| |
| |||||||
Log-Analyse und Auswertung: Supremo - Microsoft Betrüger AnrufWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
24.11.2016, 18:04
| #1 |
| |  Supremo - Microsoft Betrüger Anruf Hallo liebes Forum, ich bin leider Opfer von diesen dubiosen Supremo-Anrufen geworden und würde gerne eure Hilfe in Anspruch nehmen. Laut den Anleitungen hier habe ich bereits Farbar und TDSSKiller laufen lassen. Anbei die Logs: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 23-11-2016
durchgeführt von Wolf (Administrator) auf WOLF-PC (24-11-2016 17:39:07)
Gestartet von D:\Desktop
Geladene Profile: UpdatusUser & Wolf (Verfügbare Profile: UpdatusUser & Wolf)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Atheros Communications) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
(Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6629480 2011-04-15] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [627360 2011-05-20] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe [379552 2011-05-20] (Atheros Commnucations)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [916072 2016-11-06] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-11-15] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2684133998-1866749732-2730818800-1001\...\MountPoints2: {74e0d217-ca1d-11e3-b3b6-7ce9d3305e00} - H:\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2066.1.A11B02 PID_0083
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{51A34BE7-4E65-4B0D-9D05-A85A06E0D0B4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B82662BC-1FA3-4418-B6AE-BCB5BCF8616F}: [NameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2684133998-1866749732-2730818800-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/USCON/8
HKU\S-1-5-21-2684133998-1866749732-2730818800-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/USCON/8
SearchScopes: HKLM -> DefaultScope {8C945997-8E91-4560-936E-5B7744763F37} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM -> {8C945997-8E91-4560-936E-5B7744763F37} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {8C945997-8E91-4560-936E-5B7744763F37} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {8C945997-8E91-4560-936E-5B7744763F37} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2684133998-1866749732-2730818800-1001 -> DefaultScope {8C945997-8E91-4560-936E-5B7744763F37} URL =
SearchScopes: HKU\S-1-5-21-2684133998-1866749732-2730818800-1001 -> {1AE1F317-C8E2-4BDB-9C32-7A98ACBD7A7B} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYDE&apn_uid=8DA2C42C-1187-4320-80F3-883D73AD6A17&apn_sauid=2CC4F92B-8C45-4369-AA45-80667A312CED
SearchScopes: HKU\S-1-5-21-2684133998-1866749732-2730818800-1001 -> {8C945997-8E91-4560-936E-5B7744763F37} URL =
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120129192334.dll => Keine Datei
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-01-30] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20121203182048.dll => Keine Datei
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll [2011-05-20] (Atheros Commnucations)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
FireFox:
========
FF DefaultProfile: lyswc7pk.default-1389113282486
FF ProfilePath: C:\Users\Wolf\AppData\Roaming\Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486 [2016-11-24]
FF NewTab: Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486 -> chrome://unitedtb/content/newtab/newtab-page.xhtml
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486 -> Google
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486 -> GMX Suche
FF Homepage: Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486 -> hxxp://www.gmx.net/
about:home
FF Extension: (Avira Browser Safety) - C:\Users\Wolf\AppData\Roaming\Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486\Extensions\abs@avira.com.xpi [2016-11-22]
FF Extension: (Firefox Hotfix) - C:\Users\Wolf\AppData\Roaming\Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-01]
FF Extension: (GMX MailCheck) - C:\Users\Wolf\AppData\Roaming\Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486\Extensions\mailcheck@gmx.net [2016-11-23]
FF SearchPlugin: C:\Users\Wolf\AppData\Roaming\Mozilla\Firefox\Profiles\lyswc7pk.default-1389113282486\searchplugins\avira-safesearch.xml [2014-03-21]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => nicht gefunden
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-10] ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll [2012-01-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2011-04-21] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2011-04-21] (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1089088 2016-11-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [475232 2016-11-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [475232 2016-11-06] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1488240 2016-11-06] (Avira Operations GmbH & Co. KG)
R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-05-20] (Atheros) [Datei ist nicht signiert]
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [80032 2011-05-20] (Atheros Commnucations) [Datei ist nicht signiert]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [349512 2016-11-15] (Avira Operations GmbH & Co. KG)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [177432 2016-11-06] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [145536 2016-10-20] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [79696 2016-06-02] (Avira Operations GmbH & Co. KG)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2012-12-21] () [Datei ist nicht signiert]
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [14920 2012-12-21] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2012-12-21] () [Datei ist nicht signiert]
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [9160 2012-12-21] () [Datei ist nicht signiert]
R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [69184 2011-09-05] (Fresco Logic)
S3 PCDSRVC{D3412D80-CF3B4A27-06020200}_0; \??\c:\program files\my dell\pcdsrvc_x64.pkms [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-24 17:38 - 2016-11-24 17:39 - 00000000 ____D C:\FRST
2016-11-23 17:16 - 2016-11-24 17:37 - 00000000 ____D C:\Users\Wolf\AppData\LocalLow\Mozilla
2016-11-23 16:15 - 2016-11-23 16:16 - 00000000 ____D C:\ProgramData\SupremoRemoteDesktop
2016-11-23 16:07 - 2016-11-23 22:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-14 18:16 - 2016-11-14 18:16 - 00639512 _____ C:\Users\Wolf\Downloads\Kfz-Versicherung vergleichen mit Verivox – bis zu 850 Euro sparen.htm
2016-11-09 19:19 - 2016-11-09 19:19 - 00007897 _____ C:\Users\Wolf\Downloads\0901c413b6c52413.pdf
