\wlansvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:41*
</td>
<td>c:\windows\system32\msdtc.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:41*
</td>
<td>c:\windows\system32\drivers\ndisvirtualbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:40*
</td>
<td>c:\windows\system32\WLANSEC.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:40*
</td>
<td>c:\windows\system32\rpcrtremote.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:40*
</td>
<td>C:\WINDOWS\system32\timedate.cpl*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:39*
</td>
<td>C:\WINDOWS\System32\Secur32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:39*
</td>
<td>C:\WINDOWS\assembly\GAC_MSIL\HP.SupportFramework.Common\8.0.0.0__41bdec5abf54f6dc\HP.SupportFramework.Common.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:38*
</td>
<td>C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:38*
</td>
<td>c:\windows\system32\rasmans.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:37*
</td>
<td>C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:37*
</td>
<td>c:\windows\system32\drivers\intelaud.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:37*
</td>
<td>c:\windows\system32\drivers\lsi_sss.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:37*
</td>
<td>C:\WINDOWS\System32\WINNSI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:37*
</td>
<td>c:\windows\system32\drivers\wpprecorder.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:36*
</td>
<td>C:\Windows\System32\Cabinet.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:36*
</td>
<td>C:\Windows\System32\ProximityService.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\Qt5Sql.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\FusionHarvester.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>c:\windows\system32\drivers\swenum.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>c:\windows\system32\drivers\ndisimplatform.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>c:\windows\system32\drivers\viaide.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>c:\windows\system32\fdrespub.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>C:\WINDOWS\SYSTEM32\NTASN1.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00_12.0.21005.1_x64__8wekyb3d8bbwe\vccorlib120_app.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:35*
</td>
<td>c:\windows\system32\mpg2splt.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:34*
</td>
<td>C:\WINDOWS\system32\SHDOCVW.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:34*
</td>
<td>C:\WINDOWS\system32\Windows.UI.Search.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:34*
</td>
<td>C:\WINDOWS\system32\dssenh.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:34*
</td>
<td>c:\windows\system32\drivers\usbcir.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:33*
</td>
<td>C:\WINDOWS\system32\wbem\wbemcore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:32*
</td>
<td>c:\windows\system32\wwansvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:31*
</td>
<td>c:\windows\system32\browser.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:31*
</td>
<td>c:\windows\system32\appinfo.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:31*
</td>
<td>c:\windows\system32\dot3cfg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:30*
</td>
<td>c:\windows\system32\wfs.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:30*
</td>
<td>C:\WINDOWS\SYSTEM32\wkscli.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:30*
</td>
<td>c:\windows\system32\cryptsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:30*
</td>
<td>c:\windows\system32\drivers\acpipmi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:30*
</td>
<td>C:\WINDOWS\system32\tspkg.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:29*
</td>
<td>C:\WINDOWS\system32\wbem\wbemsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:29*
</td>
<td>C:\WINDOWS\system32\MSCTF.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:28*
</td>
<td>c:\windows\system32\narrator.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:27*
</td>
<td>c:\windows\system32\drivers\mshidumdf.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:27*
</td>
<td>c:\windows\syswow64\mpeg2data.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:27*
</td>
<td>c:\windows\system32\drivers\ialpssi_gpio.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:26*
</td>
<td>C:\WINDOWS\System32\wlidprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:25*
</td>
<td>C:\WINDOWS\System32\hpinkstsC311LM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:25*
</td>
<td>c:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:25*
</td>
<td>C:\Windows\System32\fdwsd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:25*
</td>
<td>c:\windows\system32\regsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:24*
</td>
<td>c:\program files (x86)\bluestacks\hd-service.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:24*
</td>
<td>C:\WINDOWS\SYSTEM32\wlgpclnt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:23*
</td>
<td>C:\WINDOWS\System32\MSWB7.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:23*
</td>
<td>c:\windows\system32\termsrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:23*
</td>
<td>c:\windows\system32\CSystemEventsBrokerClient.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:23*
</td>
<td>C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:23*
</td>
<td>c:\windows\system32\cryptext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:23*
</td>
<td>c:\windows\system32\drivers\msisadrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:23*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.System.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:22*
</td>
<td>C:\WINDOWS\SYSTEM32\MSDART.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:20*
</td>
<td>c:\windows\system32\ncbservice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:20*
</td>
<td>C:\WINDOWS\SYSTEM32\appxdeploymentclient.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:19*
</td>
<td>c:\windows\system32\nlasvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:18*
</td>
<td>C:\WINDOWS\system32\dwmredir.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:18*
</td>
<td>C:\WINDOWS\system32\igdusc64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:17*
</td>
<td>C:\WINDOWS\SYSTEM32\DEVOBJ.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:17*
</td>
<td>C:\WINDOWS\system32\rsaenh.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:17*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\WdfCoInstaller01011.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:17*
</td>
<td>c:\windows\system32\drivers\mpsdrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:16*
</td>
<td>c:\Program Files\Intel\WiFi\bin\IntStngs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:16*
</td>
<td>c:\windows\system32\drivers\errdev.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:16*
</td>
<td>c:\windows\system32\drivers\mspclock.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:15*
</td>
<td>C:\WINDOWS\SYSTEM32\MSVFW32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:15*
</td>
<td>c:\Program Files\Intel\WiFi\bin\Ps7ZCfgS.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:13*
</td>
<td>c:\windows\system32\halextintclpiodma.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:12*
</td>
<td>c:\windows\system32\scdeviceenum.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:12*
</td>
<td>c:\program files\intel\icls client\socketheciserver.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:11*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\HP.SSF.Controllers.IdfClient.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:11*
</td>
<td>c:\windows\system32\drivers\processr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:11*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:10*
</td>
<td>c:\windows\system32\mspaint.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:10*
</td>
<td>c:\windows\system32\wkssvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:10*
</td>
<td>C:\WINDOWS\SYSTEM32\d3d9.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:10*
</td>
<td>c:\windows\system32\kd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:10*
</td>
<td>C:\WINDOWS\system32\msv1_0.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:08*
</td>
<td>c:\windows\system32\napmontr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:08*
</td>
<td>c:\windows\system32\drivers\acpiex.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:08*
</td>
<td>c:\windows\system32\drivers\sisraid2.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:07*
</td>
<td>c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\nclauncherfromie.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:06*
</td>
<td>c:\windows\system32\inetcomm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:06*
</td>
<td>c:\windows\system32\wevtapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:06*
</td>
<td>C:\WINDOWS\SYSTEM32\winbio.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:05*
</td>
<td>C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:05*
</td>
<td>C:\WINDOWS\system32\VSSAPI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:05*
</td>
<td>c:\windows\system32\drivers\bthhfenum.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:04*
</td>
<td>c:\windows\system32\pnrpnsp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:04*
</td>
<td>c:\program files\windows nt\accessories\wordpad.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:03*
</td>
<td>c:\windows\system32\apphelp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:03*
</td>
<td>c:\windows\system32\iscsiexe.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:03*
</td>
<td>C:\WINDOWS\system32\IMGUTIL.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:03*
</td>
<td>c:\windows\system32\drivers\rdpbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:03*
</td>
<td>c:\program files (x86)\common files\apple\internet services\shellstreams.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:03*
</td>
<td>c:\windows\system32\drivers\lsi_sas3.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:03*
</td>
<td>c:\windows\syswow64\shell32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:01*
</td>
<td>C:\WINDOWS\system32\ElsLad.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:01*
</td>
<td>c:\windows\system32\wsmsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:01*
</td>
<td>c:\windows\system32\ui0detect.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:33:00*
</td>
<td>C:\Windows\System32\InputSwitch.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:59*
</td>
<td>c:\windows\system32\igfxdtcm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:59*
</td>
<td>c:\windows\system32\sstpsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:58*
</td>
<td>C:\WINDOWS\System32\NaturalLanguage6.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:56*
</td>
<td>c:\windows\system32\osk.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:55*
</td>
<td>c:\windows\system32\msac3enc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:55*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\diasymreader.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:54*
</td>
<td>c:\windows\system32\nrpsrv.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:54*
</td>
<td>C:\WINDOWS\SYSTEM32\DNSAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:54*
</td>
<td>C:\Windows\System32\WUDFx.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:54*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\LIBEAY32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:53*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.ServiceModel\41cec869bcf6025e7eb32bd46c1b2eb4\System.ServiceModel.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:53*
</td>
<td>c:\windows\system32\hidserv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:53*
</td>
<td>c:\windows\system32\ncdautosetup.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:53*
</td>
<td>c:\program files (x86)\openoffice 4\program\sdraw.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:52*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:52*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.UI.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:52*
</td>
<td>c:\windows\system32\igfxosp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:52*
|
|
16.11.2016, 14:04
| #7 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter </td>
<td>c:\windows\syswow64\wstpager.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:51*
</td>
<td>C:\WINDOWS\system32\msdelta.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:51*
</td>
<td>c:\windows\system32\bdesvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:50*
</td>
<td>C:\WINDOWS\SYSTEM32\WININET.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:49*
</td>
<td>C:\WINDOWS\System32\appsruprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:49*
</td>
<td>C:\WINDOWS\System32\WiFiDisplay.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:49*
</td>
<td>C:\Windows\System32\deviceaccess.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:48*
</td>
<td>c:\windows\system32\cofiredm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:48*
</td>
<td>c:\windows\system32\atmfd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:47*
</td>
<td>C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:47*
</td>
<td>c:\windows\system32\radarrs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:47*
</td>
<td>c:\windows\system32\drivers\luafv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:47*
</td>
<td>c:\windows\system32\drivers\hidparse.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:46*
</td>
<td>c:\windows\system32\timebrokerserver.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:45*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Transactions\32ae7e708b973cb8710c847f448f01af\System.Transactions.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:43*
</td>
<td>c:\windows\system32\drivers\cdrom.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:43*
</td>
<td>C:\WINDOWS\SYSTEM32\samsrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:42*
</td>
<td>c:\windows\system32\drivers\wdboot.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:42*
</td>
<td>C:\WINDOWS\System32\SystemEventsBrokerClient.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:42*
</td>
<td>c:\windows\system32\efssvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:41*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\System\4393c8e53a5625379e2aac0aa580c442\System.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:41*
</td>
<td>C:\WINDOWS\system32\wdigest.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:34*
</td>
<td>C:\WINDOWS\TEMP\HP Support Framework\HPSF_Config1.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:33*
</td>
<td>C:\WINDOWS\System32\hgcpl.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:33*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\Qt5Widgets.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:33*
</td>
<td>c:\windows\system32\rasmontr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:33*
</td>
<td>c:\windows\system32\drivers\wudfpf.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:32*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System\1b0e9895e8fbee798b53854d56e522f6\System.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:32*
</td>
<td>c:\windows\system32\mprdim.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:32*
</td>
<td>c:\windows\syswow64\shlwapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:31*
</td>
<td>C:\WINDOWS\System32\DAVHLPR.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:31*
</td>
<td>c:\windows\system32\pots.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:30*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:29*
</td>
<td>C:\WINDOWS\system32\syncui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:29*
</td>
<td>c:\windows\system32\drivers\bcmfn2.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:29*
</td>
<td>C:\WINDOWS\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.18470_none_9331b0df474a1995\gdiplus.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:27*
</td>
<td>C:\WINDOWS\System32\atlthunk.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:27*
</td>
<td>c:\windows\system32\l3codecp.acm*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:24*
</td>
<td>c:\windows\system32\drivers\mshidkmdf.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:23*
</td>
<td>C:\WINDOWS\system32\SYNCENG.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:23*
</td>
<td>c:\windows\syswow64\wldap32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:23*
</td>
<td>c:\windows\syswow64\clbcatq.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:23*
</td>
<td>c:\windows\system32\dot3svc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:22*
</td>
<td>c:\windows\system32\drivers\vmstorfl.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:22*
</td>
<td>C:\WINDOWS\system32\MsCtfMonitor.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:22*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\SMDiagnostics\c1fcdeb125178298ca30561f7df512e6\SMDiagnostics.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:22*
</td>
<td>c:\windows\system32\drivers\smb_driver_amdasf.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:21*
</td>
<td>c:\windows\syswow64\normaliz.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:21*
</td>
<td>c:\windows\system32\drivers\teedriverx64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:21*
</td>
<td>C:\Windows\System32\Windows.ApplicationModel.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:20*
</td>
<td>c:\windows\system32\devicesetupmanager.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:20*
</td>
<td>C:\WINDOWS\system32\WSSync.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:20*
</td>
<td>c:\windows\system32\drivers\vwifimp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:20*
</td>
<td>c:\windows\system32\drivers\bowser.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:20*
</td>
<td>c:\windows\system32\drivers\hpdskflt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:19*
</td>
<td>c:\windows\system32\drivers\volmgrx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:19*
</td>
<td>c:\windows\system32\drivers\igdkmd64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:19*
</td>
<td>C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:19*
</td>
<td>C:\WINDOWS\SYSTEM32\MSVCP100.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:17*
</td>
<td>c:\windows\system32\drivers\ndiswan.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:17*
</td>
<td>c:\windows\system32\drivers\stornvme.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:17*
</td>
<td>c:\windows\system32\drivers\ws2ifsl.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:17*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:17*
</td>
<td>c:\windows\system32\drivers\netbt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:16*
</td>
<td>C:\WINDOWS\System32\NLSData0000.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:16*
</td>
<td>c:\windows\system32\drivers\mstee.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:16*
</td>
<td>C:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:16*
</td>
<td>c:\windows\system32\drivers\crashdmp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:15*
</td>
<td>c:\windows\system32\drivers\usbaapl64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:14*
</td>
<td>c:\windows\system32\drivers\usbprint.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:14*
</td>
<td>c:\windows\syswow64\kernel32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:14*
</td>
<td>C:\WINDOWS\system32\cryptdll.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:14*
</td>
<td>c:\windows\system32\drivers\basicdisplay.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:13*
</td>
<td>C:\WINDOWS\System32\bidispl.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:13*
</td>
<td>C:\Windows\System32\Windows.UI.Immersive.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:12*
</td>
<td>c:\windows\syswow64\syncui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:11*
</td>
<td>c:\windows\system32\mmcss.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:11*
</td>
<td>c:\windows\system32\rpcss.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:11*
</td>
<td>c:\windows\system32\zipfldr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:10*
</td>
<td>c:\windows\syswow64\ieframe.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:10*
</td>
<td>c:\windows\system32\drivers\verifierext.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:10*
</td>
<td>c:\windows\system32\drivers\null.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:10*
</td>
<td>c:\windows\system32\drivers\intelppm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:10*
</td>
<td>c:\windows\system32\p2psvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:10*
</td>
<td>C:\WINDOWS\system32\fthsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:10*
</td>
<td>C:\WINDOWS\SYSTEM32\SAMLIB.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:09*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:09*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\mscorlib\6227ee011c9930128c5ad76841ecf2ee\mscorlib.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:09*
</td>
<td>c:\windows\system32\wscsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:09*
</td>
<td>c:\windows\system32\drivers\bthenum.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:08*
</td>
<td>c:\windows\system32\w32time.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:07*
</td>
<td>c:\windows\system32\wbem\wmisvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:07*
</td>
<td>c:\windows\system32\drivers\wsdprint.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:07*
</td>
<td>c:\windows\system32\drivers\ksthunk.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:06*
</td>
<td>c:\windows\system32\drivers\bthleenum.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:06*
</td>
<td>C:\WINDOWS\SYSTEM32\ncrypt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:05*
</td>
<td>c:\windows\system32\drivers\appid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:05*
</td>
<td>c:\windows\syswow64\gdi32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:05*
</td>
<td>c:\windows\system32\wcspluginservice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:02*
</td>
<td>C:\WINDOWS\System32\usbmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:02*
</td>
<td>C:\WINDOWS\SYSTEM32\NCObjAPI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:02*
</td>
<td>c:\windows\system32\drivers\tdx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:01*
</td>
<td>C:\Windows\System32\uiautomationcore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:01*
</td>
<td>c:\Program Files\Intel\WiFi\bin\S24MUDLL.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:00*
</td>
<td>c:\windows\system32\scext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:00*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Drawing\c00e90f59d7091ee9ae03499af2c6ae6\System.Drawing.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:00*
</td>
<td>c:\windows\system32\drivers\wpcfltr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:00*
</td>
<td>c:\windows\system32\drivers\usbstor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:00*
</td>
<td>c:\windows\system32\drivers\usbohci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:32:00*
</td>
<td>c:\windows\system32\keyiso.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:59*
</td>
<td>c:\windows\system32\drivers\pcmcia.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:58*
</td>
<td>C:\WINDOWS\system32\miutils.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:58*
</td>
<td>c:\windows\system32\drivers\irenum.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:57*
</td>
<td>C:\WINDOWS\system32\wbem\wmiprvsd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:57*
</td>
<td>c:\Program Files\Intel\WiFi\bin\PfMgrApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:57*
</td>
<td>c:\windows\system32\drivers\beep.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:57*
</td>
<td>c:\windows\system32\msvidc32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:56*
</td>
<td>C:\WINDOWS\SYSTEM32\wdmaud.drv*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:55*
</td>
<td>C:\WINDOWS\system32\ProximityCommon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:55*
</td>
<td>c:\windows\system32\certcredprovider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:55*
</td>
<td>c:\windows\system32\drivers\bridge.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:55*
</td>
<td>C:\WINDOWS\System32\wlanutil.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:55*
</td>
<td>c:\windows\system32\drivers\mouclass.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:55*
</td>
<td>c:\windows\system32\drivers\agp440.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:55*
</td>
<td>C:\WINDOWS\system32\wpdshserviceobj.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:54*
</td>
<td>C:\WINDOWS\System32\wsnmp32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:53*
</td>
<td>c:\windows\system32\drivers\smb_driver_intel.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:53*
</td>
<td>c:\windows\system32\drivers\gearaspiwdm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:53*
</td>
<td>c:\windows\system32\drivers\mouhid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:53*
</td>
<td>C:\WINDOWS\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_de_b03f5f7f11d50a3a\System.ServiceProcess.resources.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:53*
</td>
<td>c:\windows\system32\drivers\watchdog.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:52*
</td>
<td>C:\WINDOWS\SYSTEM32\rometadata.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:52*
</td>
<td>c:\windows\system32\radardt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:52*
</td>
<td>c:\windows\system32\smphost.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:52*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HP.SSF.Common.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:52*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:51*
</td>
<td>c:\windows\system32\biocredprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:51*
</td>
<td>C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:51*
</td>
<td>c:\windows\system32\netman.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:51*
</td>
<td>c:\windows\system32\vbicodec.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:51*
</td>
<td>C:\WINDOWS\system32\Normaliz.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:50*
</td>
<td>c:\windows\system32\msdtckrm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:50*
</td>
<td>c:\program files\common files\apple\internet services\shellstreams64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:50*
</td>
<td>c:\windows\system32\TimeBrokerClient.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:49*
</td>
<td>c:\windows\syswow64\cca.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:49*
</td>
<td>C:\WINDOWS\System32\netprofm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:49*
</td>
<td>C:\WINDOWS\System32\wcmcsp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:48*
</td>
<td>C:\WINDOWS\SYSTEM32\UIRibbonRes.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:48*
</td>
<td>c:\windows\system32\gdi32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:48*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.344_x64__8wekyb3d8bbwe\Platform.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:48*
</td>
<td>c:\windows\syswow64\lpk.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:48*
</td>
<td>c:\windows\system32\drivers\msfs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:48*
</td>
<td>c:\windows\system32\scardsvr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:46*
</td>
<td>c:\windows\system32\drivers\wdfilter.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:41*
</td>
<td>C:\WINDOWS\system32\uDWM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:40*
</td>
<td>c:\windows\system32\vds.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:40*
</td>
<td>C:\WINDOWS\SYSTEM32\WINSTA.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:40*
</td>
<td>c:\windows\system32\vbisurf.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:37*
</td>
<td>c:\windows\syswow64\qcap.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:36*
</td>
<td>c:\windows\system32\snmptrap.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:36*
</td>
<td>c:\windows\system32\oleaut32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:36*
</td>
<td>c:\windows\system32\drivers\sdstor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:35*
</td>
<td>c:\windows\system32\drivers\dxgkrnl.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:35*
</td>
<td>C:\WINDOWS\SYSTEM32\icmp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:35*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:35*
</td>
<td>c:\windows\system32\msmpeg2adec.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:35*
</td>
<td>C:\WINDOWS\System32\wpnsruprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:34*
</td>
<td>c:\windows\system32\drivers\qwavedrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:34*
</td>
<td>c:\Program Files\Intel\WiFi\bin\panihvint.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:33*
</td>
<td>c:\windows\system32\drivers\usb8023x.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:33*
</td>
<td>C:\WINDOWS\system32\accelerometerdll.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:33*
</td>
<td>c:\windows\system32\drivers\wdnisdrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:33*
</td>
<td>c:\windows\system32\drivers\isctd64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:32*
</td>
<td>C:\WINDOWS\System32\FXSMON.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:32*
</td>
<td>c:\windows\system32\pla.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:32*
</td>
<td>c:\program files (x86)\openoffice 4\program\swriter.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:31*
</td>
<td>c:\windows\system32\ipsecsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:31*
</td>
<td>C:\WINDOWS\System32\wscui.cpl*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:31*
</td>
<td>c:\windows\system32\drivers\xqhdrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:31*
</td>
<td>c:\windows\system32\bthserv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:31*
</td>
<td>c:\windows\system32\drivers\msrpc.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:30*
</td>
<td>c:\windows\system32\drivers\ipmidrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:28*
</td>
<td>c:\Program Files\Intel\WiFi\bin\DbEngine.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:28*
</td>
<td>c:\windows\system32\schedsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:28*
</td>
<td>C:\WINDOWS\system32\MSASN1.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:27*
</td>
<td>C:\WINDOWS\system32\wbem\FastProx.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:27*
</td>
<td>c:\windows\syswow64\sbe.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:27*
</td>
<td>C:\WINDOWS\system32\Dot3MM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:26*
</td>
<td>c:\windows\system32\iphlpsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:26*
</td>
<td>C:\WINDOWS\system32\diagperf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:26*
</td>
<td>C:\Windows\System32\DevDispItemProvider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:26*
</td>
<td>c:\windows\system32\wow64cpu.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:24*
</td>
<td>C:\WINDOWS\system32\WINSPOOL.DRV*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:24*
</td>
<td>C:\WINDOWS\system32\RESUTILS.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:24*
</td>
<td>c:\windows\system32\drivers\wsdscan.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:23*
</td>
<td>C:\WINDOWS\system32\wfapigp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:23*
</td>
<td>c:\windows\system32\smartcardcredentialprovider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:22*
</td>
<td>c:\windows\system32\sechost.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:22*
</td>
<td>C:\WINDOWS\System32\dhcpcore6.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:21*
</td>
<td>C:\WINDOWS\system32\actxprxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:21*
</td>
<td>c:\windows\system32\drivers\adp80xx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:21*
</td>
<td>C:\WINDOWS\SYSTEM32\USP10.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:21*
</td>
<td>c:\windows\system32\chkwudrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:21*
</td>
<td>c:\windows\system32\wuaueng.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:21*
</td>
<td>c:\windows\system32\rdpclip.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:20*
</td>
<td>C:\WINDOWS\SYSTEM32\MSVCR120.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:19*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Security\62c4c3f6b6ac8fe94996830fe3ebcb3e\System.Security.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:19*
</td>
<td>C:\WINDOWS\System32\snmpapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:19*
</td>
<td>c:\program files (x86)\bluestacks\hd-hypervisor-amd64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:19*
</td>
<td>c:\windows\syswow64\qedit.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:18*
</td>
<td>c:\windows\system32\GPAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:17*
</td>
<td>c:\windows\syswow64\imm32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:17*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v4.0.30319\wminet_utils.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:17*
</td>
<td>c:\windows\system32\drivers\megasr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:16*
</td>
<td>c:\windows\system32\drivers\pcw.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:16*
</td>
<td>C:\WINDOWS\system32\negoexts.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:16*
</td>
<td>c:\windows\system32\drivers\sisraid4.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:16*
</td>
<td>C:\Windows\System32\ESENT.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:16*
</td>
<td>c:\windows\system32\HTTPAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:15*
</td>
<td>c:\windows\system32\drivers\wimmount.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:15*
</td>
<td>C:\WINDOWS\system32\WlanMM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:15*
</td>
<td>c:\windows\system32\drivers\pciide.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:15*
</td>
<td>c:\windows\system32\drivers\kbdclass.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:14*
</td>
<td>C:\Program Files\Synaptics\SynTP\SynTPRes.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:14*
</td>
<td>c:\windows\system32\drivers\bthavrcptg.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:14*
</td>
<td>c:\windows\system32\qcap.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:14*
</td>
<td>c:\Program Files\Intel\WiFi\bin\iWMSProv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:14*
</td>
<td>c:\windows\system32\umpo.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:14*
</td>
<td>c:\windows\system32\drivers\peauth.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:09*
</td>
<td>C:\Windows\System32\bthprops.cpl*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:09*
</td>
<td>c:\windows\system32\drivers\usbehci.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:09*
</td>
<td>c:\windows\system32\ci.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:08*
</td>
<td>c:\windows\system32\NTDSAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:07*
</td>
<td>c:\program files (x86)\evernote\evernote\enscript.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:07*
</td>
<td>c:\windows\system32\psmsrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:07*
</td>
<td>C:\WINDOWS\system32\elscore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:07*
</td>
<td>C:\Windows\System32\threadpoolwinrt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:07*
</td>
<td>c:\windows\system32\drivers\atapi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:06*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\HP.SSF.ServerConfig.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:06*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\Qt5Gui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:06*
</td>
<td>C:\Program Files\Intel\iCLS Client\HeciServer.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:05*
</td>
<td>C:\WINDOWS\SYSTEM32\MSVCR120_CLR0400.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:05*
</td>
<td>c:\windows\system32\drivers\pacer.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:05*
</td>
<td>c:\windows\system32\drivers\flpydisk.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:04*
</td>
<td>c:\program files (x86)\autoit3\au3info.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:04*
</td>
<td>c:\windows\system32\SYSNTFY.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:04*
</td>
<td>c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:04*
</td>
<td>c:\windows\system32\drivers\neo_vpn.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:02*
</td>
<td>C:\WINDOWS\SYSTEM32\CRYPTUI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:01*
</td>
<td>c:\windows\system32\iconcodecservice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:01*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00_12.0.21005.1_x64__8wekyb3d8bbwe\msvcr120_app.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:31:01*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Confe64a9051#\fc214700a6f32d22ed0acc3b7af0fa90\System.Configuration.Install.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:59*
</td>
<td>c:\windows\system32\drivers\inspect.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:59*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:58*
</td>
<td>c:\windows\system32\drivers\hidclass.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:58*
</td>
<td>c:\windows\system32\qedit.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:58*
</td>
<td>C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:58*
</td>
<td>c:\program files\intel\wifi\bin\pandhcpdns.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:58*
</td>
<td>C:\WINDOWS\system32\windows.globalization.fontgroups.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:57*
</td>
<td>c:\windows\syswow64\cryptext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:57*
</td>
<td>C:\WINDOWS\system32\searchfolder.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:57*
</td>
<td>c:\windows\system32\drivers\cmderd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:57*
</td>
<td>c:\windows\system32\apphlpdm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:56*
</td>
<td>c:\windows\system32\seclogon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:56*
</td>
<td>c:\windows\system32\imm32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:56*
</td>
<td>C:\WINDOWS\system32\es.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:55*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\WindowsBase\52efb7798eb488b2371a03b334d69fdc\WindowsBase.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:55*
</td>
<td>C:\WINDOWS\system32\CRYPT32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:55*
</td>
<td>c:\windows\system32\drivers\hidusb.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:55*
</td>
<td>c:\windows\system32\dfsshlex.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:53*
</td>
<td>C:\Windows\System32\portabledeviceconnectapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:53*
</td>
<td>C:\WINDOWS\system32\wucltux.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:53*
</td>
<td>c:\windows\system32\drivers\iwdbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:53*
</td>
<td>c:\windows\system32\drivers\dam.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:53*
</td>
<td>c:\windows\system32\msrle32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:53*
</td>
<td>c:\program files (x86)\cyberlink\powerdvd12\powerdvd12.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:53*
</td>
<td>c:\program files\windows media player\wmpnscfg.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:52*
</td>
<td>c:\windows\system32\qdvd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:52*
</td>
<td>c:\program files\hewlett-packard\simplepass\omnipasscredprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:52*
</td>
<td>c:\windows\syswow64\msmpeg2enc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:52*
</td>
<td>C:\WINDOWS\system32\KERNELBASE.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:51*
</td>
<td>C:\WINDOWS\SYSTEM32\D3DCompiler_47.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:51*
</td>
<td>c:\windows\system32\drivers\rasl2tp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:51*
</td>
<td>C:\Windows\system32\CRYPTBASE.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:50*
</td>
<td>C:\WINDOWS\system32\authui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:48*
</td>
<td>c:\windows\system32\drivers\intelide.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:48*
</td>
<td>c:\windows\system32\drivers\asyncmac.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:48*
</td>
<td>C:\WINDOWS\SYSTEM32\BluetoothApis.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:48*
</td>
<td>c:\windows\system32\pnrpauto.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:48*
</td>
<td>c:\windows\system32\drivers\i8042prt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:47*
</td>
<td>c:\windows\system32\drivers\vdrvroot.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:47*
</td>
<td>C:\WINDOWS\SYSTEM32\SAMCLI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:47*
</td>
<td>c:\windows\system32\userinit.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:46*
</td>
<td>c:\windows\system32\drivers\bthusb.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:46*
</td>
<td>c:\windows\system32\drivers\classpnp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:46*
</td>
<td>C:\WINDOWS\SYSTEM32\twinapi.appcore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:45*
</td>
<td>c:\windows\system32\drivers\nwifi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:45*
</td>
<td>c:\windows\system32\rasauto.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:45*
</td>
<td>c:\windows\system32\ifmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:45*
</td>
<td>c:\windows\system32\drivers\intelpep.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:45*
</td>
<td>C:\Windows\System32\PortableDeviceApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:45*
</td>
<td>C:\WINDOWS\SYSTEM32\netjoin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:44*
</td>
<td>C:\WINDOWS\system32\wbem\ncprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:44*
</td>
<td>C:\WINDOWS\system32\MSSRCH.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:44*
</td>
<td>c:\windows\system32\FVEAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:43*
</td>
<td>C:\WINDOWS\system32\Syncreg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:43*
</td>
<td>c:\windows\syswow64\inetcomm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:43*
</td>
<td>c:\windows\system32\hal.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:43*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.Networking.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:43*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.ApplicationModel.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:42*
</td>
<td>C:\WINDOWS\system32\pnpts.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:42*
</td>
<td>c:\windows\system32\ie4uinit.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:42*
</td>
<td>C:\WINDOWS\SYSTEM32\rasapi32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:41*
</td>
<td>c:\windows\system32\drivers\fwpkclnt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:41*
</td>
<td>C:\WINDOWS\system32\msacm32.drv*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:40*
</td>
<td>C:\WINDOWS\system32\fontext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:40*
</td>
<td>C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:40*
</td>
<td>C:\WINDOWS\SYSTEM32\MrmCoreR.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:40*
</td>
<td>C:\WINDOWS\System32\WINMMBASE.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:40*
</td>
<td>c:\program files (x86)\openoffice 4\program\smath.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:40*
</td>
<td>c:\windows\system32\drivers\uefi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:40*
</td>
<td>c:\windows\system32\msgsm32.acm*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:39*
</td>
<td>C:\WINDOWS\SYSTEM32\dxgi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:39*
</td>
<td>c:\windows\system32\drivers\gagp30kx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:39*
</td>
<td>C:\Windows\System32\fdPnp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:39*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Configuration\389ff4d3d84fa094985867bb61e1fc15\System.Configuration.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:38*
</td>
<td>c:\windows\system32\msvidctl.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:38*
</td>
<td>c:\windows\system32\wsdmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:38*
</td>
<td>C:\WINDOWS\System32\npmproxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:38*
</td>
<td>C:\WINDOWS\assembly\GAC_MSIL\HP.SupportFramework.ServiceManager\8.0.0.0__afd7346f05a57c11\HP.SupportFramework.ServiceManager.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:36*
</td>
<td>C:\WINDOWS\SYSTEM32\dhcpcsvc.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:36*
</td>
<td>C:\WINDOWS\system32\UIRibbon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:36*
</td>
<td>C:\Windows\System32\gameux.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:34*
</td>
<td>C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:34*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.IdentityModel\5c985dc940864659efb09e3373f03bf2\System.IdentityModel.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:32*
</td>
<td>c:\windows\system32\drivers\ehstorclass.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:32*
</td>
<td>c:\windows\system32\drivers\clwvd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:32*
</td>
<td>C:\WINDOWS\System32\Wpc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:31*
</td>
<td>c:\program files\windows media player\wmpsideshowgadget.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:31*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\hdddrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:31*
</td>
<td>c:\windows\syswow64\msac3enc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:31*
</td>
<td>C:\WINDOWS\system32\wbem\wmiprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:30*
</td>
<td>C:\WINDOWS\SYSTEM32\LINKINFO.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:30*
</td>
<td>c:\windows\system32\wbengine.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:29*
</td>
<td>c:\windows\syswow64\authui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:29*
</td>
<td>C:\Program Files\iTunes\iTunesHelper.Resources\de.lproj\iTunesHelperLocalized.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:29*
</td>
<td>c:\windows\syswow64\vbisurf.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:29*
</td>
<td>C:\WINDOWS\System32\wercplsupport.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:29*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.Storage.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:28*
</td>
<td>C:\Windows\System32\Windows.Storage.ApplicationData.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:27*
</td>
<td>C:\Windows\System32\twinapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:27*
</td>
<td>c:\windows\system32\drivers\sercx2.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:26*
</td>
<td>c:\windows\system32\drivers\umbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:26*
</td>
<td>c:\windows\system32\mscoree.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:26*
</td>
<td>c:\program files (x86)\photoscape\photoscape.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:25*
</td>
<td>c:\windows\system32\systemeventsbrokerserver.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:25*
</td>
<td>c:\windows\system32\mydocs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:23*
</td>
<td>C:\WINDOWS\system32\RltkAPO64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:23*
</td>
<td>C:\WINDOWS\System32\SyncCenter.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:21*
</td>
<td>c:\windows\system32\difxapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:21*
</td>
<td>C:\WINDOWS\SYSTEM32\ATL100.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:21*
</td>
<td>c:\windows\system32\nsi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:20*
</td>
<td>C:\WINDOWS\SYSTEM32\CSCAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:20*
</td>
<td>c:\windows\system32\drivers\arcsas.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:20*
</td>
<td>C:\WINDOWS\SYSTEM32\D3D10Warp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:20*
</td>
<td>C:\WINDOWS\SYSTEM32\msdmo.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:19*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\mscorlib.resources\v4.0_4.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:18*
</td>
<td>C:\WINDOWS\system32\twinui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:18*
</td>
<td>c:\windows\syswow64\perfhost.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:15*
</td>
<td>C:\WINDOWS\System32\drprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:15*
</td>
<td>c:\windows\system32\twext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:14*
</td>
<td>C:\Windows\System32\ddrawex.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:14*
</td>
<td>C:\WINDOWS\SYSTEM32\msmpeg2vdec.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:14*
</td>
<td>c:\windows\system32\wdi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:13*
</td>
<td>c:\windows\system32\drivers\umpass.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:13*
</td>
<td>c:\windows\system32\drivers\hidir.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:13*
</td>
<td>c:\windows\system32\drivers\secdrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:13*
</td>
<td>c:\windows\system32\vfwwdm32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:13*
</td>
<td>C:\Windows\System32\Windows.Graphics.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:12*
</td>
<td>c:\windows\syswow64\wlidcredprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:12*
</td>
<td>C:\Program Files\iPod\bin\iPodService.Resources\vi.lproj\iPodServiceLocalized.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:12*
</td>
<td>C:\WINDOWS\system32\cfgmgr32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:12*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Linq\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Linq.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:11*
</td>
<td>C:\WINDOWS\SYSTEM32\SndVolSSO.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:11*
</td>
<td>C:\WINDOWS\system32\webio.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:10*
</td>
<td>c:\windows\system32\drivers\spaceport.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:09*
</td>
<td>C:\WINDOWS\System32\osbaseln.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:09*
</td>
<td>c:\windows\system32\tabsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:09*
</td>
<td>C:\WINDOWS\SYSTEM32\DSPARSE.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:09*
</td>
<td>C:\WINDOWS\system32\CLRHost.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:09*
</td>
<td>c:\windows\system32\tapisrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:09*
</td>
<td>c:\windows\system32\drivers\npfs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:08*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:07*
</td>
<td>C:\WINDOWS\SYSTEM32\sxs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:07*
</td>
<td>c:\windows\system32\drivers\cmbatt.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:05*
</td>
<td>C:\WINDOWS\System32\SPOOLSS.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:03*
</td>
<td>c:\windows\system32\rpcrt4.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:03*
</td>
<td>C:\WINDOWS\system32\wbem\cimwin32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:02*
</td>
<td>C:\WINDOWS\system32\WS2_32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:02*
</td>
<td>C:\WINDOWS\SYSTEM32\SLC.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:01*
</td>
<td>C:\WINDOWS\System32\Actioncenter.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:01*
</td>
<td>c:\windows\system32\qagentrt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:00*
</td>
<td>C:\WINDOWS\system32\USER32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:00*
</td>
<td>C:\WINDOWS\system32\wshbth.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:00*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\WindowsBase\267f2adaf07827f9639c26c2aae0fc10\WindowsBase.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:00*
</td>
<td>c:\windows\system32\shsvcs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:00*
</td>
<td>c:\windows\syswow64\combase.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:59*
</td>
<td>c:\windows\system32\drivers\rfcomm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:59*
</td>
<td>c:\windows\system32\drivers\rtsustor.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:59*
</td>
<td>c:\windows\system32\wudfsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:58*
</td>
<td>C:\WINDOWS\system32\wincorlib.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:58*
</td>
<td>C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\System.Xaml\6cfcc719e883ca405e6fecf7059405fd\System.Xaml.ni.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:58*
</td>
<td>C:\WINDOWS\system32\PhotoMetadataHandler.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:58*
</td>
<td>c:\windows\system32\drivers\mtconfig.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:58*
</td>
<td>C:\WINDOWS\System32\appwiz.cpl*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:57*
</td>
<td>c:\windows\system32\schannel.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:56*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\storeng.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:55*
</td>
<td>c:\windows\system32\drivers\scfilter.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:55*
</td>
<td>c:\windows\system32\drivers\circlass.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:55*
</td>
<td>C:\WINDOWS\system32\explorerframe.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:55*
</td>
<td>C:\WINDOWS\SYSTEM32\RTWorkQ.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:54*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:54*
</td>
<td>c:\windows\system32\msicofire.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:54*
</td>
<td>C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:54*
</td>
<td>C:\WINDOWS\system32\MSVCR110.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:54*
</td>
<td>C:\WINDOWS\system32\NInput.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:53*
</td>
<td>C:\WINDOWS\system32\MSUTB.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:53*
</td>
<td>c:\windows\system32\provsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:46*
</td>
<td>C:\WINDOWS\system32\ole32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:46*
</td>
<td>c:\windows\system32\drivers\tcpip.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:46*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.344_x64__8wekyb3d8bbwe\SqliteWrapper.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:45*
</td>
<td>C:\WINDOWS\system32\WLDAP32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:44*
</td>
<td>c:\windows\system32\drivers\nvraid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:44*
</td>
<td>C:\WINDOWS\system32\bcryptPrimitives.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:43*
</td>
<td>C:\Windows\System32\portabledeviceclassextension.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:43*
</td>
<td>c:\windows\system32\AEPIC.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:43*
</td>
<td>c:\windows\system32\msadp32.acm*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:42*
</td>
<td>C:\WINDOWS\SYSTEM32\dwmapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:42*
</td>
<td>c:\windows\system32\eappprxy.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:42*
</td>
<td>c:\windows\system32\magnify.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:39*
</td>
<td>C:\WINDOWS\system32\perftrack.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:39*
</td>
<td>c:\windows\system32\gpsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:39*
</td>
<td>c:\windows\system32\drivers\isapnp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:39*
</td>
<td>C:\WINDOWS\system32\WSDCHNGR.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:38*
</td>
<td>C:\Program Files\Common Files\System\Ole DB\oledb32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:37*
</td>
<td>c:\windows\system32\cdd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:37*
</td>
<td>c:\windows\system32\drivers\usbvideo.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:37*
</td>
<td>c:\windows\system32\imaadp32.acm*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:37*
</td>
<td>C:\WINDOWS\SYSTEM32\MSVCP110.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:36*
</td>
<td>C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:36*
</td>
<td>C:\WINDOWS\system32\imagehlp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:36*
</td>
<td>c:\windows\system32\drivers\tcpipreg.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:36*
</td>
<td>c:\windows\system32\nvspcap64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:33*
</td>
<td>c:\windows\system32\clbcatq.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:32*
</td>
<td>c:\windows\system32\drivers\wirelessbuttondriver64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:32*
</td>
<td>C:\WINDOWS\system32\mfc110.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:32*
</td>
<td>c:\windows\system32\workfolderssvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:32*
</td>
<td>c:\windows\system32\midimap.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:31*
</td>
<td>C:\WINDOWS\system32\NetworkExplorer.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:31*
</td>
<td>c:\windows\system32\kmsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:31*
</td>
<td>c:\windows\system32\drivers\hidi2c.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:31*
</td>
<td>C:\WINDOWS\system32\deviceassociation.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:31*
</td>
<td>C:\Windows\System32\Windows.UI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:30*
</td>
<td>c:\windows\system32\alg.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:30*
</td>
<td>C:\Windows\System32\wuapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:30*
</td>
<td>c:\windows\system32\drivers\raspppoe.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:29*
</td>
<td>c:\windows\system32\OneX.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:29*
</td>
<td>C:\WINDOWS\system32\SPINF.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:29*
</td>
<td>C:\WINDOWS\SYSTEM32\SynTPAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:29*
</td>
<td>C:\WINDOWS\SYSTEM32\profsvcext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:29*
</td>
<td>c:\windows\system32\drivers\megasas.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:28*
</td>
<td>c:\windows\system32\drivers\vhdmp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:28*
</td>
<td>C:\WINDOWS\System32\DeviceSetupManagerAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:28*
</td>
<td>c:\windows\system32\drivers\usbhub3.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:28*
</td>
<td>C:\WINDOWS\system32\WinMetadata\Windows.Security.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:28*
</td>
<td>C:\WINDOWS\system32\wwapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:26*
</td>
<td>c:\windows\system32\vaultsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:26*
</td>
<td>C:\Windows\System32\wlanapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:26*
</td>
<td>C:\WINDOWS\SYSTEM32\msiltcfg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:26*
</td>
<td>C:\Program Files\Common Files\microsoft shared\ink\TipBand.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:24*
</td>
<td>C:\WINDOWS\System32\hpbprtmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:24*
</td>
<td>C:\WINDOWS\SYSTEM32\adsldpc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:24*
</td>
<td>c:\windows\system32\drivers\tunnel.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:24*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\imageformats\qgif.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:24*
</td>
<td>c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\hpnetworkcheckplugin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:23*
</td>
<td>c:\program files\common files\microsoft shared\ink\mip.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:23*
</td>
<td>C:\WINDOWS\system32\wbem\repdrvfs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:22*
</td>
<td>c:\windows\system32\drivers\msgpioclx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:21*
</td>
<td>C:\Program Files\NVIDIA Corporation\Update Core\NvGFTrayPlugin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:21*
</td>
<td>c:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:21*
</td>
<td>c:\windows\system32\dhcpcore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:21*
</td>
<td>C:\WINDOWS\system32\WTSAPI32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:21*
</td>
<td>C:\WINDOWS\system32\lsasrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:17*
</td>
<td>c:\windows\system32\drivers\selow_x64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:17*
</td>
<td>c:\windows\system32\drivers\wfplwfs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:17*
</td>
<td>c:\windows\syswow64\ntshrui.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:16*
</td>
<td>C:\WINDOWS\System32\nlaapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:15*
</td>
<td>c:\windows\system32\drivers\wacompen.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:14*
</td>
<td>c:\windows\system32\nettrace.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:14*
</td>
<td>C:\WINDOWS\System32\netshell.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:14*
</td>
<td>c:\windows\system32\fwpuclnt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:14*
</td>
<td>C:\WINDOWS\system32\MSACM32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:13*
</td>
<td>c:\windows\syswow64\qdvd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:13*
</td>
<td>c:\windows\system32\drivers\mrxdav.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:13*
</td>
<td>C:\WINDOWS\SYSTEM32\profext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:12*
</td>
<td>C:\WINDOWS\SYSTEM32\mf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:11*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:11*
</td>
<td>c:\windows\system32\drivers\rtkvhd64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:11*
</td>
<td>c:\windows\system32\srumsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:10*
</td>
<td>C:\WINDOWS\system32\CLUSAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:10*
</td>
<td>C:\WINDOWS\SYSTEM32\mfc100u.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:10*
</td>
<td>C:\WINDOWS\System32\hcproviders.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:09*
</td>
<td>c:\windows\system32\wpdbusenum.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:09*
</td>
<td>c:\windows\system32\drivers\usbport.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:08*
</td>
<td>C:\WINDOWS\SYSTEM32\wow64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:08*
</td>
<td>c:\windows\system32\win32spl.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:07*
</td>
<td>C:\WINDOWS\system32\igfxDH.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:04*
</td>
<td>C:\WINDOWS\system32\TQUERY.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:03*
</td>
<td>c:\windows\system32\drivers\ipnat.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:03*
</td>
<td>c:\windows\syswow64\gdiplus.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:02*
</td>
<td>C:\Windows\System32\WINHTTP.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:02*
</td>
<td>c:\windows\syswow64\rasplap.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:01*
</td>
<td>c:\windows\system32\qdv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:01*
</td>
<td>c:\windows\system32\drivers\rt630x64.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:01*
</td>
<td>c:\windows\system32\drivers\sermouse.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:00*
</td>
<td>c:\windows\system32\drivers\sfloppy.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>C:\WINDOWS\SYSTEM32\umpoext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>c:\windows\system32\drivers\werkernel.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>C:\WINDOWS\System32\WMICLNT.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>c:\windows\microsoft.net\framework64\v4.0.30319\aspnet_state.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>C:\WINDOWS\system32\SspiSrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>C:\WINDOWS\system32\ssdpapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>c:\windows\system32\drivers\uagp35.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:59*
</td>
<td>C:\WINDOWS\SYSTEM32\NETAPI32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:58*
</td>
<td>C:\WINDOWS\System32\DUI70.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:57*
</td>
<td>c:\windows\system32\docprop.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:57*
</td>
<td>C:\WINDOWS\SYSTEM32\dbghelp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:55*
</td>
<td>c:\windows\system32\drivers\condrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:55*
</td>
<td>c:\windows\system32\dfrgui.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:55*
</td>
<td>c:\program files\windows mail\wab.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:55*
</td>
<td>c:\windows\syswow64\oleaut32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:54*
</td>
<td>C:\WINDOWS\SYSTEM32\pcwum.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:54*
</td>
<td>C:\WINDOWS\system32\NVSVCR.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:54*
</td>
<td>C:\WINDOWS\System32\SensorsClassExtension.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:54*
</td>
<td>C:\WINDOWS\system32\pcadm.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:52*
</td>
<td>C:\WINDOWS\SYSTEM32\MFC100DEU.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:52*
</td>
<td>c:\windows\system32\drivers\nv_agp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:52*
</td>
<td>C:\Windows\System32\EhStorShell.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:52*
</td>
<td>c:\windows\system32\drivers\wudfrd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:51*
</td>
<td>C:\WINDOWS\SYSTEM32\CHARTV.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:51*
</td>
<td>C:\WINDOWS\SYSTEM32\DEVRTL.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:51*
</td>
<td>c:\windows\system32\bitsigd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:51*
</td>
<td>c:\windows\syswow64\psisrndr.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:51*
</td>
<td>C:\WINDOWS\system32\wls0wndh.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:50*
</td>
<td>c:\windows\system32\drivers\hypervideo.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:50*
</td>
<td>c:\windows\system32\nshwfp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:50*
</td>
<td>c:\windows\system32\das.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:50*
</td>
<td>c:\windows\system32\sens.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:50*
</td>
<td>C:\WINDOWS\system32\combase.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:49*
</td>
<td>C:\WINDOWS\system32\NetworkStatus.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:49*
</td>
<td>c:\windows\system32\AUTHZ.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:49*
</td>
<td>c:\windows\system32\drivers\winusb.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:49*
</td>
<td>C:\WINDOWS\SYSTEM32\POWRPROF.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:48*
</td>
<td>c:\windows\syswow64\mydocs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:48*
</td>
<td>C:\WINDOWS\SYSTEM32\MFCORE.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:47*
</td>
<td>C:\WINDOWS\System32\shacct.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:47*
</td>
<td>C:\Windows\System32\Windows.Web.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:46*
</td>
<td>C:\WINDOWS\system32\DDRAW.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:46*
</td>
<td>C:\WINDOWS\system32\PROPSYS.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:46*
</td>
<td>c:\windows\system32\drivers\wanarp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:45*
</td>
<td>C:\Windows\System32\OLEACC.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:45*
</td>
<td>C:\WINDOWS\SYSTEM32\drvstore.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:44*
</td>
<td>c:\windows\system32\drivers\netvsc63.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:44*
</td>
<td>C:\Windows\System32\WinTypes.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:44*
</td>
<td>c:\windows\system32\drivers\serenum.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:44*
</td>
<td>c:\windows\system32\drivers\ipfltdrv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:43*
</td>
<td>C:\WINDOWS\system32\VssTrace.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:43*
</td>
<td>C:\WINDOWS\System32\mswsock.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:43*
</td>
<td>c:\windows\system32\EventAggregation.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:42*
</td>
<td>c:\windows\system32\drivers\basicrender.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:42*
</td>
<td>C:\WINDOWS\SYSTEM32\iertutil.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:42*
</td>
<td>c:\windows\system32\qwave.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:41*
</td>
<td>c:\windows\system32\msvcrt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:41*
</td>
<td>C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\chrome_elf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:41*
</td>
<td>C:\WINDOWS\System32\tcpmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:41*
</td>
<td>C:\WINDOWS\system32\KERNEL32.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:40*
</td>
<td>c:\windows\system32\CRYPTNET.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:40*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:40*
</td>
<td>c:\windows\syswow64\psapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:40*
</td>
<td>c:\windows\system32\netlogon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:39*
</td>
<td>c:\windows\system32\drivers\refs.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:39*
</td>
<td>C:\WINDOWS\System32\IPHLPAPI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:39*
</td>
<td>c:\windows\system32\drivers\tpm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:39*
</td>
<td>c:\windows\system32\drivers\ialpssi_i2c.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:39*
</td>
<td>c:\windows\system32\efslsaext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:38*
</td>
<td>C:\WINDOWS\system32\FVECERTS.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:38*
</td>
<td>c:\windows\system32\drivers\rdpvideominiport.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:38*
</td>
<td>C:\Program Files\iTunes\iTunesHelper.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:38*
</td>
<td>C:\WINDOWS\system32\wbem\wbemess.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:37*
</td>
<td>C:\WINDOWS\System32\StructuredQuery.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:37*
</td>
<td>C:\WINDOWS\SYSTEM32\apprepapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:37*
</td>
<td>C:\WINDOWS\SYSTEM32\mfplat.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:36*
</td>
<td>c:\windows\system32\drivers\hdaudio.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:34*
</td>
<td>C:\WINDOWS\System32\Bcp47Langs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:34*
</td>
<td>c:\windows\system32\drivers\ssudmdm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:34*
</td>
<td>C:\WINDOWS\system32\OPENGL32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:34*
</td>
<td>c:\windows\syswow64\mpg2splt.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:34*
</td>
<td>C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:33*
</td>
<td>C:\WINDOWS\SYSTEM32\rasman.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:33*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:33*
</td>
<td>c:\windows\system32\drivers\kdnic.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:32*
</td>
<td>c:\windows\system32\drivers\rassstp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:32*
</td>
<td>C:\WINDOWS\system32\dwrite.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:31*
</td>
<td>c:\windows\system32\lltdsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:30*
</td>
<td>c:\windows\system32\drivers\ndistapi.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:30*
</td>
<td>C:\Windows\System32\ATL.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:30*
</td>
<td>C:\WINDOWS\SYSTEM32\sppc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:30*
</td>
<td>c:\windows\syswow64\rpcrt4.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:30*
</td>
<td>C:\WINDOWS\SYSTEM32\ondemandconnroutehelper.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:29*
</td>
<td>C:\WINDOWS\SYSTEM32\FLTLIB.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:29*
</td>
<td>c:\windows\system32\ssdpsrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:29*
</td>
<td>c:\windows\system32\FirewallAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:28*
</td>
<td>c:\windows\system32\davclnt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:28*
</td>
<td>c:\windows\system32\srvcli.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:28*
</td>
<td>c:\windows\system32\appidsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:28*
</td>
<td>c:\windows\syswow64\twext.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:28*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.344_x64__8wekyb3d8bbwe\Microsoft.PerfTrack.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:27*
</td>
<td>C:\WINDOWS\System32\srchadmin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:27*
</td>
<td>c:\program files (x86)\openoffice 4\program\shlxthdl\shlxthdl_x64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:27*
</td>
<td>C:\WINDOWS\SYSTEM32\tbs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:27*
</td>
<td>C:\WINDOWS\System32\localspl.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:27*
</td>
<td>c:\windows\system32\drivers\hwpolicy.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:27*
</td>
<td>c:\windows\system32\pshed.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:26*
</td>
<td>C:\Program Files\7-Zip\7-zip.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:26*
</td>
<td>c:\windows\syswow64\biocredprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:26*
</td>
<td>C:\WINDOWS\system32\WINMM.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:26*
</td>
<td>c:\windows\system32\ntlanman.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:25*
</td>
<td>c:\windows\system32\drivers\drmk.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:25*
</td>
<td>c:\windows\system32\wsdapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:25*
</td>
<td>C:\WINDOWS\System32\inetpp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:25*
</td>
<td>C:\WINDOWS\SYSTEM32\pcacli.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:24*
</td>
<td>C:\Windows\System32\SkydriveShell.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:23*
</td>
<td>c:\windows\system32\drivers\portcls.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:21*
</td>
<td>C:\WINDOWS\system32\d2d1.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:21*
</td>
<td>c:\windows\system32\drivers\vstxraid.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:21*
</td>
<td>c:\windows\system32\drivers\fastfat.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:21*
</td>
<td>C:\WINDOWS\System32\TetheringIeProvider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:20*
</td>
<td>c:\windows\system32\mcupdate_genuineintel.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:19*
</td>
<td>c:\windows\system32\drivers\fileinfo.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:18*
</td>
<td>c:\windows\system32\drivers\mountmgr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:18*
</td>
<td>c:\windows\system32\drivers\accelerometer.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:18*
</td>
<td>c:\program files\common files\microsoft shared\microsoft camera codec pack\microsoftrawcodec.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:18*
</td>
<td>c:\windows\system32\psapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:18*
</td>
<td>c:\windows\system32\drivers\rdpdr.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:18*
</td>
<td>C:\WINDOWS\system32\spool\PRTPROCS\x64\winprint.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:17*
</td>
<td>c:\windows\system32\drivers\srv.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:17*
</td>
<td>c:\windows\system32\wavdest.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:17*
</td>
<td>c:\windows\system32\drivers\sercx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:16*
</td>
<td>C:\WINDOWS\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8\COMCTL32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:16*
</td>
<td>C:\WINDOWS\system32\SspiCli.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:15*
</td>
<td>c:\windows\system32\drivers\rasacd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:15*
</td>
<td>c:\windows\system32\drivers\parport.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:14*
</td>
<td>C:\WINDOWS\system32\spool\DRIVERS\x64\3\hpbxjobsvr1301.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:14*
</td>
<td>c:\program files (x86)\cyberlink\media suite\ps.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:14*
</td>
<td>c:\windows\system32\webservices.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:13*
</td>
<td>c:\windows\system32\qasf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:13*
</td>
<td>C:\WINDOWS\system32\GLU32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:13*
</td>
<td>c:\windows\system32\whhelper.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:12*
</td>
<td>c:\windows\system32\cleanmgr.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:11*
</td>
<td>C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:10*
</td>
<td>C:\Program Files\NVIDIA Corporation\Update Core\NvBackendAPI64.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:09*
</td>
<td>c:\windows\syswow64\dfsshlex.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:09*
</td>
<td>C:\WINDOWS\System32\srumapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:08*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetDetect.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:08*
</td>
<td>C:\WINDOWS\system32\hnetcfg.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:08*
</td>
<td>c:\windows\system32\drivers\nvvad64v.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:07*
</td>
<td>c:\Program Files\Intel\WiFi\bin\AmtWsMan.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:05*
</td>
<td>c:\windows\system32\drivers\pdc.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:04*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Globalization\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Globalization.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:04*
</td>
<td>C:\WINDOWS\System32\framedynos.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:04*
</td>
<td>c:\windows\system32\drivers\ksecdd.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:04*
</td>
<td>c:\windows\syswow64\msmpeg2adec.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:03*
</td>
<td>C:\WINDOWS\SYSTEM32\HID.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:03*
</td>
<td>c:\windows\system32\drivers\dxgmms1.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:03*
</td>
<td>c:\windows\system32\p2pnetsh.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:03*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\modules\HP.SSF.Controllers.Pit.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:03*
</td>
<td>c:\windows\syswow64\urlmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:02*
</td>
<td>C:\Windows\System32\drivers\UMDF\LocationProvider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:02*
</td>
<td>C:\WINDOWS\system32\BatMeter.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:02*
</td>
<td>c:\windows\system32\winrnr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:02*
</td>
<td>c:\windows\system32\drivers\acpitime.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:01*
</td>
<td>c:\windows\system32\netdiagfx.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:01*
</td>
<td>C:\WINDOWS\System32\DUser.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:01*
</td>
<td>C:\Windows\System32\XmlLite.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:01*
</td>
<td>c:\windows\system32\DSROLE.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:00*
</td>
<td>C:\WINDOWS\system32\igfxDI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:00*
</td>
<td>c:\windows\system32\pcasvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:28:00*
</td>
<td>c:\windows\system32\wiaservc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:58*
</td>
<td>c:\windows\system32\scecli.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:58*
</td>
<td>C:\WINDOWS\SYSTEM32\DSOUND.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:57*
</td>
<td>C:\WINDOWS\SYSTEM32\shfolder.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:57*
</td>
<td>C:\WINDOWS\system32\wer.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:57*
</td>
<td>c:\windows\system32\advapi32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:57*
</td>
<td>C:\WINDOWS\system32\profapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:57*
</td>
<td>c:\program files (x86)\openoffice 4\program\unopkg.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:56*
</td>
<td>C:\WINDOWS\SYSTEM32\urlmon.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:56*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:56*
</td>
<td>C:\Windows\system32\CRYPTSP.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:56*
</td>
<td>c:\windows\system32\wcncsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:56*
</td>
<td>c:\windows\system32\dfdts.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:53*
</td>
<td>c:\windows\system32\setupapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:52*
</td>
<td>c:\windows\system32\netutils.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:52*
</td>
<td>C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:52*
</td>
<td>c:\program files (x86)\wildtangent games\app\gamesappservice.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:52*
</td>
<td>c:\windows\system32\bthhfsrv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:51*
</td>
<td>c:\windows\system32\drivers\agilevpn.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:50*
</td>
<td>c:\windows\system32\wcmsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:50*
</td>
<td>c:\windows\system32\wecsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:50*
</td>
<td>c:\windows\system32\drivers\nvlddmkm.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:49*
</td>
<td>c:\windows\system32\drivers\mrxsmb.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:48*
</td>
<td>C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTRemoteWake.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:48*
</td>
<td>C:\Program Files\NVIDIA Corporation\Display\NvUI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:47*
</td>
<td>C:\WINDOWS\system32\DPAPI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:47*
</td>
<td>C:\WINDOWS\System32\audioses.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:46*
</td>
<td>C:\WINDOWS\system32\USERENV.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:46*
</td>
<td>c:\windows\system32\drivers\ndproxy.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:46*
</td>
<td>C:\WINDOWS\system32\RtkApi64.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:45*
</td>
<td>c:\windows\system32\LOGONCLI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:45*
</td>
<td>C:\WINDOWS\SYSTEM32\MLANG.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:45*
</td>
<td>C:\WINDOWS\system32\mscms.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:45*
</td>
<td>C:\WINDOWS\system32\mi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:44*
</td>
<td>c:\windows\system32\drivers\iastorav.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:44*
</td>
<td>C:\WINDOWS\SYSTEM32\WindowsCodecs.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:44*
</td>
<td>c:\windows\system32\wstpager.ax*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:44*
</td>
<td>c:\windows\system32\wdiasqmmodule.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:44*
</td>
<td>C:\WINDOWS\system32\MMDevAPI.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:43*
</td>
<td>c:\windows\system32\pnrpsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:42*
</td>
<td>C:\WINDOWS\System32\Speech\Common\sapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:42*
</td>
<td>C:\WINDOWS\System32\SensorsApi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:42*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_MSIL\System.Threading.Tasks\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Threading.Tasks.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:41*
</td>
<td>C:\Windows\System32\DCIMAN32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:41*
</td>
<td>C:\Program Files\Common Files\Microsoft Shared\Ink\InkObj.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:41*
</td>
<td>c:\windows\syswow64\msvidctl.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:41*
</td>
<td>c:\windows\system32\drivers\hdaudbus.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:40*
</td>
<td>C:\WINDOWS\Microsoft.Net\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:40*
</td>
<td>C:\WINDOWS\SYSTEM32\SHCORE.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:40*
</td>
<td>C:\Program Files\WindowsApps\Microsoft.BingWeather_3.0.4.344_x64__8wekyb3d8bbwe\SqliteWrapper.winmd*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:39*
</td>
<td>c:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:39*
</td>
<td>c:\windows\system32\ntoskrnl.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:39*
</td>
<td>C:\WINDOWS\System32\ncuprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:39*
</td>
<td>c:\windows\system32\bitsperf.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:39*
</td>
<td>c:\windows\system32\webclnt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:37*
</td>
<td>C:\WINDOWS\System32\NLSData002a.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:37*
</td>
<td>c:\windows\system32\drivers\bthpan.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:37*
</td>
<td>c:\windows\system32\tsbyuv.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:36*
</td>
<td>C:\WINDOWS\system32\WINTRUST.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:35*
</td>
<td>C:\WINDOWS\SYSTEM32\ntdll.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:35*
</td>
<td>c:\windows\system32\drivers\raspptp.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:35*
</td>
<td>C:\WINDOWS\system32\Msidle.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:35*
</td>
<td>c:\windows\system32\icsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:34*
</td>
<td>C:\WINDOWS\system32\uxtheme.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:34*
</td>
<td>c:\windows\system32\dhcpcsvc6.DLL*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:34*
</td>
<td>C:\Windows\System32\bcrypt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:33*
</td>
<td>C:\WINDOWS\system32\keepaliveprovider.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:33*
</td>
<td>C:\Program Files\TeamSpeak 3 Client\Qt5Network.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:32*
</td>
<td>c:\windows\system32\drivers\mup.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:32*
</td>
<td>c:\windows\system32\napinsp.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:32*
</td>
<td>C:\WINDOWS\system32\avrt.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:32*
</td>
<td>C:\Windows\System32\WUDFPlatform.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:32*
</td>
<td>c:\windows\system32\umpnpmgr.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:32*
</td>
<td>C:\WINDOWS\system32\WSCAPI.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:31*
</td>
<td>c:\windows\system32\autochk.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:31*
</td>
<td>C:\WINDOWS\SYSTEM32\bi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:31*
</td>
<td>c:\windows\system32\drivers\spbcx.sys*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:31*
</td>
<td>c:\windows\system32\listsvc.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:31*
</td>
<td>c:\windows\system32\shlwapi.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:31*
</td>
<td>C:\WINDOWS\System32\energyprov.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:27:30*
</td>
<td>C:\WINDOWS\SYSTEM32\Msimg32.dll*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:24:20*
</td>
<td>C:\WINDOWS\system32\wwahost.exe*
</td>
<td>Ignoriert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:23:20*
</td>
<td>C:\WINDOWS\system32\wwahost.exe*
</td>
<td>Ignoriert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:22:53*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 01:21:56*
</td>
<td>C:\WINDOWS\system32\wwahost.exe*
</td>
<td>Ignoriert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 00:33:56*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGUPD.exe*
</td>
<td>Blockiert*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 00:30:09*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGUpd.exe*
</td>
<td>Online geprüft: bösartig*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 00:23:05*
</td>
<td>C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
<tr>
<td>2016-11-16 00:21:13*
</td>