2016-11-09 19:10 - 2016-11-09 19:11 - 00011681 _____ C:\Users\Wolf\Downloads\0901c413b6c51e22.pdf
2016-11-09 19:09 - 2016-11-09 19:09 - 00055822 _____ C:\Users\Wolf\Downloads\Ihre Rechnung NW_06979700000998.pdf
2016-11-09 18:06 - 2016-11-09 18:06 - 00000000 _____ C:\Users\Wolf\Downloads\Sparkasse Neuss Secure WebMail - Saldo Darlehen 1.11.16.txt
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2016-11-24 17:30 - 2009-07-14 05:45 - 00028128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-24 17:30 - 2009-07-14 05:45 - 00028128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-24 17:28 - 2013-01-06 13:21 - 00000000 ____D C:\Users\Wolf\AppData\Local\CrashDumps
2016-11-24 17:17 - 2012-01-30 02:19 - 00000000 ____D C:\ProgramData\Sonic
2016-11-24 17:14 - 2012-01-29 18:04 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-24 17:13 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-24 10:05 - 2013-01-19 15:00 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-23 22:46 - 2012-12-03 18:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-23 17:19 - 2010-11-21 07:50 - 00699666 _____ C:\Windows\system32\perfh007.dat
2016-11-23 17:19 - 2010-11-21 07:50 - 00149774 _____ C:\Windows\system32\perfc007.dat
2016-11-23 17:19 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-23 17:19 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-23 17:15 - 2014-08-15 07:54 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-23 13:39 - 2013-01-19 13:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-11-10 17:12 - 2012-12-03 17:25 - 00000000 ____D C:\Users\Wolf\AppData\Local\Nero
2016-11-10 17:05 - 2013-01-19 15:00 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-10 17:05 - 2012-12-23 20:53 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-10 17:05 - 2012-01-30 01:16 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-10 17:05 - 2012-01-30 01:16 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-10 17:05 - 2012-01-30 01:15 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-06 12:31 - 2013-03-31 12:53 - 00177432 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-07-02 18:42 - 2015-01-11 17:43 - 0005120 _____ () C:\Users\Wolf\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
Einige Dateien in TEMP:
====================
C:\Users\Wolf\AppData\Local\Temp\avgnt.exe
C:\Users\Wolf\AppData\Local\Temp\jre-8u51-windows-au.exe
C:\Users\Wolf\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Wolf\AppData\Local\Temp\stageremote_2.0.0.43_2.0.0.50_update_all.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2016-01-31 16:37
==================== Ende von FRST.txt ============================
hat bereits die Supremo.exe gefunden: Error: (11/23/2016 04:15:51 PM) (Source: SupremoSystem.exe) (EventID: 0) (User: ) Description: Event-ID 0 Dennoch hier das Log. Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 23-11-2016
durchgeführt von Wolf (24-11-2016 17:41:06)
Gestartet von D:\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-12-03 16:03:56)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2684133998-1866749732-2730818800-500 - Administrator - Disabled)
Gast (S-1-5-21-2684133998-1866749732-2730818800-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2684133998-1866749732-2730818800-1003 - Limited - Enabled)
UpdatusUser (S-1-5-21-2684133998-1866749732-2730818800-1000 - Limited - Enabled) => C:\Users\UpdatusUser
Wolf (S-1-5-21-2684133998-1866749732-2730818800-1001 - Administrator - Enabled) => C:\Users\Wolf
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.23.58 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{e7f56494-d786-472e-aba2-1b93089e06cd}) (Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.76.20506 - Avira Operations GmbH & Co. KG) Hidden
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.83 - Atheros Communications)
Brutal Chess (HKLM-x32\...\Brutal Chess) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.61 - Dell Inc.)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.61 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (HKLM-x32\...\{3255BC3F-32BA-41ED-93A0-B9AEB6CDD9E6}) (Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.1.3 - Dell Inc.)
Dell Stage (HKLM-x32\...\{56A0DD94-47D9-4AC8-B5A1-8A8CA77C4B89}) (Version: 1.5.201.0 - Fingertapps)
Dell Stage Remote (HKLM-x32\...\{AF4D3C63-009B-4A17-B02E-D395065DD3F0}) (Version: 2.0.0.43 - ArcSoft)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1209.101.204 - ALPS ELECTRIC CO., LTD.)
Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)
Dell VideoStage (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.44 - Creative Technology Ltd)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Dell Inc.)
DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden
eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)
inSSIDer (HKLM-x32\...\{65A5E87D-7A3F-4819-807D-B86990D5F369}) (Version: 2.1.6 - MetaGeek)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2455 - Intel Corporation)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java(TM) 7 Update 1 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417001FF}) (Version: 7.0.10 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 50.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.0 (x86 de)) (Version: 50.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.0.6152 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.4.6422.14 - PC-Doctor, Inc.)
NVIDIA 3D Vision Treiber 268.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 268.30 - NVIDIA Corporation)
NVIDIA Grafiktreiber 268.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 268.30 - NVIDIA Corporation)
PhotoShowExpress (x32 Version: 2.0.063 - Sonic Solutions) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.0.15 - Dell Inc.)
RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6353 - Realtek Semiconductor Corp.)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (Version: 1.3.2 - Roxio) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.11 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.11.102 - Skype Technologies S.A.)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
SyncUP (HKLM-x32\...\{D92C9CCE-E5F0-4125-977A-0590F3225B74}) (Version: 10.2.15400 - Nero AG)
SyncUP (x32 Version: 1.12.12400.17.102 - Nero AG) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {01A63370-3544-422D-9415-288A5E911C67} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-10] (Adobe Systems Incorporated)
Task: {07D77F26-EB46-4530-A45C-0634FF084B63} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2013-09-06] (PC-Doctor, Inc.)