<td>C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe*
</td>
<td>Geprüft: sicher*
</td>
<td>*
</td>
</tr>
</table>
<table width="100%" bgcolor="#CFCFE5" border="0">
<tr>
<td>
<font face="Arial" size="+1">Ende des Berichts</font>
</td>
</tr>
</table>
</body>
</html>
|
|
16.11.2016, 14:05
| #8 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbung das waren die Logs von blockierte aktionen. Jetzt von virusscan ich habe es aber nicht zu ende gescannt. Code:
ATTFilter <html>
<head>
<META http-equiv="Content-Type" content="text/html; charset=UTF-16">
<title>Antivirus-Ereignisse</title>
</head>
<body>
<table width="100%" bgcolor="#CFCFE5" border="0">
<tr>
<td>
<font face="Arial" size="+1">COMODO Internet Security Premium Einträge</font>
</td>
</tr>
</table>
<table width="100%" cellspacing="0" cellpadding="0" border="0">
<tr>
<td width="0" bgcolor="#EDEDF5">*</td>
<td width="0" bgcolor="#FFFFFF">*</td>
<td width="20%">
<h4>Tabelle</h4>
</td>
<td width="0">
<h4>:</h4>
</td>
<td width="*">
<h4>Antivirus-Ereignisse</h4>
</td>
</tr>
<tr>
<td width="0" bgcolor="#EDEDF5">*</td>
<td width="0" bgcolor="#FFFFFF">*</td>
<td width="20%">
<h4>Erstellungsdatum</h4>
</td>
<td width="0">
<h4>:</h4>
</td>
<td width="*">
<h4>2016-11-16 14:04:43</h4>
</td>
</tr>
<tr>
<td width="0" bgcolor="#EDEDF5">*</td>
<td width="0" bgcolor="#FFFFFF">*</td>
<td width="20%">
<h4>Anzahl der Einträge</h4>
</td>
<td width="0">
<h4>:</h4>
</td>
<td width="*">
<h4>26</h4>
</td>
</tr>
</table>
<table width="100%" cellspacing="0" cellpadding="0" border="1">
<tr>
<th>Datum</th>
<th>Ort</th>
<th>Name der Malware</th>
<th>Aktion</th>
<th>Status</th>
</tr>
<tr>
<td>2016-11-16 00:30:08*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGUpd.exe*
</td>
<td>Application.Win32.Agent.gptfx@1*
</td>
<td>Blockieren*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:30:08*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGUpd.exe*
</td>
<td>Application.Win32.Agent.gptfx@1*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:33:56*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGUPD.exe*
</td>
<td>Sandbox Policy*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:33:57*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGUpd.exe*
</td>
<td>Application.Win32.Agent.gptfx@1*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:39:15*
</td>
<td>C:\Program Files (x86)\AutoIt3\AutoIt3.exe*
</td>
<td>Malware@#1i87ypu33sj1z*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:39:16*
</td>
<td>C:\Program Files (x86)\AutoIt3\AutoIt3.exe*
</td>
<td>Malware@#1i87ypu33sj1z*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:40:11*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\DMR\dmr_72.exe*
</td>
<td>Malware@#1h0hd5oeepfm7*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:40:11*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\DMR\dmr_72.exe*
</td>
<td>Malware@#1h0hd5oeepfm7*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:48:53*
</td>
<td>C:\Users\ducanh\Desktop\AutoClick 2.2.exe*
</td>
<td>TrojWare.Win32.TrojanClicker.Agent.NFX0@91245781*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:48:53*
</td>
<td>C:\Users\ducanh\Desktop\AutoClick 2.2.exe*
</td>
<td>TrojWare.Win32.TrojanClicker.Agent.NFX0@91245781*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:48:55*
</td>
<td>C:\Users\ducanh\Desktop\Minecraft.exe*
</td>
<td>Malware@#3w33c2t1c0hca*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 00:48:56*
</td>
<td>C:\Users\ducanh\Desktop\Minecraft.exe*
</td>
<td>Malware@#3w33c2t1c0hca*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:00:12*
</td>
<td>C:\Windows.old\Users\ducanh\AppData\Local\Microsoft\Windows\INetCache\IE\HHWU76Q5\goPlay2[1].zip|goPlay.exe*
</td>
<td>Malware@#159zynoie5ecz*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:29:26*
</td>
<td>c:\users\ducanh\appdata\roaming\proxygate\mainservice.exe*
</td>
<td>ApplicUnwnt@#vbzlfu0d8lmc*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:25*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGLog.exe*
</td>
<td>ApplicUnwnt@#36mokdpgwrefw*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:27*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGLog.exe*
</td>
<td>ApplicUnwnt@#36mokdpgwrefw*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:27*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGHelp.exe*
</td>
<td>ApplicUnwnt@#1z4cj0j29fhyh*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:30:28*
</td>
<td>C:\Users\ducanh\AppData\Roaming\ProxyGate\PGHelp.exe*
</td>
<td>ApplicUnwnt@#1z4cj0j29fhyh*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:54:09*
</td>
<td>C:\Users\ducanh\Downloads\7 Zip 32 Bit - CHIP-Installer.exe*
</td>
<td>Application.Win32.DownloadSponsor.CA@381364034*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 01:54:11*
</td>
<td>C:\Users\ducanh\Downloads\7 Zip 32 Bit - CHIP-Installer.exe*
</td>
<td>Application.Win32.DownloadSponsor.CA@381364034*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 02:22:23*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\H7faZDo1\09027 Pixel Gun 3D v10 1 _Downloader.exe*
</td>
<td>Application.Win32.InstallCore.DUB@381460253*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 02:22:29*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\H7faZDo1\09027 Pixel Gun 3D v10 1 _Downloader.exe*
</td>
<td>Application.Win32.InstallCore.DUB@381460253*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 02:23:01*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\H7faZDo1\09027 Pixel Gun 3D v10 1 _Downloader.exe*
</td>
<td>Application.Win32.InstallCore.DUB@381460253*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 02:24:03*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\H7faZDo1\09027 Pixel Gun 3D v10 1 _Downloader.exe*
</td>
<td>Application.Win32.InstallCore.DUB@381460253*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 02:24:03*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\H7faZDo1\09027 Pixel Gun 3D v10 1 _Downloader.exe*
</td>
<td>Application.Win32.InstallCore.DUB@381460253*
</td>
<td>Erkennen*
</td>
<td>Erfolgreich*
</td>
</tr>
<tr>
<td>2016-11-16 02:24:04*
</td>
<td>C:\Users\ducanh\AppData\Local\Temp\H7faZDo1\09027 Pixel Gun 3D v10 1 _Downloader.exe*
</td>
<td>Application.Win32.InstallCore.DUB@381460253*
</td>
<td>Quarantäne*
</td>
<td>Erfolgreich*
</td>
</tr>
</table>
<table width="100%" bgcolor="#CFCFE5" border="0">
<tr>
<td>
<font face="Arial" size="+1">Ende des Berichts</font>
</td>
</tr>
</table>
</body>
</html>
|
|
16.11.2016, 14:28
| #9 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter <td>C:\Program Files (x86)\AutoIt3\AutoIt3.exe*
<td>Malware@#1i87ypu33sj1z*
--
<td>C:\Users\ducanh\AppData\Local\Temp\DMR\dmr_72.exe*
<td>Malware@#1h0hd5oeepfm7*
--
<td>C:\Users\ducanh\Desktop\Minecraft.exe*
<td>Malware@#3w33c2t1c0hca*
--
<td>C:\Windows.old\Users\ducanh\AppData\Local\Microsoft\Windows\INetCache\IE\HHWU76Q5\goPlay2[1].zip|goPlay.exe*
<td>Malware@#159zynoie5ecz*
 Edit: da ist doch noch mehr, aber dafür ist das Log reichtlich unübersichtlich in diesem sch... XML Format  1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.11.2016, 21:43
| #10 | |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbung es wurde nichts gefunden und dadurch auch kein neustart gefordert was soll ich tun scheitt 2 machen ? Zitat:
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.11.16.10
rootkit: v2016.10.31.01
Windows 8.1 x64 NTFS
Internet Explorer 11.0.9600.18525
ducanh :: VIP [administrator]
16/11/2016 8:39:20 CH
mbar-log-2016-11-16 (20-39-20).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 369180
Time elapsed: 36 minute(s), 42 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 1
HKLM\SYSTEM\CURRENTCONTROLSET\CONTROL\SAFEBOOT\NETWORK\zdwfp (Rootkit.Komodia.PUA) -> Delete on reboot. [b248fbc5bcde0531eb42a1399b6708f8]
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\WINDOWS\SYSTEM32\drivers\zdwfp64.sys (PUP.Optional.Komodia) -> Delete on reboot. [a767ff3670b7349e961687c29ea9054e]
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 21:38:19.0770 0x2160 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
21:38:19.0770 0x2160 UEFI system
21:38:22.0329 0x2160 ============================================================
21:38:22.0329 0x2160 Current date / time: 2016/11/16 21:38:22.0329
21:38:22.0329 0x2160 SystemInfo:
21:38:22.0329 0x2160
21:38:22.0329 0x2160 OS Version: 6.3.9600 ServicePack: 0.0
21:38:22.0329 0x2160 Product type: Workstation
21:38:22.0329 0x2160 ComputerName: VIP
21:38:22.0329 0x2160 UserName: ducanh
21:38:22.0329 0x2160 Windows directory: C:\WINDOWS
21:38:22.0329 0x2160 System windows directory: C:\WINDOWS
21:38:22.0329 0x2160 Running under WOW64
21:38:22.0329 0x2160 Processor architecture: Intel x64
21:38:22.0329 0x2160 Number of processors: 4
21:38:22.0329 0x2160 Page size: 0x1000
21:38:22.0329 0x2160 Boot type: Normal boot
21:38:22.0329 0x2160 CodeIntegrityOptions = 0x00000001
21:38:22.0329 0x2160 ============================================================
21:38:22.0767 0x2160 KLMD registered as C:\WINDOWS\system32\drivers\49712406.sys
21:38:22.0767 0x2160 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18505, osProperties = 0x19
21:38:22.0958 0x2160 System UUID: {FED96C99-60CC-6A43-E97B-2198BA2A46E7}
21:38:23.0526 0x2160 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:38:23.0528 0x2160 ============================================================
21:38:23.0528 0x2160 \Device\Harddisk0\DR0:
21:38:23.0528 0x2160 GPT partitions:
21:38:23.0529 0x2160 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {1C6E5BC0-5787-4C2C-B487-757C113092D7}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x145000
21:38:23.0529 0x2160 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {CEAC5446-FA48-4484-929E-9A77D0707FDD}, Name: EFI system partition, StartLBA 0x145800, BlocksNum 0x82000
21:38:23.0529 0x2160 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {CDE8CA4C-17C0-47A1-87D4-961C4D352615}, Name: Microsoft reserved partition, StartLBA 0x1C7800, BlocksNum 0x40000
21:38:23.0529 0x2160 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {DCDBD398-7443-47B6-A948-B037536697CB}, Name: Basic data partition, StartLBA 0x207800, BlocksNum 0x71CE2000
21:38:23.0529 0x2160 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {00E014A0-B156-4C11-B28D-B502EBA8B0EB}, Name: Basic data partition, StartLBA 0x71EE9800, BlocksNum 0x281A800
21:38:23.0529 0x2160 MBR partitions:
21:38:23.0529 0x2160 ============================================================
21:38:23.0531 0x2160 C: <-> \Device\Harddisk0\DR0\Partition4
21:38:23.0533 0x2160 D: <-> \Device\Harddisk0\DR0\Partition5
21:38:23.0533 0x2160 ============================================================
21:38:23.0533 0x2160 Initialize success
21:38:23.0533 0x2160 ============================================================
21:38:24.0607 0x1178 ============================================================
21:38:24.0607 0x1178 Scan started
21:38:24.0607 0x1178 Mode: Manual;
21:38:24.0607 0x1178 ============================================================
21:38:24.0607 0x1178 KSN ping started
21:38:24.0687 0x1178 KSN ping finished: true
21:38:25.0674 0x1178 ================ Scan system memory ========================
21:38:25.0674 0x1178 System memory - ok
21:38:25.0674 0x1178 ================ Scan services =============================
21:38:25.0835 0x1178 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
21:38:25.0839 0x1178 1394ohci - ok
21:38:25.0857 0x1178 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
21:38:25.0861 0x1178 3ware - ok
21:38:25.0865 0x1178 [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
21:38:25.0866 0x1178 Accelerometer - ok
21:38:25.0886 0x1178 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
21:38:25.0894 0x1178 ACPI - ok
21:38:25.0901 0x1178 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
21:38:25.0902 0x1178 acpiex - ok
21:38:25.0906 0x1178 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
21:38:25.0906 0x1178 acpipagr - ok
21:38:25.0910 0x1178 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
21:38:25.0911 0x1178 AcpiPmi - ok
21:38:25.0916 0x1178 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
21:38:25.0916 0x1178 acpitime - ok
21:38:25.0936 0x1178 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:38:25.0947 0x1178 ADP80XX - ok
21:38:25.0957 0x1178 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
21:38:25.0962 0x1178 AeLookupSvc - ok
21:38:25.0978 0x1178 [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
21:38:25.0986 0x1178 AFD - ok
21:38:25.0992 0x1178 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
21:38:25.0993 0x1178 agp440 - ok
21:38:26.0000 0x1178 [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:38:26.0001 0x1178 ahcache - ok
21:38:26.0006 0x1178 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
21:38:26.0008 0x1178 ALG - ok
21:38:26.0016 0x1178 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
21:38:26.0017 0x1178 AmdK8 - ok
21:38:26.0024 0x1178 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
21:38:26.0026 0x1178 AmdPPM - ok
21:38:26.0032 0x1178 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
21:38:26.0033 0x1178 amdsata - ok
21:38:26.0043 0x1178 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
21:38:26.0047 0x1178 amdsbs - ok
21:38:26.0053 0x1178 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
21:38:26.0054 0x1178 amdxata - ok
21:38:26.0060 0x1178 [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:38:26.0062 0x1178 AppHostSvc - ok
21:38:26.0069 0x1178 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
21:38:26.0070 0x1178 AppID - ok
21:38:26.0075 0x1178 [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
21:38:26.0077 0x1178 AppIDSvc - ok
21:38:26.0083 0x1178 [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\WINDOWS\System32\appinfo.dll
21:38:26.0085 0x1178 Appinfo - ok
21:38:26.0095 0x1178 [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:38:26.0097 0x1178 Apple Mobile Device Service - ok
21:38:26.0114 0x1178 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
21:38:26.0122 0x1178 AppReadiness - ok
21:38:26.0167 0x1178 [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
21:38:26.0187 0x1178 AppXSvc - ok
21:38:26.0195 0x1178 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
21:38:26.0197 0x1178 arcsas - ok
21:38:26.0212 0x1178 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:38:26.0213 0x1178 aspnet_state - ok
21:38:26.0217 0x1178 [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:38:26.0218 0x1178 AsyncMac - ok
21:38:26.0223 0x1178 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
21:38:26.0224 0x1178 atapi - ok
21:38:26.0235 0x1178 [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:38:26.0239 0x1178 AudioEndpointBuilder - ok
21:38:26.0273 0x1178 [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
21:38:26.0289 0x1178 Audiosrv - ok
21:38:26.0301 0x1178 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
21:38:26.0303 0x1178 AxInstSV - ok
21:38:26.0319 0x1178 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
21:38:26.0328 0x1178 b06bdrv - ok
21:38:26.0333 0x1178 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:38:26.0334 0x1178 BasicDisplay - ok
21:38:26.0338 0x1178 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
21:38:26.0339 0x1178 BasicRender - ok
21:38:26.0345 0x1178 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
21:38:26.0346 0x1178 bcmfn2 - ok
21:38:26.0358 0x1178 [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC C:\WINDOWS\System32\bdesvc.dll
21:38:26.0364 0x1178 BDESVC - ok
21:38:26.0368 0x1178 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:38:26.0369 0x1178 Beep - ok
21:38:26.0392 0x1178 [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\WINDOWS\System32\bfe.dll
21:38:26.0406 0x1178 BFE - ok
21:38:26.0431 0x1178 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
21:38:26.0446 0x1178 BITS - ok
21:38:26.0462 0x1178 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:38:26.0472 0x1178 Bonjour Service - ok
21:38:26.0480 0x1178 [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
21:38:26.0483 0x1178 bowser - ok
21:38:26.0508 0x1178 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:38:26.0512 0x1178 BrokerInfrastructure - ok
21:38:26.0519 0x1178 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
21:38:26.0522 0x1178 Browser - ok
21:38:26.0542 0x1178 [ F702AFA6B13BB143757AEFAE423B6865, 65FDFD3C642D81EE95CBC68D6BA4FD69EF6A83F9AF7948DC993C783DF1AA8772 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:38:26.0549 0x1178 BstHdAndroidSvc - ok
21:38:26.0555 0x1178 [ 464D771701C5413C1EDD504D745698F0, C82B9F9C621654914F980EC9DA5879703014066E93CC7D21B9B241E0D16FA325 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:38:26.0558 0x1178 BstHdDrv - ok
21:38:26.0569 0x1178 [ 202A388A6CC6D1A00CBB6E3EAEAA2B89, 588AB5DA62C98E8B3B332043BFCC03A8286FBF4E2C2181E4C9295B247BE75DD8 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:38:26.0576 0x1178 BstHdLogRotatorSvc - ok
21:38:26.0598 0x1178 [ 250FB3DBCB2E4E538EA466ABF48859E7, A9C839CB675DABDB71571E60BC69C1C027F129FABA821454C1BBF5B4A7CC9725 ] BstHdUpdaterSvc C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
21:38:26.0611 0x1178 BstHdUpdaterSvc - ok
21:38:26.0616 0x1178 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:38:26.0617 0x1178 BthAvrcpTg - ok
21:38:26.0623 0x1178 [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
21:38:26.0625 0x1178 BthEnum - ok
21:38:26.0630 0x1178 [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
21:38:26.0631 0x1178 BthHFEnum - ok
21:38:26.0635 0x1178 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
21:38:26.0635 0x1178 bthhfhid - ok
21:38:26.0649 0x1178 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
21:38:26.0654 0x1178 BthHFSrv - ok
21:38:26.0666 0x1178 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
21:38:26.0670 0x1178 BthLEEnum - ok
21:38:26.0677 0x1178 [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
21:38:26.0678 0x1178 BTHMODEM - ok
21:38:26.0684 0x1178 [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
21:38:26.0687 0x1178 BthPan - ok
21:38:26.0727 0x1178 [ 0CC00ADC1B84C93FB46E1A0974E956E1, 64C759244651B916901F4D0C82C3D6034532A20714A72FD26FC9D050B99E230B ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
21:38:26.0744 0x1178 BTHPORT - ok
21:38:26.0752 0x1178 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
21:38:26.0755 0x1178 bthserv - ok
21:38:26.0762 0x1178 [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
21:38:26.0763 0x1178 BTHUSB - ok
21:38:26.0771 0x1178 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:38:26.0773 0x1178 cdfs - ok
21:38:26.0780 0x1178 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
21:38:26.0783 0x1178 cdrom - ok
21:38:26.0792 0x1178 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
21:38:26.0794 0x1178 CertPropSvc - ok
21:38:26.0801 0x1178 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
21:38:26.0802 0x1178 circlass - ok
21:38:26.0815 0x1178 [ 28D94419E856D61D7686ED942611D15E, AC9ED48AA09B09B854512B35E905C8C4C451B34F59951661367392AF64E8ADE7 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
21:38:26.0821 0x1178 CLFS - ok
21:38:26.0847 0x1178 [ 424F3A5D9AAC65B50DBEB4B1CA91F051, E2DD6C25E4B23B834A54A24548D857D118A2222DC80CFEDE176030206C0E52A2 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
21:38:26.0856 0x1178 CLVirtualDrive - ok
21:38:26.0860 0x1178 [ 9731DAFDC7B690B2C7752FDFF045BFD8, 9DDBDC4FE519AF38993EAB2F16602B2B71CF8675BDD1F651F22DFA8C5C2C80F7 ] clwvd C:\WINDOWS\system32\DRIVERS\clwvd.sys
21:38:26.0861 0x1178 clwvd - ok
21:38:26.0865 0x1178 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
21:38:26.0866 0x1178 CmBatt - ok
21:38:27.0030 0x1178 [ C206F35A1D0B32B6A65BE2B5D7049B84, BAFE47BE23CB99EE93FAA311B57222E0D7A2B086C0941691995AE3100C52ED6E ] CmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
21:38:27.0108 0x1178 CmdAgent - ok
21:38:27.0118 0x1178 [ 71164DBB8653DA47EAE327C9F5CD9C89, 5D625F1BE7DAAA532FF2D724E67C92D58E9117736F08C75CCA79244671B03979 ] cmderd C:\WINDOWS\system32\DRIVERS\cmderd.sys
21:38:27.0118 0x1178 cmderd - ok
21:38:27.0138 0x1178 [ 56BBC037D128C2599924C8F5AE9CB771, 99100DAC33325285F7AC57B7CFD4AA93A1A94E4A612C5B553E772C26DD765B29 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys
21:38:27.0150 0x1178 cmdGuard - ok
21:38:27.0155 0x1178 [ 25CA230277CEFDEC6876D7871FAC7CCA, E0523E67BC102968DA19380366A43C2E6C719BB988ADB6127F0C8FC5B071DF2E ] cmdhlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
21:38:27.0156 0x1178 cmdhlp - ok
21:38:27.0227 0x1178 [ BB82B9D06353F78E4F1DDF04A25F1CC7, 55FD0B3C8187B65C75488B8D86A48E5C47B620AA6426786B28DD21BE9728A6AE ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
21:38:27.0258 0x1178 cmdvirth - ok
21:38:27.0276 0x1178 [ 5CBF8B3E27D824D2AA2A34AFB406F1D0, 955AF1307C02D2B4DEEB150F37F77B8631C0F3C450037C233E9E27D6571B0265 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
21:38:27.0284 0x1178 CNG - ok
21:38:27.0289 0x1178 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
21:38:27.0290 0x1178 CompositeBus - ok
21:38:27.0293 0x1178 COMSysApp - ok
21:38:27.0296 0x1178 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
21:38:27.0297 0x1178 condrv - ok
21:38:27.0377 0x1178 [ 370CE1518F8AC94F045BD9F74BD21F63, 2B697B7801A5ED46992E530CD271C44C3450BA3E17165D41AC15AF8E72781DCB ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:38:27.0381 0x1178 cphs - ok
21:38:27.0389 0x1178 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
21:38:27.0391 0x1178 CryptSvc - ok
21:38:27.0397 0x1178 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys
21:38:27.0398 0x1178 dam - ok
21:38:27.0420 0x1178 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:38:27.0432 0x1178 DcomLaunch - ok
21:38:27.0445 0x1178 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
21:38:27.0453 0x1178 defragsvc - ok
21:38:27.0466 0x1178 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:38:27.0472 0x1178 DeviceAssociationService - ok
21:38:27.0477 0x1178 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
21:38:27.0480 0x1178 DeviceInstall - ok
21:38:27.0486 0x1178 [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
21:38:27.0488 0x1178 Dfsc - ok
21:38:27.0495 0x1178 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:38:27.0497 0x1178 dg_ssudbus - ok
21:38:27.0507 0x1178 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
21:38:27.0512 0x1178 Dhcp - ok
21:38:27.0562 0x1178 [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
21:38:27.0584 0x1178 DiagTrack - ok
21:38:27.0642 0x1178 [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\WINDOWS\system32\drivers\disk.sys
21:38:27.0644 0x1178 disk - ok
21:38:27.0649 0x1178 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
21:38:27.0649 0x1178 dmvsc - ok
21:38:27.0659 0x1178 [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:38:27.0664 0x1178 Dnscache - ok
21:38:27.0672 0x1178 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
21:38:27.0676 0x1178 dot3svc - ok
21:38:27.0684 0x1178 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
21:38:27.0687 0x1178 DPS - ok
21:38:27.0691 0x1178 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:38:27.0692 0x1178 drmkaud - ok
21:38:27.0700 0x1178 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
21:38:27.0704 0x1178 DsmSvc - ok
21:38:27.0763 0x1178 [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:38:27.0784 0x1178 DXGKrnl - ok
21:38:27.0789 0x1178 EagleX64 - ok
21:38:27.0796 0x1178 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
21:38:27.0799 0x1178 Eaphost - ok
21:38:27.0870 0x1178 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
21:38:27.0918 0x1178 ebdrv - ok
21:38:27.0986 0x1178 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
21:38:27.0988 0x1178 EFS - ok
21:38:27.0994 0x1178 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
21:38:27.0995 0x1178 EhStorClass - ok
21:38:28.0001 0x1178 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:38:28.0003 0x1178 EhStorTcgDrv - ok
21:38:28.0008 0x1178 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
21:38:28.0008 0x1178 ErrDev - ok
21:38:28.0042 0x1178 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
21:38:28.0050 0x1178 EventSystem - ok
21:38:28.0070 0x1178 [ 5C19A94C43B7490EC9217ADE4506972D, 8B2BCEC92FD71B9549EF34DDAE0A87BB96B6FB23CB2000EA9508C8375C208E85 ] EvtEng c:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:38:28.0079 0x1178 EvtEng - ok
21:38:28.0087 0x1178 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
21:38:28.0090 0x1178 exfat - ok
21:38:28.0097 0x1178 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
21:38:28.0100 0x1178 fastfat - ok
21:38:28.0118 0x1178 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
21:38:28.0130 0x1178 Fax - ok
21:38:28.0135 0x1178 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
21:38:28.0136 0x1178 fdc - ok
21:38:28.0140 0x1178 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
21:38:28.0141 0x1178 fdPHost - ok
21:38:28.0146 0x1178 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
21:38:28.0148 0x1178 FDResPub - ok
21:38:28.0154 0x1178 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
21:38:28.0157 0x1178 fhsvc - ok
21:38:28.0163 0x1178 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
21:38:28.0165 0x1178 FileInfo - ok
21:38:28.0169 0x1178 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
21:38:28.0170 0x1178 Filetrace - ok
21:38:28.0175 0x1178 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
21:38:28.0176 0x1178 flpydisk - ok
21:38:28.0187 0x1178 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:38:28.0193 0x1178 FltMgr - ok
21:38:28.0251 0x1178 [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache C:\WINDOWS\system32\FntCache.dll
21:38:28.0270 0x1178 FontCache - ok
21:38:28.0284 0x1178 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:38:28.0285 0x1178 FontCache3.0.0.0 - ok
21:38:28.0290 0x1178 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
21:38:28.0291 0x1178 FsDepends - ok
21:38:28.0295 0x1178 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:38:28.0296 0x1178 Fs_Rec - ok
21:38:28.0311 0x1178 [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:38:28.0320 0x1178 fvevol - ok
21:38:28.0324 0x1178 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
21:38:28.0325 0x1178 FxPPM - ok
21:38:28.0329 0x1178 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
21:38:28.0331 0x1178 gagp30kx - ok
21:38:28.0341 0x1178 [ E6CE7A89183D1840F0FF63694292FFA2, 8907ADCF9967026CD1A9D545E2274569F840F1DFF0E407CC77B6A662267AAC4B ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
21:38:28.0345 0x1178 GamesAppIntegrationService - ok
21:38:28.0352 0x1178 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:38:28.0355 0x1178 GamesAppService - ok
21:38:28.0359 0x1178 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:38:28.0360 0x1178 GEARAspiWDM - ok
21:38:28.0364 0x1178 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
21:38:28.0365 0x1178 gencounter - ok
21:38:28.0371 0x1178 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:38:28.0374 0x1178 GPIOClx0101 - ok
21:38:28.0405 0x1178 [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
21:38:28.0425 0x1178 gpsvc - ok
21:38:28.0432 0x1178 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:38:28.0433 0x1178 gupdate - ok
21:38:28.0437 0x1178 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:38:28.0439 0x1178 gupdatem - ok
21:38:28.0468 0x1178 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
21:38:28.0474 0x1178 HdAudAddService - ok
21:38:28.0480 0x1178 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
21:38:28.0481 0x1178 HDAudBus - ok
21:38:28.0486 0x1178 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
21:38:28.0486 0x1178 HidBatt - ok
21:38:28.0492 0x1178 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
21:38:28.0494 0x1178 HidBth - ok
21:38:28.0499 0x1178 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
21:38:28.0500 0x1178 hidi2c - ok
21:38:28.0504 0x1178 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
21:38:28.0505 0x1178 HidIr - ok
21:38:28.0508 0x1178 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
21:38:28.0510 0x1178 hidserv - ok
21:38:28.0516 0x1178 [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
21:38:28.0517 0x1178 HidUsb - ok
21:38:28.0522 0x1178 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
21:38:28.0524 0x1178 hkmsvc - ok
21:38:28.0533 0x1178 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:38:28.0537 0x1178 HomeGroupListener - ok
21:38:28.0550 0x1178 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:38:28.0557 0x1178 HomeGroupProvider - ok
21:38:28.0561 0x1178 [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
21:38:28.0562 0x1178 hpdskflt - ok
21:38:28.0602 0x1178 [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:38:28.0617 0x1178 hpqwmiex - ok
21:38:28.0622 0x1178 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
21:38:28.0624 0x1178 HpSAMD - ok
21:38:28.0628 0x1178 [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv C:\WINDOWS\system32\Hpservice.exe
21:38:28.0629 0x1178 hpsrv - ok
21:38:28.0633 0x1178 [ 02F1253476B7F5F818364443DFED3264, 645F51A6781E9DEB381694718EDEF38B02F5345ADCE8860EC2D9483F7C1C7CC2 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
21:38:28.0634 0x1178 HPSupportSolutionsFrameworkService - ok
21:38:28.0650 0x1178 [ 316CE4F4D31F105534DA16B83F6A44C1, 6CD64E9E1EE8101BB4858C27AD70F0F7FEB65932ADDC7A01331472835085FFD0 ] HPWMISVC c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
21:38:28.0658 0x1178 HPWMISVC - ok
21:38:28.0681 0x1178 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
21:38:28.0695 0x1178 HTTP - ok
21:38:28.0699 0x1178 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
21:38:28.0700 0x1178 hwpolicy - ok
21:38:28.0703 0x1178 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
21:38:28.0704 0x1178 hyperkbd - ok
21:38:28.0707 0x1178 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:38:28.0708 0x1178 HyperVideo - ok
21:38:28.0714 0x1178 [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
21:38:28.0716 0x1178 i8042prt - ok
21:38:28.0721 0x1178 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:38:28.0722 0x1178 iaLPSSi_GPIO - ok
21:38:28.0727 0x1178 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:38:28.0729 0x1178 iaLPSSi_I2C - ok
21:38:28.0745 0x1178 [ 4558F084BCB7EFA3E8321C95B4EE736F, 4E088E1A9F9CE9F3FCA9CA2954CA7969135D4A42F632E495070FBAC4051148C2 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
21:38:28.0754 0x1178 iaStorA - ok
21:38:28.0772 0x1178 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
21:38:28.0782 0x1178 iaStorAV - ok
21:38:28.0787 0x1178 [ 3FE5F886F28B78FCED4BD5668902B7FC, 500BF5292051C3E447E94CAE3638D68CEDC2775587787E4DE38D6BCD34160B36 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:38:28.0787 0x1178 IAStorDataMgrSvc - ok
21:38:28.0799 0x1178 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
21:38:28.0804 0x1178 iaStorV - ok
21:38:28.0815 0x1178 [ CF252052BDAA2260EA1441A6E3DBD2F8, 35197DB5CCCFA728B31E40C6F3F027D5E22D771A00FF5D2660D06A69FC6A8807 ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
21:38:28.0818 0x1178 ibtusb - ok
21:38:28.0825 0x1178 IEEtwCollectorService - ok
21:38:28.0932 0x1178 [ 623DB9620F552B480690AD882AFACED1, F44039122CF6001CB40A4032D3C108D9A83F06FC700A5B47D83EF605F83C9D2F ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
21:38:28.0983 0x1178 igfx - ok
21:38:28.0996 0x1178 [ E766B747824DA1FD97F0DDD8653CB5F4, 1FEFAEB2E672488BAAB9532E3DB368B41C3B200C525ADC3E4DB9E9FF0BC798FC ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:38:29.0001 0x1178 igfxCUIService1.0.0.0 - ok
21:38:29.0005 0x1178 [ E71AC94964ED675B3ED0727059B7F97B, 5468B5E9B75B10EA0BFBD81827FFC9CABFC69A4065CC5A5792DBC289D4DA27EE ] ikbevent C:\WINDOWS\system32\DRIVERS\ikbevent.sys
21:38:29.0006 0x1178 ikbevent - ok
21:38:29.0030 0x1178 [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT C:\WINDOWS\System32\ikeext.dll
21:38:29.0046 0x1178 IKEEXT - ok
21:38:29.0051 0x1178 [ 2FDB67F5B9F4E96B40FDC9D1AA0B686F, B556328D54F886792A89588F3FEFE38F7129E3D7A417CDC012778FA4EF37A8C1 ] imsevent C:\WINDOWS\system32\DRIVERS\imsevent.sys
21:38:29.0051 0x1178 imsevent - ok
21:38:29.0058 0x1178 [ 3F2BB021CB280880F8C1B7A6FEF9B447, CEC0BF9D6C9CF6E6A9F9B4E656BD47208AC977EDDC11C1C3BCD07EB50BABC017 ] INETMON C:\Windows\System32\Drivers\INETMON.sys
21:38:29.0058 0x1178 INETMON - ok
21:38:29.0064 0x1178 [ BCB10E24BA8130E92E82CBC109B91FD9, 4FDF9588D9DCFE56DF58CD2A0D9EF6F3CD5E642C08707E83FE0402018B04A5BA ] inspect C:\WINDOWS\system32\DRIVERS\inspect.sys
21:38:29.0066 0x1178 inspect - ok
21:38:29.0070 0x1178 [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
21:38:29.0071 0x1178 intaud_WaveExtensible - ok
21:38:29.0185 0x1178 [ 0ED561B13EFE36080760981616107D15, 2FB78BC7825E29A9E216061EC9E4196612B86C6ED5ADB48AA3EBBB8C0E2CCCFF ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:38:29.0245 0x1178 IntcAzAudAddService - ok
21:38:29.0266 0x1178 [ 890144FA6AB42F2B54EE633BF96A019A, 8741904C66170BA11C78D31681E3759537C0BF2338538678BC64234DB8FDE93F ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
21:38:29.0273 0x1178 IntcDAud - ok
21:38:29.0296 0x1178 [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:38:29.0307 0x1178 Intel(R) Capability Licensing Service Interface - ok
21:38:29.0327 0x1178 [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:38:29.0339 0x1178 Intel(R) Capability Licensing Service TCP IP Interface - ok
21:38:29.0347 0x1178 [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
21:38:29.0349 0x1178 Intel(R) ME Service - ok
21:38:29.0356 0x1178 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
21:38:29.0356 0x1178 intelide - ok
21:38:29.0362 0x1178 [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
21:38:29.0362 0x1178 intelpep - ok
21:38:29.0370 0x1178 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
21:38:29.0372 0x1178 intelppm - ok
21:38:29.0376 0x1178 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:38:29.0377 0x1178 IpFilterDriver - ok
21:38:29.0400 0x1178 [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
21:38:29.0414 0x1178 iphlpsvc - ok
21:38:29.0421 0x1178 [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:38:29.0423 0x1178 IPMIDRV - ok
21:38:29.0428 0x1178 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
21:38:29.0431 0x1178 IPNAT - ok
21:38:29.0466 0x1178 [ 17EE7DFC68F1656A00A686DF2FB67E09, 759B66F7C9169B8728ECE9D4800DF218B303CEA4D69DDE20239B7C13EDB1DB65 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:38:29.0475 0x1178 iPod Service - ok
21:38:29.0479 0x1178 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
21:38:29.0480 0x1178 IRENUM - ok
21:38:29.0483 0x1178 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
21:38:29.0484 0x1178 isapnp - ok
21:38:29.0494 0x1178 [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
21:38:29.0498 0x1178 iScsiPrt - ok
21:38:29.0503 0x1178 [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT C:\WINDOWS\System32\drivers\ISCTD64.sys
21:38:29.0504 0x1178 ISCT - ok
21:38:29.0512 0x1178 [ 2A676B190889ACEDF3AA8D64C269F8AF, 7830536B86BC4233AD4EDD30B6CDEFDCA3969BD53B970BAA6ADCE9C3B88B8593 ] ISCTAgent C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
21:38:29.0515 0x1178 ISCTAgent - ok
21:38:29.0519 0x1178 [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
21:38:29.0520 0x1178 iwdbus - ok
21:38:29.0526 0x1178 [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:38:29.0529 0x1178 jhi_service - ok
21:38:29.0534 0x1178 [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
21:38:29.0535 0x1178 kbdclass - ok
21:38:29.0539 0x1178 [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
21:38:29.0540 0x1178 kbdhid - ok
21:38:29.0544 0x1178 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
21:38:29.0544 0x1178 kdnic - ok
21:38:29.0548 0x1178 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
21:38:29.0550 0x1178 KeyIso - ok
21:38:29.0555 0x1178 [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
21:38:29.0559 0x1178 KSecDD - ok
21:38:29.0567 0x1178 [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:38:29.0570 0x1178 KSecPkg - ok
21:38:29.0574 0x1178 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
21:38:29.0574 0x1178 ksthunk - ok
21:38:29.0585 0x1178 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
21:38:29.0592 0x1178 KtmRm - ok
21:38:29.0607 0x1178 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
21:38:29.0615 0x1178 LanmanServer - ok
21:38:29.0625 0x1178 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:38:29.0631 0x1178 LanmanWorkstation - ok
21:38:29.0647 0x1178 [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
21:38:29.0659 0x1178 lfsvc - ok
21:38:29.0664 0x1178 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
21:38:29.0665 0x1178 lltdio - ok
21:38:29.0675 0x1178 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
21:38:29.0680 0x1178 lltdsvc - ok
21:38:29.0685 0x1178 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
21:38:29.0687 0x1178 lmhosts - ok
21:38:29.0698 0x1178 [ E2952760B05A256FB1412D20A41C89C1, B5AF47DF90D5DC8E6549DE1AFF897669E8200D08083D43DF86E34F6EE19C59DA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:38:29.0704 0x1178 LMS - ok
21:38:29.0710 0x1178 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
21:38:29.0712 0x1178 LSI_SAS - ok
21:38:29.0717 0x1178 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
21:38:29.0719 0x1178 LSI_SAS2 - ok
21:38:29.0724 0x1178 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
21:38:29.0725 0x1178 LSI_SAS3 - ok
21:38:29.0731 0x1178 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
21:38:29.0732 0x1178 LSI_SSS - ok
21:38:29.0751 0x1178 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
21:38:29.0763 0x1178 LSM - ok
21:38:29.0770 0x1178 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
21:38:29.0772 0x1178 luafv - ok
21:38:29.0778 0x1178 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
21:38:29.0779 0x1178 megasas - ok
21:38:29.0795 0x1178 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
21:38:29.0803 0x1178 megasr - ok
21:38:29.0809 0x1178 [ EB1D78140D6634C32A46AB1006105EDC, 586F988A7272A7E3F6AA2CC9A001A08A3D178A011AE8C095BB7EAD9FFB45AAB1 ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
21:38:29.0810 0x1178 MEIx64 - ok
21:38:29.0815 0x1178 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
21:38:29.0817 0x1178 MMCSS - ok
21:38:29.0821 0x1178 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
21:38:29.0822 0x1178 Modem - ok
21:38:29.0826 0x1178 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
21:38:29.0827 0x1178 monitor - ok
21:38:29.0832 0x1178 [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
21:38:29.0834 0x1178 mouclass - ok
21:38:29.0838 0x1178 [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
21:38:29.0838 0x1178 mouhid - ok
21:38:29.0844 0x1178 [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
21:38:29.0845 0x1178 mountmgr - ok
21:38:29.0850 0x1178 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
21:38:29.0851 0x1178 mpsdrv - ok
21:38:29.0873 0x1178 [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
21:38:29.0886 0x1178 MpsSvc - ok
21:38:29.0894 0x1178 [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
21:38:29.0897 0x1178 MRxDAV - ok
21:38:29.0908 0x1178 [ 3AF30CEB99E581E2FADA0B5FC4B551D8, 59BDE83C10D6F31E13B81FC317F1DE0E00793FBA288EAF844E29CFA0EB184502 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:38:29.0914 0x1178 mrxsmb - ok
21:38:29.0944 0x1178 [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:38:29.0948 0x1178 mrxsmb10 - ok
21:38:29.0956 0x1178 [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:38:29.0959 0x1178 mrxsmb20 - ok
21:38:29.0965 0x1178 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
21:38:29.0967 0x1178 MsBridge - ok
21:38:29.0974 0x1178 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
21:38:29.0977 0x1178 MSDTC - ok
21:38:29.0983 0x1178 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:38:29.0984 0x1178 Msfs - ok
21:38:29.0988 0x1178 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:38:29.0989 0x1178 msgpiowin32 - ok
21:38:29.0992 0x1178 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:38:29.0992 0x1178 mshidkmdf - ok
21:38:29.0996 0x1178 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
21:38:29.0996 0x1178 mshidumdf - ok
21:38:30.0001 0x1178 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
21:38:30.0001 0x1178 msisadrv - ok
21:38:30.0008 0x1178 [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
21:38:30.0010 0x1178 MSiSCSI - ok
21:38:30.0013 0x1178 msiserver - ok
21:38:30.0017 0x1178 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:38:30.0018 0x1178 MSKSSRV - ok
21:38:30.0021 0x1178 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
21:38:30.0023 0x1178 MsLldp - ok
21:38:30.0027 0x1178 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:38:30.0027 0x1178 MSPCLOCK - ok
21:38:30.0030 0x1178 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:38:30.0031 0x1178 MSPQM - ok
21:38:30.0041 0x1178 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
21:38:30.0046 0x1178 MsRPC - ok
21:38:30.0051 0x1178 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
21:38:30.0053 0x1178 mssmbios - ok
21:38:30.0056 0x1178 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:38:30.0056 0x1178 MSTEE - ok
21:38:30.0059 0x1178 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
21:38:30.0060 0x1178 MTConfig - ok
21:38:30.0066 0x1178 [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup C:\WINDOWS\system32\Drivers\mup.sys
21:38:30.0067 0x1178 Mup - ok
21:38:30.0071 0x1178 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
21:38:30.0073 0x1178 mvumis - ok
21:38:30.0081 0x1178 [ 4F64EC3699FE208CD4A7A5CD1D53C0D9, D8BE69AA320BB9697B4E3FBB49B15CD99448C83AF45A9170DECA51B441F70E30 ] MyWiFiDHCPDNS c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:38:30.0085 0x1178 MyWiFiDHCPDNS - ok
21:38:30.0098 0x1178 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
21:38:30.0105 0x1178 napagent - ok
21:38:30.0106 0x1178 Scan was interrupted by user!
21:38:30.0106 0x1178 Waiting for KSN requests completion. In queue: 215
21:38:31.0117 0x1178 AV detected via SS2: COMODO Antivirus, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61000 ( enabled : updated )
21:38:31.0152 0x1178 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
21:38:31.0153 0x1178 FW detected via SS2: COMODO Firewall, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61010 ( enabled )
21:38:31.0274 0x1178 ============================================================
21:38:31.0274 0x1178 Scan finished
21:38:31.0274 0x1178 ============================================================
21:38:31.0276 0x1444 Detected object count: 0
21:38:31.0277 0x1444 Actual detected object count: 0
21:38:45.0700 0x1c08 ============================================================
21:38:45.0700 0x1c08 Scan started
21:38:45.0700 0x1c08 Mode: Manual; SigCheck; TDLFS;
21:38:45.0700 0x1c08 ============================================================
21:38:45.0700 0x1c08 KSN ping started
21:38:45.0760 0x1c08 KSN ping finished: true
21:38:46.0325 0x1c08 ================ Scan system memory ========================
21:38:46.0325 0x1c08 System memory - ok
21:38:46.0325 0x1c08 ================ Scan services =============================
21:38:46.0461 0x1c08 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
21:38:46.0557 0x1c08 1394ohci - ok
21:38:46.0565 0x1c08 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
21:38:46.0573 0x1c08 3ware - ok
21:38:46.0579 0x1c08 [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
21:38:46.0585 0x1c08 Accelerometer - ok
21:38:46.0607 0x1c08 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
21:38:46.0626 0x1c08 ACPI - ok
21:38:46.0634 0x1c08 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
21:38:46.0644 0x1c08 acpiex - ok
21:38:46.0648 0x1c08 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
21:38:46.0672 0x1c08 acpipagr - ok
21:38:46.0679 0x1c08 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
21:38:46.0740 0x1c08 AcpiPmi - ok
21:38:46.0748 0x1c08 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
21:38:46.0783 0x1c08 acpitime - ok
21:38:46.0803 0x1c08 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:38:46.0828 0x1c08 ADP80XX - ok
21:38:46.0838 0x1c08 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
21:38:46.0863 0x1c08 AeLookupSvc - ok
21:38:46.0880 0x1c08 [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
21:38:46.0950 0x1c08 AFD - ok
21:38:46.0959 0x1c08 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
21:38:46.0969 0x1c08 agp440 - ok
21:38:46.0978 0x1c08 [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:38:47.0012 0x1c08 ahcache - ok
21:38:47.0019 0x1c08 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
21:38:47.0078 0x1c08 ALG - ok
21:38:47.0086 0x1c08 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
21:38:47.0144 0x1c08 AmdK8 - ok
21:38:47.0150 0x1c08 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
21:38:47.0174 0x1c08 AmdPPM - ok
21:38:47.0179 0x1c08 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
21:38:47.0187 0x1c08 amdsata - ok
21:38:47.0198 0x1c08 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
21:38:47.0215 0x1c08 amdsbs - ok
21:38:47.0221 0x1c08 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
21:38:47.0230 0x1c08 amdxata - ok
21:38:47.0236 0x1c08 [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:38:47.0285 0x1c08 AppHostSvc - ok
21:38:47.0296 0x1c08 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
21:38:47.0344 0x1c08 AppID - ok
21:38:47.0348 0x1c08 [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
21:38:47.0371 0x1c08 AppIDSvc - ok
21:38:47.0377 0x1c08 [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\WINDOWS\System32\appinfo.dll
21:38:47.0421 0x1c08 Appinfo - ok
21:38:47.0432 0x1c08 [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:38:47.0439 0x1c08 Apple Mobile Device Service - ok
21:38:47.0453 0x1c08 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
21:38:47.0497 0x1c08 AppReadiness - ok
21:38:47.0532 0x1c08 [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
21:38:47.0590 0x1c08 AppXSvc - ok
21:38:47.0599 0x1c08 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
21:38:47.0612 0x1c08 arcsas - ok
21:38:47.0659 0x1c08 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:38:47.0667 0x1c08 aspnet_state - ok
21:38:47.0675 0x1c08 [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:38:47.0731 0x1c08 AsyncMac - ok
21:38:47.0735 0x1c08 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
21:38:47.0742 0x1c08 atapi - ok
21:38:47.0751 0x1c08 [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:38:47.0808 0x1c08 AudioEndpointBuilder - ok
21:38:47.0829 0x1c08 [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
21:38:47.0870 0x1c08 Audiosrv - ok
21:38:47.0877 0x1c08 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
21:38:47.0912 0x1c08 AxInstSV - ok
21:38:47.0930 0x1c08 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
21:38:47.0952 0x1c08 b06bdrv - ok
21:38:47.0962 0x1c08 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:38:48.0010 0x1c08 BasicDisplay - ok
21:38:48.0014 0x1c08 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
21:38:48.0053 0x1c08 BasicRender - ok
21:38:48.0057 0x1c08 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
21:38:48.0072 0x1c08 bcmfn2 - ok
21:38:48.0082 0x1c08 [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC C:\WINDOWS\System32\bdesvc.dll
21:38:48.0126 0x1c08 BDESVC - ok
21:38:48.0130 0x1c08 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:38:48.0168 0x1c08 Beep - ok
21:38:48.0189 0x1c08 [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\WINDOWS\System32\bfe.dll
21:38:48.0257 0x1c08 BFE - ok
21:38:48.0289 0x1c08 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
21:38:48.0349 0x1c08 BITS - ok
21:38:48.0363 0x1c08 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:38:48.0374 0x1c08 Bonjour Service - ok
21:38:48.0381 0x1c08 [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
21:38:48.0402 0x1c08 bowser - ok
21:38:48.0418 0x1c08 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:38:48.0471 0x1c08 BrokerInfrastructure - ok
21:38:48.0477 0x1c08 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
21:38:48.0532 0x1c08 Browser - ok
21:38:48.0552 0x1c08 [ F702AFA6B13BB143757AEFAE423B6865, 65FDFD3C642D81EE95CBC68D6BA4FD69EF6A83F9AF7948DC993C783DF1AA8772 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:38:48.0568 0x1c08 BstHdAndroidSvc - ok
21:38:48.0575 0x1c08 [ 464D771701C5413C1EDD504D745698F0, C82B9F9C621654914F980EC9DA5879703014066E93CC7D21B9B241E0D16FA325 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:38:48.0586 0x1c08 BstHdDrv - ok
21:38:48.0598 0x1c08 [ 202A388A6CC6D1A00CBB6E3EAEAA2B89, 588AB5DA62C98E8B3B332043BFCC03A8286FBF4E2C2181E4C9295B247BE75DD8 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:38:48.0615 0x1c08 BstHdLogRotatorSvc - ok
21:38:48.0641 0x1c08 [ 250FB3DBCB2E4E538EA466ABF48859E7, A9C839CB675DABDB71571E60BC69C1C027F129FABA821454C1BBF5B4A7CC9725 ] BstHdUpdaterSvc C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
21:38:48.0662 0x1c08 BstHdUpdaterSvc - ok
21:38:48.0667 0x1c08 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:38:48.0703 0x1c08 BthAvrcpTg - ok
21:38:48.0708 0x1c08 [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
21:38:48.0749 0x1c08 BthEnum - ok
21:38:48.0754 0x1c08 [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
21:38:48.0788 0x1c08 BthHFEnum - ok
21:38:48.0792 0x1c08 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
21:38:48.0817 0x1c08 bthhfhid - ok
21:38:48.0829 0x1c08 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
21:38:48.0852 0x1c08 BthHFSrv - ok
21:38:48.0863 0x1c08 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
21:38:48.0895 0x1c08 BthLEEnum - ok
21:38:48.0901 0x1c08 [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
21:38:48.0920 0x1c08 BTHMODEM - ok
21:38:48.0928 0x1c08 [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
21:38:48.0972 0x1c08 BthPan - ok
21:38:49.0013 0x1c08 [ 0CC00ADC1B84C93FB46E1A0974E956E1, 64C759244651B916901F4D0C82C3D6034532A20714A72FD26FC9D050B99E230B ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
21:38:49.0041 0x1c08 BTHPORT - ok
21:38:49.0048 0x1c08 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
21:38:49.0088 0x1c08 bthserv - ok
21:38:49.0093 0x1c08 [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
21:38:49.0131 0x1c08 BTHUSB - ok
21:38:49.0136 0x1c08 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:38:49.0175 0x1c08 cdfs - ok
21:38:49.0182 0x1c08 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
21:38:49.0205 0x1c08 cdrom - ok
21:38:49.0213 0x1c08 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
21:38:49.0240 0x1c08 CertPropSvc - ok
21:38:49.0247 0x1c08 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
21:38:49.0269 0x1c08 circlass - ok
21:38:49.0284 0x1c08 [ 28D94419E856D61D7686ED942611D15E, AC9ED48AA09B09B854512B35E905C8C4C451B34F59951661367392AF64E8ADE7 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
21:38:49.0305 0x1c08 CLFS - ok
21:38:49.0320 0x1c08 [ 424F3A5D9AAC65B50DBEB4B1CA91F051, E2DD6C25E4B23B834A54A24548D857D118A2222DC80CFEDE176030206C0E52A2 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
21:38:49.0329 0x1c08 CLVirtualDrive - ok
21:38:49.0334 0x1c08 [ 9731DAFDC7B690B2C7752FDFF045BFD8, 9DDBDC4FE519AF38993EAB2F16602B2B71CF8675BDD1F651F22DFA8C5C2C80F7 ] clwvd C:\WINDOWS\system32\DRIVERS\clwvd.sys
21:38:49.0339 0x1c08 clwvd - ok
21:38:49.0344 0x1c08 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
21:38:49.0365 0x1c08 CmBatt - ok
21:38:49.0512 0x1c08 [ C206F35A1D0B32B6A65BE2B5D7049B84, BAFE47BE23CB99EE93FAA311B57222E0D7A2B086C0941691995AE3100C52ED6E ] CmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
21:38:49.0628 0x1c08 CmdAgent - ok
21:38:49.0641 0x1c08 [ 71164DBB8653DA47EAE327C9F5CD9C89, 5D625F1BE7DAAA532FF2D724E67C92D58E9117736F08C75CCA79244671B03979 ] cmderd C:\WINDOWS\system32\DRIVERS\cmderd.sys
21:38:49.0648 0x1c08 cmderd - ok
21:38:49.0675 0x1c08 [ 56BBC037D128C2599924C8F5AE9CB771, 99100DAC33325285F7AC57B7CFD4AA93A1A94E4A612C5B553E772C26DD765B29 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys
21:38:49.0697 0x1c08 cmdGuard - ok
21:38:49.0702 0x1c08 [ 25CA230277CEFDEC6876D7871FAC7CCA, E0523E67BC102968DA19380366A43C2E6C719BB988ADB6127F0C8FC5B071DF2E ] cmdhlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
21:38:49.0709 0x1c08 cmdhlp - ok
21:38:49.0781 0x1c08 [ BB82B9D06353F78E4F1DDF04A25F1CC7, 55FD0B3C8187B65C75488B8D86A48E5C47B620AA6426786B28DD21BE9728A6AE ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
21:38:49.0828 0x1c08 cmdvirth - ok
21:38:49.0849 0x1c08 [ 5CBF8B3E27D824D2AA2A34AFB406F1D0, 955AF1307C02D2B4DEEB150F37F77B8631C0F3C450037C233E9E27D6571B0265 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
21:38:49.0871 0x1c08 CNG - ok
21:38:49.0879 0x1c08 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
21:38:49.0894 0x1c08 CompositeBus - ok
21:38:49.0898 0x1c08 COMSysApp - ok
21:38:49.0903 0x1c08 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
21:38:49.0946 0x1c08 condrv - ok
21:38:50.0031 0x1c08 [ 370CE1518F8AC94F045BD9F74BD21F63, 2B697B7801A5ED46992E530CD271C44C3450BA3E17165D41AC15AF8E72781DCB ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:38:50.0043 0x1c08 cphs - ok
21:38:50.0050 0x1c08 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
21:38:50.0091 0x1c08 CryptSvc - ok
21:38:50.0097 0x1c08 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys
21:38:50.0105 0x1c08 dam - ok
21:38:50.0126 0x1c08 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:38:50.0187 0x1c08 DcomLaunch - ok
21:38:50.0204 0x1c08 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
21:38:50.0245 0x1c08 defragsvc - ok
21:38:50.0258 0x1c08 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:38:50.0295 0x1c08 DeviceAssociationService - ok
21:38:50.0301 0x1c08 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
21:38:50.0342 0x1c08 DeviceInstall - ok
21:38:50.0348 0x1c08 [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
21:38:50.0383 0x1c08 Dfsc - ok
21:38:50.0389 0x1c08 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:38:50.0396 0x1c08 dg_ssudbus - ok
21:38:50.0407 0x1c08 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
21:38:50.0441 0x1c08 Dhcp - ok
21:38:50.0493 0x1c08 [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
21:38:50.0559 0x1c08 DiagTrack - ok
21:38:50.0568 0x1c08 [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\WINDOWS\system32\drivers\disk.sys
21:38:50.0577 0x1c08 disk - ok
21:38:50.0581 0x1c08 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
21:38:50.0624 0x1c08 dmvsc - ok
21:38:50.0633 0x1c08 [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:38:50.0692 0x1c08 Dnscache - ok
21:38:50.0700 0x1c08 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
21:38:50.0739 0x1c08 dot3svc - ok
21:38:50.0745 0x1c08 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
21:38:50.0776 0x1c08 DPS - ok
21:38:50.0780 0x1c08 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:38:50.0789 0x1c08 drmkaud - ok
21:38:50.0798 0x1c08 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
21:38:50.0821 0x1c08 DsmSvc - ok
21:38:50.0871 0x1c08 [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:38:50.0910 0x1c08 DXGKrnl - ok
21:38:50.0916 0x1c08 EagleX64 - ok
21:38:50.0922 0x1c08 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
21:38:50.0947 0x1c08 Eaphost - ok
21:38:51.0019 0x1c08 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
21:38:51.0120 0x1c08 ebdrv - ok
21:38:51.0146 0x1c08 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
21:38:51.0155 0x1c08 EFS - ok
21:38:51.0160 0x1c08 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
21:38:51.0169 0x1c08 EhStorClass - ok
21:38:51.0175 0x1c08 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:38:51.0188 0x1c08 EhStorTcgDrv - ok
21:38:51.0192 0x1c08 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
21:38:51.0218 0x1c08 ErrDev - ok
21:38:51.0235 0x1c08 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
21:38:51.0277 0x1c08 EventSystem - ok
21:38:51.0299 0x1c08 [ 5C19A94C43B7490EC9217ADE4506972D, 8B2BCEC92FD71B9549EF34DDAE0A87BB96B6FB23CB2000EA9508C8375C208E85 ] EvtEng c:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:38:51.0316 0x1c08 EvtEng - ok
21:38:51.0324 0x1c08 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
21:38:51.0376 0x1c08 exfat - ok
21:38:51.0384 0x1c08 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
21:38:51.0397 0x1c08 fastfat - ok
21:38:51.0415 0x1c08 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
21:38:51.0464 0x1c08 Fax - ok
21:38:51.0469 0x1c08 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
21:38:51.0494 0x1c08 fdc - ok
21:38:51.0498 0x1c08 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
21:38:51.0522 0x1c08 fdPHost - ok
21:38:51.0526 0x1c08 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
21:38:51.0577 0x1c08 FDResPub - ok
21:38:51.0643 0x1c08 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
21:38:51.0711 0x1c08 fhsvc - ok
21:38:51.0717 0x1c08 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
21:38:51.0728 0x1c08 FileInfo - ok
21:38:51.0732 0x1c08 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
21:38:51.0757 0x1c08 Filetrace - ok
21:38:51.0761 0x1c08 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
21:38:51.0778 0x1c08 flpydisk - ok
21:38:51.0790 0x1c08 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:38:51.0810 0x1c08 FltMgr - ok
21:38:51.0863 0x1c08 [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache C:\WINDOWS\system32\FntCache.dll
21:38:51.0945 0x1c08 FontCache - ok
21:38:51.0954 0x1c08 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:38:51.0962 0x1c08 FontCache3.0.0.0 - ok
21:38:51.0968 0x1c08 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
21:38:51.0981 0x1c08 FsDepends - ok
21:38:51.0986 0x1c08 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:38:51.0996 0x1c08 Fs_Rec - ok
21:38:52.0015 0x1c08 [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:38:52.0036 0x1c08 fvevol - ok
21:38:52.0041 0x1c08 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
21:38:52.0052 0x1c08 FxPPM - ok
21:38:52.0057 0x1c08 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
21:38:52.0065 0x1c08 gagp30kx - ok
21:38:52.0076 0x1c08 [ E6CE7A89183D1840F0FF63694292FFA2, 8907ADCF9967026CD1A9D545E2274569F840F1DFF0E407CC77B6A662267AAC4B ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
21:38:52.0089 0x1c08 GamesAppIntegrationService - ok
21:38:52.0096 0x1c08 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:38:52.0105 0x1c08 GamesAppService - ok
21:38:52.0110 0x1c08 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:38:52.0118 0x1c08 GEARAspiWDM - ok
21:38:52.0122 0x1c08 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
21:38:52.0147 0x1c08 gencounter - ok
21:38:52.0158 0x1c08 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:38:52.0169 0x1c08 GPIOClx0101 - ok
21:38:52.0204 0x1c08 [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
21:38:52.0276 0x1c08 gpsvc - ok
21:38:52.0284 0x1c08 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:38:52.0291 0x1c08 gupdate - ok
21:38:52.0296 0x1c08 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:38:52.0304 0x1c08 gupdatem - ok
21:38:52.0330 0x1c08 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
21:38:52.0351 0x1c08 HdAudAddService - ok
21:38:52.0358 0x1c08 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
21:38:52.0419 0x1c08 HDAudBus - ok
21:38:52.0424 0x1c08 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
21:38:52.0448 0x1c08 HidBatt - ok
21:38:52.0455 0x1c08 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
21:38:52.0468 0x1c08 HidBth - ok
21:38:52.0473 0x1c08 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
21:38:52.0483 0x1c08 hidi2c - ok
21:38:52.0489 0x1c08 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
21:38:52.0514 0x1c08 HidIr - ok
21:38:52.0519 0x1c08 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
21:38:52.0547 0x1c08 hidserv - ok
21:38:52.0552 0x1c08 [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
21:38:52.0586 0x1c08 HidUsb - ok
21:38:52.0592 0x1c08 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
21:38:52.0639 0x1c08 hkmsvc - ok
21:38:52.0651 0x1c08 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:38:52.0699 0x1c08 HomeGroupListener - ok
21:38:52.0715 0x1c08 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:38:52.0753 0x1c08 HomeGroupProvider - ok
21:38:52.0763 0x1c08 [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
21:38:52.0767 0x1c08 hpdskflt - ok
21:38:52.0854 0x1c08 [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:38:52.0878 0x1c08 hpqwmiex - ok
21:38:52.0885 0x1c08 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
21:38:52.0894 0x1c08 HpSAMD - ok
21:38:52.0900 0x1c08 [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv C:\WINDOWS\system32\Hpservice.exe
21:38:52.0906 0x1c08 hpsrv - ok
21:38:52.0910 0x1c08 [ 02F1253476B7F5F818364443DFED3264, 645F51A6781E9DEB381694718EDEF38B02F5345ADCE8860EC2D9483F7C1C7CC2 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
21:38:52.0919 0x1c08 HPSupportSolutionsFrameworkService - ok
21:38:52.0935 0x1c08 [ 316CE4F4D31F105534DA16B83F6A44C1, 6CD64E9E1EE8101BB4858C27AD70F0F7FEB65932ADDC7A01331472835085FFD0 ] HPWMISVC c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
21:38:52.0951 0x1c08 HPWMISVC - ok
21:38:52.0980 0x1c08 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
21:38:53.0007 0x1c08 HTTP - ok
21:38:53.0013 0x1c08 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
21:38:53.0020 0x1c08 hwpolicy - ok
21:38:53.0026 0x1c08 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
21:38:53.0056 0x1c08 hyperkbd - ok
21:38:53.0061 0x1c08 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:38:53.0078 0x1c08 HyperVideo - ok
21:38:53.0087 0x1c08 [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
21:38:53.0135 0x1c08 i8042prt - ok
21:38:53.0141 0x1c08 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:38:53.0146 0x1c08 iaLPSSi_GPIO - ok
21:38:53.0152 0x1c08 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:38:53.0159 0x1c08 iaLPSSi_I2C - ok
21:38:53.0178 0x1c08 [ 4558F084BCB7EFA3E8321C95B4EE736F, 4E088E1A9F9CE9F3FCA9CA2954CA7969135D4A42F632E495070FBAC4051148C2 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
21:38:53.0195 0x1c08 iaStorA - ok
21:38:53.0216 0x1c08 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
21:38:53.0233 0x1c08 iaStorAV - ok
21:38:53.0240 0x1c08 [ 3FE5F886F28B78FCED4BD5668902B7FC, 500BF5292051C3E447E94CAE3638D68CEDC2775587787E4DE38D6BCD34160B36 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:38:53.0245 0x1c08 IAStorDataMgrSvc - ok
21:38:53.0257 0x1c08 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
21:38:53.0273 0x1c08 iaStorV - ok
21:38:53.0282 0x1c08 [ CF252052BDAA2260EA1441A6E3DBD2F8, 35197DB5CCCFA728B31E40C6F3F027D5E22D771A00FF5D2660D06A69FC6A8807 ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
21:38:53.0290 0x1c08 ibtusb - ok
21:38:53.0293 0x1c08 IEEtwCollectorService - ok
21:38:53.0409 0x1c08 [ 623DB9620F552B480690AD882AFACED1, F44039122CF6001CB40A4032D3C108D9A83F06FC700A5B47D83EF605F83C9D2F ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
21:38:53.0537 0x1c08 igfx - ok
21:38:53.0552 0x1c08 [ E766B747824DA1FD97F0DDD8653CB5F4, 1FEFAEB2E672488BAAB9532E3DB368B41C3B200C525ADC3E4DB9E9FF0BC798FC ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:38:53.0565 0x1c08 igfxCUIService1.0.0.0 - ok
21:38:53.0569 0x1c08 [ E71AC94964ED675B3ED0727059B7F97B, 5468B5E9B75B10EA0BFBD81827FFC9CABFC69A4065CC5A5792DBC289D4DA27EE ] ikbevent C:\WINDOWS\system32\DRIVERS\ikbevent.sys
21:38:53.0575 0x1c08 ikbevent - ok
21:38:53.0601 0x1c08 [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT C:\WINDOWS\System32\ikeext.dll
21:38:53.0641 0x1c08 IKEEXT - ok
21:38:53.0647 0x1c08 [ 2FDB67F5B9F4E96B40FDC9D1AA0B686F, B556328D54F886792A89588F3FEFE38F7129E3D7A417CDC012778FA4EF37A8C1 ] imsevent C:\WINDOWS\system32\DRIVERS\imsevent.sys
21:38:53.0654 0x1c08 imsevent - ok
21:38:53.0665 0x1c08 [ 3F2BB021CB280880F8C1B7A6FEF9B447, CEC0BF9D6C9CF6E6A9F9B4E656BD47208AC977EDDC11C1C3BCD07EB50BABC017 ] INETMON C:\Windows\System32\Drivers\INETMON.sys
21:38:53.0672 0x1c08 INETMON - ok
21:38:53.0680 0x1c08 [ BCB10E24BA8130E92E82CBC109B91FD9, 4FDF9588D9DCFE56DF58CD2A0D9EF6F3CD5E642C08707E83FE0402018B04A5BA ] inspect C:\WINDOWS\system32\DRIVERS\inspect.sys
21:38:53.0691 0x1c08 inspect - ok
21:38:53.0697 0x1c08 [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
21:38:53.0704 0x1c08 intaud_WaveExtensible - ok
21:38:53.0832 0x1c08 [ 0ED561B13EFE36080760981616107D15, 2FB78BC7825E29A9E216061EC9E4196612B86C6ED5ADB48AA3EBBB8C0E2CCCFF ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:38:53.0907 0x1c08 IntcAzAudAddService - ok
21:38:53.0924 0x1c08 [ 890144FA6AB42F2B54EE633BF96A019A, 8741904C66170BA11C78D31681E3759537C0BF2338538678BC64234DB8FDE93F ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
21:38:53.0936 0x1c08 IntcDAud - ok
21:38:53.0956 0x1c08 [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:38:53.0973 0x1c08 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
21:38:53.0973 0x1c08 Detect skipped due to KSN trusted
21:38:53.0973 0x1c08 Intel(R) Capability Licensing Service Interface - ok
21:38:53.0992 0x1c08 [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:38:54.0011 0x1c08 Intel(R) Capability Licensing Service TCP IP Interface - ok
21:38:54.0019 0x1c08 [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
21:38:54.0026 0x1c08 Intel(R) ME Service - ok
21:38:54.0030 0x1c08 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
21:38:54.0036 0x1c08 intelide - ok
21:38:54.0041 0x1c08 [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
21:38:54.0048 0x1c08 intelpep - ok
21:38:54.0053 0x1c08 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
21:38:54.0063 0x1c08 intelppm - ok
21:38:54.0069 0x1c08 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:38:54.0100 0x1c08 IpFilterDriver - ok
|
|
16.11.2016, 21:44
| #11 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter 21:38:54.0122 0x1c08 [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
21:38:54.0188 0x1c08 iphlpsvc - ok
21:38:54.0195 0x1c08 [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:38:54.0257 0x1c08 IPMIDRV - ok
21:38:54.0264 0x1c08 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
21:38:54.0313 0x1c08 IPNAT - ok
21:38:54.0340 0x1c08 [ 17EE7DFC68F1656A00A686DF2FB67E09, 759B66F7C9169B8728ECE9D4800DF218B303CEA4D69DDE20239B7C13EDB1DB65 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:38:54.0356 0x1c08 iPod Service - ok
21:38:54.0360 0x1c08 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
21:38:54.0379 0x1c08 IRENUM - ok
21:38:54.0383 0x1c08 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
21:38:54.0390 0x1c08 isapnp - ok
21:38:54.0399 0x1c08 [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
21:38:54.0410 0x1c08 iScsiPrt - ok
21:38:54.0415 0x1c08 [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT C:\WINDOWS\System32\drivers\ISCTD64.sys
21:38:54.0420 0x1c08 ISCT - ok
21:38:54.0429 0x1c08 [ 2A676B190889ACEDF3AA8D64C269F8AF, 7830536B86BC4233AD4EDD30B6CDEFDCA3969BD53B970BAA6ADCE9C3B88B8593 ] ISCTAgent C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
21:38:54.0437 0x1c08 ISCTAgent - ok
21:38:54.0441 0x1c08 [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
21:38:54.0446 0x1c08 iwdbus - ok
21:38:54.0452 0x1c08 [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:38:54.0459 0x1c08 jhi_service - ok
21:38:54.0464 0x1c08 [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
21:38:54.0472 0x1c08 kbdclass - ok
21:38:54.0478 0x1c08 [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
21:38:54.0495 0x1c08 kbdhid - ok
21:38:54.0499 0x1c08 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
21:38:54.0539 0x1c08 kdnic - ok
21:38:54.0544 0x1c08 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
21:38:54.0552 0x1c08 KeyIso - ok
21:38:54.0559 0x1c08 [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
21:38:54.0569 0x1c08 KSecDD - ok
21:38:54.0578 0x1c08 [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:38:54.0591 0x1c08 KSecPkg - ok
21:38:54.0595 0x1c08 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
21:38:54.0614 0x1c08 ksthunk - ok
21:38:54.0625 0x1c08 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
21:38:54.0650 0x1c08 KtmRm - ok
21:38:54.0660 0x1c08 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
21:38:54.0697 0x1c08 LanmanServer - ok
21:38:54.0707 0x1c08 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:38:54.0721 0x1c08 LanmanWorkstation - ok
21:38:54.0736 0x1c08 [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
21:38:54.0779 0x1c08 lfsvc - ok
21:38:54.0784 0x1c08 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
21:38:54.0794 0x1c08 lltdio - ok
21:38:54.0802 0x1c08 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
21:38:54.0817 0x1c08 lltdsvc - ok
21:38:54.0821 0x1c08 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
21:38:54.0853 0x1c08 lmhosts - ok
21:38:54.0864 0x1c08 [ E2952760B05A256FB1412D20A41C89C1, B5AF47DF90D5DC8E6549DE1AFF897669E8200D08083D43DF86E34F6EE19C59DA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:38:54.0875 0x1c08 LMS - ok
21:38:54.0882 0x1c08 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
21:38:54.0890 0x1c08 LSI_SAS - ok
21:38:54.0896 0x1c08 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
21:38:54.0904 0x1c08 LSI_SAS2 - ok
21:38:54.0909 0x1c08 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
21:38:54.0917 0x1c08 LSI_SAS3 - ok
21:38:54.0923 0x1c08 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
21:38:54.0930 0x1c08 LSI_SSS - ok
21:38:54.0949 0x1c08 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
21:38:54.0988 0x1c08 LSM - ok
21:38:54.0995 0x1c08 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
21:38:55.0033 0x1c08 luafv - ok
21:38:55.0038 0x1c08 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
21:38:55.0045 0x1c08 megasas - ok
21:38:55.0062 0x1c08 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
21:38:55.0080 0x1c08 megasr - ok
21:38:55.0086 0x1c08 [ EB1D78140D6634C32A46AB1006105EDC, 586F988A7272A7E3F6AA2CC9A001A08A3D178A011AE8C095BB7EAD9FFB45AAB1 ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
21:38:55.0094 0x1c08 MEIx64 - ok
21:38:55.0100 0x1c08 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
21:38:55.0140 0x1c08 MMCSS - ok
21:38:55.0145 0x1c08 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
21:38:55.0170 0x1c08 Modem - ok
21:38:55.0174 0x1c08 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
21:38:55.0205 0x1c08 monitor - ok
21:38:55.0211 0x1c08 [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
21:38:55.0220 0x1c08 mouclass - ok
21:38:55.0225 0x1c08 [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
21:38:55.0244 0x1c08 mouhid - ok
21:38:55.0249 0x1c08 [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
21:38:55.0258 0x1c08 mountmgr - ok
21:38:55.0263 0x1c08 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
21:38:55.0306 0x1c08 mpsdrv - ok
21:38:55.0327 0x1c08 [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
21:38:55.0378 0x1c08 MpsSvc - ok
21:38:55.0385 0x1c08 [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
21:38:55.0426 0x1c08 MRxDAV - ok
21:38:55.0451 0x1c08 [ 3AF30CEB99E581E2FADA0B5FC4B551D8, 59BDE83C10D6F31E13B81FC317F1DE0E00793FBA288EAF844E29CFA0EB184502 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:38:55.0575 0x1c08 mrxsmb - ok
21:38:55.0594 0x1c08 [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:38:55.0639 0x1c08 mrxsmb10 - ok
21:38:55.0647 0x1c08 [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:38:55.0668 0x1c08 mrxsmb20 - ok
21:38:55.0673 0x1c08 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
21:38:55.0688 0x1c08 MsBridge - ok
21:38:55.0694 0x1c08 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
21:38:55.0704 0x1c08 MSDTC - ok
21:38:55.0710 0x1c08 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:38:55.0724 0x1c08 Msfs - ok
21:38:55.0728 0x1c08 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:38:55.0736 0x1c08 msgpiowin32 - ok
21:38:55.0738 0x1c08 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:38:55.0756 0x1c08 mshidkmdf - ok
21:38:55.0759 0x1c08 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
21:38:55.0770 0x1c08 mshidumdf - ok
21:38:55.0774 0x1c08 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
21:38:55.0781 0x1c08 msisadrv - ok
21:38:55.0787 0x1c08 [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
21:38:55.0827 0x1c08 MSiSCSI - ok
21:38:55.0830 0x1c08 msiserver - ok
21:38:55.0835 0x1c08 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:38:55.0843 0x1c08 MSKSSRV - ok
21:38:55.0848 0x1c08 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
21:38:55.0882 0x1c08 MsLldp - ok
21:38:55.0886 0x1c08 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:38:55.0906 0x1c08 MSPCLOCK - ok
21:38:55.0909 0x1c08 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:38:55.0918 0x1c08 MSPQM - ok
21:38:55.0931 0x1c08 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
21:38:55.0949 0x1c08 MsRPC - ok
21:38:55.0956 0x1c08 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
21:38:55.0964 0x1c08 mssmbios - ok
21:38:55.0968 0x1c08 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:38:56.0007 0x1c08 MSTEE - ok
21:38:56.0010 0x1c08 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
21:38:56.0020 0x1c08 MTConfig - ok
21:38:56.0027 0x1c08 [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup C:\WINDOWS\system32\Drivers\mup.sys
21:38:56.0037 0x1c08 Mup - ok
21:38:56.0041 0x1c08 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
21:38:56.0049 0x1c08 mvumis - ok
21:38:56.0057 0x1c08 [ 4F64EC3699FE208CD4A7A5CD1D53C0D9, D8BE69AA320BB9697B4E3FBB49B15CD99448C83AF45A9170DECA51B441F70E30 ] MyWiFiDHCPDNS c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:38:56.0068 0x1c08 MyWiFiDHCPDNS - ok
21:38:56.0080 0x1c08 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
21:38:56.0107 0x1c08 napagent - ok
21:38:56.0120 0x1c08 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:38:56.0150 0x1c08 NativeWifiP - ok
21:38:56.0158 0x1c08 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
21:38:56.0198 0x1c08 NcaSvc - ok
21:38:56.0207 0x1c08 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
21:38:56.0237 0x1c08 NcbService - ok
21:38:56.0242 0x1c08 [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
21:38:56.0284 0x1c08 NcdAutoSetup - ok
21:38:56.0311 0x1c08 [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
21:38:56.0340 0x1c08 NDIS - ok
21:38:56.0346 0x1c08 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
21:38:56.0376 0x1c08 NdisCap - ok
21:38:56.0382 0x1c08 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
21:38:56.0404 0x1c08 NdisImPlatform - ok
21:38:56.0412 0x1c08 [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:38:56.0445 0x1c08 NdisTapi - ok
21:38:56.0450 0x1c08 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:38:56.0485 0x1c08 Ndisuio - ok
21:38:56.0489 0x1c08 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:38:56.0516 0x1c08 NdisVirtualBus - ok
21:38:56.0523 0x1c08 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:38:56.0551 0x1c08 NdisWan - ok
21:38:56.0556 0x1c08 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:38:56.0567 0x1c08 NdisWanLegacy - ok
21:38:56.0571 0x1c08 [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:38:56.0580 0x1c08 NDProxy - ok
21:38:56.0585 0x1c08 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
21:38:56.0610 0x1c08 Ndu - ok
21:38:56.0622 0x1c08 [ 3351A92971670764F014A566D1106E2B, EE93B719C5F38386A23CB81FD818EEEA7332FE5119646CE20ED4160B10F17534 ] Neo_VPN C:\WINDOWS\system32\DRIVERS\Neo_VPN.sys
21:38:56.0629 0x1c08 Neo_VPN - ok
21:38:56.0632 0x1c08 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\WINDOWS\system32\DRIVERS\netaapl64.sys
21:38:56.0672 0x1c08 Netaapl - ok
21:38:56.0682 0x1c08 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:38:56.0691 0x1c08 NetBIOS - ok
21:38:56.0702 0x1c08 [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:38:56.0731 0x1c08 NetBT - ok
21:38:56.0736 0x1c08 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
21:38:56.0745 0x1c08 Netlogon - ok
21:38:56.0755 0x1c08 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
21:38:56.0774 0x1c08 Netman - ok
21:38:56.0792 0x1c08 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
21:38:56.0813 0x1c08 netprofm - ok
21:38:56.0866 0x1c08 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:38:56.0875 0x1c08 NetTcpPortSharing - ok
21:38:56.0881 0x1c08 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
21:38:56.0909 0x1c08 netvsc - ok
21:38:57.0010 0x1c08 [ 576732533EBA47E58E5ACB66A1F69B91, AE36F9B58138972A079DF4AC57089DBE5264B77F75D482F9F474D7177DD9F073 ] NETwNb64 C:\WINDOWS\system32\DRIVERS\Netwbw02.sys
21:38:57.0096 0x1c08 NETwNb64 - ok
21:38:57.0148 0x1c08 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
21:38:57.0280 0x1c08 NlaSvc - ok
21:38:57.0285 0x1c08 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:38:57.0305 0x1c08 Npfs - ok
21:38:57.0310 0x1c08 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
21:38:57.0345 0x1c08 npsvctrig - ok
21:38:57.0350 0x1c08 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
21:38:57.0389 0x1c08 nsi - ok
21:38:57.0394 0x1c08 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
21:38:57.0414 0x1c08 nsiproxy - ok
21:38:57.0486 0x1c08 [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:38:57.0540 0x1c08 Ntfs - ok
21:38:57.0547 0x1c08 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
21:38:57.0557 0x1c08 Null - ok
21:38:57.0811 0x1c08 [ ECC732D5185408FCC323E56D30170848, 7A7A6C410B65DBB1D59653598D7E5414054588BB88505BE68BFFF0378FD555F3 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
21:38:58.0012 0x1c08 nvlddmkm - ok
21:38:58.0067 0x1c08 [ 6C36C459E743DDA0493BD9B0ED3D3D6C, 57A3D800CCF9407BE5DA40330E9E7B9C48227E43D752D6F98E18345DCEFAA6BD ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
21:38:58.0101 0x1c08 NvNetworkService - ok
21:38:58.0110 0x1c08 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
21:38:58.0121 0x1c08 nvraid - ok
21:38:58.0128 0x1c08 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
21:38:58.0139 0x1c08 nvstor - ok
21:38:58.0610 0x1c08 [ D6F333620DEF4FDE15311F3AB55AF9D0, 624671856EF19DF6F33797E0FA6B7415BF422E44DDA9F5B00F2F145471FA87E2 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
21:38:59.0232 0x1c08 NvStreamSvc - ok
21:38:59.0273 0x1c08 [ 2AF7D8BCD8912FC16AA15268CDCF2454, 3A2E5ADFC6213A6EA83F78026518EC7EE0DD4BBA7C210CB7A41007BB57DC0636 ] nvsvc C:\Windows\system32\nvvsvc.exe
21:38:59.0294 0x1c08 nvsvc - ok
21:38:59.0299 0x1c08 [ 50A7C3FEA78D11B546EA9B0C25FBC6AB, E91313580D631473801E0995AF8A1FD43EC47FF7709ADEF3DCD80D7BC25878D7 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
21:38:59.0305 0x1c08 nvvad_WaveExtensible - ok
21:38:59.0310 0x1c08 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
21:38:59.0318 0x1c08 nv_agp - ok
21:38:59.0326 0x1c08 [ 6363650D553572A305CDBF90F452C1BF, 15A499D8F403D66FDD2FA5AD607606E93FD82B845FBB6ECC63DF58EFC13CBA57 ] omniserv C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
21:38:59.0373 0x1c08 omniserv - detected UnsignedFile.Multi.Generic ( 1 )
21:38:59.0478 0x1c08 Detect skipped due to KSN trusted
21:38:59.0478 0x1c08 omniserv - ok
21:38:59.0494 0x1c08 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
21:38:59.0561 0x1c08 p2pimsvc - ok
21:38:59.0576 0x1c08 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
21:38:59.0625 0x1c08 p2psvc - ok
21:38:59.0631 0x1c08 [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport C:\WINDOWS\System32\drivers\parport.sys
21:38:59.0669 0x1c08 Parport - ok
21:38:59.0675 0x1c08 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
21:38:59.0684 0x1c08 partmgr - ok
21:38:59.0703 0x1c08 [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
21:38:59.0725 0x1c08 PcaSvc - ok
21:38:59.0740 0x1c08 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
21:38:59.0756 0x1c08 pci - ok
21:38:59.0761 0x1c08 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
21:38:59.0769 0x1c08 pciide - ok
21:38:59.0776 0x1c08 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
21:38:59.0787 0x1c08 pcmcia - ok
21:38:59.0793 0x1c08 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
21:38:59.0802 0x1c08 pcw - ok
21:38:59.0808 0x1c08 [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
21:38:59.0821 0x1c08 pdc - ok
21:38:59.0840 0x1c08 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
21:38:59.0900 0x1c08 PEAUTH - ok
21:38:59.0976 0x1c08 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
21:39:00.0019 0x1c08 PerfHost - ok
21:39:00.0074 0x1c08 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
21:39:00.0119 0x1c08 pla - ok
21:39:00.0128 0x1c08 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
21:39:00.0137 0x1c08 PlugPlay - ok
21:39:00.0141 0x1c08 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
21:39:00.0149 0x1c08 PNRPAutoReg - ok
21:39:00.0159 0x1c08 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
21:39:00.0173 0x1c08 PNRPsvc - ok
21:39:00.0184 0x1c08 [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
21:39:00.0220 0x1c08 PolicyAgent - ok
21:39:00.0226 0x1c08 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
21:39:00.0259 0x1c08 Power - ok
21:39:00.0264 0x1c08 [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:39:00.0275 0x1c08 PptpMiniport - ok
21:39:00.0369 0x1c08 [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:39:00.0456 0x1c08 PrintNotify - ok
21:39:00.0465 0x1c08 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
21:39:00.0490 0x1c08 Processor - ok
21:39:00.0497 0x1c08 [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
21:39:00.0537 0x1c08 ProfSvc - ok
21:39:00.0543 0x1c08 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
21:39:00.0565 0x1c08 Psched - ok
21:39:00.0576 0x1c08 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
21:39:00.0602 0x1c08 QWAVE - ok
21:39:00.0607 0x1c08 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
21:39:00.0615 0x1c08 QWAVEdrv - ok
21:39:00.0619 0x1c08 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:39:00.0627 0x1c08 RasAcd - ok
21:39:00.0632 0x1c08 [ D5ECE7E7F349EB3C4B152AFF3577280D, 3A5D3E440D1ED72D654BBFE30A73667F055C0AD04375C22C202F21BF75B612B2 ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
21:39:00.0662 0x1c08 RasAgileVpn - ok
21:39:00.0667 0x1c08 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:39:00.0677 0x1c08 RasAuto - ok
21:39:00.0693 0x1c08 [ 235624C147E3CB4C288D5D3D8E8D64A2, B3F182019DBAD9C761FE9F62EAED34AD5902B41A13A766D814FC3E2EA29D8D92 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:39:00.0724 0x1c08 Rasl2tp - ok
21:39:00.0740 0x1c08 [ 15C0034561FE5B03FA376F1A6232478B, 0F9B5C2BD7D8803FF3C5ED957D3F0859F2A59B74510E4659FBF05EDCBF230208 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:39:00.0757 0x1c08 RasMan - ok
21:39:00.0762 0x1c08 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:39:00.0782 0x1c08 RasPppoe - ok
21:39:00.0788 0x1c08 [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
21:39:00.0808 0x1c08 RasSstp - ok
21:39:00.0821 0x1c08 [ D67ED4AB59D1EF66B05AD1A81AC28B26, 72E750A9A6B484D8BEDE52FA6DABEF4D95765DE491152E1F6C856D0590B50C28 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:39:00.0852 0x1c08 rdbss - ok
21:39:00.0858 0x1c08 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
21:39:00.0875 0x1c08 rdpbus - ok
21:39:00.0882 0x1c08 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
21:39:00.0918 0x1c08 RDPDR - ok
21:39:00.0924 0x1c08 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:39:00.0931 0x1c08 RdpVideoMiniport - ok
21:39:00.0939 0x1c08 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
21:39:00.0951 0x1c08 rdyboost - ok
21:39:00.0974 0x1c08 [ 759FB47B96FA0A9D767B3269F76E5E25, B19EF75D2ECC9041F2578D6D4574302A06A12E551CE6211C049CD642E92D4D3E ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
21:39:00.0999 0x1c08 ReFS - ok
21:39:01.0008 0x1c08 [ A95A26DFB35369C305816F78B0B1ACF8, B96F10357D1CFF943C969CAB6B8FB6AC1D82526CCB94A1C2C4FC99B7F302C13B ] RegSrvc c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:39:01.0015 0x1c08 RegSrvc - ok
21:39:01.0024 0x1c08 [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:39:01.0049 0x1c08 RemoteAccess - ok
21:39:01.0056 0x1c08 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:39:01.0084 0x1c08 RemoteRegistry - ok
21:39:01.0093 0x1c08 [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
21:39:01.0102 0x1c08 RFCOMM - ok
21:39:01.0107 0x1c08 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
21:39:01.0116 0x1c08 RpcEptMapper - ok
21:39:01.0120 0x1c08 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
21:39:01.0138 0x1c08 RpcLocator - ok
21:39:01.0160 0x1c08 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:39:01.0181 0x1c08 RpcSs - ok
21:39:01.0191 0x1c08 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
21:39:01.0201 0x1c08 rspndr - ok
21:39:01.0211 0x1c08 [ E902D36DD94CB4A0568DF9C26D6E4D70, B7A4FA56B6B4F88AB54A4EF94804F7D8C11C6536C39F3CE4756D5F9298C45198 ] RSUSBSTOR C:\WINDOWS\System32\Drivers\RtsUStor.sys
21:39:01.0220 0x1c08 RSUSBSTOR - ok
21:39:01.0231 0x1c08 [ DBB7A8F0CE30AD6C6F986D38176A5D4B, 254BBD07F972955E5818F7557330EB9CD566E6FB2E5EDC1EFA43C03CDE37BA9B ] RSUSBVSTOR C:\WINDOWS\System32\Drivers\RtsUVStor.sys
21:39:01.0241 0x1c08 RSUSBVSTOR - ok
21:39:01.0250 0x1c08 [ B85642BE0761159B63CFFC137384E17F, ACB04AC581EE475543AEA3003E3643DC2A007C4D3F1831C120F1D07BDAFF2FA4 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
21:39:01.0259 0x1c08 RtkAudioService - ok
21:39:01.0307 0x1c08 [ 7CC0D898D00675F14BA0C4BF056C1CF4, E9203DD2A201AEF206C1A4177FD564DDFC8E7468DC268BD99389626A2C6593D3 ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
21:39:01.0331 0x1c08 RTL8168 - ok
21:39:01.0364 0x1c08 [ 8726F14AF8E20424EA651FE5FAF3B2CE, 81BE218BD086F890B30F64F72F7557C638CBACF67E89607625B9A879F49DCDE5 ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
21:39:01.0378 0x1c08 RTSPER - ok
21:39:01.0383 0x1c08 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
21:39:01.0408 0x1c08 s3cap - ok
21:39:01.0413 0x1c08 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
21:39:01.0423 0x1c08 SamSs - ok
21:39:01.0430 0x1c08 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
21:39:01.0440 0x1c08 sbp2port - ok
21:39:01.0450 0x1c08 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
21:39:01.0471 0x1c08 SCardSvr - ok
21:39:01.0490 0x1c08 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
21:39:01.0508 0x1c08 ScDeviceEnum - ok
21:39:01.0513 0x1c08 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:39:01.0534 0x1c08 scfilter - ok
21:39:01.0574 0x1c08 [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:39:01.0640 0x1c08 Schedule - ok
21:39:01.0649 0x1c08 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
21:39:01.0661 0x1c08 SCPolicySvc - ok
21:39:01.0683 0x1c08 [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
21:39:01.0695 0x1c08 sdbus - ok
21:39:01.0702 0x1c08 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
21:39:01.0712 0x1c08 sdstor - ok
21:39:01.0716 0x1c08 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
21:39:01.0735 0x1c08 secdrv - ok
21:39:01.0739 0x1c08 [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\WINDOWS\system32\seclogon.dll
21:39:01.0775 0x1c08 seclogon - ok
21:39:01.0780 0x1c08 [ 719647B6C618D2CC135CAC17DC25E7F8, BD128D3BB191D870EA6072467A046A6A4C8A7114E3A9E3D69DB4B6282C2D5DCD ] SeLow C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys
21:39:01.0786 0x1c08 SeLow - ok
21:39:01.0792 0x1c08 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
21:39:01.0805 0x1c08 SENS - ok
21:39:01.0814 0x1c08 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
21:39:01.0837 0x1c08 SensrSvc - ok
21:39:01.0863 0x1c08 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
21:39:01.0872 0x1c08 SerCx - ok
21:39:01.0911 0x1c08 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
21:39:01.0926 0x1c08 SerCx2 - ok
21:39:01.0933 0x1c08 [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
21:39:01.0956 0x1c08 Serenum - ok
21:39:01.0962 0x1c08 [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial C:\WINDOWS\System32\drivers\serial.sys
21:39:01.0971 0x1c08 Serial - ok
21:39:01.0976 0x1c08 [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
21:39:01.0997 0x1c08 sermouse - ok
21:39:02.0013 0x1c08 [ 389458EA0B5FAEBA325FAC47B9ED589E, F7F37A1F1E912069F65E4629FF733F080AE675DF6FE255AF48F5E23EB47D0622 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
21:39:02.0059 0x1c08 SessionEnv - ok
21:39:02.0207 0x1c08 [ E9BDC3C1B67723856895626A192E40B6, ACE27E45293F753066889EA8B5249088A3C53F290541A8C4CAD90EE2857182D8 ] SEVPNCLIENT C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
21:39:02.0405 0x1c08 SEVPNCLIENT - ok
21:39:02.0415 0x1c08 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
21:39:02.0424 0x1c08 sfloppy - ok
21:39:02.0438 0x1c08 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:39:02.0458 0x1c08 SharedAccess - ok
21:39:02.0486 0x1c08 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:39:02.0525 0x1c08 ShellHWDetection - ok
21:39:02.0530 0x1c08 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:39:02.0539 0x1c08 SiSRaid2 - ok
21:39:02.0545 0x1c08 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
21:39:02.0553 0x1c08 SiSRaid4 - ok
21:39:02.0568 0x1c08 [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:39:02.0584 0x1c08 SkypeUpdate - ok
21:39:02.0590 0x1c08 [ 13DFE743C3AF65458F5C7777A9B16CCC, 47BA69856E008756CF9168F809DB0B0728CE7945B3323114578A94B70313CE79 ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
21:39:02.0597 0x1c08 SmbDrv - ok
21:39:02.0602 0x1c08 [ 3D3A01F8499FD703513A33ED0C8921C2, B51326A1C70D3E4564C27A157D372D9CF706D8EAF5D40170E293B8F302BC7CBF ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
21:39:02.0608 0x1c08 SmbDrvI - ok
21:39:02.0613 0x1c08 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
21:39:02.0642 0x1c08 smphost - ok
21:39:02.0653 0x1c08 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
21:39:02.0675 0x1c08 SNMPTRAP - ok
21:39:02.0691 0x1c08 [ B312191DCBECE3C07DF9A99DE433B126, D9D9028331C703CE9B9EC75772D29BB04FE43B3A7895F8CBB3AC701CA0548F8D ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
21:39:02.0712 0x1c08 spaceport - ok
21:39:02.0717 0x1c08 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
21:39:02.0728 0x1c08 SpbCx - ok
21:39:02.0750 0x1c08 [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler C:\WINDOWS\System32\spoolsv.exe
21:39:02.0786 0x1c08 Spooler - ok
21:39:02.0960 0x1c08 [ F264662C057A54AA2DE41B3C7551712F, 2C123C6ACD967CDF1AD2855187CF3D8357B16A4FD9C2F18AE54CFA384165FA11 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
21:39:03.0119 0x1c08 sppsvc - ok
21:39:03.0138 0x1c08 [ 36B082C7A764A34FB1DC72D975870B61, 572CB632D9FDC1183F7BF8BFCBC51765C647945E0C13D1C91ADE3D0E76DF83BC ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:39:03.0192 0x1c08 srv - ok
21:39:03.0210 0x1c08 [ F5849909D4B29B4E3D4445F943E5C7E3, 3FCA1423753716FE1AFDD27EE1E13C4D779A3C976185B5C998EF1A9A39BFC186 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
21:39:03.0253 0x1c08 srv2 - ok
21:39:03.0261 0x1c08 [ FABC49666708EA562549E78E6FBF3191, BE1FEBFC259308B39C727915C41A67CD50720A6E2A68D148F4F2F926AED43B02 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:39:03.0272 0x1c08 srvnet - ok
21:39:03.0281 0x1c08 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:39:03.0293 0x1c08 SSDPSRV - ok
21:39:03.0299 0x1c08 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
21:39:03.0320 0x1c08 SstpSvc - ok
21:39:03.0328 0x1c08 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:39:03.0338 0x1c08 ssudmdm - ok