Task: {1F020631-B649-488F-9153-6F6846ECF9A0} - System32\Tasks\{64182498-6539-4557-B6E0-A098F9351E85} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/eula
Task: {21856E0F-1677-4D44-A4DA-0FAED101D101} - System32\Tasks\{7B36BC79-8519-4509-8AF3-4ABFEF41807A} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/eula
Task: {267BBB0F-94EB-4FD0-AB83-73F6071DA8AA} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {5928B6A7-FC2B-42BD-9DDE-A0467C735922} - System32\Tasks\{C2EFD061-D0DF-4E13-A35C-39142E3DCB69} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/eula
Task: {60B95B93-D1A2-4BE6-B9FC-F9F48B5E3C35} - System32\Tasks\{79953EB7-EAED-4557-94D0-7FD4AB14508B} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/abandoninstall?page=tsMain
Task: {90156859-CD32-4EE0-B2A9-3669DEC2AB43} - System32\Tasks\{3D9DD1F2-D7C7-4524-A0BA-CFCF0A323C65} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/eula
Task: {9EEF608A-F412-452D-B6A6-B15707C6BC33} - System32\Tasks\{65482D7E-D986-4A54-AF20-558B507016C2} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/eula
Task: {A1F6F686-A162-4F6F-98D2-FAB9F181B854} - System32\Tasks\{4A95DC04-8F80-47AB-83DD-2AB01FE4501B} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/eula
Task: {BBB88CA1-A4D7-4A9B-8F32-B2C72FB26F99} - System32\Tasks\{EC3CC292-E2E6-4488-87ED-2F5D828F139A} => pcalua.exe -a C:\Users\Wolf\Downloads\mflpro_c1\Data\Disk1\setup.exe -d C:\Users\Wolf\Downloads\mflpro_c1\Data\Disk1
Task: {C4A8F7AD-AEBE-441D-899E-2027A9A1E0D2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {C55DBB09-2B6E-4E65-B50E-B11730AE2C6C} - System32\Tasks\{B5A321D7-4A48-48A3-9365-C1C825704DE1} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/privacy
Task: {D8DC1920-39BE-4FD8-9B18-AA7B1A371DCD} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2013-12-07] (PC-Doctor, Inc.)
Task: {E56800CC-1AEE-4221-A657-07C18386DF75} - System32\Tasks\{939EE0C0-3045-4C5F-93F6-D08E2DC38788} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/privacy
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2012-01-30 02:29 - 2011-07-20 14:04 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2684133998-1866749732-2730818800-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Wolf\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: SftService => 2
MSCONFIG\startupreg: AccuWeatherWidget => "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: Apoint => C:\Program Files\DellTPad\Apoint.exe
MSCONFIG\startupreg: Dell Registration => C:\Program Files (x86)\System Registration\prodreg.exe /boot
MSCONFIG\startupreg: Dell Webcam Central => "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
MSCONFIG\startupreg: DellStage => "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
MSCONFIG\startupreg: Desktop Disc Tool => "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.1 Home Edition\bin\EpmNews.exe
MSCONFIG\startupreg: NeroLauncher => C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe 900
MSCONFIG\startupreg: QuickSet => c:\Program Files\Dell\QuickSet\QuickSet.exe
MSCONFIG\startupreg: RoxWatchTray => "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
MSCONFIG\startupreg: Stage Remote => C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe -Quiet
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{F2A732A3-5DED-4CB6-9BE1-6A713CD5C7C2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{F9B41123-2AF1-463F-8E9C-5E6042FFC4BC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{8F525342-EA13-421D-9E1A-B727B13269ED}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{98F46D3B-1187-46E7-9CB6-8A9DFDE45016}] => (Allow) c:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{1053100F-7251-43E3-9D0C-A475B05D32ED}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\Controller.exe
FirewallRules: [{4668D33D-2983-48E0-9BC8-55D7DE05E540}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
FirewallRules: [{D0C941E1-D2E6-4CC5-982B-935740018A7B}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\DMR.exe
FirewallRules: [{7EDCBF87-4A8C-49A7-8F9C-B4A2D684BDF0}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\Controller.exe
FirewallRules: [{408C6867-410F-49AB-9649-7589967FB6B1}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\InstallerHelp.exe
FirewallRules: [{2B56A8D5-BEC3-43E1-B375-63ED8663A8AD}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
FirewallRules: [{7B42BE3B-F4DB-4800-8DB4-08AF2E34E677}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
FirewallRules: [{BF941EBF-2865-4FB4-8994-72DC77EF4375}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\DMR.exe
FirewallRules: [{14314BB3-2415-4A69-8546-B8DF4402B283}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\InstallerHelp.exe
FirewallRules: [{CA6AB8D2-E757-437F-9173-CD8AD15AE0C7}] => (Allow) C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
FirewallRules: [{BE139B13-B9EA-4BE2-9D7D-D6B7E1DE8EBF}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{41C12956-5FD3-4D16-8D1F-A7472454C5AD}] => (Allow) LPort=2869
FirewallRules: [{F97EB804-D1A1-4589-B2AF-537BFDAFFEBF}] => (Allow) LPort=1900
FirewallRules: [{D282D5C9-680E-4527-BC92-D66B42867EAF}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{71381C53-7D6F-4CAA-A7BC-929D83566B8F}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{77D8173F-E810-4B8F-81B2-BDBF4081CFA7}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{6978205F-A9A0-4CA3-806F-2162D4803219}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{0F014C7B-5853-4D52-8A02-BF534729A237}] => (Allow) LPort=9700
FirewallRules: [{BDA64452-519E-42D8-BBE0-1A65D4715AA4}] => (Allow) LPort=9701
FirewallRules: [{FA513ADB-F53C-4812-8E89-1AD89F6A4E38}] => (Allow) LPort=9702
FirewallRules: [{ADF1518B-11BD-4D98-82AB-BE93C95AB433}] => (Allow) LPort=9700
FirewallRules: [{8264844F-67AF-4685-94DE-9C320CDDC501}] => (Allow) C:\Program Files\dell stage\dell stage\accuweather\accuweather.exe
FirewallRules: [{9C721312-7B73-4A05-9D5E-8E5C71905832}] => (Allow) C:\Program Files\dell stage\musicstage\musicstageengine.exe
FirewallRules: [{21375654-56FE-4F1E-856F-A9D6EADA84CE}] => (Allow) C:\Program Files\dell stage\dell stage\stage_primary.exe
FirewallRules: [{B7C20711-B6A4-4BBF-913F-5F63A43C3A96}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{545F5493-A7F3-4C79-B371-C9BE7724F92C}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [TCP Query User{9DEE9AD7-A24F-44FC-AEAA-534DD34662FB}C:\users\wolf\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Block) C:\users\wolf\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{9E86DF5A-D7E9-4D29-B478-FFF92048458D}C:\users\wolf\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Block) C:\users\wolf\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [{C63A255F-C841-46B9-A162-88831595CD0C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3FADD02E-7825-47F5-8CC1-2928A265A0DA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D81A275B-067F-469D-9C15-309E57EDCB67}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{50BC925B-24A2-40D3-AE57-DB0EC26F17AF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Dell Wireless 1702 Bluetooth v3.0+HS
Description: Dell Wireless 1702 Bluetooth v3.0+HS
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Atheros Communications
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Dell Wireless 1702 802.11b/g/n
Description: Dell Wireless 1702 802.11b/g/n
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/24/2016 05:28:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: pcdrcui.exe, Version: 6.0.6426.22, Zeitstempel: 0x52cfadb3
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.23418, Zeitstempel: 0x5708a857
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000bf262
ID des fehlerhaften Prozesses: 0xf94
Startzeit der fehlerhaften Anwendung: 0x01d2466fcc09c335
Pfad der fehlerhaften Anwendung: C:\Program Files\My Dell\pcdrcui.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung: 1302ae27-b263-11e6-90a6-848f69bf1b76
Error: (11/24/2016 05:15:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/24/2016 09:48:04 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/23/2016 10:47:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/23/2016 05:14:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/23/2016 04:30:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: pcdrcui.exe, Version: 6.0.6426.22, Zeitstempel: 0x52cfadb3
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.23418, Zeitstempel: 0x5708a857
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000bf262
ID des fehlerhaften Prozesses: 0x1918
Startzeit der fehlerhaften Anwendung: 0x01d2459e8c725eba
Pfad der fehlerhaften Anwendung: C:\Program Files\My Dell\pcdrcui.exe
Pfad des fehlerhaften Moduls: C:\Windows\SYSTEM32\ntdll.dll
Berichtskennung: d3b9d716-b191-11e6-8d59-848f69bf1b76
Error: (11/23/2016 04:15:51 PM) (Source: SupremoSystem.exe) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/23/2016 01:26:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/22/2016 10:59:32 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/14/2016 04:57:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Systemfehler:
=============
Error: (11/07/2016 02:33:50 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{AD3EDBCA-0901-415B-82E9-C16D3B65E38C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (11/06/2016 12:44:55 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error: (10/20/2016 04:58:54 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 04.10.2016 um 18:51:54 unerwartet heruntergefahren.
Error: (09/17/2016 09:58:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Installer" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (09/17/2016 09:58:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Installer erreicht.
Error: (09/17/2016 09:58:01 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Bei DCOM ist der Fehler "1053" aufgetreten, als der Dienst "MSIServer" mit den Argumenten "" gestartet wurde, um den folgenden Server zu verwenden:
{000C101C-0000-0000-C000-000000000046}
Error: (09/04/2016 05:27:50 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{995C996E-D918-4A8C-A302-45719A6F4EA7}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (08/13/2016 10:16:42 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{995C996E-D918-4A8C-A302-45719A6F4EA7}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (08/04/2016 11:30:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Installer" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (08/04/2016 11:30:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Installer erreicht.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Prozentuale Nutzung des RAM: 59%