21:39:03.0372 0x1c08 [ 90E22D7CDE08E07446D238A569BCAB7C, 3D4F413D0B0C9CF28D06E0476F24AC6441C8678DF786D9971B39C91C9F9B8020 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:39:03.0400 0x1c08 Steam Client Service - ok
21:39:03.0406 0x1c08 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
21:39:03.0412 0x1c08 stexstor - ok
21:39:03.0430 0x1c08 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
21:39:03.0475 0x1c08 stisvc - ok
21:39:03.0481 0x1c08 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
21:39:03.0491 0x1c08 storahci - ok
21:39:03.0496 0x1c08 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
21:39:03.0504 0x1c08 storflt - ok
21:39:03.0509 0x1c08 [ 0EDD1F4D470C775740625B06A60C9DD5, 94964D0A793B1C984E87095249EE383A5E669D05BA6BF9F655587887E6CE3C19 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
21:39:03.0518 0x1c08 stornvme - ok
21:39:03.0522 0x1c08 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
21:39:03.0561 0x1c08 StorSvc - ok
21:39:03.0567 0x1c08 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
21:39:03.0576 0x1c08 storvsc - ok
21:39:03.0583 0x1c08 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
21:39:03.0631 0x1c08 svsvc - ok
21:39:03.0661 0x1c08 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
21:39:03.0670 0x1c08 swenum - ok
21:39:03.0691 0x1c08 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
21:39:03.0717 0x1c08 swprv - ok
21:39:03.0735 0x1c08 [ 12711DAB3FCCC1649FE149B61C26C80A, E0779DEF5BC8738A88B8D9FEEB85702AF6CC009C3967F29CD366894F773DE436 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:39:03.0751 0x1c08 SynTP - ok
21:39:03.0798 0x1c08 [ A2BFBF3B936246C370CF6496AF460116, 209045390AC182714D25EC7F2B7A6A3B184545CDF5663A581C3C08094792D2CA ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
21:39:03.0807 0x1c08 SynTPEnhService - ok
21:39:03.0850 0x1c08 [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\WINDOWS\system32\sysmain.dll
21:39:03.0920 0x1c08 SysMain - ok
21:39:03.0933 0x1c08 [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:39:03.0976 0x1c08 SystemEventsBroker - ok
21:39:03.0984 0x1c08 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:39:04.0028 0x1c08 TabletInputService - ok
21:39:04.0039 0x1c08 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:39:04.0089 0x1c08 TapiSrv - ok
21:39:04.0175 0x1c08 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
21:39:04.0240 0x1c08 Tcpip - ok
21:39:04.0343 0x1c08 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:39:04.0411 0x1c08 TCPIP6 - ok
21:39:04.0421 0x1c08 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
21:39:04.0443 0x1c08 tcpipreg - ok
21:39:04.0450 0x1c08 [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
21:39:04.0471 0x1c08 tdx - ok
21:39:04.0687 0x1c08 [ F2F02E436BA56A96A06E4427C5787B6E, 1562FF264011A15AC69808CB74F387917C4E8ED3B91546B12933BE10B6E20B3A ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
21:39:04.0841 0x1c08 TeamViewer - ok
21:39:04.0868 0x1c08 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
21:39:04.0878 0x1c08 terminpt - ok
21:39:04.0908 0x1c08 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
21:39:04.0967 0x1c08 TermService - ok
21:39:04.0974 0x1c08 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
21:39:04.0985 0x1c08 Themes - ok
21:39:04.0991 0x1c08 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
21:39:05.0002 0x1c08 THREADORDER - ok
21:39:05.0014 0x1c08 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
21:39:05.0044 0x1c08 TimeBroker - ok
21:39:05.0050 0x1c08 [ 0FE2FC59C0B9A3CA3EC2B18E1CCCF2DD, 26AE50F2263DDDE3C6678566E2B198966CE870DF4B254F2D655752F742F63C12 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
21:39:05.0058 0x1c08 TomTomHOMEService - ok
21:39:05.0068 0x1c08 [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
21:39:05.0079 0x1c08 TPM - ok
21:39:05.0085 0x1c08 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
21:39:05.0108 0x1c08 TrkWks - ok
21:39:05.0113 0x1c08 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:39:05.0146 0x1c08 TrustedInstaller - ok
21:39:05.0150 0x1c08 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
21:39:05.0219 0x1c08 TsUsbFlt - ok
21:39:05.0225 0x1c08 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:39:05.0275 0x1c08 TsUsbGD - ok
21:39:05.0281 0x1c08 [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
21:39:05.0307 0x1c08 tunnel - ok
21:39:05.0311 0x1c08 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
21:39:05.0319 0x1c08 uagp35 - ok
21:39:05.0324 0x1c08 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
21:39:05.0332 0x1c08 UASPStor - ok
21:39:05.0342 0x1c08 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
21:39:05.0356 0x1c08 UCX01000 - ok
21:39:05.0367 0x1c08 [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
21:39:05.0411 0x1c08 udfs - ok
21:39:05.0415 0x1c08 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
21:39:05.0425 0x1c08 UEFI - ok
21:39:05.0432 0x1c08 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
21:39:05.0478 0x1c08 UI0Detect - ok
21:39:05.0482 0x1c08 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
21:39:05.0492 0x1c08 uliagpkx - ok
21:39:05.0497 0x1c08 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
21:39:05.0523 0x1c08 umbus - ok
21:39:05.0526 0x1c08 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
21:39:05.0538 0x1c08 UmPass - ok
21:39:05.0548 0x1c08 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
21:39:05.0580 0x1c08 UmRdpService - ok
21:39:05.0594 0x1c08 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:39:05.0629 0x1c08 upnphost - ok
21:39:05.0637 0x1c08 [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
21:39:05.0656 0x1c08 USBAAPL64 - ok
21:39:05.0663 0x1c08 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
21:39:05.0673 0x1c08 usbccgp - ok
21:39:05.0679 0x1c08 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
21:39:05.0711 0x1c08 usbcir - ok
21:39:05.0717 0x1c08 [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
21:39:05.0725 0x1c08 usbehci - ok
21:39:05.0746 0x1c08 [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
21:39:05.0763 0x1c08 usbhub - ok
21:39:05.0784 0x1c08 [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
21:39:05.0803 0x1c08 USBHUB3 - ok
21:39:05.0808 0x1c08 [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
21:39:05.0865 0x1c08 usbohci - ok
21:39:05.0870 0x1c08 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
21:39:05.0912 0x1c08 usbprint - ok
21:39:05.0920 0x1c08 [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:39:05.0929 0x1c08 USBSTOR - ok
21:39:05.0934 0x1c08 [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
21:39:05.0941 0x1c08 usbuhci - ok
21:39:05.0950 0x1c08 [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
21:39:05.0973 0x1c08 usbvideo - ok
21:39:05.0986 0x1c08 [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:39:05.0998 0x1c08 USBXHCI - ok
21:39:06.0002 0x1c08 [ B73B55A194BEAF71985211279585A316, A40B0E362ABF4F33818696150086C4FBCA38F6E306838C825C73F57F55A49347 ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
21:39:06.0034 0x1c08 usb_rndisx - ok
21:39:06.0037 0x1c08 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
21:39:06.0045 0x1c08 VaultSvc - ok
21:39:06.0052 0x1c08 [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
21:39:06.0063 0x1c08 VBoxUSBMon - ok
21:39:06.0073 0x1c08 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
21:39:06.0079 0x1c08 vdrvroot - ok
21:39:06.0118 0x1c08 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
21:39:06.0157 0x1c08 vds - ok
21:39:06.0164 0x1c08 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
21:39:06.0176 0x1c08 VerifierExt - ok
21:39:06.0211 0x1c08 [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
21:39:06.0229 0x1c08 vhdmp - ok
21:39:06.0234 0x1c08 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
21:39:06.0240 0x1c08 viaide - ok
21:39:06.0246 0x1c08 [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
21:39:06.0254 0x1c08 vmbus - ok
21:39:06.0257 0x1c08 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
21:39:06.0275 0x1c08 VMBusHID - ok
21:39:06.0289 0x1c08 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:39:06.0311 0x1c08 vmicguestinterface - ok
21:39:06.0323 0x1c08 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
21:39:06.0342 0x1c08 vmicheartbeat - ok
21:39:06.0353 0x1c08 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:39:06.0370 0x1c08 vmickvpexchange - ok
21:39:06.0384 0x1c08 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
21:39:06.0400 0x1c08 vmicrdv - ok
21:39:06.0411 0x1c08 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
21:39:06.0428 0x1c08 vmicshutdown - ok
21:39:06.0439 0x1c08 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
21:39:06.0456 0x1c08 vmictimesync - ok
21:39:06.0467 0x1c08 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
21:39:06.0483 0x1c08 vmicvss - ok
21:39:06.0488 0x1c08 [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
21:39:06.0496 0x1c08 volmgr - ok
21:39:06.0507 0x1c08 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
21:39:06.0521 0x1c08 volmgrx - ok
21:39:06.0534 0x1c08 [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
21:39:06.0547 0x1c08 volsnap - ok
21:39:06.0554 0x1c08 [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
21:39:06.0562 0x1c08 vpci - ok
21:39:06.0569 0x1c08 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
21:39:06.0579 0x1c08 vsmraid - ok
21:39:06.0614 0x1c08 [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS C:\WINDOWS\system32\vssvc.exe
21:39:06.0667 0x1c08 VSS - ok
21:39:06.0679 0x1c08 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
21:39:06.0691 0x1c08 VSTXRAID - ok
21:39:06.0696 0x1c08 [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
21:39:06.0737 0x1c08 vwifibus - ok
21:39:06.0744 0x1c08 [ 29AB43937FFDA0B0FB56984226E698C6, 6A1A559964FE5D594E54988C46149969E6FFD5A8D5A6862E14648B608794CC29 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
21:39:06.0762 0x1c08 vwififlt - ok
21:39:06.0767 0x1c08 [ 8B8624A93E3F88CB923AEB05B6313227, 2856B63CD376BF2B1A9129581E7B9207588D4EAFD29A2C8D98F176FEAFDE26A9 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
21:39:06.0774 0x1c08 vwifimp - ok
21:39:06.0787 0x1c08 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
21:39:06.0812 0x1c08 W32Time - ok
21:39:06.0818 0x1c08 [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
21:39:06.0841 0x1c08 w3logsvc - ok
21:39:06.0846 0x1c08 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
21:39:06.0860 0x1c08 WacomPen - ok
21:39:06.0869 0x1c08 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:39:06.0878 0x1c08 Wanarp - ok
21:39:06.0885 0x1c08 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:39:06.0894 0x1c08 Wanarpv6 - ok
21:39:06.0915 0x1c08 [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:39:06.0938 0x1c08 WAS - ok
21:39:06.0996 0x1c08 [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine C:\WINDOWS\system32\wbengine.exe
21:39:07.0051 0x1c08 wbengine - ok
21:39:07.0066 0x1c08 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
21:39:07.0115 0x1c08 WbioSrvc - ok
21:39:07.0129 0x1c08 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
21:39:07.0157 0x1c08 Wcmsvc - ok
21:39:07.0172 0x1c08 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
21:39:07.0191 0x1c08 wcncsvc - ok
21:39:07.0197 0x1c08 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:39:07.0235 0x1c08 WcsPlugInService - ok
21:39:07.0241 0x1c08 [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
21:39:07.0249 0x1c08 WdBoot - ok
21:39:07.0274 0x1c08 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
21:39:07.0299 0x1c08 Wdf01000 - ok
21:39:07.0310 0x1c08 [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
21:39:07.0323 0x1c08 WdFilter - ok
21:39:07.0329 0x1c08 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
21:39:07.0354 0x1c08 WdiServiceHost - ok
21:39:07.0358 0x1c08 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
21:39:07.0370 0x1c08 WdiSystemHost - ok
21:39:07.0377 0x1c08 [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:39:07.0388 0x1c08 WdNisDrv - ok
21:39:07.0392 0x1c08 WdNisSvc - ok
21:39:07.0402 0x1c08 [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient C:\WINDOWS\System32\webclnt.dll
21:39:07.0437 0x1c08 WebClient - ok
21:39:07.0447 0x1c08 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
21:39:07.0461 0x1c08 Wecsvc - ok
21:39:07.0466 0x1c08 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
21:39:07.0493 0x1c08 WEPHOSTSVC - ok
21:39:07.0499 0x1c08 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
21:39:07.0539 0x1c08 wercplsupport - ok
21:39:07.0546 0x1c08 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
21:39:07.0559 0x1c08 WerSvc - ok
21:39:07.0567 0x1c08 [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
21:39:07.0577 0x1c08 WFPLWFS - ok
21:39:07.0582 0x1c08 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
21:39:07.0595 0x1c08 WiaRpc - ok
21:39:07.0601 0x1c08 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
21:39:07.0610 0x1c08 WIMMount - ok
21:39:07.0612 0x1c08 WinDefend - ok
21:39:07.0639 0x1c08 [ 0E70990EC2E5D2331AA5E88DB0CFB826, 79DFF565C3FCBC691E8FEB669CEC00E340FD2A2AFA4488D23A7CC63A2A98A5C1 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:39:07.0673 0x1c08 WinHttpAutoProxySvc - ok
21:39:07.0720 0x1c08 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:39:07.0759 0x1c08 Winmgmt - ok
21:39:07.0839 0x1c08 [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM C:\WINDOWS\system32\WsmSvc.dll
21:39:07.0963 0x1c08 WinRM - ok
21:39:07.0975 0x1c08 [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb C:\WINDOWS\System32\drivers\WinUSB.sys
21:39:08.0017 0x1c08 WinUsb - ok
21:39:08.0022 0x1c08 [ AA92B8971F951EFF901C476212438638, 027FB513DCAE6B223D5C02F57A1B6AAB5A6D0EEFE1E654EA469B21324190F9F6 ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
21:39:08.0028 0x1c08 WirelessButtonDriver - ok
21:39:08.0086 0x1c08 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
21:39:08.0140 0x1c08 WlanSvc - ok
21:39:08.0178 0x1c08 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
21:39:08.0214 0x1c08 wlidsvc - ok
21:39:08.0219 0x1c08 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
21:39:08.0227 0x1c08 WmiAcpi - ok
21:39:08.0235 0x1c08 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:39:08.0245 0x1c08 wmiApSrv - ok
21:39:08.0248 0x1c08 WMPNetworkSvc - ok
21:39:08.0255 0x1c08 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
21:39:08.0264 0x1c08 Wof - ok
21:39:08.0324 0x1c08 [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
21:39:08.0379 0x1c08 workfolderssvc - ok
21:39:08.0386 0x1c08 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:39:08.0394 0x1c08 wpcfltr - ok
21:39:08.0407 0x1c08 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
21:39:08.0422 0x1c08 WPCSvc - ok
21:39:08.0427 0x1c08 [ DBDCE2378F65F0A07D4644AC103037E7, 99714F0CD31297C9831BAF04768F467F6E0BF710C859CEDCA83069226BF1A68A ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
21:39:08.0468 0x1c08 WPDBusEnum - ok
21:39:08.0472 0x1c08 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:39:08.0483 0x1c08 WpdUpFltr - ok
21:39:08.0488 0x1c08 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:39:08.0514 0x1c08 ws2ifsl - ok
21:39:08.0522 0x1c08 [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\WINDOWS\System32\wscsvc.dll
21:39:08.0550 0x1c08 wscsvc - ok
21:39:08.0555 0x1c08 [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
21:39:08.0580 0x1c08 WSDPrintDevice - ok
21:39:08.0585 0x1c08 [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan C:\WINDOWS\System32\drivers\WSDScan.sys
21:39:08.0609 0x1c08 WSDScan - ok
21:39:08.0613 0x1c08 WSearch - ok
21:39:08.0712 0x1c08 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
21:39:08.0807 0x1c08 WSService - ok
21:39:08.0934 0x1c08 [ F3F60C88A6BBC8D0C68FE5B1C91181AF, AF9A4D282CD4BB1127BC3F48AB89DC294408D96F7906553C636F37D1503CFA48 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
21:39:09.0042 0x1c08 wuauserv - ok
21:39:09.0052 0x1c08 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
21:39:09.0081 0x1c08 WudfPf - ok
21:39:09.0089 0x1c08 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
21:39:09.0121 0x1c08 WUDFRd - ok
21:39:09.0127 0x1c08 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP C:\WINDOWS\System32\drivers\WUDFRd.sys
21:39:09.0137 0x1c08 WUDFSensorLP - ok
21:39:09.0142 0x1c08 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
21:39:09.0155 0x1c08 wudfsvc - ok
21:39:09.0162 0x1c08 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\System32\drivers\WUDFRd.sys
21:39:09.0177 0x1c08 WUDFWpdFs - ok
21:39:09.0185 0x1c08 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:39:09.0197 0x1c08 WUDFWpdMtp - ok
21:39:09.0212 0x1c08 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
21:39:09.0231 0x1c08 WwanSvc - ok
21:39:09.0300 0x1c08 X6va062 - ok
21:39:09.0312 0x1c08 [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
21:39:09.0322 0x1c08 XQHDrv - ok
21:39:09.0443 0x1c08 [ C5C719DF55C343D59310AC7ECC536D10, C435C416298731C5DF8E9C4EBBC791B10E86B2EF364905B4F0BB4D941504404F ] ZeroConfigService c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
21:39:09.0522 0x1c08 ZeroConfigService - ok
21:39:09.0543 0x1c08 ================ Scan global ===============================
21:39:09.0564 0x1c08 [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\WINDOWS\system32\basesrv.dll
21:39:09.0572 0x1c08 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
21:39:09.0581 0x1c08 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
21:39:09.0596 0x1c08 [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
21:39:09.0604 0x1c08 [ Global ] - ok
21:39:09.0604 0x1c08 ================ Scan MBR ==================================
21:39:09.0606 0x1c08 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:39:09.0662 0x1c08 \Device\Harddisk0\DR0 - ok
21:39:09.0663 0x1c08 ================ Scan VBR ==================================
21:39:09.0665 0x1c08 [ FA7C188809C82BB4DD9E457B2C1B0AF9 ] \Device\Harddisk0\DR0\Partition1
21:39:09.0666 0x1c08 \Device\Harddisk0\DR0\Partition1 - ok
21:39:09.0668 0x1c08 [ 205A266BC05FA47AA760B3812D17F024 ] \Device\Harddisk0\DR0\Partition2
21:39:09.0669 0x1c08 \Device\Harddisk0\DR0\Partition2 - ok
21:39:09.0671 0x1c08 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
21:39:09.0672 0x1c08 \Device\Harddisk0\DR0\Partition3 - ok
21:39:09.0675 0x1c08 [ F99601A74DF60B7A0F4E7A42AA89590E ] \Device\Harddisk0\DR0\Partition4
21:39:09.0677 0x1c08 \Device\Harddisk0\DR0\Partition4 - ok
21:39:09.0679 0x1c08 [ 59274B4A885960EB5961B7F3D029C4CF ] \Device\Harddisk0\DR0\Partition5
21:39:09.0681 0x1c08 \Device\Harddisk0\DR0\Partition5 - ok
21:39:09.0681 0x1c08 ================ Scan generic autorun ======================
21:39:09.0894 0x1c08 [ 567690D78D43BE2C19BA73C47923A189, E0E20075559438A9AC152D2DAEFE3E1689DBE7345FB2CB584624E5C0892F5D86 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
21:39:10.0042 0x1c08 RTHDVCPL - ok
21:39:10.0121 0x1c08 [ A181AD1F10A08579EA148CE93A59C7E6, 204E5B94795B9C6391F314BA044E3227242080B832A1E0392849CBD4AA18DCEA ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
21:39:10.0165 0x1c08 NvBackend - ok
21:39:10.0172 0x1c08 [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\Windows\system32\rundll32.exe
21:39:10.0185 0x1c08 ShadowPlay - ok
21:39:10.0186 0x1c08 SynTPEnh - ok
21:39:10.0324 0x1c08 [ E9BDC3C1B67723856895626A192E40B6, ACE27E45293F753066889EA8B5249088A3C53F290541A8C4CAD90EE2857182D8 ] C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
21:39:10.0429 0x1c08 SoftEther VPN Client UI Helper - ok
21:39:10.0503 0x1c08 [ EB34C71AC9BF2532820AE0F8952EE437, 775561BB60F6DBEAB76C0DFE186C60EF95D0246E15CB1A8BBACD1F38C2EA9EA1 ] C:\Program Files\iTunes\iTunesHelper.exe
21:39:10.0512 0x1c08 iTunesHelper - ok
21:39:10.0551 0x1c08 [ AADD1A163DA2BEFC4C1CE8646A7F79CB, 181401C7145F9853CEDFC3A5C392D4597B52CF55C4E344B002F5C02B84F3409B ] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
21:39:10.0587 0x1c08 COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} - ok
21:39:10.0594 0x1c08 [ 396A498982C926020B0D4429806FAD1E, 8BF3BB687E43DBC3AF8B2E7F1BBE429AD007E11C9C8E8A82B9ABC809A7DBE28F ] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
21:39:10.0602 0x1c08 AccelerometerSysTrayApplet - ok
21:39:10.0622 0x1c08 [ ED70821F65B120FDBD76FCFF746FE219, D038CC5198099B2FE02F2789E6817E96E210E27CF6C0E8FF39E6746B31653DDE ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:39:10.0635 0x1c08 SunJavaUpdateSched - ok
21:39:10.0660 0x1c08 [ B977B08DD02BA559893C479BFF3AA2D2, BF9C5EA4779964C59483430353ED9A20BA15C9F31F519FAA39E3650BED556F29 ] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
21:39:10.0686 0x1c08 BlueStacks Agent - ok
21:39:10.0703 0x1c08 [ C055411BF5412576E0191A61854C3671, 1D8FA9A922C6C954D8DB48344D7DC391EBD6DD5A19F8AF639569C6AE151AF1E7 ] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
21:39:10.0725 0x1c08 HPMessageService - ok
21:39:10.0733 0x1c08 [ 706A181D11D8589B0A9E2625E72423CF, BC0624B3BF5312DF5B54D6B23ADD7C6E94708968E4ACC3340BE23A3E87A8D2E0 ] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
21:39:10.0743 0x1c08 TomTomHOME.exe - ok
21:39:10.0746 0x1c08 Skype - ok
21:39:10.0834 0x1c08 [ 73391D61EA9307F37F45616B9D1C43E5, D66F7930BC854044BCF12892E00B5A0AE746B0945101C72BAD13F18471C7CC17 ] C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
21:39:10.0884 0x1c08 Power2GoExpress8 - ok
21:39:10.0995 0x1c08 [ D2CE6EA0E9F641D7153462D40C6B4193, 3AAE5239F951E29497D759326BDC23E19644B763DC5661CA4E4980418195C37D ] C:\Program Files (x86)\Steam\steam.exe
21:39:11.0053 0x1c08 Steam - ok
21:39:11.0116 0x1c08 [ 11B4662A4DD118132E2648837920AF86, 7643E9CF00C0393ED4A1D294DABA84DCEB6BE696E5B520D413284BAB16CE1CD5 ] C:\Users\ducanh\AppData\Roaming\Spotify\SpotifyWebHelper.exe
21:39:11.0149 0x1c08 Spotify Web Helper - ok
21:39:11.0332 0x1c08 [ 6F8EDF5A5D23AD1F4FC168047C80ECE4, CAA605301395B70E724688515936A6C84F90D18EFFBF21CEDD336268AACA8D02 ] C:\Users\ducanh\AppData\Roaming\Spotify\Spotify.exe
21:39:11.0474 0x1c08 Spotify - ok
21:39:11.0545 0x1c08 [ 91121D27CAD2674B8FDB248D83EDFF19, 2C4E24AD1C868D80FBA7B07DC562FF8F4C627AFA1B4181E2F851FA09B8A7753A ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
21:39:11.0552 0x1c08 iCloudServices - ok
21:39:11.0558 0x1c08 [ 0705790B008B80230F933F8B0877FB2E, 1B3650F91C96FD4154745291313A6B234959E05B59D199C079F9C521CB622A5D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
21:39:11.0565 0x1c08 iCloudDrive - ok
21:39:11.0575 0x1c08 [ 11ACBAF2756292133A962B504D5B5BFB, BFD36AF36F26062B44545D6DABEEDA83734930FAA4ADB512AC4905A81322BADA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
21:39:11.0589 0x1c08 iCloudPhotos - ok
21:39:11.0594 0x1c08 [ AA0E71B308A339F3D43DDBABB4CF8B07, F951460AE24D42FD6DB1BFFE6342DBEB9CC5368B4AD3ACD426E1C3FB37C1AD68 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
21:39:11.0602 0x1c08 ApplePhotoStreams - ok
21:39:11.0604 0x1c08 ProxyGate - ok
21:39:11.0638 0x1c08 [ 73391D61EA9307F37F45616B9D1C43E5, D66F7930BC854044BCF12892E00B5A0AE746B0945101C72BAD13F18471C7CC17 ] C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
21:39:11.0677 0x1c08 Power2GoExpress8 - ok
21:39:11.0681 0x1c08 WindowsWelcomeCenter - ok
21:39:11.0707 0x1c08 [ 9131DC75E7AA3AC61DB05D88EB69913F, 21D6888DDDB0DCEF5373287AEACAB174CE7C23434C40AA6E705BC1457EFDB226 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
21:39:11.0734 0x1c08 GoogleChromeAutoLaunch_15C18641D08A33B982F2E6FA5AE802A6 - ok
21:39:11.0741 0x1c08 [ 706A181D11D8589B0A9E2625E72423CF, BC0624B3BF5312DF5B54D6B23ADD7C6E94708968E4ACC3340BE23A3E87A8D2E0 ] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
21:39:11.0753 0x1c08 TomTomHOME.exe - ok
21:39:11.0756 0x1c08 Skype - ok
21:39:11.0758 0x1c08 Waiting for KSN requests completion. In queue: 286
21:39:11.0932 0x09f4 Object required for P2P: [ D2CE6EA0E9F641D7153462D40C6B4193 ] C:\Program Files (x86)\Steam\steam.exe
21:39:12.0135 0x09f4 Object send P2P result: true
21:39:12.0762 0x1c08 AV detected via SS2: COMODO Antivirus, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61000 ( enabled : updated )
21:39:12.0762 0x1c08 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
21:39:12.0763 0x1c08 FW detected via SS2: COMODO Firewall, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61010 ( enabled )
21:39:12.0866 0x1c08 ============================================================
21:39:12.0866 0x1c08 Scan finished
21:39:12.0866 0x1c08 ============================================================
21:39:12.0872 0x13d4 Detected object count: 0
21:39:12.0872 0x13d4 Actual detected object count: 0
21:39:35.0963 0x090c ============================================================
21:39:35.0963 0x090c Scan started
21:39:35.0963 0x090c Mode: Manual; SigCheck; TDLFS;
21:39:35.0963 0x090c ============================================================
21:39:35.0963 0x090c KSN ping started
21:39:36.0032 0x090c KSN ping finished: true
21:39:36.0674 0x090c ================ Scan system memory ========================
21:39:36.0674 0x090c System memory - ok
21:39:36.0674 0x090c ================ Scan services =============================
21:39:36.0805 0x090c [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
21:39:36.0823 0x090c 1394ohci - ok
21:39:36.0828 0x090c [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
21:39:36.0840 0x090c 3ware - ok
21:39:36.0845 0x090c [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
21:39:36.0852 0x090c Accelerometer - ok
21:39:36.0871 0x090c [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
21:39:36.0895 0x090c ACPI - ok
21:39:36.0902 0x090c [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
21:39:36.0915 0x090c acpiex - ok
21:39:36.0919 0x090c [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
21:39:36.0926 0x090c acpipagr - ok
21:39:36.0930 0x090c [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
21:39:36.0941 0x090c AcpiPmi - ok
21:39:36.0946 0x090c [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
21:39:36.0954 0x090c acpitime - ok
21:39:36.0977 0x090c [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:39:37.0008 0x090c ADP80XX - ok
21:39:37.0019 0x090c [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
21:39:37.0032 0x090c AeLookupSvc - ok
21:39:37.0049 0x090c [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
21:39:37.0069 0x090c AFD - ok
21:39:37.0075 0x090c [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
21:39:37.0083 0x090c agp440 - ok
21:39:37.0088 0x090c [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:39:37.0098 0x090c ahcache - ok
21:39:37.0103 0x090c [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
21:39:37.0112 0x090c ALG - ok
21:39:37.0119 0x090c [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
21:39:37.0127 0x090c AmdK8 - ok
21:39:37.0134 0x090c [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
21:39:37.0143 0x090c AmdPPM - ok
21:39:37.0149 0x090c [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
21:39:37.0157 0x090c amdsata - ok
21:39:37.0168 0x090c [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
21:39:37.0185 0x090c amdsbs - ok
21:39:37.0190 0x090c [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
21:39:37.0197 0x090c amdxata - ok
21:39:37.0203 0x090c [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:39:37.0216 0x090c AppHostSvc - ok
21:39:37.0221 0x090c [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
21:39:37.0231 0x090c AppID - ok
21:39:37.0236 0x090c [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
21:39:37.0244 0x090c AppIDSvc - ok
21:39:37.0250 0x090c [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\WINDOWS\System32\appinfo.dll
21:39:37.0260 0x090c Appinfo - ok
21:39:37.0269 0x090c [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:39:37.0279 0x090c Apple Mobile Device Service - ok
21:39:37.0295 0x090c [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
21:39:37.0321 0x090c AppReadiness - ok
21:39:37.0359 0x090c [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
21:39:37.0393 0x090c AppXSvc - ok
21:39:37.0401 0x090c [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
21:39:37.0414 0x090c arcsas - ok
21:39:37.0448 0x090c [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:39:37.0456 0x090c aspnet_state - ok
21:39:37.0461 0x090c [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:39:37.0475 0x090c AsyncMac - ok
21:39:37.0480 0x090c [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
21:39:37.0488 0x090c atapi - ok
21:39:37.0497 0x090c [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:39:37.0509 0x090c AudioEndpointBuilder - ok
21:39:37.0532 0x090c [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
21:39:37.0562 0x090c Audiosrv - ok
21:39:37.0569 0x090c [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
21:39:37.0579 0x090c AxInstSV - ok
21:39:37.0594 0x090c [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
21:39:37.0618 0x090c b06bdrv - ok
21:39:37.0623 0x090c [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:39:37.0631 0x090c BasicDisplay - ok
21:39:37.0636 0x090c [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
21:39:37.0644 0x090c BasicRender - ok
21:39:37.0649 0x090c [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
21:39:37.0654 0x090c bcmfn2 - ok
21:39:37.0666 0x090c [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC C:\WINDOWS\System32\bdesvc.dll
21:39:37.0686 0x090c BDESVC - ok
21:39:37.0691 0x090c [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:39:37.0699 0x090c Beep - ok
21:39:37.0721 0x090c [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\WINDOWS\System32\bfe.dll
21:39:37.0746 0x090c BFE - ok
21:39:37.0776 0x090c [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
21:39:37.0805 0x090c BITS - ok
21:39:37.0819 0x090c [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:39:37.0832 0x090c Bonjour Service - ok
21:39:37.0838 0x090c [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
21:39:37.0848 0x090c bowser - ok
21:39:37.0865 0x090c [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:39:37.0881 0x090c BrokerInfrastructure - ok
21:39:37.0888 0x090c [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
21:39:37.0899 0x090c Browser - ok
21:39:37.0918 0x090c [ F702AFA6B13BB143757AEFAE423B6865, 65FDFD3C642D81EE95CBC68D6BA4FD69EF6A83F9AF7948DC993C783DF1AA8772 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:39:37.0933 0x090c BstHdAndroidSvc - ok
21:39:37.0940 0x090c [ 464D771701C5413C1EDD504D745698F0, C82B9F9C621654914F980EC9DA5879703014066E93CC7D21B9B241E0D16FA325 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:39:37.0948 0x090c BstHdDrv - ok
21:39:37.0961 0x090c [ 202A388A6CC6D1A00CBB6E3EAEAA2B89, 588AB5DA62C98E8B3B332043BFCC03A8286FBF4E2C2181E4C9295B247BE75DD8 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:39:37.0978 0x090c BstHdLogRotatorSvc - ok
21:39:37.0999 0x090c [ 250FB3DBCB2E4E538EA466ABF48859E7, A9C839CB675DABDB71571E60BC69C1C027F129FABA821454C1BBF5B4A7CC9725 ] BstHdUpdaterSvc C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
21:39:38.0020 0x090c BstHdUpdaterSvc - ok
21:39:38.0026 0x090c [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:39:38.0035 0x090c BthAvrcpTg - ok
21:39:38.0041 0x090c [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
21:39:38.0049 0x090c BthEnum - ok
21:39:38.0055 0x090c [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
21:39:38.0067 0x090c BthHFEnum - ok
21:39:38.0071 0x090c [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
21:39:38.0080 0x090c bthhfhid - ok
21:39:38.0093 0x090c [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
21:39:38.0108 0x090c BthHFSrv - ok
21:39:38.0119 0x090c [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
21:39:38.0131 0x090c BthLEEnum - ok
21:39:38.0136 0x090c [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
21:39:38.0145 0x090c BTHMODEM - ok
21:39:38.0153 0x090c [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
21:39:38.0163 0x090c BthPan - ok
21:39:38.0200 0x090c [ 0CC00ADC1B84C93FB46E1A0974E956E1, 64C759244651B916901F4D0C82C3D6034532A20714A72FD26FC9D050B99E230B ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
21:39:38.0235 0x090c BTHPORT - ok
21:39:38.0243 0x090c [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
21:39:38.0251 0x090c bthserv - ok
21:39:38.0257 0x090c [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
21:39:38.0265 0x090c BTHUSB - ok
21:39:38.0271 0x090c [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:39:38.0282 0x090c cdfs - ok
21:39:38.0291 0x090c [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
21:39:38.0301 0x090c cdrom - ok
21:39:38.0310 0x090c [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
21:39:38.0323 0x090c CertPropSvc - ok
21:39:38.0328 0x090c [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
21:39:38.0335 0x090c circlass - ok
21:39:38.0348 0x090c [ 28D94419E856D61D7686ED942611D15E, AC9ED48AA09B09B854512B35E905C8C4C451B34F59951661367392AF64E8ADE7 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
21:39:38.0370 0x090c CLFS - ok
21:39:38.0382 0x090c [ 424F3A5D9AAC65B50DBEB4B1CA91F051, E2DD6C25E4B23B834A54A24548D857D118A2222DC80CFEDE176030206C0E52A2 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
21:39:38.0391 0x090c CLVirtualDrive - ok
21:39:38.0396 0x090c [ 9731DAFDC7B690B2C7752FDFF045BFD8, 9DDBDC4FE519AF38993EAB2F16602B2B71CF8675BDD1F651F22DFA8C5C2C80F7 ] clwvd C:\WINDOWS\system32\DRIVERS\clwvd.sys
21:39:38.0403 0x090c clwvd - ok
21:39:38.0408 0x090c [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
21:39:38.0416 0x090c CmBatt - ok
21:39:38.0574 0x090c [ C206F35A1D0B32B6A65BE2B5D7049B84, BAFE47BE23CB99EE93FAA311B57222E0D7A2B086C0941691995AE3100C52ED6E ] CmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
21:39:38.0709 0x090c CmdAgent - ok
21:39:38.0722 0x090c [ 71164DBB8653DA47EAE327C9F5CD9C89, 5D625F1BE7DAAA532FF2D724E67C92D58E9117736F08C75CCA79244671B03979 ] cmderd C:\WINDOWS\system32\DRIVERS\cmderd.sys
21:39:38.0729 0x090c cmderd - ok
21:39:38.0751 0x090c [ 56BBC037D128C2599924C8F5AE9CB771, 99100DAC33325285F7AC57B7CFD4AA93A1A94E4A612C5B553E772C26DD765B29 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys
21:39:38.0783 0x090c cmdGuard - ok
21:39:38.0789 0x090c [ 25CA230277CEFDEC6876D7871FAC7CCA, E0523E67BC102968DA19380366A43C2E6C719BB988ADB6127F0C8FC5B071DF2E ] cmdhlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
21:39:38.0796 0x090c cmdhlp - ok
21:39:38.0873 0x090c [ BB82B9D06353F78E4F1DDF04A25F1CC7, 55FD0B3C8187B65C75488B8D86A48E5C47B620AA6426786B28DD21BE9728A6AE ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
21:39:38.0926 0x090c cmdvirth - ok
21:39:38.0945 0x090c [ 5CBF8B3E27D824D2AA2A34AFB406F1D0, 955AF1307C02D2B4DEEB150F37F77B8631C0F3C450037C233E9E27D6571B0265 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
21:39:38.0968 0x090c CNG - ok
21:39:38.0975 0x090c [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
21:39:38.0983 0x090c CompositeBus - ok
21:39:38.0988 0x090c COMSysApp - ok
21:39:38.0992 0x090c [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
21:39:39.0002 0x090c condrv - ok
21:39:39.0246 0x090c [ 370CE1518F8AC94F045BD9F74BD21F63, 2B697B7801A5ED46992E530CD271C44C3450BA3E17165D41AC15AF8E72781DCB ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:39:39.0257 0x090c cphs - ok
21:39:39.0267 0x090c [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
21:39:39.0277 0x090c CryptSvc - ok
21:39:39.0284 0x090c [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys
21:39:39.0291 0x090c dam - ok
21:39:39.0314 0x090c [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:39:39.0338 0x090c DcomLaunch - ok
21:39:39.0353 0x090c [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
21:39:39.0373 0x090c defragsvc - ok
21:39:39.0387 0x090c [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:39:39.0405 0x090c DeviceAssociationService - ok
21:39:39.0411 0x090c [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
21:39:39.0422 0x090c DeviceInstall - ok
21:39:39.0429 0x090c [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
21:39:39.0440 0x090c Dfsc - ok
21:39:39.0446 0x090c [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:39:39.0455 0x090c dg_ssudbus - ok
21:39:39.0468 0x090c [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
21:39:39.0484 0x090c Dhcp - ok
21:39:39.0545 0x090c [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
21:39:39.0586 0x090c DiagTrack - ok
21:39:39.0600 0x090c [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\WINDOWS\system32\drivers\disk.sys
21:39:39.0612 0x090c disk - ok
21:39:39.0618 0x090c [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
21:39:39.0627 0x090c dmvsc - ok
21:39:39.0637 0x090c [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:39:39.0650 0x090c Dnscache - ok
21:39:39.0658 0x090c [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
21:39:39.0675 0x090c dot3svc - ok
21:39:39.0683 0x090c [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
|
|
16.11.2016, 21:46
| #12 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter 21:39:39.0695 0x090c DPS - ok
21:39:39.0700 0x090c [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:39:39.0707 0x090c drmkaud - ok
21:39:39.0715 0x090c [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
21:39:39.0726 0x090c DsmSvc - ok
21:39:39.0782 0x090c [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:39:39.0836 0x090c DXGKrnl - ok
21:39:39.0841 0x090c EagleX64 - ok
21:39:39.0848 0x090c [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
21:39:39.0859 0x090c Eaphost - ok
21:39:39.0943 0x090c [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
21:39:40.0026 0x090c ebdrv - ok
21:39:40.0040 0x090c [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
21:39:40.0054 0x090c EFS - ok
21:39:40.0059 0x090c [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
21:39:40.0072 0x090c EhStorClass - ok
21:39:40.0079 0x090c [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:39:40.0088 0x090c EhStorTcgDrv - ok
21:39:40.0092 0x090c [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
21:39:40.0100 0x090c ErrDev - ok
21:39:40.0119 0x090c [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
21:39:40.0140 0x090c EventSystem - ok
21:39:40.0165 0x090c [ 5C19A94C43B7490EC9217ADE4506972D, 8B2BCEC92FD71B9549EF34DDAE0A87BB96B6FB23CB2000EA9508C8375C208E85 ] EvtEng c:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:39:40.0186 0x090c EvtEng - ok
21:39:40.0196 0x090c [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
21:39:40.0212 0x090c exfat - ok
21:39:40.0220 0x090c [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
21:39:40.0233 0x090c fastfat - ok
21:39:40.0252 0x090c [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
21:39:40.0279 0x090c Fax - ok
21:39:40.0284 0x090c [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
21:39:40.0293 0x090c fdc - ok
21:39:40.0297 0x090c [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
21:39:40.0305 0x090c fdPHost - ok
21:39:40.0309 0x090c [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
21:39:40.0321 0x090c FDResPub - ok
21:39:40.0328 0x090c [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
21:39:40.0343 0x090c fhsvc - ok
21:39:40.0348 0x090c [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
21:39:40.0357 0x090c FileInfo - ok
21:39:40.0362 0x090c [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
21:39:40.0374 0x090c Filetrace - ok
21:39:40.0379 0x090c [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
21:39:40.0390 0x090c flpydisk - ok
21:39:40.0402 0x090c [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:39:40.0420 0x090c FltMgr - ok
21:39:40.0479 0x090c [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache C:\WINDOWS\system32\FntCache.dll
21:39:40.0521 0x090c FontCache - ok
21:39:40.0530 0x090c [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:39:40.0537 0x090c FontCache3.0.0.0 - ok
21:39:40.0544 0x090c [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
21:39:40.0552 0x090c FsDepends - ok
21:39:40.0556 0x090c [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:39:40.0564 0x090c Fs_Rec - ok
21:39:40.0585 0x090c [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:39:40.0609 0x090c fvevol - ok
21:39:40.0614 0x090c [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
21:39:40.0621 0x090c FxPPM - ok
21:39:40.0627 0x090c [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
21:39:40.0635 0x090c gagp30kx - ok
21:39:40.0646 0x090c [ E6CE7A89183D1840F0FF63694292FFA2, 8907ADCF9967026CD1A9D545E2274569F840F1DFF0E407CC77B6A662267AAC4B ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
21:39:40.0657 0x090c GamesAppIntegrationService - ok
21:39:40.0665 0x090c [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:39:40.0674 0x090c GamesAppService - ok
21:39:40.0679 0x090c [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:39:40.0684 0x090c GEARAspiWDM - ok
21:39:40.0688 0x090c [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
21:39:40.0698 0x090c gencounter - ok
21:39:40.0705 0x090c [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:39:40.0715 0x090c GPIOClx0101 - ok
21:39:40.0752 0x090c [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
21:39:40.0785 0x090c gpsvc - ok
21:39:40.0792 0x090c [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:39:40.0799 0x090c gupdate - ok
21:39:40.0803 0x090c [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:39:40.0811 0x090c gupdatem - ok
21:39:40.0835 0x090c [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
21:39:40.0853 0x090c HdAudAddService - ok
21:39:40.0860 0x090c [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
21:39:40.0869 0x090c HDAudBus - ok
21:39:40.0874 0x090c [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
21:39:40.0881 0x090c HidBatt - ok
21:39:40.0889 0x090c [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
21:39:40.0901 0x090c HidBth - ok
21:39:40.0906 0x090c [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
21:39:40.0914 0x090c hidi2c - ok
21:39:40.0919 0x090c [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
21:39:40.0930 0x090c HidIr - ok
21:39:40.0935 0x090c [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
21:39:40.0948 0x090c hidserv - ok
21:39:40.0953 0x090c [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
21:39:40.0961 0x090c HidUsb - ok
21:39:40.0967 0x090c [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
21:39:40.0986 0x090c hkmsvc - ok
21:39:40.0997 0x090c [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:39:41.0010 0x090c HomeGroupListener - ok
21:39:41.0024 0x090c [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:39:41.0042 0x090c HomeGroupProvider - ok
21:39:41.0048 0x090c [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
21:39:41.0054 0x090c hpdskflt - ok
21:39:41.0105 0x090c [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:39:41.0133 0x090c hpqwmiex - ok
21:39:41.0139 0x090c [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
21:39:41.0149 0x090c HpSAMD - ok
21:39:41.0154 0x090c [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv C:\WINDOWS\system32\Hpservice.exe
21:39:41.0160 0x090c hpsrv - ok
21:39:41.0164 0x090c [ 02F1253476B7F5F818364443DFED3264, 645F51A6781E9DEB381694718EDEF38B02F5345ADCE8860EC2D9483F7C1C7CC2 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
21:39:41.0173 0x090c HPSupportSolutionsFrameworkService - ok
21:39:41.0191 0x090c [ 316CE4F4D31F105534DA16B83F6A44C1, 6CD64E9E1EE8101BB4858C27AD70F0F7FEB65932ADDC7A01331472835085FFD0 ] HPWMISVC c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
21:39:41.0210 0x090c HPWMISVC - ok
21:39:41.0237 0x090c [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
21:39:41.0271 0x090c HTTP - ok
21:39:41.0277 0x090c [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
21:39:41.0285 0x090c hwpolicy - ok
21:39:41.0289 0x090c [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
21:39:41.0298 0x090c hyperkbd - ok
21:39:41.0302 0x090c [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:39:41.0311 0x090c HyperVideo - ok
21:39:41.0318 0x090c [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
21:39:41.0327 0x090c i8042prt - ok
21:39:41.0333 0x090c [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:39:41.0340 0x090c iaLPSSi_GPIO - ok
21:39:41.0346 0x090c [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:39:41.0356 0x090c iaLPSSi_I2C - ok
21:39:41.0374 0x090c [ 4558F084BCB7EFA3E8321C95B4EE736F, 4E088E1A9F9CE9F3FCA9CA2954CA7969135D4A42F632E495070FBAC4051148C2 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
21:39:41.0392 0x090c iaStorA - ok
21:39:41.0413 0x090c [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
21:39:41.0437 0x090c iaStorAV - ok
21:39:41.0443 0x090c [ 3FE5F886F28B78FCED4BD5668902B7FC, 500BF5292051C3E447E94CAE3638D68CEDC2775587787E4DE38D6BCD34160B36 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:39:41.0449 0x090c IAStorDataMgrSvc - ok
21:39:41.0464 0x090c [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
21:39:41.0487 0x090c iaStorV - ok
21:39:41.0495 0x090c [ CF252052BDAA2260EA1441A6E3DBD2F8, 35197DB5CCCFA728B31E40C6F3F027D5E22D771A00FF5D2660D06A69FC6A8807 ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
21:39:41.0503 0x090c ibtusb - ok
21:39:41.0506 0x090c IEEtwCollectorService - ok
21:39:41.0618 0x090c [ 623DB9620F552B480690AD882AFACED1, F44039122CF6001CB40A4032D3C108D9A83F06FC700A5B47D83EF605F83C9D2F ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
21:39:41.0708 0x090c igfx - ok
21:39:41.0725 0x090c [ E766B747824DA1FD97F0DDD8653CB5F4, 1FEFAEB2E672488BAAB9532E3DB368B41C3B200C525ADC3E4DB9E9FF0BC798FC ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:39:41.0737 0x090c igfxCUIService1.0.0.0 - ok
21:39:41.0752 0x090c [ E71AC94964ED675B3ED0727059B7F97B, 5468B5E9B75B10EA0BFBD81827FFC9CABFC69A4065CC5A5792DBC289D4DA27EE ] ikbevent C:\WINDOWS\system32\DRIVERS\ikbevent.sys
21:39:41.0759 0x090c ikbevent - ok
21:39:41.0791 0x090c [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT C:\WINDOWS\System32\ikeext.dll
21:39:41.0825 0x090c IKEEXT - ok