Installierter physikalischer RAM: 2960.14 MB
Verfügbarer physikalischer RAM: 1192 MB
Summe virtueller Speicher: 5918.46 MB
Verfügbarer virtueller Speicher: 4045.39 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:258.46 GB) (Free:208.37 GB) NTFS
Drive d: (Eigene Dateien) (Fixed) (Total:19.99 GB) (Free:14.43 GB) NTFS
Drive e: (Software) (CDROM) (Total:0.01 GB) (Free:0 GB) UDF
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=19.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=258.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=20 GB) - (Type=OF Extended)
==================== Ende von Addition.txt ============================
Im nächsten Beitrag! Wäre super wenn ihr mir weiterhelfen könntet, LG Wolf! |
|
24.11.2016, 18:08
| #2 |
| | Supremo - Microsoft Betrüger Anruf Das Log muss ich in zwei Teile teilen:
__________________Code:
ATTFilter 17:52:27.0930 0x0e60 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
17:52:29.0896 0x0e60 ============================================================
17:52:29.0896 0x0e60 Current date / time: 2016/11/24 17:52:29.0896
17:52:29.0896 0x0e60 SystemInfo:
17:52:29.0896 0x0e60
17:52:29.0896 0x0e60 OS Version: 6.1.7601 ServicePack: 1.0
17:52:29.0896 0x0e60 Product type: Workstation
17:52:29.0896 0x0e60 ComputerName: WOLF-PC
17:52:29.0896 0x0e60 UserName: Wolf
17:52:29.0896 0x0e60 Windows directory: C:\Windows
17:52:29.0896 0x0e60 System windows directory: C:\Windows
17:52:29.0896 0x0e60 Running under WOW64
17:52:29.0896 0x0e60 Processor architecture: Intel x64
17:52:29.0896 0x0e60 Number of processors: 2
17:52:29.0896 0x0e60 Page size: 0x1000
17:52:29.0896 0x0e60 Boot type: Normal boot
17:52:29.0896 0x0e60 CodeIntegrityOptions = 0x00000001
17:52:29.0896 0x0e60 ============================================================
17:52:30.0114 0x0e60 KLMD registered as C:\Windows\system32\drivers\68573893.sys
17:52:30.0114 0x0e60 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23418, osProperties = 0x1
17:52:30.0613 0x0e60 System UUID: {3ED5A634-F56D-6778-5B29-044270C96ACC}
17:52:31.0019 0x0e60 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:52:31.0081 0x0e60 ============================================================
17:52:31.0081 0x0e60 \Device\Harddisk0\DR0:
17:52:31.0081 0x0e60 MBR partitions:
17:52:31.0081 0x0e60 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x34000, BlocksNum 0x2710000
17:52:31.0081 0x0e60 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2744000, BlocksNum 0x204ECB0F
17:52:31.0112 0x0e60 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22C30B4E, BlocksNum 0x27FCB73
17:52:31.0112 0x0e60 ============================================================
17:52:31.0159 0x0e60 C: <-> \Device\Harddisk0\DR0\Partition2
17:52:31.0190 0x0e60 D: <-> \Device\Harddisk0\DR0\Partition3
17:52:31.0190 0x0e60 ============================================================
17:52:31.0190 0x0e60 Initialize success
17:52:31.0190 0x0e60 ============================================================
17:52:45.0979 0x12a0 ============================================================
17:52:45.0979 0x12a0 Scan started
17:52:45.0979 0x12a0 Mode: Manual; SigCheck; TDLFS;
17:52:45.0979 0x12a0 ============================================================
17:52:45.0979 0x12a0 KSN ping started
17:52:47.0180 0x12a0 KSN ping finished: true
17:52:47.0695 0x12a0 ================ Scan system memory ========================
17:52:47.0695 0x12a0 System memory - ok
17:52:47.0695 0x12a0 ================ Scan services =============================
17:52:47.0914 0x12a0 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:52:47.0992 0x12a0 1394ohci - ok
17:52:48.0023 0x12a0 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:52:48.0038 0x12a0 ACPI - ok
17:52:48.0070 0x12a0 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:52:48.0101 0x12a0 AcpiPmi - ok
17:52:48.0210 0x12a0 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:52:48.0241 0x12a0 AdobeARMservice - ok
17:52:48.0366 0x12a0 [ 9BAF21BA600EC4E5FD9A66AD3E4FF5A6, 5E02E5E80557F6EC870EB7CC2DE95169D4225B87A2FE7E796736205F51C15816 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:52:48.0397 0x12a0 AdobeFlashPlayerUpdateSvc - ok
17:52:48.0460 0x12a0 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:52:48.0475 0x12a0 adp94xx - ok
17:52:48.0538 0x12a0 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:52:48.0569 0x12a0 adpahci - ok
17:52:48.0631 0x12a0 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:52:48.0647 0x12a0 adpu320 - ok
17:52:48.0678 0x12a0 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:52:48.0694 0x12a0 AeLookupSvc - ok
17:52:48.0740 0x12a0 [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
17:52:48.0756 0x12a0 AERTFilters - ok
17:52:48.0818 0x12a0 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
17:52:48.0834 0x12a0 AFD - ok
17:52:48.0881 0x12a0 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
17:52:48.0896 0x12a0 agp440 - ok
17:52:48.0928 0x12a0 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
17:52:48.0943 0x12a0 ALG - ok
17:52:48.0974 0x12a0 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
17:52:48.0990 0x12a0 aliide - ok
17:52:49.0037 0x12a0 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
17:52:49.0037 0x12a0 amdide - ok
17:52:49.0068 0x12a0 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:52:49.0084 0x12a0 AmdK8 - ok
17:52:49.0099 0x12a0 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
17:52:49.0115 0x12a0 AmdPPM - ok
17:52:49.0146 0x12a0 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:52:49.0162 0x12a0 amdsata - ok
17:52:49.0177 0x12a0 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:52:49.0193 0x12a0 amdsbs - ok
17:52:49.0208 0x12a0 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:52:49.0208 0x12a0 amdxata - ok
17:52:49.0333 0x12a0 [ 04B856A07EDCFEE14C4CB0D389531020, 38094E6FECF22FBC72B46C4A78519F9E698092DF28A81C5742332FCA6609CB9B ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
17:52:49.0380 0x12a0 AntiVirMailService - ok
17:52:49.0458 0x12a0 [ FE817303FA4308B6149D2FC1D07D0DF2, 471EA57785EE40FE244BB2AF10FB5F5B113F1D79F34CAE28CC46177AB3F15141 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:52:49.0489 0x12a0 AntiVirSchedulerService - ok
17:52:49.0552 0x12a0 [ FE817303FA4308B6149D2FC1D07D0DF2, 471EA57785EE40FE244BB2AF10FB5F5B113F1D79F34CAE28CC46177AB3F15141 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:52:49.0567 0x12a0 AntiVirService - ok
17:52:49.0723 0x12a0 [ 82A7739C01B7FBD6738B08C6FEB13CE5, 49BD8764CC7BB8F3AEFD8A8585A2F492C0B48A6AAACA86BDE7CB6D182EADD703 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
17:52:49.0770 0x12a0 AntiVirWebService - ok
17:52:49.0832 0x12a0 [ 24ED0EB2B2558970176ECEE680F8F806, 262473534CBFB6DBA5258A981025BA4AB86BB06D9031A7379F1DFE48F69D789D ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
17:52:49.0848 0x12a0 ApfiltrService - ok
17:52:49.0895 0x12a0 [ 6474F8823C7188D2DA579F01FB6CED6B, 81D4E9D026CA60FB8840D520D151B8C2F4745A75DF90A4D6C80641F1A23AB605 ] AppID C:\Windows\system32\drivers\appid.sys
17:52:49.0910 0x12a0 AppID - ok
17:52:49.0926 0x12a0 [ 8F58BA1F7772D6D7CE45F03309608001, CDB109E0DD241042C058F7D81A1BDEBC34435CB2DC4A7A7A3692193DD5806097 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:52:49.0942 0x12a0 AppIDSvc - ok
17:52:49.0973 0x12a0 [ B62867835B41BCD839D9896AB4D7DF09, 98036D0202DB6171E90485898175833AC44873A85E6453EBE928E433B364CE07 ] Appinfo C:\Windows\System32\appinfo.dll
17:52:49.0988 0x12a0 Appinfo - ok
17:52:50.0020 0x12a0 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
17:52:50.0035 0x12a0 arc - ok
17:52:50.0051 0x12a0 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:52:50.0066 0x12a0 arcsas - ok
17:52:50.0160 0x12a0 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:52:50.0176 0x12a0 aspnet_state - ok
17:52:50.0207 0x12a0 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:52:50.0238 0x12a0 AsyncMac - ok
17:52:50.0285 0x12a0 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
17:52:50.0300 0x12a0 atapi - ok
17:52:50.0332 0x12a0 [ CBE61B4494165F458BD87E37181EE934, E95654DCC0F977A3604B6BE435BEE109AC8F9F7494FD3A132F5FB477BBF7B105 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
17:52:50.0332 0x12a0 AthBTPort - ok
17:52:50.0410 0x12a0 [ 650F111D5CDA64C10AE4B9D1BA9D4FFF, 99AD83993D724538687F084318404DBF314C2249AB593AF9DD3783B0AB6B3B25 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
17:52:50.0410 0x12a0 Atheros Bt&Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 )
17:52:51.0673 0x12a0 Detect skipped due to KSN trusted
17:52:51.0673 0x12a0 Atheros Bt&Wlan Coex Agent - ok
17:52:51.0736 0x12a0 [ 44FB485B94A8332D877F659366CEDBC8, 4CCA7D7FB3E7DEB8977B070C6BBC8315F2DB9FE66ADCB8A6A355A0C138EC6463 ] AtherosSvc C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
17:52:51.0751 0x12a0 AtherosSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:52:52.0703 0x12a0 Detect skipped due to KSN trusted
17:52:52.0703 0x12a0 AtherosSvc - ok
17:52:52.0859 0x12a0 [ 5493ED5D300AFC7A9A0A87FCA08E5381, 654869EB4D295317921BC3855D4FE5D3FE6031DC7655EA1805347DA8E5177FFA ] athr C:\Windows\system32\DRIVERS\athrx.sys
17:52:52.0984 0x12a0 athr - ok
17:52:53.0108 0x12a0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:52:53.0171 0x12a0 AudioEndpointBuilder - ok
17:52:53.0202 0x12a0 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:52:53.0233 0x12a0 AudioSrv - ok
17:52:53.0280 0x12a0 [ 3ED4B40C5EF146FB65392B553E65EBA8, 680E31F05E797162A40A67D8B7BF225DC390C38522BA2A28BA5CF70C254AAE6F ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:52:53.0296 0x12a0 avgntflt - ok
17:52:53.0358 0x12a0 [ E745629CBC104D2B446CFB859084BEB5, 3FC86742A44D9867F7CE7FD28DB4591B745495AF6A96E057A5F62ACD87E9E5B5 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:52:53.0358 0x12a0 avipbb - ok
17:52:53.0592 0x12a0 [ B9789F30438091DC528797ABFD310B01, 9C8678DFCF4A377954B8FE5C7C49C51B290A216671860200EAE6A4FD5A07E1E0 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
17:52:53.0608 0x12a0 Avira.ServiceHost - ok
17:52:53.0654 0x12a0 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:52:53.0654 0x12a0 avkmgr - ok
17:52:53.0795 0x12a0 [ 138A53D17B040F5A3A307D44A89D0905, AD212E430F2DE43F037BECF6A46FCD53270A5EE11427030C7D5CBC3EAAAAA029 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
17:52:53.0810 0x12a0 avnetflt - ok
17:52:53.0935 0x12a0 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:52:53.0951 0x12a0 AxInstSV - ok
17:52:54.0044 0x12a0 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:52:54.0076 0x12a0 b06bdrv - ok
17:52:54.0107 0x12a0 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:52:54.0138 0x12a0 b57nd60a - ok