21:39:41.0831 0x090c [ 2FDB67F5B9F4E96B40FDC9D1AA0B686F, B556328D54F886792A89588F3FEFE38F7129E3D7A417CDC012778FA4EF37A8C1 ] imsevent C:\WINDOWS\system32\DRIVERS\imsevent.sys
21:39:41.0837 0x090c imsevent - ok
21:39:41.0848 0x090c [ 3F2BB021CB280880F8C1B7A6FEF9B447, CEC0BF9D6C9CF6E6A9F9B4E656BD47208AC977EDDC11C1C3BCD07EB50BABC017 ] INETMON C:\Windows\System32\Drivers\INETMON.sys
21:39:41.0854 0x090c INETMON - ok
21:39:41.0861 0x090c [ BCB10E24BA8130E92E82CBC109B91FD9, 4FDF9588D9DCFE56DF58CD2A0D9EF6F3CD5E642C08707E83FE0402018B04A5BA ] inspect C:\WINDOWS\system32\DRIVERS\inspect.sys
21:39:41.0871 0x090c inspect - ok
21:39:41.0876 0x090c [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
21:39:41.0885 0x090c intaud_WaveExtensible - ok
21:39:42.0003 0x090c [ 0ED561B13EFE36080760981616107D15, 2FB78BC7825E29A9E216061EC9E4196612B86C6ED5ADB48AA3EBBB8C0E2CCCFF ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:39:42.0091 0x090c IntcAzAudAddService - ok
21:39:42.0133 0x090c [ 890144FA6AB42F2B54EE633BF96A019A, 8741904C66170BA11C78D31681E3759537C0BF2338538678BC64234DB8FDE93F ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
21:39:42.0148 0x090c IntcDAud - ok
21:39:42.0170 0x090c [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:39:42.0189 0x090c Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
21:39:42.0189 0x090c Detect skipped due to KSN trusted
21:39:42.0189 0x090c Intel(R) Capability Licensing Service Interface - ok
21:39:42.0214 0x090c [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:39:42.0237 0x090c Intel(R) Capability Licensing Service TCP IP Interface - ok
21:39:42.0245 0x090c [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
21:39:42.0254 0x090c Intel(R) ME Service - ok
21:39:42.0259 0x090c [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
21:39:42.0267 0x090c intelide - ok
21:39:42.0272 0x090c [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
21:39:42.0282 0x090c intelpep - ok
21:39:42.0289 0x090c [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
21:39:42.0299 0x090c intelppm - ok
21:39:42.0304 0x090c [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:39:42.0317 0x090c IpFilterDriver - ok
21:39:42.0343 0x090c [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
21:39:42.0372 0x090c iphlpsvc - ok
21:39:42.0379 0x090c [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:39:42.0392 0x090c IPMIDRV - ok
21:39:42.0399 0x090c [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
21:39:42.0409 0x090c IPNAT - ok
21:39:42.0446 0x090c [ 17EE7DFC68F1656A00A686DF2FB67E09, 759B66F7C9169B8728ECE9D4800DF218B303CEA4D69DDE20239B7C13EDB1DB65 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:39:42.0464 0x090c iPod Service - ok
21:39:42.0469 0x090c [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
21:39:42.0481 0x090c IRENUM - ok
21:39:42.0485 0x090c [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
21:39:42.0493 0x090c isapnp - ok
21:39:42.0505 0x090c [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
21:39:42.0520 0x090c iScsiPrt - ok
21:39:42.0525 0x090c [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT C:\WINDOWS\System32\drivers\ISCTD64.sys
21:39:42.0533 0x090c ISCT - ok
21:39:42.0541 0x090c [ 2A676B190889ACEDF3AA8D64C269F8AF, 7830536B86BC4233AD4EDD30B6CDEFDCA3969BD53B970BAA6ADCE9C3B88B8593 ] ISCTAgent C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
21:39:42.0551 0x090c ISCTAgent - ok
21:39:42.0556 0x090c [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
21:39:42.0563 0x090c iwdbus - ok
21:39:42.0569 0x090c [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:39:42.0578 0x090c jhi_service - ok
21:39:42.0583 0x090c [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
21:39:42.0591 0x090c kbdclass - ok
21:39:42.0597 0x090c [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
21:39:42.0604 0x090c kbdhid - ok
21:39:42.0609 0x090c [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
21:39:42.0617 0x090c kdnic - ok
21:39:42.0621 0x090c [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
21:39:42.0633 0x090c KeyIso - ok
21:39:42.0638 0x090c [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
21:39:42.0650 0x090c KSecDD - ok
21:39:42.0658 0x090c [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:39:42.0673 0x090c KSecPkg - ok
21:39:42.0677 0x090c [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
21:39:42.0685 0x090c ksthunk - ok
21:39:42.0697 0x090c [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
21:39:42.0716 0x090c KtmRm - ok
21:39:42.0729 0x090c [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
21:39:42.0749 0x090c LanmanServer - ok
21:39:42.0760 0x090c [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:39:42.0778 0x090c LanmanWorkstation - ok
21:39:42.0796 0x090c [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
21:39:42.0816 0x090c lfsvc - ok
21:39:42.0821 0x090c [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
21:39:42.0835 0x090c lltdio - ok
21:39:42.0845 0x090c [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
21:39:42.0858 0x090c lltdsvc - ok
21:39:42.0864 0x090c [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
21:39:42.0872 0x090c lmhosts - ok
21:39:42.0884 0x090c [ E2952760B05A256FB1412D20A41C89C1, B5AF47DF90D5DC8E6549DE1AFF897669E8200D08083D43DF86E34F6EE19C59DA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:39:42.0897 0x090c LMS - ok
21:39:42.0907 0x090c [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
21:39:42.0920 0x090c LSI_SAS - ok
21:39:42.0925 0x090c [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
21:39:42.0934 0x090c LSI_SAS2 - ok
21:39:42.0939 0x090c [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
21:39:42.0951 0x090c LSI_SAS3 - ok
21:39:42.0956 0x090c [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
21:39:42.0969 0x090c LSI_SSS - ok
21:39:42.0989 0x090c [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
21:39:43.0011 0x090c LSM - ok
21:39:43.0019 0x090c [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
21:39:43.0033 0x090c luafv - ok
21:39:43.0039 0x090c [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
21:39:43.0048 0x090c megasas - ok
21:39:43.0064 0x090c [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
21:39:43.0084 0x090c megasr - ok
21:39:43.0090 0x090c [ EB1D78140D6634C32A46AB1006105EDC, 586F988A7272A7E3F6AA2CC9A001A08A3D178A011AE8C095BB7EAD9FFB45AAB1 ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
21:39:43.0097 0x090c MEIx64 - ok
21:39:43.0102 0x090c [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
21:39:43.0113 0x090c MMCSS - ok
21:39:43.0118 0x090c [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
21:39:43.0130 0x090c Modem - ok
21:39:43.0134 0x090c [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
21:39:43.0144 0x090c monitor - ok
21:39:43.0149 0x090c [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
21:39:43.0158 0x090c mouclass - ok
21:39:43.0162 0x090c [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
21:39:43.0170 0x090c mouhid - ok
21:39:43.0176 0x090c [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
21:39:43.0185 0x090c mountmgr - ok
21:39:43.0191 0x090c [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
21:39:43.0202 0x090c mpsdrv - ok
21:39:43.0226 0x090c [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
21:39:43.0255 0x090c MpsSvc - ok
21:39:43.0264 0x090c [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
21:39:43.0275 0x090c MRxDAV - ok
21:39:43.0287 0x090c [ 3AF30CEB99E581E2FADA0B5FC4B551D8, 59BDE83C10D6F31E13B81FC317F1DE0E00793FBA288EAF844E29CFA0EB184502 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:39:43.0302 0x090c mrxsmb - ok
21:39:43.0332 0x090c [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:39:43.0347 0x090c mrxsmb10 - ok
21:39:43.0357 0x090c [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:39:43.0369 0x090c mrxsmb20 - ok
21:39:43.0376 0x090c [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
21:39:43.0385 0x090c MsBridge - ok
21:39:43.0392 0x090c [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
21:39:43.0403 0x090c MSDTC - ok
21:39:43.0411 0x090c [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:39:43.0419 0x090c Msfs - ok
21:39:43.0424 0x090c [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:39:43.0433 0x090c msgpiowin32 - ok
21:39:43.0437 0x090c [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:39:43.0448 0x090c mshidkmdf - ok
21:39:43.0453 0x090c [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
21:39:43.0461 0x090c mshidumdf - ok
21:39:43.0466 0x090c [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
21:39:43.0475 0x090c msisadrv - ok
21:39:43.0482 0x090c [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
21:39:43.0496 0x090c MSiSCSI - ok
21:39:43.0499 0x090c msiserver - ok
21:39:43.0504 0x090c [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:39:43.0512 0x090c MSKSSRV - ok
21:39:43.0517 0x090c [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
21:39:43.0526 0x090c MsLldp - ok
21:39:43.0538 0x090c [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:39:43.0546 0x090c MSPCLOCK - ok
21:39:43.0550 0x090c [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:39:43.0559 0x090c MSPQM - ok
21:39:43.0570 0x090c [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
21:39:43.0587 0x090c MsRPC - ok
21:39:43.0596 0x090c [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
21:39:43.0607 0x090c mssmbios - ok
21:39:43.0612 0x090c [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:39:43.0627 0x090c MSTEE - ok
21:39:43.0637 0x090c [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
21:39:43.0660 0x090c MTConfig - ok
21:39:43.0726 0x090c [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup C:\WINDOWS\system32\Drivers\mup.sys
21:39:43.0735 0x090c Mup - ok
21:39:43.0740 0x090c [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
21:39:43.0748 0x090c mvumis - ok
21:39:43.0757 0x090c [ 4F64EC3699FE208CD4A7A5CD1D53C0D9, D8BE69AA320BB9697B4E3FBB49B15CD99448C83AF45A9170DECA51B441F70E30 ] MyWiFiDHCPDNS c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:39:43.0767 0x090c MyWiFiDHCPDNS - ok
21:39:43.0780 0x090c [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
21:39:43.0797 0x090c napagent - ok
21:39:43.0811 0x090c [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:39:43.0827 0x090c NativeWifiP - ok
21:39:43.0835 0x090c [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
21:39:43.0847 0x090c NcaSvc - ok
21:39:43.0855 0x090c [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
21:39:43.0867 0x090c NcbService - ok
21:39:43.0873 0x090c [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
21:39:43.0883 0x090c NcdAutoSetup - ok
21:39:43.0914 0x090c [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
21:39:43.0954 0x090c NDIS - ok
21:39:43.0960 0x090c [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
21:39:43.0970 0x090c NdisCap - ok
21:39:43.0977 0x090c [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
21:39:43.0988 0x090c NdisImPlatform - ok
21:39:43.0992 0x090c [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:39:44.0001 0x090c NdisTapi - ok
21:39:44.0006 0x090c [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:39:44.0016 0x090c Ndisuio - ok
21:39:44.0021 0x090c [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:39:44.0031 0x090c NdisVirtualBus - ok
21:39:44.0040 0x090c [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:39:44.0054 0x090c NdisWan - ok
21:39:44.0060 0x090c [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:39:44.0073 0x090c NdisWanLegacy - ok
21:39:44.0078 0x090c [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:39:44.0087 0x090c NDProxy - ok
21:39:44.0093 0x090c [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
21:39:44.0105 0x090c Ndu - ok
21:39:44.0116 0x090c [ 3351A92971670764F014A566D1106E2B, EE93B719C5F38386A23CB81FD818EEEA7332FE5119646CE20ED4160B10F17534 ] Neo_VPN C:\WINDOWS\system32\DRIVERS\Neo_VPN.sys
21:39:44.0125 0x090c Neo_VPN - ok
21:39:44.0130 0x090c [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\WINDOWS\system32\DRIVERS\netaapl64.sys
21:39:44.0138 0x090c Netaapl - ok
21:39:44.0154 0x090c [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:39:44.0170 0x090c NetBIOS - ok
21:39:44.0180 0x090c [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:39:44.0197 0x090c NetBT - ok
21:39:44.0203 0x090c [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
21:39:44.0212 0x090c Netlogon - ok
21:39:44.0223 0x090c [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
21:39:44.0241 0x090c Netman - ok
21:39:44.0257 0x090c [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
21:39:44.0279 0x090c netprofm - ok
21:39:44.0295 0x090c [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:39:44.0306 0x090c NetTcpPortSharing - ok
21:39:44.0312 0x090c [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
21:39:44.0322 0x090c netvsc - ok
21:39:44.0418 0x090c [ 576732533EBA47E58E5ACB66A1F69B91, AE36F9B58138972A079DF4AC57089DBE5264B77F75D482F9F474D7177DD9F073 ] NETwNb64 C:\WINDOWS\system32\DRIVERS\Netwbw02.sys
21:39:44.0510 0x090c NETwNb64 - ok
21:39:44.0655 0x090c [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
21:39:44.0671 0x090c NlaSvc - ok
21:39:44.0677 0x090c [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:39:44.0688 0x090c Npfs - ok
21:39:44.0692 0x090c [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
21:39:44.0703 0x090c npsvctrig - ok
21:39:44.0708 0x090c [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
21:39:44.0718 0x090c nsi - ok
21:39:44.0723 0x090c [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
21:39:44.0733 0x090c nsiproxy - ok
21:39:44.0807 0x090c [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:39:44.0858 0x090c Ntfs - ok
21:39:44.0865 0x090c [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
21:39:44.0873 0x090c Null - ok
21:39:45.0123 0x090c [ ECC732D5185408FCC323E56D30170848, 7A7A6C410B65DBB1D59653598D7E5414054588BB88505BE68BFFF0378FD555F3 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
21:39:45.0325 0x090c nvlddmkm - ok
21:39:45.0378 0x090c [ 6C36C459E743DDA0493BD9B0ED3D3D6C, 57A3D800CCF9407BE5DA40330E9E7B9C48227E43D752D6F98E18345DCEFAA6BD ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
21:39:45.0414 0x090c NvNetworkService - ok
21:39:45.0423 0x090c [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
21:39:45.0436 0x090c nvraid - ok
21:39:45.0444 0x090c [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
21:39:45.0462 0x090c nvstor - ok
21:39:45.0982 0x090c [ D6F333620DEF4FDE15311F3AB55AF9D0, 624671856EF19DF6F33797E0FA6B7415BF422E44DDA9F5B00F2F145471FA87E2 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
21:39:46.0416 0x090c NvStreamSvc - ok
21:39:46.0464 0x090c [ 2AF7D8BCD8912FC16AA15268CDCF2454, 3A2E5ADFC6213A6EA83F78026518EC7EE0DD4BBA7C210CB7A41007BB57DC0636 ] nvsvc C:\Windows\system32\nvvsvc.exe
21:39:46.0486 0x090c nvsvc - ok
21:39:46.0491 0x090c [ 50A7C3FEA78D11B546EA9B0C25FBC6AB, E91313580D631473801E0995AF8A1FD43EC47FF7709ADEF3DCD80D7BC25878D7 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
21:39:46.0497 0x090c nvvad_WaveExtensible - ok
21:39:46.0501 0x090c [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
21:39:46.0510 0x090c nv_agp - ok
21:39:46.0517 0x090c [ 6363650D553572A305CDBF90F452C1BF, 15A499D8F403D66FDD2FA5AD607606E93FD82B845FBB6ECC63DF58EFC13CBA57 ] omniserv C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
21:39:46.0522 0x090c omniserv - detected UnsignedFile.Multi.Generic ( 1 )
21:39:46.0522 0x090c Detect skipped due to KSN trusted
21:39:46.0522 0x090c omniserv - ok
21:39:46.0533 0x090c [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
21:39:46.0547 0x090c p2pimsvc - ok
21:39:46.0560 0x090c [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
21:39:46.0575 0x090c p2psvc - ok
21:39:46.0580 0x090c [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport C:\WINDOWS\System32\drivers\parport.sys
21:39:46.0590 0x090c Parport - ok
21:39:46.0595 0x090c [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
21:39:46.0604 0x090c partmgr - ok
21:39:46.0617 0x090c [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
21:39:46.0633 0x090c PcaSvc - ok
21:39:46.0645 0x090c [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
21:39:46.0658 0x090c pci - ok
21:39:46.0662 0x090c [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
21:39:46.0669 0x090c pciide - ok
21:39:46.0675 0x090c [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
21:39:46.0684 0x090c pcmcia - ok
21:39:46.0687 0x090c [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
21:39:46.0695 0x090c pcw - ok
21:39:46.0700 0x090c [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
21:39:46.0709 0x090c pdc - ok
21:39:46.0727 0x090c [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
21:39:46.0745 0x090c PEAUTH - ok
21:39:46.0817 0x090c [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
21:39:46.0825 0x090c PerfHost - ok
21:39:46.0879 0x090c [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
21:39:46.0915 0x090c pla - ok
21:39:46.0922 0x090c [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
21:39:46.0938 0x090c PlugPlay - ok
21:39:46.0944 0x090c [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
21:39:46.0957 0x090c PNRPAutoReg - ok
21:39:46.0967 0x090c [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
21:39:46.0984 0x090c PNRPsvc - ok
21:39:46.0999 0x090c [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
21:39:47.0014 0x090c PolicyAgent - ok
21:39:47.0026 0x090c [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
21:39:47.0039 0x090c Power - ok
21:39:47.0044 0x090c [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:39:47.0056 0x090c PptpMiniport - ok
21:39:47.0142 0x090c [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:39:47.0198 0x090c PrintNotify - ok
21:39:47.0209 0x090c [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
21:39:47.0218 0x090c Processor - ok
21:39:47.0226 0x090c [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
21:39:47.0239 0x090c ProfSvc - ok
21:39:47.0245 0x090c [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
21:39:47.0255 0x090c Psched - ok
21:39:47.0264 0x090c [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
21:39:47.0277 0x090c QWAVE - ok
21:39:47.0282 0x090c [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
21:39:47.0290 0x090c QWAVEdrv - ok
21:39:47.0294 0x090c [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:39:47.0304 0x090c RasAcd - ok
21:39:47.0310 0x090c [ D5ECE7E7F349EB3C4B152AFF3577280D, 3A5D3E440D1ED72D654BBFE30A73667F055C0AD04375C22C202F21BF75B612B2 ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
21:39:47.0321 0x090c RasAgileVpn - ok
21:39:47.0327 0x090c [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:39:47.0340 0x090c RasAuto - ok
21:39:47.0356 0x090c [ 235624C147E3CB4C288D5D3D8E8D64A2, B3F182019DBAD9C761FE9F62EAED34AD5902B41A13A766D814FC3E2EA29D8D92 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:39:47.0366 0x090c Rasl2tp - ok
21:39:47.0380 0x090c [ 15C0034561FE5B03FA376F1A6232478B, 0F9B5C2BD7D8803FF3C5ED957D3F0859F2A59B74510E4659FBF05EDCBF230208 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:39:47.0397 0x090c RasMan - ok
21:39:47.0403 0x090c [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:39:47.0416 0x090c RasPppoe - ok
21:39:47.0424 0x090c [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
21:39:47.0433 0x090c RasSstp - ok
21:39:47.0446 0x090c [ D67ED4AB59D1EF66B05AD1A81AC28B26, 72E750A9A6B484D8BEDE52FA6DABEF4D95765DE491152E1F6C856D0590B50C28 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:39:47.0459 0x090c rdbss - ok
21:39:47.0464 0x090c [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
21:39:47.0471 0x090c rdpbus - ok
21:39:47.0479 0x090c [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
21:39:47.0489 0x090c RDPDR - ok
21:39:47.0494 0x090c [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:39:47.0501 0x090c RdpVideoMiniport - ok
21:39:47.0509 0x090c [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
21:39:47.0520 0x090c rdyboost - ok
21:39:47.0544 0x090c [ 759FB47B96FA0A9D767B3269F76E5E25, B19EF75D2ECC9041F2578D6D4574302A06A12E551CE6211C049CD642E92D4D3E ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
21:39:47.0572 0x090c ReFS - ok
21:39:47.0581 0x090c [ A95A26DFB35369C305816F78B0B1ACF8, B96F10357D1CFF943C969CAB6B8FB6AC1D82526CCB94A1C2C4FC99B7F302C13B ] RegSrvc c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:39:47.0588 0x090c RegSrvc - ok
21:39:47.0596 0x090c [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:39:47.0608 0x090c RemoteAccess - ok
21:39:47.0615 0x090c [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:39:47.0625 0x090c RemoteRegistry - ok
21:39:47.0635 0x090c [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
21:39:47.0645 0x090c RFCOMM - ok
21:39:47.0651 0x090c [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
21:39:47.0661 0x090c RpcEptMapper - ok
21:39:47.0665 0x090c [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
21:39:47.0673 0x090c RpcLocator - ok
21:39:47.0696 0x090c [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:39:47.0721 0x090c RpcSs - ok
21:39:47.0733 0x090c [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
21:39:47.0744 0x090c rspndr - ok
21:39:47.0754 0x090c [ E902D36DD94CB4A0568DF9C26D6E4D70, B7A4FA56B6B4F88AB54A4EF94804F7D8C11C6536C39F3CE4756D5F9298C45198 ] RSUSBSTOR C:\WINDOWS\System32\Drivers\RtsUStor.sys
21:39:47.0763 0x090c RSUSBSTOR - ok
21:39:47.0776 0x090c [ DBB7A8F0CE30AD6C6F986D38176A5D4B, 254BBD07F972955E5818F7557330EB9CD566E6FB2E5EDC1EFA43C03CDE37BA9B ] RSUSBVSTOR C:\WINDOWS\System32\Drivers\RtsUVStor.sys
21:39:47.0786 0x090c RSUSBVSTOR - ok
21:39:47.0796 0x090c [ B85642BE0761159B63CFFC137384E17F, ACB04AC581EE475543AEA3003E3643DC2A007C4D3F1831C120F1D07BDAFF2FA4 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
21:39:47.0805 0x090c RtkAudioService - ok
21:39:47.0848 0x090c [ 7CC0D898D00675F14BA0C4BF056C1CF4, E9203DD2A201AEF206C1A4177FD564DDFC8E7468DC268BD99389626A2C6593D3 ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
21:39:47.0871 0x090c RTL8168 - ok
21:39:47.0904 0x090c [ 8726F14AF8E20424EA651FE5FAF3B2CE, 81BE218BD086F890B30F64F72F7557C638CBACF67E89607625B9A879F49DCDE5 ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
21:39:47.0920 0x090c RTSPER - ok
21:39:47.0925 0x090c [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
21:39:47.0935 0x090c s3cap - ok
21:39:47.0940 0x090c [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
21:39:47.0950 0x090c SamSs - ok
21:39:47.0958 0x090c [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
21:39:47.0969 0x090c sbp2port - ok
21:39:47.0979 0x090c [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
21:39:47.0994 0x090c SCardSvr - ok
21:39:48.0019 0x090c [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
21:39:48.0032 0x090c ScDeviceEnum - ok
21:39:48.0037 0x090c [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:39:48.0045 0x090c scfilter - ok
21:39:48.0082 0x090c [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:39:48.0113 0x090c Schedule - ok
21:39:48.0122 0x090c [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
21:39:48.0136 0x090c SCPolicySvc - ok
21:39:48.0157 0x090c [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
21:39:48.0169 0x090c sdbus - ok
21:39:48.0176 0x090c [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
21:39:48.0185 0x090c sdstor - ok
21:39:48.0190 0x090c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
21:39:48.0198 0x090c secdrv - ok
21:39:48.0204 0x090c [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\WINDOWS\system32\seclogon.dll
21:39:48.0215 0x090c seclogon - ok
21:39:48.0220 0x090c [ 719647B6C618D2CC135CAC17DC25E7F8, BD128D3BB191D870EA6072467A046A6A4C8A7114E3A9E3D69DB4B6282C2D5DCD ] SeLow C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys
21:39:48.0227 0x090c SeLow - ok
21:39:48.0233 0x090c [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
21:39:48.0245 0x090c SENS - ok
21:39:48.0277 0x090c [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
21:39:48.0289 0x090c SensrSvc - ok
21:39:48.0314 0x090c [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
21:39:48.0322 0x090c SerCx - ok
21:39:48.0328 0x090c [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
21:39:48.0338 0x090c SerCx2 - ok
21:39:48.0343 0x090c [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
21:39:48.0350 0x090c Serenum - ok
21:39:48.0354 0x090c [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial C:\WINDOWS\System32\drivers\serial.sys
21:39:48.0362 0x090c Serial - ok
21:39:48.0367 0x090c [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
21:39:48.0374 0x090c sermouse - ok
21:39:48.0387 0x090c [ 389458EA0B5FAEBA325FAC47B9ED589E, F7F37A1F1E912069F65E4629FF733F080AE675DF6FE255AF48F5E23EB47D0622 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
21:39:48.0401 0x090c SessionEnv - ok
21:39:48.0533 0x090c [ E9BDC3C1B67723856895626A192E40B6, ACE27E45293F753066889EA8B5249088A3C53F290541A8C4CAD90EE2857182D8 ] SEVPNCLIENT C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
21:39:48.0628 0x090c SEVPNCLIENT - ok
21:39:48.0639 0x090c [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
21:39:48.0650 0x090c sfloppy - ok
21:39:48.0664 0x090c [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:39:48.0684 0x090c SharedAccess - ok
21:39:48.0702 0x090c [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:39:48.0728 0x090c ShellHWDetection - ok
21:39:48.0735 0x090c [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:39:48.0744 0x090c SiSRaid2 - ok
21:39:48.0749 0x090c [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
21:39:48.0758 0x090c SiSRaid4 - ok
21:39:48.0771 0x090c [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:39:48.0786 0x090c SkypeUpdate - ok
21:39:48.0792 0x090c [ 13DFE743C3AF65458F5C7777A9B16CCC, 47BA69856E008756CF9168F809DB0B0728CE7945B3323114578A94B70313CE79 ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
21:39:48.0802 0x090c SmbDrv - ok
21:39:48.0806 0x090c [ 3D3A01F8499FD703513A33ED0C8921C2, B51326A1C70D3E4564C27A157D372D9CF706D8EAF5D40170E293B8F302BC7CBF ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
21:39:48.0812 0x090c SmbDrvI - ok
21:39:48.0816 0x090c [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
21:39:48.0825 0x090c smphost - ok
21:39:48.0832 0x090c [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
21:39:48.0843 0x090c SNMPTRAP - ok
21:39:48.0856 0x090c [ B312191DCBECE3C07DF9A99DE433B126, D9D9028331C703CE9B9EC75772D29BB04FE43B3A7895F8CBB3AC701CA0548F8D ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
21:39:48.0872 0x090c spaceport - ok
21:39:48.0878 0x090c [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
21:39:48.0886 0x090c SpbCx - ok
21:39:48.0909 0x090c [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler C:\WINDOWS\System32\spoolsv.exe
21:39:48.0939 0x090c Spooler - ok
21:39:49.0110 0x090c [ F264662C057A54AA2DE41B3C7551712F, 2C123C6ACD967CDF1AD2855187CF3D8357B16A4FD9C2F18AE54CFA384165FA11 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
21:39:49.0281 0x090c sppsvc - ok
21:39:49.0344 0x090c [ 36B082C7A764A34FB1DC72D975870B61, 572CB632D9FDC1183F7BF8BFCBC51765C647945E0C13D1C91ADE3D0E76DF83BC ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:39:49.0359 0x090c srv - ok
21:39:49.0378 0x090c [ F5849909D4B29B4E3D4445F943E5C7E3, 3FCA1423753716FE1AFDD27EE1E13C4D779A3C976185B5C998EF1A9A39BFC186 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
21:39:49.0402 0x090c srv2 - ok
21:39:49.0412 0x090c [ FABC49666708EA562549E78E6FBF3191, BE1FEBFC259308B39C727915C41A67CD50720A6E2A68D148F4F2F926AED43B02 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:39:49.0425 0x090c srvnet - ok
21:39:49.0435 0x090c [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:39:49.0448 0x090c SSDPSRV - ok
21:39:49.0456 0x090c [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
21:39:49.0470 0x090c SstpSvc - ok
21:39:49.0478 0x090c [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:39:49.0487 0x090c ssudmdm - ok
21:39:49.0528 0x090c [ 90E22D7CDE08E07446D238A569BCAB7C, 3D4F413D0B0C9CF28D06E0476F24AC6441C8678DF786D9971B39C91C9F9B8020 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:39:49.0566 0x090c Steam Client Service - ok
21:39:49.0572 0x090c [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
21:39:49.0580 0x090c stexstor - ok
21:39:49.0599 0x090c [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
21:39:49.0619 0x090c stisvc - ok
21:39:49.0626 0x090c [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
21:39:49.0635 0x090c storahci - ok
21:39:49.0640 0x090c [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
21:39:49.0648 0x090c storflt - ok
21:39:49.0653 0x090c [ 0EDD1F4D470C775740625B06A60C9DD5, 94964D0A793B1C984E87095249EE383A5E669D05BA6BF9F655587887E6CE3C19 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
21:39:49.0661 0x090c stornvme - ok
21:39:49.0666 0x090c [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
21:39:49.0677 0x090c StorSvc - ok
21:39:49.0682 0x090c [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
21:39:49.0690 0x090c storvsc - ok
21:39:49.0695 0x090c [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
21:39:49.0704 0x090c svsvc - ok
21:39:49.0708 0x090c [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
21:39:49.0716 0x090c swenum - ok
21:39:49.0738 0x090c [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
21:39:49.0764 0x090c swprv - ok
21:39:49.0783 0x090c [ 12711DAB3FCCC1649FE149B61C26C80A, E0779DEF5BC8738A88B8D9FEEB85702AF6CC009C3967F29CD366894F773DE436 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:39:49.0802 0x090c SynTP - ok
21:39:49.0825 0x090c [ A2BFBF3B936246C370CF6496AF460116, 209045390AC182714D25EC7F2B7A6A3B184545CDF5663A581C3C08094792D2CA ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
21:39:49.0833 0x090c SynTPEnhService - ok
21:39:49.0880 0x090c [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\WINDOWS\system32\sysmain.dll
21:39:49.0912 0x090c SysMain - ok
21:39:49.0924 0x090c [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:39:49.0938 0x090c SystemEventsBroker - ok
21:39:49.0947 0x090c [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:39:49.0962 0x090c TabletInputService - ok
21:39:49.0980 0x090c [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:39:49.0995 0x090c TapiSrv - ok
21:39:50.0080 0x090c [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
21:39:50.0141 0x090c Tcpip - ok
21:39:50.0222 0x090c [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:39:50.0292 0x090c TCPIP6 - ok
21:39:50.0302 0x090c [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
21:39:50.0310 0x090c tcpipreg - ok
21:39:50.0318 0x090c [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
21:39:50.0330 0x090c tdx - ok
21:39:50.0536 0x090c [ F2F02E436BA56A96A06E4427C5787B6E, 1562FF264011A15AC69808CB74F387917C4E8ED3B91546B12933BE10B6E20B3A ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
21:39:50.0696 0x090c TeamViewer - ok
21:39:50.0711 0x090c [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
21:39:50.0720 0x090c terminpt - ok
21:39:50.0758 0x090c [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
21:39:50.0790 0x090c TermService - ok
21:39:50.0797 0x090c [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
21:39:50.0807 0x090c Themes - ok
21:39:50.0813 0x090c [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
21:39:50.0822 0x090c THREADORDER - ok
21:39:50.0832 0x090c [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
21:39:50.0847 0x090c TimeBroker - ok
21:39:50.0853 0x090c [ 0FE2FC59C0B9A3CA3EC2B18E1CCCF2DD, 26AE50F2263DDDE3C6678566E2B198966CE870DF4B254F2D655752F742F63C12 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
21:39:50.0863 0x090c TomTomHOMEService - ok
21:39:50.0871 0x090c [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
21:39:50.0883 0x090c TPM - ok
21:39:50.0889 0x090c [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
21:39:50.0899 0x090c TrkWks - ok
21:39:50.0903 0x090c [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:39:50.0913 0x090c TrustedInstaller - ok
21:39:50.0918 0x090c [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
21:39:50.0927 0x090c TsUsbFlt - ok
21:39:50.0931 0x090c [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:39:50.0938 0x090c TsUsbGD - ok
21:39:50.0945 0x090c [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
21:39:50.0954 0x090c tunnel - ok
21:39:50.0958 0x090c [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
21:39:50.0966 0x090c uagp35 - ok
21:39:50.0972 0x090c [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
21:39:50.0980 0x090c UASPStor - ok
21:39:50.0989 0x090c [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
21:39:51.0000 0x090c UCX01000 - ok
21:39:51.0009 0x090c [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
21:39:51.0021 0x090c udfs - ok
21:39:51.0026 0x090c [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
21:39:51.0033 0x090c UEFI - ok
21:39:51.0040 0x090c [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
21:39:51.0048 0x090c UI0Detect - ok
21:39:51.0052 0x090c [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
21:39:51.0060 0x090c uliagpkx - ok
21:39:51.0064 0x090c [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
21:39:51.0073 0x090c umbus - ok
21:39:51.0077 0x090c [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
21:39:51.0084 0x090c UmPass - ok
21:39:51.0093 0x090c [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
21:39:51.0106 0x090c UmRdpService - ok
21:39:51.0118 0x090c [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:39:51.0134 0x090c upnphost - ok
21:39:51.0138 0x090c [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
21:39:51.0146 0x090c USBAAPL64 - ok
21:39:51.0152 0x090c [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
21:39:51.0162 0x090c usbccgp - ok
21:39:51.0167 0x090c [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
21:39:51.0175 0x090c usbcir - ok
21:39:51.0182 0x090c [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
21:39:51.0190 0x090c usbehci - ok
21:39:51.0206 0x090c [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
21:39:51.0222 0x090c usbhub - ok
21:39:51.0238 0x090c [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
21:39:51.0254 0x090c USBHUB3 - ok
21:39:51.0259 0x090c [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
21:39:51.0267 0x090c usbohci - ok
21:39:51.0271 0x090c [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
21:39:51.0278 0x090c usbprint - ok
21:39:51.0285 0x090c [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:39:51.0295 0x090c USBSTOR - ok
21:39:51.0299 0x090c [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
21:39:51.0307 0x090c usbuhci - ok
21:39:51.0317 0x090c [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
21:39:51.0338 0x090c usbvideo - ok
21:39:51.0393 0x090c [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:39:51.0407 0x090c USBXHCI - ok
21:39:51.0413 0x090c [ B73B55A194BEAF71985211279585A316, A40B0E362ABF4F33818696150086C4FBCA38F6E306838C825C73F57F55A49347 ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
21:39:51.0422 0x090c usb_rndisx - ok
21:39:51.0426 0x090c [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
21:39:51.0435 0x090c VaultSvc - ok
21:39:51.0441 0x090c [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
21:39:51.0456 0x090c VBoxUSBMon - ok
21:39:51.0462 0x090c [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
21:39:51.0471 0x090c vdrvroot - ok
21:39:51.0505 0x090c [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
21:39:51.0545 0x090c vds - ok
21:39:51.0554 0x090c [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
21:39:51.0564 0x090c VerifierExt - ok
21:39:51.0600 0x090c [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
21:39:51.0619 0x090c vhdmp - ok
21:39:51.0624 0x090c [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
21:39:51.0631 0x090c viaide - ok
21:39:51.0637 0x090c [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
21:39:51.0646 0x090c vmbus - ok
21:39:51.0650 0x090c [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
21:39:51.0658 0x090c VMBusHID - ok
21:39:51.0677 0x090c [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:39:51.0697 0x090c vmicguestinterface - ok
21:39:51.0710 0x090c [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
21:39:51.0730 0x090c vmicheartbeat - ok
21:39:51.0748 0x090c [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:39:51.0767 0x090c vmickvpexchange - ok
21:39:51.0783 0x090c [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
21:39:51.0801 0x090c vmicrdv - ok
21:39:51.0817 0x090c [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
21:39:51.0834 0x090c vmicshutdown - ok
21:39:51.0847 0x090c [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
21:39:51.0864 0x090c vmictimesync - ok
21:39:51.0877 0x090c [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
21:39:51.0897 0x090c vmicvss - ok
21:39:51.0905 0x090c [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
21:39:51.0917 0x090c volmgr - ok
21:39:51.0929 0x090c [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
21:39:51.0944 0x090c volmgrx - ok
21:39:51.0957 0x090c [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
21:39:51.0974 0x090c volsnap - ok
21:39:51.0979 0x090c [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
21:39:51.0991 0x090c vpci - ok
21:39:51.0998 0x090c [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
21:39:52.0010 0x090c vsmraid - ok
21:39:52.0049 0x090c [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS C:\WINDOWS\system32\vssvc.exe
21:39:52.0084 0x090c VSS - ok
21:39:52.0096 0x090c [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
21:39:52.0115 0x090c VSTXRAID - ok
21:39:52.0120 0x090c [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
21:39:52.0130 0x090c vwifibus - ok
21:39:52.0136 0x090c [ 29AB43937FFDA0B0FB56984226E698C6, 6A1A559964FE5D594E54988C46149969E6FFD5A8D5A6862E14648B608794CC29 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
21:39:52.0144 0x090c vwififlt - ok
21:39:52.0150 0x090c [ 8B8624A93E3F88CB923AEB05B6313227, 2856B63CD376BF2B1A9129581E7B9207588D4EAFD29A2C8D98F176FEAFDE26A9 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
21:39:52.0160 0x090c vwifimp - ok
21:39:52.0174 0x090c [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
21:39:52.0190 0x090c W32Time - ok
21:39:52.0199 0x090c [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
21:39:52.0208 0x090c w3logsvc - ok
21:39:52.0214 0x090c [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
21:39:52.0227 0x090c WacomPen - ok
21:39:52.0237 0x090c [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:39:52.0245 0x090c Wanarp - ok
21:39:52.0248 0x090c [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:39:52.0259 0x090c Wanarpv6 - ok
21:39:52.0274 0x090c [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:39:52.0291 0x090c WAS - ok
21:39:52.0337 0x090c [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine C:\WINDOWS\system32\wbengine.exe
21:39:52.0371 0x090c wbengine - ok
21:39:52.0386 0x090c [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
21:39:52.0402 0x090c WbioSrvc - ok
21:39:52.0415 0x090c [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
21:39:52.0429 0x090c Wcmsvc - ok
21:39:52.0442 0x090c [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
21:39:52.0457 0x090c wcncsvc - ok
21:39:52.0462 0x090c [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:39:52.0473 0x090c WcsPlugInService - ok
21:39:52.0478 0x090c [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
21:39:52.0489 0x090c WdBoot - ok
21:39:52.0510 0x090c [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
21:39:52.0535 0x090c Wdf01000 - ok
21:39:52.0547 0x090c [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
21:39:52.0559 0x090c WdFilter - ok
21:39:52.0566 0x090c [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
21:39:52.0577 0x090c WdiServiceHost - ok
21:39:52.0582 0x090c [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
21:39:52.0597 0x090c WdiSystemHost - ok
21:39:52.0603 0x090c [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:39:52.0613 0x090c WdNisDrv - ok
21:39:52.0617 0x090c WdNisSvc - ok
21:39:52.0626 0x090c [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient C:\WINDOWS\System32\webclnt.dll
21:39:52.0640 0x090c WebClient - ok
21:39:52.0649 0x090c [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
21:39:52.0661 0x090c Wecsvc - ok
21:39:52.0666 0x090c [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
21:39:52.0675 0x090c WEPHOSTSVC - ok
21:39:52.0683 0x090c [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
21:39:52.0697 0x090c wercplsupport - ok
21:39:52.0704 0x090c [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
21:39:52.0718 0x090c WerSvc - ok
21:39:52.0726 0x090c [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
21:39:52.0737 0x090c WFPLWFS - ok
21:39:52.0742 0x090c [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
21:39:52.0755 0x090c WiaRpc - ok
21:39:52.0760 0x090c [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
21:39:52.0770 0x090c WIMMount - ok
21:39:52.0772 0x090c WinDefend - ok
21:39:52.0799 0x090c [ 0E70990EC2E5D2331AA5E88DB0CFB826, 79DFF565C3FCBC691E8FEB669CEC00E340FD2A2AFA4488D23A7CC63A2A98A5C1 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:39:52.0822 0x090c WinHttpAutoProxySvc - ok
21:39:52.0863 0x090c [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:39:52.0875 0x090c Winmgmt - ok
21:39:52.0953 0x090c [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM C:\WINDOWS\system32\WsmSvc.dll
21:39:53.0018 0x090c WinRM - ok
21:39:53.0033 0x090c [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb C:\WINDOWS\System32\drivers\WinUSB.sys
21:39:53.0041 0x090c WinUsb - ok
21:39:53.0047 0x090c [ AA92B8971F951EFF901C476212438638, 027FB513DCAE6B223D5C02F57A1B6AAB5A6D0EEFE1E654EA469B21324190F9F6 ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
21:39:53.0054 0x090c WirelessButtonDriver - ok
21:39:53.0102 0x090c [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
21:39:53.0140 0x090c WlanSvc - ok
21:39:53.0185 0x090c [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
21:39:53.0231 0x090c wlidsvc - ok
21:39:53.0238 0x090c [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
21:39:53.0246 0x090c WmiAcpi - ok
21:39:53.0256 0x090c [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:39:53.0270 0x090c wmiApSrv - ok
21:39:53.0274 0x090c WMPNetworkSvc - ok
21:39:53.0285 0x090c [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
21:39:53.0297 0x090c Wof - ok
21:39:53.0363 0x090c [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
21:39:53.0422 0x090c workfolderssvc - ok
21:39:53.0429 0x090c [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:39:53.0437 0x090c wpcfltr - ok
21:39:53.0449 0x090c [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
21:39:53.0459 0x090c WPCSvc - ok
21:39:53.0465 0x090c [ DBDCE2378F65F0A07D4644AC103037E7, 99714F0CD31297C9831BAF04768F467F6E0BF710C859CEDCA83069226BF1A68A ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
21:39:53.0478 0x090c WPDBusEnum - ok
21:39:53.0483 0x090c [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:39:53.0493 0x090c WpdUpFltr - ok
21:39:53.0497 0x090c [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:39:53.0507 0x090c ws2ifsl - ok
21:39:53.0514 0x090c [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\WINDOWS\System32\wscsvc.dll
21:39:53.0527 0x090c wscsvc - ok
21:39:53.0532 0x090c [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
21:39:53.0541 0x090c WSDPrintDevice - ok
21:39:53.0546 0x090c [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan C:\WINDOWS\System32\drivers\WSDScan.sys
21:39:53.0555 0x090c WSDScan - ok
21:39:53.0559 0x090c WSearch - ok
21:39:53.0658 0x090c [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
21:39:53.0753 0x090c WSService - ok
21:39:53.0868 0x090c [ F3F60C88A6BBC8D0C68FE5B1C91181AF, AF9A4D282CD4BB1127BC3F48AB89DC294408D96F7906553C636F37D1503CFA48 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
21:39:53.0951 0x090c wuauserv - ok
21:39:53.0963 0x090c [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
21:39:53.0975 0x090c WudfPf - ok
21:39:53.0983 0x090c [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
21:39:53.0996 0x090c WUDFRd - ok
21:39:54.0003 0x090c [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP C:\WINDOWS\System32\drivers\WUDFRd.sys
21:39:54.0015 0x090c WUDFSensorLP - ok
21:39:54.0021 0x090c [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
21:39:54.0034 0x090c wudfsvc - ok
21:39:54.0042 0x090c [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\System32\drivers\WUDFRd.sys
21:39:54.0053 0x090c WUDFWpdFs - ok
21:39:54.0061 0x090c [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:39:54.0075 0x090c WUDFWpdMtp - ok
21:39:54.0091 0x090c [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
21:39:54.0112 0x090c WwanSvc - ok
21:39:54.0182 0x090c X6va062 - ok
21:39:54.0193 0x090c [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
21:39:54.0211 0x090c XQHDrv - ok
21:39:54.0325 0x090c [ C5C719DF55C343D59310AC7ECC536D10, C435C416298731C5DF8E9C4EBBC791B10E86B2EF364905B4F0BB4D941504404F ] ZeroConfigService c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
21:39:54.0416 0x090c ZeroConfigService - ok
21:39:54.0433 0x090c ================ Scan global ===============================
21:39:54.0439 0x090c [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\WINDOWS\system32\basesrv.dll
21:39:54.0446 0x090c [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
21:39:54.0455 0x090c [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
21:39:54.0471 0x090c [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
21:39:54.0479 0x090c [ Global ] - ok
21:39:54.0479 0x090c ================ Scan MBR ==================================
21:39:54.0481 0x090c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:39:54.0528 0x090c \Device\Harddisk0\DR0 - ok
21:39:54.0528 0x090c ================ Scan VBR ==================================
21:39:54.0530 0x090c [ FA7C188809C82BB4DD9E457B2C1B0AF9 ] \Device\Harddisk0\DR0\Partition1
21:39:54.0531 0x090c \Device\Harddisk0\DR0\Partition1 - ok
21:39:54.0533 0x090c [ 205A266BC05FA47AA760B3812D17F024 ] \Device\Harddisk0\DR0\Partition2
21:39:54.0534 0x090c \Device\Harddisk0\DR0\Partition2 - ok
21:39:54.0536 0x090c [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
21:39:54.0536 0x090c \Device\Harddisk0\DR0\Partition3 - ok
21:39:54.0539 0x090c [ F99601A74DF60B7A0F4E7A42AA89590E ] \Device\Harddisk0\DR0\Partition4
21:39:54.0540 0x090c \Device\Harddisk0\DR0\Partition4 - ok
21:39:54.0542 0x090c [ 59274B4A885960EB5961B7F3D029C4CF ] \Device\Harddisk0\DR0\Partition5
21:39:54.0544 0x090c \Device\Harddisk0\DR0\Partition5 - ok
21:39:54.0544 0x090c ================ Scan generic autorun ======================
21:39:54.0754 0x090c [ 567690D78D43BE2C19BA73C47923A189, E0E20075559438A9AC152D2DAEFE3E1689DBE7345FB2CB584624E5C0892F5D86 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
21:39:54.0897 0x090c RTHDVCPL - ok
21:39:55.0027 0x090c [ A181AD1F10A08579EA148CE93A59C7E6, 204E5B94795B9C6391F314BA044E3227242080B832A1E0392849CBD4AA18DCEA ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
21:39:55.0076 0x090c NvBackend - ok
21:39:55.0084 0x090c [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\Windows\system32\rundll32.exe
21:39:55.0094 0x090c ShadowPlay - ok
21:39:55.0094 0x090c SynTPEnh - ok
21:39:55.0244 0x090c [ E9BDC3C1B67723856895626A192E40B6, ACE27E45293F753066889EA8B5249088A3C53F290541A8C4CAD90EE2857182D8 ] C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
21:39:55.0341 0x090c SoftEther VPN Client UI Helper - ok
21:39:55.0383 0x090c [ EB34C71AC9BF2532820AE0F8952EE437, 775561BB60F6DBEAB76C0DFE186C60EF95D0246E15CB1A8BBACD1F38C2EA9EA1 ] C:\Program Files\iTunes\iTunesHelper.exe
21:39:55.0396 0x090c iTunesHelper - ok
21:39:55.0437 0x090c [ AADD1A163DA2BEFC4C1CE8646A7F79CB, 181401C7145F9853CEDFC3A5C392D4597B52CF55C4E344B002F5C02B84F3409B ] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
21:39:55.0475 0x090c COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} - ok
21:39:55.0484 0x090c [ 396A498982C926020B0D4429806FAD1E, 8BF3BB687E43DBC3AF8B2E7F1BBE429AD007E11C9C8E8A82B9ABC809A7DBE28F ] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
21:39:55.0491 0x090c AccelerometerSysTrayApplet - ok
21:39:55.0501 0x090c [ ED70821F65B120FDBD76FCFF746FE219, D038CC5198099B2FE02F2789E6817E96E210E27CF6C0E8FF39E6746B31653DDE ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:39:55.0512 0x090c SunJavaUpdateSched - ok
21:39:55.0538 0x090c [ B977B08DD02BA559893C479BFF3AA2D2, BF9C5EA4779964C59483430353ED9A20BA15C9F31F519FAA39E3650BED556F29 ] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
21:39:55.0560 0x090c BlueStacks Agent - ok
21:39:55.0578 0x090c [ C055411BF5412576E0191A61854C3671, 1D8FA9A922C6C954D8DB48344D7DC391EBD6DD5A19F8AF639569C6AE151AF1E7 ] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
21:39:55.0595 0x090c HPMessageService - ok
21:39:55.0603 0x090c [ 706A181D11D8589B0A9E2625E72423CF, BC0624B3BF5312DF5B54D6B23ADD7C6E94708968E4ACC3340BE23A3E87A8D2E0 ] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
21:39:55.0611 0x090c TomTomHOME.exe - ok
21:39:55.0614 0x090c Skype - ok
21:39:55.0688 0x090c [ 73391D61EA9307F37F45616B9D1C43E5, D66F7930BC854044BCF12892E00B5A0AE746B0945101C72BAD13F18471C7CC17 ] C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
21:39:55.0720 0x090c Power2GoExpress8 - ok
21:39:55.0811 0x090c [ D2CE6EA0E9F641D7153462D40C6B4193, 3AAE5239F951E29497D759326BDC23E19644B763DC5661CA4E4980418195C37D ] C:\Program Files (x86)\Steam\steam.exe
21:39:55.0859 0x090c Steam - ok
21:39:55.0861 0x090c Object required for P2P: [ D2CE6EA0E9F641D7153462D40C6B4193 ] C:\Program Files (x86)\Steam\steam.exe
21:39:56.0019 0x090c Object send P2P result: true
21:39:56.0094 0x090c [ 11B4662A4DD118132E2648837920AF86, 7643E9CF00C0393ED4A1D294DABA84DCEB6BE696E5B520D413284BAB16CE1CD5 ] C:\Users\ducanh\AppData\Roaming\Spotify\SpotifyWebHelper.exe
21:39:56.0121 0x090c Spotify Web Helper - ok
21:39:56.0300 0x090c [ 6F8EDF5A5D23AD1F4FC168047C80ECE4, CAA605301395B70E724688515936A6C84F90D18EFFBF21CEDD336268AACA8D02 ] C:\Users\ducanh\AppData\Roaming\Spotify\Spotify.exe
21:39:56.0414 0x090c Spotify - ok
21:39:56.0439 0x090c [ 91121D27CAD2674B8FDB248D83EDFF19, 2C4E24AD1C868D80FBA7B07DC562FF8F4C627AFA1B4181E2F851FA09B8A7753A ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
21:39:56.0445 0x090c iCloudServices - ok
21:39:56.0449 0x090c [ 0705790B008B80230F933F8B0877FB2E, 1B3650F91C96FD4154745291313A6B234959E05B59D199C079F9C521CB622A5D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
21:39:56.0456 0x090c iCloudDrive - ok
21:39:56.0465 0x090c [ 11ACBAF2756292133A962B504D5B5BFB, BFD36AF36F26062B44545D6DABEEDA83734930FAA4ADB512AC4905A81322BADA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
21:39:56.0477 0x090c iCloudPhotos - ok
21:39:56.0481 0x090c [ AA0E71B308A339F3D43DDBABB4CF8B07, F951460AE24D42FD6DB1BFFE6342DBEB9CC5368B4AD3ACD426E1C3FB37C1AD68 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
21:39:56.0487 0x090c ApplePhotoStreams - ok
21:39:56.0489 0x090c ProxyGate - ok
21:39:56.0521 0x090c [ 73391D61EA9307F37F45616B9D1C43E5, D66F7930BC854044BCF12892E00B5A0AE746B0945101C72BAD13F18471C7CC17 ] C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
21:39:56.0553 0x090c Power2GoExpress8 - ok
21:39:56.0557 0x090c WindowsWelcomeCenter - ok
21:39:56.0586 0x090c [ 9131DC75E7AA3AC61DB05D88EB69913F, 21D6888DDDB0DCEF5373287AEACAB174CE7C23434C40AA6E705BC1457EFDB226 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
21:39:56.0609 0x090c GoogleChromeAutoLaunch_15C18641D08A33B982F2E6FA5AE802A6 - ok
21:39:56.0615 0x090c [ 706A181D11D8589B0A9E2625E72423CF, BC0624B3BF5312DF5B54D6B23ADD7C6E94708968E4ACC3340BE23A3E87A8D2E0 ] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
21:39:56.0624 0x090c TomTomHOME.exe - ok
21:39:56.0626 0x090c Skype - ok
21:39:56.0629 0x090c AV detected via SS2: COMODO Antivirus, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61000 ( enabled : updated )
21:39:56.0630 0x090c AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
21:39:56.0630 0x090c FW detected via SS2: COMODO Firewall, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61010 ( enabled )
21:39:56.0732 0x090c ============================================================
21:39:56.0732 0x090c Scan finished
21:39:56.0732 0x090c ============================================================
21:39:56.0739 0x1578 Detected object count: 0
21:39:56.0739 0x1578 Actual detected object count: 0
21:40:53.0861 0x0890 ============================================================
21:40:53.0861 0x0890 Scan started
21:40:53.0861 0x0890 Mode: Manual; SigCheck; TDLFS;
21:40:53.0861 0x0890 ============================================================
21:40:53.0861 0x0890 KSN ping started
21:40:53.0933 0x0890 KSN ping finished: true
21:40:54.0160 0x0890 ================ Scan system memory ========================
21:40:54.0160 0x0890 System memory - ok
21:40:54.0160 0x0890 ================ Scan services =============================
21:40:54.0267 0x0890 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
21:40:54.0278 0x0890 1394ohci - ok
21:40:54.0284 0x0890 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
21:40:54.0293 0x0890 3ware - ok
21:40:54.0297 0x0890 [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
21:40:54.0302 0x0890 Accelerometer - ok
21:40:54.0321 0x0890 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
21:40:54.0339 0x0890 ACPI - ok
21:40:54.0345 0x0890 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
21:40:54.0353 0x0890 acpiex - ok
21:40:54.0357 0x0890 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
21:40:54.0365 0x0890 acpipagr - ok
21:40:54.0370 0x0890 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
21:40:54.0377 0x0890 AcpiPmi - ok
21:40:54.0384 0x0890 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
21:40:54.0391 0x0890 acpitime - ok
21:40:54.0411 0x0890 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:40:54.0434 0x0890 ADP80XX - ok
21:40:54.0445 0x0890 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
21:40:54.0457 0x0890 AeLookupSvc - ok
21:40:54.0472 0x0890 [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
21:40:54.0489 0x0890 AFD - ok
21:40:54.0495 0x0890 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
21:40:54.0503 0x0890 agp440 - ok
21:40:54.0508 0x0890 [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:40:54.0516 0x0890 ahcache - ok
21:40:54.0521 0x0890 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
21:40:54.0530 0x0890 ALG - ok
21:40:54.0535 0x0890 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
21:40:54.0543 0x0890 AmdK8 - ok
21:40:54.0549 0x0890 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
21:40:54.0557 0x0890 AmdPPM - ok
21:40:54.0563 0x0890 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
21:40:54.0571 0x0890 amdsata - ok
21:40:54.0579 0x0890 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
21:40:54.0590 0x0890 amdsbs - ok
21:40:54.0595 0x0890 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
21:40:54.0602 0x0890 amdxata - ok
21:40:54.0607 0x0890 [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:40:54.0618 0x0890 AppHostSvc - ok
21:40:54.0631 0x0890 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
21:40:54.0642 0x0890 AppID - ok
21:40:54.0648 0x0890 [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
21:40:54.0655 0x0890 AppIDSvc - ok
21:40:54.0661 0x0890 [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\WINDOWS\System32\appinfo.dll
21:40:54.0669 0x0890 Appinfo - ok
21:40:54.0677 0x0890 [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:40:54.0683 0x0890 Apple Mobile Device Service - ok
21:40:54.0698 0x0890 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
21:40:54.0716 0x0890 AppReadiness - ok
21:40:54.0746 0x0890 [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
21:40:54.0776 0x0890 AppXSvc - ok
21:40:54.0783 0x0890 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
21:40:54.0791 0x0890 arcsas - ok
21:40:54.0807 0x0890 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:40:54.0814 0x0890 aspnet_state - ok
21:40:54.0818 0x0890 [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:40:54.0827 0x0890 AsyncMac - ok
21:40:54.0830 0x0890 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
21:40:54.0837 0x0890 atapi - ok
21:40:54.0845 0x0890 [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:40:54.0855 0x0890 AudioEndpointBuilder - ok
21:40:54.0877 0x0890 [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
21:40:54.0902 0x0890 Audiosrv - ok
21:40:54.0908 0x0890 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
21:40:54.0917 0x0890 AxInstSV - ok
|
|
16.11.2016, 21:48
| #13 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter 21:40:54.0932 0x0890 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
21:40:54.0951 0x0890 b06bdrv - ok
21:40:54.0957 0x0890 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:40:54.0965 0x0890 BasicDisplay - ok
21:40:54.0970 0x0890 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
21:40:54.0977 0x0890 BasicRender - ok
21:40:54.0982 0x0890 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
21:40:54.0987 0x0890 bcmfn2 - ok
21:40:54.0997 0x0890 [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC C:\WINDOWS\System32\bdesvc.dll
21:40:55.0010 0x0890 BDESVC - ok
21:40:55.0015 0x0890 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:40:55.0022 0x0890 Beep - ok
21:40:55.0044 0x0890 [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\WINDOWS\System32\bfe.dll
21:40:55.0067 0x0890 BFE - ok
21:40:55.0092 0x0890 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
21:40:55.0117 0x0890 BITS - ok
21:40:55.0131 0x0890 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:40:55.0143 0x0890 Bonjour Service - ok
21:40:55.0149 0x0890 [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
21:40:55.0157 0x0890 bowser - ok
21:40:55.0166 0x0890 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:40:55.0178 0x0890 BrokerInfrastructure - ok
21:40:55.0185 0x0890 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
21:40:55.0195 0x0890 Browser - ok
21:40:55.0213 0x0890 [ F702AFA6B13BB143757AEFAE423B6865, 65FDFD3C642D81EE95CBC68D6BA4FD69EF6A83F9AF7948DC993C783DF1AA8772 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:40:55.0225 0x0890 BstHdAndroidSvc - ok
21:40:55.0232 0x0890 [ 464D771701C5413C1EDD504D745698F0, C82B9F9C621654914F980EC9DA5879703014066E93CC7D21B9B241E0D16FA325 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:40:55.0239 0x0890 BstHdDrv - ok
21:40:55.0250 0x0890 [ 202A388A6CC6D1A00CBB6E3EAEAA2B89, 588AB5DA62C98E8B3B332043BFCC03A8286FBF4E2C2181E4C9295B247BE75DD8 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:40:55.0262 0x0890 BstHdLogRotatorSvc - ok
21:40:55.0282 0x0890 [ 250FB3DBCB2E4E538EA466ABF48859E7, A9C839CB675DABDB71571E60BC69C1C027F129FABA821454C1BBF5B4A7CC9725 ] BstHdUpdaterSvc C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
21:40:55.0301 0x0890 BstHdUpdaterSvc - ok
21:40:55.0307 0x0890 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:40:55.0315 0x0890 BthAvrcpTg - ok
21:40:55.0320 0x0890 [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
21:40:55.0328 0x0890 BthEnum - ok
21:40:55.0332 0x0890 [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
21:40:55.0340 0x0890 BthHFEnum - ok
21:40:55.0344 0x0890 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
21:40:55.0351 0x0890 bthhfhid - ok
21:40:55.0365 0x0890 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
21:40:55.0380 0x0890 BthHFSrv - ok
21:40:55.0393 0x0890 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
21:40:55.0403 0x0890 BthLEEnum - ok
21:40:55.0407 0x0890 [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
21:40:55.0415 0x0890 BTHMODEM - ok
21:40:55.0423 0x0890 [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
21:40:55.0431 0x0890 BthPan - ok
21:40:55.0468 0x0890 [ 0CC00ADC1B84C93FB46E1A0974E956E1, 64C759244651B916901F4D0C82C3D6034532A20714A72FD26FC9D050B99E230B ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
21:40:55.0496 0x0890 BTHPORT - ok
21:40:55.0502 0x0890 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
21:40:55.0510 0x0890 bthserv - ok
21:40:55.0515 0x0890 [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
21:40:55.0523 0x0890 BTHUSB - ok
21:40:55.0529 0x0890 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:40:55.0537 0x0890 cdfs - ok
21:40:55.0545 0x0890 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
21:40:55.0554 0x0890 cdrom - ok
21:40:55.0560 0x0890 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
21:40:55.0570 0x0890 CertPropSvc - ok
21:40:55.0575 0x0890 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
21:40:55.0582 0x0890 circlass - ok
21:40:55.0593 0x0890 [ 28D94419E856D61D7686ED942611D15E, AC9ED48AA09B09B854512B35E905C8C4C451B34F59951661367392AF64E8ADE7 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
21:40:55.0606 0x0890 CLFS - ok
21:40:55.0615 0x0890 [ 424F3A5D9AAC65B50DBEB4B1CA91F051, E2DD6C25E4B23B834A54A24548D857D118A2222DC80CFEDE176030206C0E52A2 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
21:40:55.0623 0x0890 CLVirtualDrive - ok
21:40:55.0628 0x0890 [ 9731DAFDC7B690B2C7752FDFF045BFD8, 9DDBDC4FE519AF38993EAB2F16602B2B71CF8675BDD1F651F22DFA8C5C2C80F7 ] clwvd C:\WINDOWS\system32\DRIVERS\clwvd.sys
21:40:55.0633 0x0890 clwvd - ok
21:40:55.0638 0x0890 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
21:40:55.0645 0x0890 CmBatt - ok
21:40:55.0795 0x0890 [ C206F35A1D0B32B6A65BE2B5D7049B84, BAFE47BE23CB99EE93FAA311B57222E0D7A2B086C0941691995AE3100C52ED6E ] CmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
21:40:55.0926 0x0890 CmdAgent - ok
21:40:55.0937 0x0890 [ 71164DBB8653DA47EAE327C9F5CD9C89, 5D625F1BE7DAAA532FF2D724E67C92D58E9117736F08C75CCA79244671B03979 ] cmderd C:\WINDOWS\system32\DRIVERS\cmderd.sys
21:40:55.0943 0x0890 cmderd - ok
21:40:55.0964 0x0890 [ 56BBC037D128C2599924C8F5AE9CB771, 99100DAC33325285F7AC57B7CFD4AA93A1A94E4A612C5B553E772C26DD765B29 ] cmdGuard C:\WINDOWS\system32\DRIVERS\cmdguard.sys
21:40:55.0986 0x0890 cmdGuard - ok
21:40:55.0990 0x0890 [ 25CA230277CEFDEC6876D7871FAC7CCA, E0523E67BC102968DA19380366A43C2E6C719BB988ADB6127F0C8FC5B071DF2E ] cmdhlp C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
21:40:55.0997 0x0890 cmdhlp - ok
21:40:56.0066 0x0890 [ BB82B9D06353F78E4F1DDF04A25F1CC7, 55FD0B3C8187B65C75488B8D86A48E5C47B620AA6426786B28DD21BE9728A6AE ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
21:40:56.0109 0x0890 cmdvirth - ok
21:40:56.0129 0x0890 [ 5CBF8B3E27D824D2AA2A34AFB406F1D0, 955AF1307C02D2B4DEEB150F37F77B8631C0F3C450037C233E9E27D6571B0265 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
21:40:56.0148 0x0890 CNG - ok
21:40:56.0155 0x0890 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
21:40:56.0163 0x0890 CompositeBus - ok
21:40:56.0167 0x0890 COMSysApp - ok
21:40:56.0171 0x0890 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
21:40:56.0179 0x0890 condrv - ok
21:40:56.0256 0x0890 [ 370CE1518F8AC94F045BD9F74BD21F63, 2B697B7801A5ED46992E530CD271C44C3450BA3E17165D41AC15AF8E72781DCB ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:40:56.0266 0x0890 cphs - ok
21:40:56.0273 0x0890 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
21:40:56.0283 0x0890 CryptSvc - ok
21:40:56.0291 0x0890 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys
21:40:56.0298 0x0890 dam - ok
21:40:56.0320 0x0890 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:40:56.0341 0x0890 DcomLaunch - ok
21:40:56.0355 0x0890 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
21:40:56.0371 0x0890 defragsvc - ok
21:40:56.0383 0x0890 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:40:56.0397 0x0890 DeviceAssociationService - ok
21:40:56.0403 0x0890 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
21:40:56.0412 0x0890 DeviceInstall - ok
21:40:56.0419 0x0890 [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
21:40:56.0428 0x0890 Dfsc - ok
21:40:56.0434 0x0890 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:40:56.0440 0x0890 dg_ssudbus - ok
21:40:56.0451 0x0890 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
21:40:56.0464 0x0890 Dhcp - ok
21:40:56.0501 0x0890 [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
21:40:56.0536 0x0890 DiagTrack - ok
21:40:56.0546 0x0890 [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\WINDOWS\system32\drivers\disk.sys
21:40:56.0555 0x0890 disk - ok
21:40:56.0559 0x0890 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
21:40:56.0566 0x0890 dmvsc - ok
21:40:56.0574 0x0890 [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:40:56.0585 0x0890 Dnscache - ok
21:40:56.0594 0x0890 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
21:40:56.0606 0x0890 dot3svc - ok
21:40:56.0613 0x0890 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
21:40:56.0624 0x0890 DPS - ok
21:40:56.0630 0x0890 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:40:56.0637 0x0890 drmkaud - ok
21:40:56.0646 0x0890 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
21:40:56.0657 0x0890 DsmSvc - ok
21:40:56.0693 0x0890 [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:40:56.0731 0x0890 DXGKrnl - ok
21:40:56.0738 0x0890 EagleX64 - ok
21:40:56.0745 0x0890 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
21:40:56.0755 0x0890 Eaphost - ok
21:40:56.0827 0x0890 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
21:40:56.0902 0x0890 ebdrv - ok
21:40:56.0911 0x0890 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
21:40:56.0919 0x0890 EFS - ok
21:40:56.0924 0x0890 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
21:40:56.0931 0x0890 EhStorClass - ok
21:40:56.0937 0x0890 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:40:56.0946 0x0890 EhStorTcgDrv - ok
21:40:56.0950 0x0890 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
21:40:56.0957 0x0890 ErrDev - ok
21:40:56.0973 0x0890 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
21:40:56.0988 0x0890 EventSystem - ok
21:40:57.0008 0x0890 [ 5C19A94C43B7490EC9217ADE4506972D, 8B2BCEC92FD71B9549EF34DDAE0A87BB96B6FB23CB2000EA9508C8375C208E85 ] EvtEng c:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:40:57.0024 0x0890 EvtEng - ok
21:40:57.0032 0x0890 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
21:40:57.0046 0x0890 exfat - ok
21:40:57.0053 0x0890 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
21:40:57.0064 0x0890 fastfat - ok
21:40:57.0081 0x0890 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
21:40:57.0100 0x0890 Fax - ok
21:40:57.0105 0x0890 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
21:40:57.0113 0x0890 fdc - ok
21:40:57.0116 0x0890 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
21:40:57.0124 0x0890 fdPHost - ok
21:40:57.0128 0x0890 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
21:40:57.0137 0x0890 FDResPub - ok
21:40:57.0142 0x0890 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
21:40:57.0152 0x0890 fhsvc - ok
21:40:57.0157 0x0890 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
21:40:57.0165 0x0890 FileInfo - ok
21:40:57.0168 0x0890 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
21:40:57.0180 0x0890 Filetrace - ok
21:40:57.0183 0x0890 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
21:40:57.0191 0x0890 flpydisk - ok
21:40:57.0202 0x0890 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:40:57.0216 0x0890 FltMgr - ok
21:40:57.0249 0x0890 [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache C:\WINDOWS\system32\FntCache.dll
21:40:57.0281 0x0890 FontCache - ok
21:40:57.0289 0x0890 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:40:57.0294 0x0890 FontCache3.0.0.0 - ok
21:40:57.0299 0x0890 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
21:40:57.0307 0x0890 FsDepends - ok
21:40:57.0311 0x0890 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:40:57.0317 0x0890 Fs_Rec - ok
21:40:57.0332 0x0890 [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:40:57.0351 0x0890 fvevol - ok
21:40:57.0355 0x0890 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
21:40:57.0363 0x0890 FxPPM - ok
21:40:57.0367 0x0890 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
21:40:57.0376 0x0890 gagp30kx - ok
21:40:57.0387 0x0890 [ E6CE7A89183D1840F0FF63694292FFA2, 8907ADCF9967026CD1A9D545E2274569F840F1DFF0E407CC77B6A662267AAC4B ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
21:40:57.0395 0x0890 GamesAppIntegrationService - ok
21:40:57.0403 0x0890 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:40:57.0410 0x0890 GamesAppService - ok
21:40:57.0416 0x0890 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:40:57.0420 0x0890 GEARAspiWDM - ok
21:40:57.0428 0x0890 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
21:40:57.0435 0x0890 gencounter - ok
21:40:57.0442 0x0890 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:40:57.0451 0x0890 GPIOClx0101 - ok
21:40:57.0482 0x0890 [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
21:40:57.0512 0x0890 gpsvc - ok
21:40:57.0519 0x0890 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:40:57.0526 0x0890 gupdate - ok
21:40:57.0528 0x0890 [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:40:57.0535 0x0890 gupdatem - ok
21:40:57.0549 0x0890 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
21:40:57.0563 0x0890 HdAudAddService - ok
21:40:57.0568 0x0890 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
21:40:57.0576 0x0890 HDAudBus - ok
21:40:57.0580 0x0890 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
21:40:57.0587 0x0890 HidBatt - ok
21:40:57.0593 0x0890 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
21:40:57.0601 0x0890 HidBth - ok
21:40:57.0606 0x0890 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
21:40:57.0615 0x0890 hidi2c - ok
21:40:57.0620 0x0890 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
21:40:57.0630 0x0890 HidIr - ok
21:40:57.0634 0x0890 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
21:40:57.0643 0x0890 hidserv - ok
21:40:57.0647 0x0890 [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
21:40:57.0654 0x0890 HidUsb - ok
21:40:57.0659 0x0890 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
21:40:57.0668 0x0890 hkmsvc - ok
21:40:57.0677 0x0890 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:40:57.0688 0x0890 HomeGroupListener - ok
21:40:57.0701 0x0890 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:40:57.0717 0x0890 HomeGroupProvider - ok
21:40:57.0721 0x0890 [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
21:40:57.0726 0x0890 hpdskflt - ok
21:40:57.0754 0x0890 [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:40:57.0777 0x0890 hpqwmiex - ok
21:40:57.0783 0x0890 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
21:40:57.0790 0x0890 HpSAMD - ok
21:40:57.0795 0x0890 [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv C:\WINDOWS\system32\Hpservice.exe
21:40:57.0800 0x0890 hpsrv - ok
21:40:57.0803 0x0890 [ 02F1253476B7F5F818364443DFED3264, 645F51A6781E9DEB381694718EDEF38B02F5345ADCE8860EC2D9483F7C1C7CC2 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
21:40:57.0809 0x0890 HPSupportSolutionsFrameworkService - ok
21:40:57.0841 0x0890 [ 316CE4F4D31F105534DA16B83F6A44C1, 6CD64E9E1EE8101BB4858C27AD70F0F7FEB65932ADDC7A01331472835085FFD0 ] HPWMISVC c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
21:40:57.0856 0x0890 HPWMISVC - ok
21:40:57.0882 0x0890 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
21:40:57.0908 0x0890 HTTP - ok
21:40:57.0913 0x0890 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
21:40:57.0919 0x0890 hwpolicy - ok
21:40:57.0924 0x0890 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
21:40:57.0931 0x0890 hyperkbd - ok
21:40:57.0934 0x0890 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:40:57.0941 0x0890 HyperVideo - ok
21:40:57.0947 0x0890 [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
21:40:57.0956 0x0890 i8042prt - ok
21:40:57.0961 0x0890 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:40:57.0966 0x0890 iaLPSSi_GPIO - ok
21:40:57.0971 0x0890 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:40:57.0978 0x0890 iaLPSSi_I2C - ok
21:40:57.0994 0x0890 [ 4558F084BCB7EFA3E8321C95B4EE736F, 4E088E1A9F9CE9F3FCA9CA2954CA7969135D4A42F632E495070FBAC4051148C2 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
21:40:58.0008 0x0890 iaStorA - ok
21:40:58.0025 0x0890 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
21:40:58.0040 0x0890 iaStorAV - ok
21:40:58.0045 0x0890 [ 3FE5F886F28B78FCED4BD5668902B7FC, 500BF5292051C3E447E94CAE3638D68CEDC2775587787E4DE38D6BCD34160B36 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:40:58.0049 0x0890 IAStorDataMgrSvc - ok
21:40:58.0061 0x0890 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
21:40:58.0076 0x0890 iaStorV - ok
21:40:58.0083 0x0890 [ CF252052BDAA2260EA1441A6E3DBD2F8, 35197DB5CCCFA728B31E40C6F3F027D5E22D771A00FF5D2660D06A69FC6A8807 ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
21:40:58.0090 0x0890 ibtusb - ok
21:40:58.0093 0x0890 IEEtwCollectorService - ok
21:40:58.0193 0x0890 [ 623DB9620F552B480690AD882AFACED1, F44039122CF6001CB40A4032D3C108D9A83F06FC700A5B47D83EF605F83C9D2F ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
21:40:58.0263 0x0890 igfx - ok
21:40:58.0277 0x0890 [ E766B747824DA1FD97F0DDD8653CB5F4, 1FEFAEB2E672488BAAB9532E3DB368B41C3B200C525ADC3E4DB9E9FF0BC798FC ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:40:58.0287 0x0890 igfxCUIService1.0.0.0 - ok
21:40:58.0291 0x0890 [ E71AC94964ED675B3ED0727059B7F97B, 5468B5E9B75B10EA0BFBD81827FFC9CABFC69A4065CC5A5792DBC289D4DA27EE ] ikbevent C:\WINDOWS\system32\DRIVERS\ikbevent.sys
21:40:58.0296 0x0890 ikbevent - ok
21:40:58.0321 0x0890 [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT C:\WINDOWS\System32\ikeext.dll
21:40:58.0346 0x0890 IKEEXT - ok
21:40:58.0351 0x0890 [ 2FDB67F5B9F4E96B40FDC9D1AA0B686F, B556328D54F886792A89588F3FEFE38F7129E3D7A417CDC012778FA4EF37A8C1 ] imsevent C:\WINDOWS\system32\DRIVERS\imsevent.sys
21:40:58.0357 0x0890 imsevent - ok
21:40:58.0362 0x0890 [ 3F2BB021CB280880F8C1B7A6FEF9B447, CEC0BF9D6C9CF6E6A9F9B4E656BD47208AC977EDDC11C1C3BCD07EB50BABC017 ] INETMON C:\Windows\System32\Drivers\INETMON.sys
21:40:58.0367 0x0890 INETMON - ok
21:40:58.0374 0x0890 [ BCB10E24BA8130E92E82CBC109B91FD9, 4FDF9588D9DCFE56DF58CD2A0D9EF6F3CD5E642C08707E83FE0402018B04A5BA ] inspect C:\WINDOWS\system32\DRIVERS\inspect.sys
21:40:58.0382 0x0890 inspect - ok
21:40:58.0386 0x0890 [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
21:40:58.0391 0x0890 intaud_WaveExtensible - ok
21:40:58.0500 0x0890 [ 0ED561B13EFE36080760981616107D15, 2FB78BC7825E29A9E216061EC9E4196612B86C6ED5ADB48AA3EBBB8C0E2CCCFF ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:40:58.0578 0x0890 IntcAzAudAddService - ok
21:40:58.0597 0x0890 [ 890144FA6AB42F2B54EE633BF96A019A, 8741904C66170BA11C78D31681E3759537C0BF2338538678BC64234DB8FDE93F ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
21:40:58.0611 0x0890 IntcDAud - ok
21:40:58.0635 0x0890 [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:40:58.0656 0x0890 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
21:40:58.0656 0x0890 Detect skipped due to KSN trusted
21:40:58.0656 0x0890 Intel(R) Capability Licensing Service Interface - ok
21:40:58.0677 0x0890 [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:40:58.0697 0x0890 Intel(R) Capability Licensing Service TCP IP Interface - ok
21:40:58.0706 0x0890 [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
21:40:58.0715 0x0890 Intel(R) ME Service - ok
21:40:58.0720 0x0890 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
21:40:58.0727 0x0890 intelide - ok
21:40:58.0731 0x0890 [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
21:40:58.0739 0x0890 intelpep - ok
21:40:58.0746 0x0890 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
21:40:58.0756 0x0890 intelppm - ok
21:40:58.0761 0x0890 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:40:58.0773 0x0890 IpFilterDriver - ok
21:40:58.0797 0x0890 [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
21:40:58.0823 0x0890 iphlpsvc - ok
21:40:58.0829 0x0890 [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:40:58.0840 0x0890 IPMIDRV - ok
21:40:58.0847 0x0890 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
21:40:58.0858 0x0890 IPNAT - ok
21:40:58.0876 0x0890 [ 17EE7DFC68F1656A00A686DF2FB67E09, 759B66F7C9169B8728ECE9D4800DF218B303CEA4D69DDE20239B7C13EDB1DB65 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:40:58.0897 0x0890 iPod Service - ok
21:40:58.0904 0x0890 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
21:40:58.0916 0x0890 IRENUM - ok
21:40:58.0920 0x0890 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
21:40:58.0930 0x0890 isapnp - ok
21:40:58.0941 0x0890 [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
21:40:58.0955 0x0890 iScsiPrt - ok
21:40:58.0960 0x0890 [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT C:\WINDOWS\System32\drivers\ISCTD64.sys
21:40:58.0967 0x0890 ISCT - ok
21:40:58.0988 0x0890 [ 2A676B190889ACEDF3AA8D64C269F8AF, 7830536B86BC4233AD4EDD30B6CDEFDCA3969BD53B970BAA6ADCE9C3B88B8593 ] ISCTAgent C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
21:40:58.0996 0x0890 ISCTAgent - ok
21:40:59.0000 0x0890 [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
21:40:59.0006 0x0890 iwdbus - ok
21:40:59.0012 0x0890 [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
21:40:59.0020 0x0890 jhi_service - ok
21:40:59.0025 0x0890 [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
21:40:59.0033 0x0890 kbdclass - ok
21:40:59.0037 0x0890 [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
21:40:59.0045 0x0890 kbdhid - ok
21:40:59.0049 0x0890 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
21:40:59.0057 0x0890 kdnic - ok
21:40:59.0062 0x0890 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
21:40:59.0071 0x0890 KeyIso - ok
21:40:59.0076 0x0890 [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
21:40:59.0085 0x0890 KSecDD - ok
21:40:59.0092 0x0890 [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:40:59.0103 0x0890 KSecPkg - ok
21:40:59.0107 0x0890 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
21:40:59.0115 0x0890 ksthunk - ok
21:40:59.0125 0x0890 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
21:40:59.0139 0x0890 KtmRm - ok
21:40:59.0150 0x0890 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
21:40:59.0163 0x0890 LanmanServer - ok
21:40:59.0172 0x0890 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:40:59.0185 0x0890 LanmanWorkstation - ok
21:40:59.0200 0x0890 [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
21:40:59.0217 0x0890 lfsvc - ok
21:40:59.0221 0x0890 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
21:40:59.0231 0x0890 lltdio - ok
21:40:59.0240 0x0890 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
21:40:59.0254 0x0890 lltdsvc - ok
21:40:59.0257 0x0890 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
21:40:59.0266 0x0890 lmhosts - ok
21:40:59.0279 0x0890 [ E2952760B05A256FB1412D20A41C89C1, B5AF47DF90D5DC8E6549DE1AFF897669E8200D08083D43DF86E34F6EE19C59DA ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:40:59.0291 0x0890 LMS - ok
21:40:59.0298 0x0890 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
21:40:59.0307 0x0890 LSI_SAS - ok
21:40:59.0312 0x0890 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
21:40:59.0320 0x0890 LSI_SAS2 - ok
21:40:59.0325 0x0890 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
21:40:59.0334 0x0890 LSI_SAS3 - ok
21:40:59.0339 0x0890 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
21:40:59.0347 0x0890 LSI_SSS - ok
21:40:59.0369 0x0890 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
21:40:59.0391 0x0890 LSM - ok
21:40:59.0399 0x0890 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
21:40:59.0409 0x0890 luafv - ok
21:40:59.0418 0x0890 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
21:40:59.0426 0x0890 megasas - ok
21:40:59.0441 0x0890 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
21:40:59.0460 0x0890 megasr - ok
21:40:59.0465 0x0890 [ EB1D78140D6634C32A46AB1006105EDC, 586F988A7272A7E3F6AA2CC9A001A08A3D178A011AE8C095BB7EAD9FFB45AAB1 ] MEIx64 C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
21:40:59.0472 0x0890 MEIx64 - ok
21:40:59.0477 0x0890 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
21:40:59.0486 0x0890 MMCSS - ok
21:40:59.0490 0x0890 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
21:40:59.0499 0x0890 Modem - ok
21:40:59.0503 0x0890 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
21:40:59.0510 0x0890 monitor - ok
21:40:59.0515 0x0890 [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
21:40:59.0522 0x0890 mouclass - ok
21:40:59.0527 0x0890 [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
21:40:59.0534 0x0890 mouhid - ok
21:40:59.0539 0x0890 [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
21:40:59.0547 0x0890 mountmgr - ok
21:40:59.0552 0x0890 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
21:40:59.0559 0x0890 mpsdrv - ok
21:40:59.0581 0x0890 [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
21:40:59.0603 0x0890 MpsSvc - ok
21:40:59.0611 0x0890 [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
21:40:59.0619 0x0890 MRxDAV - ok
21:40:59.0631 0x0890 [ 3AF30CEB99E581E2FADA0B5FC4B551D8, 59BDE83C10D6F31E13B81FC317F1DE0E00793FBA288EAF844E29CFA0EB184502 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:40:59.0644 0x0890 mrxsmb - ok
21:40:59.0655 0x0890 [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:40:59.0667 0x0890 mrxsmb10 - ok
21:40:59.0675 0x0890 [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:40:59.0685 0x0890 mrxsmb20 - ok
21:40:59.0690 0x0890 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
21:40:59.0699 0x0890 MsBridge - ok
21:40:59.0705 0x0890 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
21:40:59.0715 0x0890 MSDTC - ok
21:40:59.0721 0x0890 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:40:59.0729 0x0890 Msfs - ok
21:40:59.0733 0x0890 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:40:59.0741 0x0890 msgpiowin32 - ok
21:40:59.0744 0x0890 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:40:59.0752 0x0890 mshidkmdf - ok
21:40:59.0755 0x0890 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
21:40:59.0763 0x0890 mshidumdf - ok
21:40:59.0767 0x0890 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
21:40:59.0773 0x0890 msisadrv - ok
21:40:59.0780 0x0890 [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
21:40:59.0790 0x0890 MSiSCSI - ok
21:40:59.0793 0x0890 msiserver - ok
21:40:59.0796 0x0890 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:40:59.0803 0x0890 MSKSSRV - ok
21:40:59.0807 0x0890 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
21:40:59.0815 0x0890 MsLldp - ok
21:40:59.0818 0x0890 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:40:59.0826 0x0890 MSPCLOCK - ok
21:40:59.0829 0x0890 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:40:59.0837 0x0890 MSPQM - ok
21:40:59.0847 0x0890 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
21:40:59.0860 0x0890 MsRPC - ok
21:40:59.0866 0x0890 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
21:40:59.0873 0x0890 mssmbios - ok
21:40:59.0877 0x0890 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:40:59.0884 0x0890 MSTEE - ok
21:40:59.0888 0x0890 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
21:40:59.0896 0x0890 MTConfig - ok
21:40:59.0902 0x0890 [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup C:\WINDOWS\system32\Drivers\mup.sys
21:40:59.0911 0x0890 Mup - ok
21:40:59.0915 0x0890 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
21:40:59.0923 0x0890 mvumis - ok
21:40:59.0932 0x0890 [ 4F64EC3699FE208CD4A7A5CD1D53C0D9, D8BE69AA320BB9697B4E3FBB49B15CD99448C83AF45A9170DECA51B441F70E30 ] MyWiFiDHCPDNS c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:40:59.0941 0x0890 MyWiFiDHCPDNS - ok
21:40:59.0953 0x0890 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
21:40:59.0968 0x0890 napagent - ok
21:40:59.0980 0x0890 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:40:59.0994 0x0890 NativeWifiP - ok
21:41:00.0002 0x0890 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
21:41:00.0013 0x0890 NcaSvc - ok
21:41:00.0019 0x0890 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
21:41:00.0030 0x0890 NcbService - ok
21:41:00.0034 0x0890 [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
21:41:00.0043 0x0890 NcdAutoSetup - ok
21:41:00.0069 0x0890 [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
21:41:00.0097 0x0890 NDIS - ok
21:41:00.0103 0x0890 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
21:41:00.0110 0x0890 NdisCap - ok
21:41:00.0116 0x0890 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
21:41:00.0125 0x0890 NdisImPlatform - ok
21:41:00.0129 0x0890 [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:41:00.0136 0x0890 NdisTapi - ok
21:41:00.0140 0x0890 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:41:00.0148 0x0890 Ndisuio - ok
21:41:00.0152 0x0890 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:41:00.0162 0x0890 NdisVirtualBus - ok
21:41:00.0169 0x0890 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:00.0180 0x0890 NdisWan - ok
21:41:00.0185 0x0890 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:00.0196 0x0890 NdisWanLegacy - ok
21:41:00.0201 0x0890 [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:41:00.0208 0x0890 NDProxy - ok
21:41:00.0214 0x0890 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
21:41:00.0223 0x0890 Ndu - ok
21:41:00.0227 0x0890 [ 3351A92971670764F014A566D1106E2B, EE93B719C5F38386A23CB81FD818EEEA7332FE5119646CE20ED4160B10F17534 ] Neo_VPN C:\WINDOWS\system32\DRIVERS\Neo_VPN.sys
21:41:00.0234 0x0890 Neo_VPN - ok
21:41:00.0237 0x0890 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\WINDOWS\system32\DRIVERS\netaapl64.sys
21:41:00.0244 0x0890 Netaapl - ok
21:41:00.0249 0x0890 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:41:00.0257 0x0890 NetBIOS - ok
21:41:00.0267 0x0890 [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:41:00.0278 0x0890 NetBT - ok
21:41:00.0281 0x0890 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
21:41:00.0289 0x0890 Netlogon - ok
21:41:00.0298 0x0890 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
21:41:00.0310 0x0890 Netman - ok
21:41:00.0326 0x0890 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
21:41:00.0343 0x0890 netprofm - ok
21:41:00.0357 0x0890 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:41:00.0365 0x0890 NetTcpPortSharing - ok
21:41:00.0370 0x0890 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
21:41:00.0379 0x0890 netvsc - ok
21:41:00.0459 0x0890 [ 576732533EBA47E58E5ACB66A1F69B91, AE36F9B58138972A079DF4AC57089DBE5264B77F75D482F9F474D7177DD9F073 ] NETwNb64 C:\WINDOWS\system32\DRIVERS\Netwbw02.sys
21:41:00.0534 0x0890 NETwNb64 - ok
21:41:00.0554 0x0890 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
21:41:00.0568 0x0890 NlaSvc - ok
21:41:00.0574 0x0890 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:41:00.0583 0x0890 Npfs - ok
21:41:00.0589 0x0890 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
21:41:00.0596 0x0890 npsvctrig - ok
21:41:00.0600 0x0890 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
21:41:00.0609 0x0890 nsi - ok
21:41:00.0613 0x0890 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
21:41:00.0620 0x0890 nsiproxy - ok
21:41:00.0666 0x0890 [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:41:00.0712 0x0890 Ntfs - ok
21:41:00.0717 0x0890 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
21:41:00.0725 0x0890 Null - ok
21:41:00.0949 0x0890 [ ECC732D5185408FCC323E56D30170848, 7A7A6C410B65DBB1D59653598D7E5414054588BB88505BE68BFFF0378FD555F3 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
21:41:01.0123 0x0890 nvlddmkm - ok
21:41:01.0175 0x0890 [ 6C36C459E743DDA0493BD9B0ED3D3D6C, 57A3D800CCF9407BE5DA40330E9E7B9C48227E43D752D6F98E18345DCEFAA6BD ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
21:41:01.0207 0x0890 NvNetworkService - ok
21:41:01.0216 0x0890 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
21:41:01.0225 0x0890 nvraid - ok
21:41:01.0234 0x0890 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
21:41:01.0244 0x0890 nvstor - ok
21:41:01.0707 0x0890 [ D6F333620DEF4FDE15311F3AB55AF9D0, 624671856EF19DF6F33797E0FA6B7415BF422E44DDA9F5B00F2F145471FA87E2 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
21:41:02.0110 0x0890 NvStreamSvc - ok
21:41:02.0158 0x0890 [ 2AF7D8BCD8912FC16AA15268CDCF2454, 3A2E5ADFC6213A6EA83F78026518EC7EE0DD4BBA7C210CB7A41007BB57DC0636 ] nvsvc C:\Windows\system32\nvvsvc.exe
21:41:02.0178 0x0890 nvsvc - ok
21:41:02.0183 0x0890 [ 50A7C3FEA78D11B546EA9B0C25FBC6AB, E91313580D631473801E0995AF8A1FD43EC47FF7709ADEF3DCD80D7BC25878D7 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
21:41:02.0189 0x0890 nvvad_WaveExtensible - ok
21:41:02.0196 0x0890 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
21:41:02.0205 0x0890 nv_agp - ok
21:41:02.0213 0x0890 [ 6363650D553572A305CDBF90F452C1BF, 15A499D8F403D66FDD2FA5AD607606E93FD82B845FBB6ECC63DF58EFC13CBA57 ] omniserv C:\Program Files\Hewlett-Packard\SimplePass\OmniServ.exe
21:41:02.0217 0x0890 omniserv - detected UnsignedFile.Multi.Generic ( 1 )
21:41:02.0217 0x0890 Detect skipped due to KSN trusted
21:41:02.0217 0x0890 omniserv - ok
21:41:02.0227 0x0890 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
21:41:02.0241 0x0890 p2pimsvc - ok
21:41:02.0254 0x0890 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
21:41:02.0269 0x0890 p2psvc - ok
21:41:02.0274 0x0890 [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport C:\WINDOWS\System32\drivers\parport.sys
21:41:02.0282 0x0890 Parport - ok
21:41:02.0288 0x0890 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
21:41:02.0296 0x0890 partmgr - ok
21:41:02.0310 0x0890 [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
21:41:02.0326 0x0890 PcaSvc - ok
21:41:02.0338 0x0890 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
21:41:02.0351 0x0890 pci - ok
21:41:02.0356 0x0890 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
21:41:02.0363 0x0890 pciide - ok
21:41:02.0369 0x0890 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
21:41:02.0378 0x0890 pcmcia - ok
21:41:02.0382 0x0890 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
21:41:02.0389 0x0890 pcw - ok
21:41:02.0394 0x0890 [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
21:41:02.0402 0x0890 pdc - ok
21:41:02.0419 0x0890 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
21:41:02.0436 0x0890 PEAUTH - ok
21:41:02.0511 0x0890 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
21:41:02.0518 0x0890 PerfHost - ok
21:41:02.0557 0x0890 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
21:41:02.0590 0x0890 pla - ok
21:41:02.0599 0x0890 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
21:41:02.0608 0x0890 PlugPlay - ok
21:41:02.0613 0x0890 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
21:41:02.0621 0x0890 PNRPAutoReg - ok
21:41:02.0630 0x0890 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
21:41:02.0644 0x0890 PNRPsvc - ok
21:41:02.0656 0x0890 [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
21:41:02.0671 0x0890 PolicyAgent - ok
21:41:02.0677 0x0890 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
21:41:02.0686 0x0890 Power - ok
21:41:02.0692 0x0890 [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:41:02.0702 0x0890 PptpMiniport - ok
21:41:02.0770 0x0890 [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:41:02.0824 0x0890 PrintNotify - ok
21:41:02.0834 0x0890 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
21:41:02.0842 0x0890 Processor - ok
21:41:02.0850 0x0890 [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
21:41:02.0861 0x0890 ProfSvc - ok
21:41:02.0868 0x0890 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
21:41:02.0878 0x0890 Psched - ok