17:52:54.0169 0x12a0 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
17:52:54.0185 0x12a0 BDESVC - ok
17:52:54.0216 0x12a0 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
17:52:54.0247 0x12a0 Beep - ok
17:52:54.0325 0x12a0 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
17:52:54.0356 0x12a0 BFE - ok
17:52:54.0419 0x12a0 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
17:52:54.0481 0x12a0 BITS - ok
17:52:54.0544 0x12a0 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:52:54.0544 0x12a0 blbdrive - ok
17:52:54.0590 0x12a0 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:52:54.0606 0x12a0 bowser - ok
17:52:54.0622 0x12a0 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:52:54.0637 0x12a0 BrFiltLo - ok
17:52:54.0684 0x12a0 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:52:54.0715 0x12a0 BrFiltUp - ok
17:52:54.0778 0x12a0 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
17:52:54.0809 0x12a0 Browser - ok
17:52:54.0887 0x12a0 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:52:54.0934 0x12a0 Brserid - ok
17:52:54.0980 0x12a0 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:52:55.0012 0x12a0 BrSerWdm - ok
17:52:55.0043 0x12a0 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:52:55.0074 0x12a0 BrUsbMdm - ok
17:52:55.0121 0x12a0 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:52:55.0168 0x12a0 BrUsbSer - ok
17:52:55.0308 0x12a0 [ FE70889A85C57A9268101B2DB0474509, 9E957390A52BE4E5642724FEC06A201682F93DD1C6F2C00A5F57351460CF5AE0 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
17:52:55.0339 0x12a0 BTATH_A2DP - ok
17:52:55.0370 0x12a0 [ A9DF22429E8D69ED849B0BBBE16BD327, 853A2F34EDBE62889769B6B75B50A6E57971279EAF3936E03EF46D311B5483C5 ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys
17:52:55.0417 0x12a0 BTATH_BUS - ok
17:52:55.0495 0x12a0 [ C864FF85EE16D61C2BDD5EF76824625F, 6D2FE57688D9E8B4277BF6DA9C219DEB367274364FBE17EFC353CEDB2D7EA35D ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys
17:52:55.0526 0x12a0 BTATH_HCRP - ok
17:52:55.0589 0x12a0 [ 0DEA505EFB5D771826D177EF8B8A208F, FD8027DA791F04077490749AC5A08F73CCBA1731462579AA9008CD8DD82FBBBC ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
17:52:55.0620 0x12a0 BTATH_LWFLT - ok
17:52:55.0729 0x12a0 [ 724C8088C96EFE7A3E63FEC21D4681C0, 4F9B258BE0FEA634A0D93B3892F2F039A7CAD184C9A81DFC2B67B0D4B39C5035 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys
17:52:55.0776 0x12a0 BTATH_RCP - ok
17:52:55.0854 0x12a0 [ FF59EE1DDAC776246F43BF434194650F, 1033E459007BBC85623236AC538BBC8B7D5A718F40E501996FE5508B1116B103 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
17:52:55.0870 0x12a0 BtFilter - ok
17:52:55.0948 0x12a0 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
17:52:55.0963 0x12a0 BthEnum - ok
17:52:55.0979 0x12a0 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:52:55.0994 0x12a0 BTHMODEM - ok
17:52:56.0057 0x12a0 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
17:52:56.0072 0x12a0 BthPan - ok
17:52:56.0150 0x12a0 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
17:52:56.0182 0x12a0 BTHPORT - ok
17:52:56.0197 0x12a0 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
17:52:56.0244 0x12a0 bthserv - ok
17:52:56.0322 0x12a0 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
17:52:56.0338 0x12a0 BTHUSB - ok
17:52:56.0369 0x12a0 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:52:56.0400 0x12a0 cdfs - ok
17:52:56.0478 0x12a0 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:52:56.0494 0x12a0 cdrom - ok
17:52:56.0587 0x12a0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
17:52:56.0618 0x12a0 CertPropSvc - ok
17:52:56.0650 0x12a0 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
17:52:56.0665 0x12a0 circlass - ok
17:52:56.0712 0x12a0 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
17:52:56.0743 0x12a0 CLFS - ok
17:52:56.0821 0x12a0 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:52:56.0838 0x12a0 clr_optimization_v2.0.50727_32 - ok
17:52:56.0885 0x12a0 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:52:56.0900 0x12a0 clr_optimization_v2.0.50727_64 - ok
17:52:56.0978 0x12a0 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:52:56.0994 0x12a0 clr_optimization_v4.0.30319_32 - ok
17:52:57.0025 0x12a0 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:52:57.0087 0x12a0 clr_optimization_v4.0.30319_64 - ok
17:52:57.0119 0x12a0 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:52:57.0212 0x12a0 CmBatt - ok
17:52:57.0259 0x12a0 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:52:57.0259 0x12a0 cmdide - ok
17:52:57.0306 0x12a0 [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG C:\Windows\system32\Drivers\cng.sys
17:52:57.0337 0x12a0 CNG - ok
17:52:57.0384 0x12a0 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:52:57.0399 0x12a0 Compbatt - ok
17:52:57.0415 0x12a0 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:52:57.0477 0x12a0 CompositeBus - ok
17:52:57.0493 0x12a0 COMSysApp - ok
17:52:57.0524 0x12a0 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:52:57.0524 0x12a0 crcdisk - ok
17:52:57.0571 0x12a0 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:52:57.0665 0x12a0 CryptSvc - ok