21:41:02.0887 0x0890 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
21:41:02.0900 0x0890 QWAVE - ok
21:41:02.0904 0x0890 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
21:41:02.0913 0x0890 QWAVEdrv - ok
21:41:02.0917 0x0890 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:41:02.0924 0x0890 RasAcd - ok
21:41:02.0929 0x0890 [ D5ECE7E7F349EB3C4B152AFF3577280D, 3A5D3E440D1ED72D654BBFE30A73667F055C0AD04375C22C202F21BF75B612B2 ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
21:41:02.0936 0x0890 RasAgileVpn - ok
21:41:02.0942 0x0890 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:41:02.0952 0x0890 RasAuto - ok
21:41:02.0957 0x0890 [ 235624C147E3CB4C288D5D3D8E8D64A2, B3F182019DBAD9C761FE9F62EAED34AD5902B41A13A766D814FC3E2EA29D8D92 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:41:02.0966 0x0890 Rasl2tp - ok
21:41:02.0980 0x0890 [ 15C0034561FE5B03FA376F1A6232478B, 0F9B5C2BD7D8803FF3C5ED957D3F0859F2A59B74510E4659FBF05EDCBF230208 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:41:02.0997 0x0890 RasMan - ok
21:41:03.0002 0x0890 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:41:03.0012 0x0890 RasPppoe - ok
21:41:03.0018 0x0890 [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
21:41:03.0026 0x0890 RasSstp - ok
21:41:03.0038 0x0890 [ D67ED4AB59D1EF66B05AD1A81AC28B26, 72E750A9A6B484D8BEDE52FA6DABEF4D95765DE491152E1F6C856D0590B50C28 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:41:03.0051 0x0890 rdbss - ok
21:41:03.0057 0x0890 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
21:41:03.0064 0x0890 rdpbus - ok
21:41:03.0071 0x0890 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
21:41:03.0081 0x0890 RDPDR - ok
21:41:03.0087 0x0890 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:41:03.0097 0x0890 RdpVideoMiniport - ok
21:41:03.0105 0x0890 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
21:41:03.0118 0x0890 rdyboost - ok
21:41:03.0144 0x0890 [ 759FB47B96FA0A9D767B3269F76E5E25, B19EF75D2ECC9041F2578D6D4574302A06A12E551CE6211C049CD642E92D4D3E ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
21:41:03.0178 0x0890 ReFS - ok
21:41:03.0189 0x0890 [ A95A26DFB35369C305816F78B0B1ACF8, B96F10357D1CFF943C969CAB6B8FB6AC1D82526CCB94A1C2C4FC99B7F302C13B ] RegSrvc c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:41:03.0198 0x0890 RegSrvc - ok
21:41:03.0207 0x0890 [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:41:03.0221 0x0890 RemoteAccess - ok
21:41:03.0232 0x0890 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:41:03.0244 0x0890 RemoteRegistry - ok
21:41:03.0252 0x0890 [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
21:41:03.0262 0x0890 RFCOMM - ok
21:41:03.0267 0x0890 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
21:41:03.0276 0x0890 RpcEptMapper - ok
21:41:03.0279 0x0890 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
21:41:03.0287 0x0890 RpcLocator - ok
21:41:03.0307 0x0890 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:41:03.0330 0x0890 RpcSs - ok
21:41:03.0339 0x0890 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
21:41:03.0349 0x0890 rspndr - ok
21:41:03.0358 0x0890 [ E902D36DD94CB4A0568DF9C26D6E4D70, B7A4FA56B6B4F88AB54A4EF94804F7D8C11C6536C39F3CE4756D5F9298C45198 ] RSUSBSTOR C:\WINDOWS\System32\Drivers\RtsUStor.sys
21:41:03.0367 0x0890 RSUSBSTOR - ok
21:41:03.0377 0x0890 [ DBB7A8F0CE30AD6C6F986D38176A5D4B, 254BBD07F972955E5818F7557330EB9CD566E6FB2E5EDC1EFA43C03CDE37BA9B ] RSUSBVSTOR C:\WINDOWS\System32\Drivers\RtsUVStor.sys
21:41:03.0387 0x0890 RSUSBVSTOR - ok
21:41:03.0396 0x0890 [ B85642BE0761159B63CFFC137384E17F, ACB04AC581EE475543AEA3003E3643DC2A007C4D3F1831C120F1D07BDAFF2FA4 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
21:41:03.0405 0x0890 RtkAudioService - ok
21:41:03.0426 0x0890 [ 7CC0D898D00675F14BA0C4BF056C1CF4, E9203DD2A201AEF206C1A4177FD564DDFC8E7468DC268BD99389626A2C6593D3 ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
21:41:03.0445 0x0890 RTL8168 - ok
21:41:03.0461 0x0890 [ 8726F14AF8E20424EA651FE5FAF3B2CE, 81BE218BD086F890B30F64F72F7557C638CBACF67E89607625B9A879F49DCDE5 ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
21:41:03.0473 0x0890 RTSPER - ok
21:41:03.0477 0x0890 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
21:41:03.0484 0x0890 s3cap - ok
21:41:03.0489 0x0890 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
21:41:03.0497 0x0890 SamSs - ok
21:41:03.0502 0x0890 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
21:41:03.0511 0x0890 sbp2port - ok
21:41:03.0519 0x0890 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
21:41:03.0531 0x0890 SCardSvr - ok
21:41:03.0536 0x0890 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
21:41:03.0547 0x0890 ScDeviceEnum - ok
21:41:03.0552 0x0890 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:41:03.0560 0x0890 scfilter - ok
21:41:03.0590 0x0890 [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:41:03.0621 0x0890 Schedule - ok
21:41:03.0630 0x0890 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
21:41:03.0641 0x0890 SCPolicySvc - ok
21:41:03.0651 0x0890 [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
21:41:03.0664 0x0890 sdbus - ok
21:41:03.0671 0x0890 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
21:41:03.0679 0x0890 sdstor - ok
21:41:03.0685 0x0890 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
21:41:03.0693 0x0890 secdrv - ok
21:41:03.0697 0x0890 [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\WINDOWS\system32\seclogon.dll
21:41:03.0706 0x0890 seclogon - ok
21:41:03.0711 0x0890 [ 719647B6C618D2CC135CAC17DC25E7F8, BD128D3BB191D870EA6072467A046A6A4C8A7114E3A9E3D69DB4B6282C2D5DCD ] SeLow C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys
21:41:03.0718 0x0890 SeLow - ok
21:41:03.0723 0x0890 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
21:41:03.0734 0x0890 SENS - ok
21:41:03.0744 0x0890 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
21:41:03.0756 0x0890 SensrSvc - ok
21:41:03.0761 0x0890 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
21:41:03.0770 0x0890 SerCx - ok
21:41:03.0777 0x0890 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
21:41:03.0787 0x0890 SerCx2 - ok
21:41:03.0791 0x0890 [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
21:41:03.0798 0x0890 Serenum - ok
21:41:03.0806 0x0890 [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial C:\WINDOWS\System32\drivers\serial.sys
21:41:03.0814 0x0890 Serial - ok
21:41:03.0820 0x0890 [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
21:41:03.0827 0x0890 sermouse - ok
21:41:03.0844 0x0890 [ 389458EA0B5FAEBA325FAC47B9ED589E, F7F37A1F1E912069F65E4629FF733F080AE675DF6FE255AF48F5E23EB47D0622 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
21:41:03.0858 0x0890 SessionEnv - ok
21:41:03.0996 0x0890 [ E9BDC3C1B67723856895626A192E40B6, ACE27E45293F753066889EA8B5249088A3C53F290541A8C4CAD90EE2857182D8 ] SEVPNCLIENT C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
21:41:04.0087 0x0890 SEVPNCLIENT - ok
21:41:04.0098 0x0890 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
21:41:04.0106 0x0890 sfloppy - ok
21:41:04.0120 0x0890 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:41:04.0135 0x0890 SharedAccess - ok
21:41:04.0152 0x0890 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:41:04.0172 0x0890 ShellHWDetection - ok
21:41:04.0176 0x0890 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:41:04.0184 0x0890 SiSRaid2 - ok
21:41:04.0190 0x0890 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
21:41:04.0197 0x0890 SiSRaid4 - ok
21:41:04.0210 0x0890 [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:41:04.0221 0x0890 SkypeUpdate - ok
21:41:04.0226 0x0890 [ 13DFE743C3AF65458F5C7777A9B16CCC, 47BA69856E008756CF9168F809DB0B0728CE7945B3323114578A94B70313CE79 ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
21:41:04.0231 0x0890 SmbDrv - ok
21:41:04.0235 0x0890 [ 3D3A01F8499FD703513A33ED0C8921C2, B51326A1C70D3E4564C27A157D372D9CF706D8EAF5D40170E293B8F302BC7CBF ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
21:41:04.0240 0x0890 SmbDrvI - ok
21:41:04.0244 0x0890 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
21:41:04.0253 0x0890 smphost - ok
21:41:04.0260 0x0890 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
21:41:04.0268 0x0890 SNMPTRAP - ok
21:41:04.0279 0x0890 [ B312191DCBECE3C07DF9A99DE433B126, D9D9028331C703CE9B9EC75772D29BB04FE43B3A7895F8CBB3AC701CA0548F8D ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
21:41:04.0294 0x0890 spaceport - ok
21:41:04.0299 0x0890 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
21:41:04.0306 0x0890 SpbCx - ok
21:41:04.0326 0x0890 [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler C:\WINDOWS\System32\spoolsv.exe
21:41:04.0348 0x0890 Spooler - ok
21:41:04.0508 0x0890 [ F264662C057A54AA2DE41B3C7551712F, 2C123C6ACD967CDF1AD2855187CF3D8357B16A4FD9C2F18AE54CFA384165FA11 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
21:41:04.0652 0x0890 sppsvc - ok
21:41:04.0671 0x0890 [ 36B082C7A764A34FB1DC72D975870B61, 572CB632D9FDC1183F7BF8BFCBC51765C647945E0C13D1C91ADE3D0E76DF83BC ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:41:04.0685 0x0890 srv - ok
21:41:04.0702 0x0890 [ F5849909D4B29B4E3D4445F943E5C7E3, 3FCA1423753716FE1AFDD27EE1E13C4D779A3C976185B5C998EF1A9A39BFC186 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
21:41:04.0720 0x0890 srv2 - ok
21:41:04.0729 0x0890 [ FABC49666708EA562549E78E6FBF3191, BE1FEBFC259308B39C727915C41A67CD50720A6E2A68D148F4F2F926AED43B02 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:41:04.0740 0x0890 srvnet - ok
21:41:04.0748 0x0890 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:41:04.0760 0x0890 SSDPSRV - ok
21:41:04.0766 0x0890 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
21:41:04.0776 0x0890 SstpSvc - ok
21:41:04.0784 0x0890 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:41:04.0792 0x0890 ssudmdm - ok
21:41:04.0826 0x0890 [ 90E22D7CDE08E07446D238A569BCAB7C, 3D4F413D0B0C9CF28D06E0476F24AC6441C8678DF786D9971B39C91C9F9B8020 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:41:04.0855 0x0890 Steam Client Service - ok
21:41:04.0860 0x0890 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
21:41:04.0867 0x0890 stexstor - ok
21:41:04.0885 0x0890 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
21:41:04.0905 0x0890 stisvc - ok
21:41:04.0911 0x0890 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
21:41:04.0921 0x0890 storahci - ok
21:41:04.0925 0x0890 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
21:41:05.0030 0x0890 storflt - ok
21:41:05.0035 0x0890 [ 0EDD1F4D470C775740625B06A60C9DD5, 94964D0A793B1C984E87095249EE383A5E669D05BA6BF9F655587887E6CE3C19 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
21:41:05.0043 0x0890 stornvme - ok
21:41:05.0047 0x0890 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
21:41:05.0055 0x0890 StorSvc - ok
21:41:05.0059 0x0890 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
21:41:05.0066 0x0890 storvsc - ok
21:41:05.0071 0x0890 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
21:41:05.0079 0x0890 svsvc - ok
21:41:05.0083 0x0890 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
21:41:05.0090 0x0890 swenum - ok
21:41:05.0109 0x0890 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
21:41:05.0130 0x0890 swprv - ok
21:41:05.0146 0x0890 [ 12711DAB3FCCC1649FE149B61C26C80A, E0779DEF5BC8738A88B8D9FEEB85702AF6CC009C3967F29CD366894F773DE436 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:41:05.0160 0x0890 SynTP - ok
21:41:05.0180 0x0890 [ A2BFBF3B936246C370CF6496AF460116, 209045390AC182714D25EC7F2B7A6A3B184545CDF5663A581C3C08094792D2CA ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
21:41:05.0187 0x0890 SynTPEnhService - ok
21:41:05.0216 0x0890 [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\WINDOWS\system32\sysmain.dll
21:41:05.0244 0x0890 SysMain - ok
21:41:05.0254 0x0890 [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:41:05.0268 0x0890 SystemEventsBroker - ok
21:41:05.0276 0x0890 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:41:05.0286 0x0890 TabletInputService - ok
21:41:05.0296 0x0890 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:41:05.0309 0x0890 TapiSrv - ok
21:41:05.0378 0x0890 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
21:41:05.0434 0x0890 Tcpip - ok
21:41:05.0500 0x0890 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:41:05.0555 0x0890 TCPIP6 - ok
21:41:05.0564 0x0890 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
21:41:05.0571 0x0890 tcpipreg - ok
21:41:05.0577 0x0890 [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
21:41:05.0585 0x0890 tdx - ok
21:41:05.0771 0x0890 [ F2F02E436BA56A96A06E4427C5787B6E, 1562FF264011A15AC69808CB74F387917C4E8ED3B91546B12933BE10B6E20B3A ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
21:41:05.0898 0x0890 TeamViewer - ok
21:41:05.0911 0x0890 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
21:41:05.0919 0x0890 terminpt - ok
21:41:05.0946 0x0890 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
21:41:05.0973 0x0890 TermService - ok
21:41:05.0981 0x0890 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
21:41:05.0991 0x0890 Themes - ok
21:41:05.0997 0x0890 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
21:41:06.0006 0x0890 THREADORDER - ok
21:41:06.0016 0x0890 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
21:41:06.0028 0x0890 TimeBroker - ok
21:41:06.0033 0x0890 [ 0FE2FC59C0B9A3CA3EC2B18E1CCCF2DD, 26AE50F2263DDDE3C6678566E2B198966CE870DF4B254F2D655752F742F63C12 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
21:41:06.0040 0x0890 TomTomHOMEService - ok
21:41:06.0047 0x0890 [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
21:41:06.0057 0x0890 TPM - ok
21:41:06.0063 0x0890 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
21:41:06.0074 0x0890 TrkWks - ok
21:41:06.0079 0x0890 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:41:06.0088 0x0890 TrustedInstaller - ok
21:41:06.0094 0x0890 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
21:41:06.0101 0x0890 TsUsbFlt - ok
21:41:06.0107 0x0890 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:41:06.0114 0x0890 TsUsbGD - ok
21:41:06.0121 0x0890 [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
21:41:06.0130 0x0890 tunnel - ok
21:41:06.0137 0x0890 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
21:41:06.0145 0x0890 uagp35 - ok
21:41:06.0151 0x0890 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
21:41:06.0159 0x0890 UASPStor - ok
21:41:06.0170 0x0890 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
21:41:06.0180 0x0890 UCX01000 - ok
21:41:06.0192 0x0890 [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
21:41:06.0205 0x0890 udfs - ok
21:41:06.0208 0x0890 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
21:41:06.0215 0x0890 UEFI - ok
21:41:06.0222 0x0890 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
21:41:06.0230 0x0890 UI0Detect - ok
21:41:06.0235 0x0890 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
21:41:06.0243 0x0890 uliagpkx - ok
21:41:06.0248 0x0890 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
21:41:06.0257 0x0890 umbus - ok
21:41:06.0260 0x0890 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
21:41:06.0268 0x0890 UmPass - ok
21:41:06.0277 0x0890 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
21:41:06.0291 0x0890 UmRdpService - ok
21:41:06.0304 0x0890 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:41:06.0321 0x0890 upnphost - ok
21:41:06.0326 0x0890 [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
21:41:06.0334 0x0890 USBAAPL64 - ok
21:41:06.0342 0x0890 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
21:41:06.0352 0x0890 usbccgp - ok
21:41:06.0359 0x0890 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
21:41:06.0368 0x0890 usbcir - ok
21:41:06.0375 0x0890 [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
21:41:06.0384 0x0890 usbehci - ok
21:41:06.0400 0x0890 [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
21:41:06.0416 0x0890 usbhub - ok
21:41:06.0433 0x0890 [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
21:41:06.0449 0x0890 USBHUB3 - ok
21:41:06.0454 0x0890 [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
21:41:06.0461 0x0890 usbohci - ok
21:41:06.0465 0x0890 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
21:41:06.0473 0x0890 usbprint - ok
21:41:06.0480 0x0890 [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:41:06.0490 0x0890 USBSTOR - ok
21:41:06.0494 0x0890 [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
21:41:06.0502 0x0890 usbuhci - ok
21:41:06.0511 0x0890 [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
21:41:06.0522 0x0890 usbvideo - ok
21:41:06.0533 0x0890 [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:41:06.0546 0x0890 USBXHCI - ok
21:41:06.0551 0x0890 [ B73B55A194BEAF71985211279585A316, A40B0E362ABF4F33818696150086C4FBCA38F6E306838C825C73F57F55A49347 ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
21:41:06.0559 0x0890 usb_rndisx - ok
21:41:06.0563 0x0890 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
21:41:06.0571 0x0890 VaultSvc - ok
21:41:06.0579 0x0890 [ 0E3C4F20B2CE21168F3242D9CAC6CBF2, 1BD5E1A2000EBC1C335A8960ACDCD08BDC8230F533A80D086D2EE6FE4990EA02 ] VBoxUSBMon C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys
21:41:06.0609 0x0890 VBoxUSBMon - ok
21:41:06.0616 0x0890 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
21:41:06.0624 0x0890 vdrvroot - ok
21:41:06.0656 0x0890 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
21:41:06.0688 0x0890 vds - ok
21:41:06.0696 0x0890 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
21:41:06.0707 0x0890 VerifierExt - ok
21:41:06.0722 0x0890 [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
21:41:06.0741 0x0890 vhdmp - ok
21:41:06.0746 0x0890 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
21:41:06.0754 0x0890 viaide - ok
21:41:06.0759 0x0890 [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
21:41:06.0768 0x0890 vmbus - ok
21:41:06.0771 0x0890 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
21:41:06.0779 0x0890 VMBusHID - ok
21:41:06.0794 0x0890 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:41:06.0810 0x0890 vmicguestinterface - ok
21:41:06.0822 0x0890 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
21:41:06.0838 0x0890 vmicheartbeat - ok
21:41:06.0850 0x0890 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:41:06.0867 0x0890 vmickvpexchange - ok
21:41:06.0879 0x0890 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
21:41:06.0898 0x0890 vmicrdv - ok
21:41:06.0910 0x0890 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
21:41:06.0929 0x0890 vmicshutdown - ok
21:41:06.0941 0x0890 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
21:41:06.0958 0x0890 vmictimesync - ok
21:41:06.0970 0x0890 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
21:41:06.0986 0x0890 vmicvss - ok
21:41:06.0992 0x0890 [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
21:41:07.0000 0x0890 volmgr - ok
21:41:07.0011 0x0890 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
21:41:07.0025 0x0890 volmgrx - ok
21:41:07.0037 0x0890 [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
21:41:07.0049 0x0890 volsnap - ok
21:41:07.0054 0x0890 [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
21:41:07.0062 0x0890 vpci - ok
21:41:07.0070 0x0890 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
21:41:07.0080 0x0890 vsmraid - ok
21:41:07.0112 0x0890 [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS C:\WINDOWS\system32\vssvc.exe
21:41:07.0144 0x0890 VSS - ok
21:41:07.0154 0x0890 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
21:41:07.0167 0x0890 VSTXRAID - ok
21:41:07.0171 0x0890 [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
21:41:07.0179 0x0890 vwifibus - ok
21:41:07.0184 0x0890 [ 29AB43937FFDA0B0FB56984226E698C6, 6A1A559964FE5D594E54988C46149969E6FFD5A8D5A6862E14648B608794CC29 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
21:41:07.0191 0x0890 vwififlt - ok
21:41:07.0195 0x0890 [ 8B8624A93E3F88CB923AEB05B6313227, 2856B63CD376BF2B1A9129581E7B9207588D4EAFD29A2C8D98F176FEAFDE26A9 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
21:41:07.0203 0x0890 vwifimp - ok
21:41:07.0215 0x0890 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
21:41:07.0229 0x0890 W32Time - ok
21:41:07.0235 0x0890 [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
21:41:07.0244 0x0890 w3logsvc - ok
21:41:07.0248 0x0890 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
21:41:07.0256 0x0890 WacomPen - ok
21:41:07.0261 0x0890 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:41:07.0269 0x0890 Wanarp - ok
21:41:07.0272 0x0890 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:41:07.0280 0x0890 Wanarpv6 - ok
21:41:07.0295 0x0890 [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:41:07.0311 0x0890 WAS - ok
21:41:07.0347 0x0890 [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine C:\WINDOWS\system32\wbengine.exe
21:41:07.0381 0x0890 wbengine - ok
21:41:07.0396 0x0890 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
21:41:07.0412 0x0890 WbioSrvc - ok
21:41:07.0424 0x0890 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
21:41:07.0439 0x0890 Wcmsvc - ok
21:41:07.0459 0x0890 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
21:41:07.0476 0x0890 wcncsvc - ok
21:41:07.0482 0x0890 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:41:07.0490 0x0890 WcsPlugInService - ok
21:41:07.0495 0x0890 [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
21:41:07.0502 0x0890 WdBoot - ok
21:41:07.0522 0x0890 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
21:41:07.0543 0x0890 Wdf01000 - ok
21:41:07.0553 0x0890 [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
21:41:07.0565 0x0890 WdFilter - ok
21:41:07.0570 0x0890 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
21:41:07.0581 0x0890 WdiServiceHost - ok
21:41:07.0585 0x0890 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
21:41:07.0597 0x0890 WdiSystemHost - ok
21:41:07.0602 0x0890 [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:41:07.0613 0x0890 WdNisDrv - ok
21:41:07.0617 0x0890 WdNisSvc - ok
21:41:07.0633 0x0890 [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient C:\WINDOWS\System32\webclnt.dll
21:41:07.0644 0x0890 WebClient - ok
21:41:07.0652 0x0890 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
21:41:07.0666 0x0890 Wecsvc - ok
21:41:07.0670 0x0890 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
21:41:07.0680 0x0890 WEPHOSTSVC - ok
21:41:07.0685 0x0890 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
21:41:07.0695 0x0890 wercplsupport - ok
21:41:07.0701 0x0890 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
21:41:07.0712 0x0890 WerSvc - ok
21:41:07.0718 0x0890 [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
21:41:07.0727 0x0890 WFPLWFS - ok
21:41:07.0732 0x0890 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
21:41:07.0741 0x0890 WiaRpc - ok
21:41:07.0746 0x0890 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
21:41:07.0752 0x0890 WIMMount - ok
21:41:07.0755 0x0890 WinDefend - ok
21:41:07.0779 0x0890 [ 0E70990EC2E5D2331AA5E88DB0CFB826, 79DFF565C3FCBC691E8FEB669CEC00E340FD2A2AFA4488D23A7CC63A2A98A5C1 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:41:07.0802 0x0890 WinHttpAutoProxySvc - ok
21:41:07.0817 0x0890 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:41:07.0828 0x0890 Winmgmt - ok
21:41:07.0883 0x0890 [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM C:\WINDOWS\system32\WsmSvc.dll
21:41:07.0938 0x0890 WinRM - ok
21:41:07.0950 0x0890 [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb C:\WINDOWS\System32\drivers\WinUSB.sys
21:41:07.0958 0x0890 WinUsb - ok
21:41:07.0963 0x0890 [ AA92B8971F951EFF901C476212438638, 027FB513DCAE6B223D5C02F57A1B6AAB5A6D0EEFE1E654EA469B21324190F9F6 ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
21:41:07.0973 0x0890 WirelessButtonDriver - ok
21:41:08.0008 0x0890 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
21:41:08.0042 0x0890 WlanSvc - ok
21:41:08.0110 0x0890 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
21:41:08.0145 0x0890 wlidsvc - ok
21:41:08.0151 0x0890 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
21:41:08.0159 0x0890 WmiAcpi - ok
21:41:08.0168 0x0890 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:41:08.0180 0x0890 wmiApSrv - ok
21:41:08.0184 0x0890 WMPNetworkSvc - ok
21:41:08.0190 0x0890 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
21:41:08.0200 0x0890 Wof - ok
21:41:08.0240 0x0890 [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
21:41:08.0276 0x0890 workfolderssvc - ok
21:41:08.0282 0x0890 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:41:08.0290 0x0890 wpcfltr - ok
21:41:08.0294 0x0890 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
21:41:08.0302 0x0890 WPCSvc - ok
21:41:08.0366 0x0890 [ DBDCE2378F65F0A07D4644AC103037E7, 99714F0CD31297C9831BAF04768F467F6E0BF710C859CEDCA83069226BF1A68A ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
21:41:08.0375 0x0890 WPDBusEnum - ok
21:41:08.0378 0x0890 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:41:08.0385 0x0890 WpdUpFltr - ok
21:41:08.0389 0x0890 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:41:08.0398 0x0890 ws2ifsl - ok
21:41:08.0405 0x0890 [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\WINDOWS\System32\wscsvc.dll
21:41:08.0415 0x0890 wscsvc - ok
21:41:08.0419 0x0890 [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
21:41:08.0427 0x0890 WSDPrintDevice - ok
21:41:08.0432 0x0890 [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan C:\WINDOWS\System32\drivers\WSDScan.sys
21:41:08.0440 0x0890 WSDScan - ok
21:41:08.0443 0x0890 WSearch - ok
21:41:08.0517 0x0890 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
21:41:08.0596 0x0890 WSService - ok
21:41:08.0709 0x0890 [ F3F60C88A6BBC8D0C68FE5B1C91181AF, AF9A4D282CD4BB1127BC3F48AB89DC294408D96F7906553C636F37D1503CFA48 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
21:41:08.0776 0x0890 wuauserv - ok
21:41:08.0787 0x0890 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
21:41:08.0795 0x0890 WudfPf - ok
21:41:08.0804 0x0890 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
21:41:08.0813 0x0890 WUDFRd - ok
21:41:08.0819 0x0890 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP C:\WINDOWS\System32\drivers\WUDFRd.sys
21:41:08.0829 0x0890 WUDFSensorLP - ok
21:41:08.0834 0x0890 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
21:41:08.0844 0x0890 wudfsvc - ok
21:41:08.0851 0x0890 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\System32\drivers\WUDFRd.sys
21:41:08.0861 0x0890 WUDFWpdFs - ok
21:41:08.0869 0x0890 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:41:08.0879 0x0890 WUDFWpdMtp - ok
21:41:08.0894 0x0890 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
21:41:08.0910 0x0890 WwanSvc - ok
21:41:08.0983 0x0890 X6va062 - ok
21:41:08.0993 0x0890 [ D3D9CB4BA15C1854294517AA8954E201, DFBB6E1A5FF01123FEAD6EFFA67F4A0203792AFDF82EAFFC2DA981A584896542 ] XQHDrv C:\WINDOWS\system32\DRIVERS\XQHDrv.sys
21:41:09.0003 0x0890 XQHDrv - ok
21:41:09.0115 0x0890 [ C5C719DF55C343D59310AC7ECC536D10, C435C416298731C5DF8E9C4EBBC791B10E86B2EF364905B4F0BB4D941504404F ] ZeroConfigService c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
21:41:09.0183 0x0890 ZeroConfigService - ok
21:41:09.0197 0x0890 ================ Scan global ===============================
21:41:09.0203 0x0890 [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\WINDOWS\system32\basesrv.dll
21:41:09.0211 0x0890 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
21:41:09.0219 0x0890 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
21:41:09.0230 0x0890 [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
21:41:09.0237 0x0890 [ Global ] - ok
21:41:09.0237 0x0890 ================ Scan MBR ==================================
21:41:09.0238 0x0890 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:41:09.0341 0x0890 \Device\Harddisk0\DR0 - ok
21:41:09.0341 0x0890 ================ Scan VBR ==================================
21:41:09.0342 0x0890 [ FA7C188809C82BB4DD9E457B2C1B0AF9 ] \Device\Harddisk0\DR0\Partition1
21:41:09.0344 0x0890 \Device\Harddisk0\DR0\Partition1 - ok
21:41:09.0345 0x0890 [ 205A266BC05FA47AA760B3812D17F024 ] \Device\Harddisk0\DR0\Partition2
21:41:09.0346 0x0890 \Device\Harddisk0\DR0\Partition2 - ok
21:41:09.0348 0x0890 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
21:41:09.0348 0x0890 \Device\Harddisk0\DR0\Partition3 - ok
21:41:09.0351 0x0890 [ F99601A74DF60B7A0F4E7A42AA89590E ] \Device\Harddisk0\DR0\Partition4
21:41:09.0352 0x0890 \Device\Harddisk0\DR0\Partition4 - ok
21:41:09.0354 0x0890 [ 59274B4A885960EB5961B7F3D029C4CF ] \Device\Harddisk0\DR0\Partition5
21:41:09.0355 0x0890 \Device\Harddisk0\DR0\Partition5 - ok
21:41:09.0356 0x0890 ================ Scan generic autorun ======================
21:41:09.0539 0x0890 [ 567690D78D43BE2C19BA73C47923A189, E0E20075559438A9AC152D2DAEFE3E1689DBE7345FB2CB584624E5C0892F5D86 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
21:41:09.0663 0x0890 RTHDVCPL - ok
21:41:09.0730 0x0890 [ A181AD1F10A08579EA148CE93A59C7E6, 204E5B94795B9C6391F314BA044E3227242080B832A1E0392849CBD4AA18DCEA ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
21:41:09.0769 0x0890 NvBackend - ok
21:41:09.0775 0x0890 [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\Windows\system32\rundll32.exe
21:41:09.0785 0x0890 ShadowPlay - ok
21:41:09.0785 0x0890 SynTPEnh - ok
21:41:09.0908 0x0890 [ E9BDC3C1B67723856895626A192E40B6, ACE27E45293F753066889EA8B5249088A3C53F290541A8C4CAD90EE2857182D8 ] C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
21:41:09.0997 0x0890 SoftEther VPN Client UI Helper - ok
21:41:10.0009 0x0890 [ EB34C71AC9BF2532820AE0F8952EE437, 775561BB60F6DBEAB76C0DFE186C60EF95D0246E15CB1A8BBACD1F38C2EA9EA1 ] C:\Program Files\iTunes\iTunesHelper.exe
21:41:10.0017 0x0890 iTunesHelper - ok
21:41:10.0053 0x0890 [ AADD1A163DA2BEFC4C1CE8646A7F79CB, 181401C7145F9853CEDFC3A5C392D4597B52CF55C4E344B002F5C02B84F3409B ] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
21:41:10.0084 0x0890 COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} - ok
21:41:10.0090 0x0890 [ 396A498982C926020B0D4429806FAD1E, 8BF3BB687E43DBC3AF8B2E7F1BBE429AD007E11C9C8E8A82B9ABC809A7DBE28F ] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
21:41:10.0097 0x0890 AccelerometerSysTrayApplet - ok
21:41:10.0124 0x0890 [ ED70821F65B120FDBD76FCFF746FE219, D038CC5198099B2FE02F2789E6817E96E210E27CF6C0E8FF39E6746B31653DDE ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:41:10.0133 0x0890 SunJavaUpdateSched - ok
21:41:10.0159 0x0890 [ B977B08DD02BA559893C479BFF3AA2D2, BF9C5EA4779964C59483430353ED9A20BA15C9F31F519FAA39E3650BED556F29 ] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
21:41:10.0178 0x0890 BlueStacks Agent - ok
21:41:10.0194 0x0890 [ C055411BF5412576E0191A61854C3671, 1D8FA9A922C6C954D8DB48344D7DC391EBD6DD5A19F8AF639569C6AE151AF1E7 ] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
21:41:10.0209 0x0890 HPMessageService - ok
21:41:10.0217 0x0890 [ 706A181D11D8589B0A9E2625E72423CF, BC0624B3BF5312DF5B54D6B23ADD7C6E94708968E4ACC3340BE23A3E87A8D2E0 ] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
21:41:10.0224 0x0890 TomTomHOME.exe - ok
21:41:10.0227 0x0890 Skype - ok
21:41:10.0275 0x0890 [ 73391D61EA9307F37F45616B9D1C43E5, D66F7930BC854044BCF12892E00B5A0AE746B0945101C72BAD13F18471C7CC17 ] C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
21:41:10.0307 0x0890 Power2GoExpress8 - ok
21:41:10.0386 0x0890 [ D2CE6EA0E9F641D7153462D40C6B4193, 3AAE5239F951E29497D759326BDC23E19644B763DC5661CA4E4980418195C37D ] C:\Program Files (x86)\Steam\steam.exe
21:41:10.0436 0x0890 Steam - ok
21:41:10.0438 0x0890 Object required for P2P: [ D2CE6EA0E9F641D7153462D40C6B4193 ] C:\Program Files (x86)\Steam\steam.exe
21:41:10.0627 0x0890 Object send P2P result: true
21:41:10.0670 0x0890 [ 11B4662A4DD118132E2648837920AF86, 7643E9CF00C0393ED4A1D294DABA84DCEB6BE696E5B520D413284BAB16CE1CD5 ] C:\Users\ducanh\AppData\Roaming\Spotify\SpotifyWebHelper.exe
21:41:10.0700 0x0890 Spotify Web Helper - ok
21:41:10.0880 0x0890 [ 6F8EDF5A5D23AD1F4FC168047C80ECE4, CAA605301395B70E724688515936A6C84F90D18EFFBF21CEDD336268AACA8D02 ] C:\Users\ducanh\AppData\Roaming\Spotify\Spotify.exe
21:41:11.0010 0x0890 Spotify - ok
21:41:11.0024 0x0890 [ 91121D27CAD2674B8FDB248D83EDFF19, 2C4E24AD1C868D80FBA7B07DC562FF8F4C627AFA1B4181E2F851FA09B8A7753A ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
21:41:11.0031 0x0890 iCloudServices - ok
21:41:11.0035 0x0890 [ 0705790B008B80230F933F8B0877FB2E, 1B3650F91C96FD4154745291313A6B234959E05B59D199C079F9C521CB622A5D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
21:41:11.0043 0x0890 iCloudDrive - ok
21:41:11.0052 0x0890 [ 11ACBAF2756292133A962B504D5B5BFB, BFD36AF36F26062B44545D6DABEEDA83734930FAA4ADB512AC4905A81322BADA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
21:41:11.0064 0x0890 iCloudPhotos - ok
21:41:11.0067 0x0890 [ AA0E71B308A339F3D43DDBABB4CF8B07, F951460AE24D42FD6DB1BFFE6342DBEB9CC5368B4AD3ACD426E1C3FB37C1AD68 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
21:41:11.0074 0x0890 ApplePhotoStreams - ok
21:41:11.0076 0x0890 ProxyGate - ok
21:41:11.0107 0x0890 [ 73391D61EA9307F37F45616B9D1C43E5, D66F7930BC854044BCF12892E00B5A0AE746B0945101C72BAD13F18471C7CC17 ] C:\Program Files (x86)\CyberLink\Power2Go8\Power2GoExpress8.exe
21:41:11.0140 0x0890 Power2GoExpress8 - ok
21:41:11.0145 0x0890 WindowsWelcomeCenter - ok
21:41:11.0169 0x0890 [ 9131DC75E7AA3AC61DB05D88EB69913F, 21D6888DDDB0DCEF5373287AEACAB174CE7C23434C40AA6E705BC1457EFDB226 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
21:41:11.0192 0x0890 GoogleChromeAutoLaunch_15C18641D08A33B982F2E6FA5AE802A6 - ok
21:41:11.0199 0x0890 [ 706A181D11D8589B0A9E2625E72423CF, BC0624B3BF5312DF5B54D6B23ADD7C6E94708968E4ACC3340BE23A3E87A8D2E0 ] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
21:41:11.0207 0x0890 TomTomHOME.exe - ok
21:41:11.0209 0x0890 Skype - ok
21:41:11.0213 0x0890 AV detected via SS2: COMODO Antivirus, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61000 ( enabled : updated )
21:41:11.0213 0x0890 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
21:41:11.0214 0x0890 FW detected via SS2: COMODO Firewall, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.4.0.5165 ), 0x61010 ( enabled )
21:41:11.0318 0x0890 ============================================================
21:41:11.0318 0x0890 Scan finished
21:41:11.0318 0x0890 ============================================================
21:41:11.0324 0x0a5c Detected object count: 0
21:41:11.0324 0x0a5c Actual detected object count: 0
|
|
17.11.2016, 09:38
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbung Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
17.11.2016, 23:05
| #15 |
| | Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbungCode:
ATTFilter # AdwCleaner v6.030 - Bericht erstellt am 17/11/2016 um 22:11:34
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-16.1 [Server]
# Betriebssystem : Windows 8.1 (X64)
# Benutzername : ducanh - VIP
# Gestartet von : C:\Users\ducanh\Downloads\AdwCleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support
***** [ Dienste ] *****
[-] Dienst gelöscht: WinSAPSvc
[-] Dienst gelöscht: Archer
***** [ Ordner ] *****
[-] Ordner gelöscht: C:\Program Files (x86)\Youtube AdBlock
[#] Ordner mit Neustart gelöscht: C:\Program Files (x86)\Youtube AdBlock
[#] Ordner mit Neustart gelöscht: C:\Users\ducanh\AppData\Local\SweetLabs App Platform
[-] Ordner gelöscht: C:\Users\ducanh\AppData\Roaming\RPEng
[-] Ordner gelöscht: C:\Users\ducanh\AppData\Roaming\ProxyGate
[-] Ordner gelöscht: C:\ProgramData\TweakBit
[-] Ordner gelöscht: C:\ProgramData\ChelfNotify
[-] Ordner gelöscht: C:\ProgramData\Thunder Network
[-] Ordner gelöscht: C:\ProgramData\BSD\DriverHive
[-] Ordner gelöscht: C:\ProgramData\WinSAPSvc
[-] Ordner gelöscht: C:\ProgramData\BSD
[#] Ordner mit Neustart gelöscht: C:\ProgramData\BSD\DriverHiveEngine
[#] Ordner mit Neustart gelöscht: C:\ProgramData\thunder network
[-] Ordner gelöscht: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Socia2Sear Browser Enhancer
[#] Ordner mit Neustart gelöscht: C:\Program Files (x86)\Youtube AdBlock
[-] Ordner gelöscht: C:\Program Files (x86)\WinArcher
[-] Ordner gelöscht: C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\zdengine
[-] Ordner gelöscht: C:\Users\Default\AppData\Local\Pokki
***** [ Dateien ] *****
[-] Datei gelöscht: C:\Users\ducanh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] Datei gelöscht: C:\WINDOWS\SysNative\zdengineOff.ini
[-] Datei gelöscht: C:\END
[-] Datei gelöscht: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[-] Datei gelöscht: C:\WINDOWS\SysWOW64\zdengineOff.ini
[-] Datei gelöscht: C:\Users\ducanh\AppData\Local\Temp\zdengine.log
[-] Datei gelöscht: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\hxxp_homepage-web.com_0.localstorage
[-] Datei gelöscht: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\hxxp_homepage-web.com_0.localstorage-journal
[#] Datei gelöscht: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\hxxp_homepage-web.com_0.localstorage
[#] Datei gelöscht: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\hxxp_homepage-web.com_0.localstorage-journal
[-] Datei gelöscht: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\hxxp_www.trotux.com_0.localstorage
[-] Datei gelöscht: C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1\Local Storage\hxxp_www.trotux.com_0.localstorage-journal
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Youtube AdBlock
[#] Schlüssel mit Neustart gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Youtube AdBlock_is1
[#] Schlüssel mit Neustart gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Youtube AdBlock
[#] Schlüssel mit Neustart gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Youtube AdBlock_is1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{D42C3A49-ABAF-464B-BBCE-991C3DD395E8}
[#] Schlüssel mit Neustart gelöscht: {38DD0B4A-E4E0-4A57-99EE-DCCB185B4728}
[#] Schlüssel mit Neustart gelöscht: {45965C76-4C88-4512-9358-368483E1C3B1}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{D8CB24E3-DDA3-4B7F-8BA3-871DB7D3D986}
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Classes\Interface\{D8CB24E3-DDA3-4B7F-8BA3-871DB7D3D986}
[-] Schlüssel gelöscht: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Classes\pokki
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Classes\pokki
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataContainer
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataContainer.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataTable
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataTable.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.WFPController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\zdengineLib.WFPController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Classes\pokki
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataContainer
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataContainer.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataController.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTable
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTable.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableFields.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.DataTableHolder.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.LSPLogic.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.ReadOnlyManager.1
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.WFPController
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\zdengineLib.WFPController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{25B1494D-230A-42CF-BBF6-EC73868D13DC}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{BF8946CD-EEBE-436B-8282-B19A021C9EFE}
[#] Schlüssel mit Neustart gelöscht: HKLM\SOFTWARE\Classes\Interface\{D8CB24E3-DDA3-4B7F-8BA3-871DB7D3D986}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Interface\{F6DF4318-A699-4E88-BE1D-84F4A009B08A}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{38DD0B4A-E4E0-4A57-99EE-DCCB185B4728}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{45965C76-4C88-4512-9358-368483E1C3B1}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95E84BD3-3604-4AAC-B2CA-D9AC3E55B64B}
[-] Schlüssel gelöscht: HKU\.DEFAULT\Software\jhtrsq
[-] Schlüssel gelöscht: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\SweetLabs App Platform
[-] Schlüssel gelöscht: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\WajIEnhance
[-] Schlüssel gelöscht: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[-] Schlüssel gelöscht: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[#] Schlüssel mit Neustart gelöscht: HKU\S-1-5-18\Software\jhtrsq
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\SweetLabs App Platform
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\WajIEnhance
[-] Schlüssel gelöscht: HKLM\SOFTWARE\zdengine
[-] Schlüssel gelöscht: HKLM\SOFTWARE\TWEAKBIT
[-] Schlüssel gelöscht: HKLM\SOFTWARE\OtherSearch
[-] Schlüssel gelöscht: HKLM\SOFTWARE\trotuxSoftware
[-] Schlüssel gelöscht: HKLM\SOFTWARE\WinArcher
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Socia2Sear Browser Enhancer
[-] Schlüssel gelöscht: HKLM\SOFTWARE\jhtrsq
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[#] Schlüssel mit Neustart gelöscht: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Youtube AdBlock
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\SweetLabs App Platform
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\WajIEnhance
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\Socia2Sear Browser Enhancer
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\jhtrsq
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu
[-] Daten wiederhergestellt: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Internet Explorer\Main [Start Page Redirect Cache]
[-] Daten wiederhergestellt: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page Redirect Cache]
[-] Daten wiederhergestellt: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page Redirect Cache]
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\chrome-64-bit.de.softonic.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\homepage-web.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\watch4.de
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.watch4.de
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\chrome-64-bit.de.softonic.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\homepage-web.com
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com
[-] Wert gelöscht: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Windows\CurrentVersion\Run [ProxyGate]
[-] Wert gelöscht: HKU\S-1-5-21-4038466168-2714463032-1615967804-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [ProxyGate]
[#] Wert mit Neustart gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ProxyGate]
[#] Wert mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ProxyGate]
[-] Schlüssel gelöscht: HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
[-] Schlüssel gelöscht: HKCU\Software\Classes\Directory\shell\pokki
[-] Schlüssel gelöscht: HKCU\Software\Classes\Drive\shell\pokki
[-] Schlüssel gelöscht: HKCU\Software\Classes\lnkfile\shell\pokki
[-] Schlüssel gelöscht: HKLM\SOFTWARE\CLASSES\APPID\zdengine.EXE
[-] Schlüssel gelöscht: HKLM\SOFTWARE\CLASSES\APPID\56BF5154-0B48-4ADB-902A-6C8B12E270D9
***** [ Browser ] *****
[-] [C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Gelöscht: search.homepage-web.com
[-] [C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Gelöscht: homepage-web.com
[-] [C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Gelöscht: startpage-home.com
[-] [C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://homepage-web.com/?s=hp&m=start
[-] [C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://homepage-web.com/?s=hp&m=start
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [13365 Bytes] - [17/11/2016 22:11:34]
C:\AdwCleaner\AdwCleaner[S0].txt - [12445 Bytes] - [17/11/2016 21:43:09]
C:\AdwCleaner\AdwCleaner[S1].txt - [12755 Bytes] - [17/11/2016 22:06:55]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [13587 Bytes] ##########
Code:
ATTFilter # AdwCleaner v6.030 - Bericht erstellt am 17/11/2016 um 22:31:50
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-16.1 [Server]
# Betriebssystem : Windows 8.1 (X64)
# Benutzername : ducanh - VIP
# Gestartet von : C:\Users\ducanh\Downloads\AdwCleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support
***** [ Dienste ] *****
***** [ Ordner ] *****
[-] Ordner gelöscht: C:\Users\ducanh\AppData\Local\SweetLabs App Platform
***** [ Dateien ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
[-] [C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://homepage-web.com/?s=hp&m=start
[-] [C:\Users\ducanh\AppData\Local\Google\Chrome\User Data\Profile 1] [startup_urls] Gelöscht: hxxp://homepage-web.com/?s=hp&m=start
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [13799 Bytes] - [17/11/2016 22:11:34]
C:\AdwCleaner\AdwCleaner[C2].txt - [1300 Bytes] - [17/11/2016 22:31:50]
C:\AdwCleaner\AdwCleaner[S0].txt - [12445 Bytes] - [17/11/2016 21:43:09]
C:\AdwCleaner\AdwCleaner[S1].txt - [12755 Bytes] - [17/11/2016 22:06:55]
C:\AdwCleaner\AdwCleaner[S2].txt - [1816 Bytes] - [17/11/2016 22:29:37]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1594 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 8.1 x64
Ran by ducanh (Administrator) on 17/11/2016 at 22:48:51,92
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17/11/2016 at 22:58:04,71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 |
|
| Themen zu Laptop wurde infiziert, 100% Datenträger und Chrome öffnet werbung |
| 100%, 100% datenträger, ahnung, bitte um hilfe, chrome, comodo, datei, daten, datenträger, geklappt, hilfe, infiziert, laptop, nicht, schei, sofort, virus, virusscan, virusscanner, wenig, wenig ahnung, werbun, werbung, zip datei, öffnet, öffnet werbung |
Linear-Darstellung