17:52:57.0774 0x12a0 [ BC3D4F90978CD7C8EABD1BAF3BF7873A, 5978139650FC51BE0CAB12061702C7BC7BEDF6E7C3A047FF0A6328AA674E4226 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
17:52:57.0883 0x12a0 CtClsFlt - ok
17:52:57.0930 0x12a0 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
17:52:57.0961 0x12a0 DcomLaunch - ok
17:52:58.0008 0x12a0 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
17:52:58.0070 0x12a0 defragsvc - ok
17:52:58.0117 0x12a0 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:52:58.0148 0x12a0 DfsC - ok
17:52:58.0195 0x12a0 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:52:58.0226 0x12a0 Dhcp - ok
17:52:58.0351 0x12a0 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
17:52:58.0460 0x12a0 DiagTrack - ok
17:52:58.0476 0x12a0 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
17:52:58.0632 0x12a0 discache - ok
17:52:58.0679 0x12a0 [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
17:52:58.0694 0x12a0 Disk - ok
17:52:58.0725 0x12a0 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:52:58.0928 0x12a0 Dnscache - ok
17:52:58.0959 0x12a0 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
17:52:59.0006 0x12a0 dot3svc - ok
17:52:59.0037 0x12a0 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
17:52:59.0162 0x12a0 DPS - ok
17:52:59.0193 0x12a0 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:52:59.0256 0x12a0 drmkaud - ok
17:52:59.0334 0x12a0 [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:52:59.0365 0x12a0 DXGKrnl - ok
17:52:59.0427 0x12a0 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
17:52:59.0474 0x12a0 EapHost - ok
17:52:59.0615 0x12a0 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:52:59.0864 0x12a0 ebdrv - ok
17:52:59.0927 0x12a0 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] EFS C:\Windows\System32\lsass.exe
17:53:00.0005 0x12a0 EFS - ok
17:53:00.0083 0x12a0 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:53:00.0145 0x12a0 ehRecvr - ok
17:53:00.0161 0x12a0 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
17:53:00.0176 0x12a0 ehSched - ok
17:53:00.0239 0x12a0 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:53:00.0317 0x12a0 elxstor - ok
17:53:00.0363 0x12a0 [ 6106653B08F4F72EEAA7F099E7C408A4, 96B77284744F8761C4F2558388E0AEE2140618B484FF53FA8B222B340D2A9C84 ] epmntdrv C:\Windows\system32\epmntdrv.sys
17:53:00.0426 0x12a0 epmntdrv - detected UnsignedFile.Multi.Generic ( 1 )
17:53:02.0221 0x12a0 Detect skipped due to KSN trusted
17:53:02.0221 0x12a0 epmntdrv - ok
17:53:02.0236 0x12a0 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:53:02.0252 0x12a0 ErrDev - ok
17:53:02.0299 0x12a0 [ 991C04A31777ED77CB92A4F96F14C2E2, 6CC2A311D8E67032D0847D70B20DCA87B52B2B7FB3C380B3A5AB6C233E955DD2 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
17:53:02.0330 0x12a0 EuGdiDrv - detected UnsignedFile.Multi.Generic ( 1 )
17:53:03.0656 0x12a0 Detect skipped due to KSN trusted
17:53:03.0656 0x12a0 EuGdiDrv - ok
17:53:03.0796 0x12a0 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
17:53:03.0874 0x12a0 EventSystem - ok
17:53:03.0906 0x12a0 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
17:53:03.0999 0x12a0 exfat - ok
17:53:04.0062 0x12a0 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:53:04.0108 0x12a0 fastfat - ok
17:53:04.0202 0x12a0 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
17:53:04.0467 0x12a0 Fax - ok
17:53:04.0483 0x12a0 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
17:53:04.0498 0x12a0 fdc - ok
17:53:04.0592 0x12a0 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
17:53:04.0639 0x12a0 fdPHost - ok
17:53:04.0654 0x12a0 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
17:53:04.0701 0x12a0 FDResPub - ok
17:53:04.0764 0x12a0 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:53:04.0779 0x12a0 FileInfo - ok
17:53:04.0795 0x12a0 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:53:04.0842 0x12a0 Filetrace - ok
17:53:04.0857 0x12a0 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:53:04.0904 0x12a0 flpydisk - ok
17:53:04.0920 0x12a0 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:53:04.0951 0x12a0 FltMgr - ok
17:53:05.0091 0x12a0 [ F910874E4789DC95F37D2CF6285A85FA, 797EB187F9C88CBD2904F037B83C99DDC69A2BC87A608FB956999F81A6D085C2 ] FLxHCIc C:\Windows\system32\DRIVERS\FLxHCIc.sys
17:53:05.0107 0x12a0 FLxHCIc - ok
17:53:05.0154 0x12a0 [ B957F9A14F696DBC0DC65497AAFD0CA4, D4B25A1BCF4A6375C51B59E46578C7BC3ACCA64CDD63107A55486844BE9E0B8B ] FLxHCIh C:\Windows\system32\DRIVERS\FLxHCIh.sys
17:53:05.0169 0x12a0 FLxHCIh - ok
17:53:05.0278 0x12a0 [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
17:53:05.0466 0x12a0 FontCache - ok
17:53:05.0512 0x12a0 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:53:05.0528 0x12a0 FontCache3.0.0.0 - ok
17:53:05.0544 0x12a0 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:53:05.0559 0x12a0 FsDepends - ok
17:53:05.0622 0x12a0 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:53:05.0637 0x12a0 Fs_Rec - ok
17:53:05.0762 0x12a0 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:53:05.0793 0x12a0 fvevol - ok
17:53:05.0856 0x12a0 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:53:05.0871 0x12a0 gagp30kx - ok
17:53:05.0980 0x12a0 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
17:53:06.0121 0x12a0 gpsvc - ok
17:53:06.0168 0x12a0 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:53:06.0183 0x12a0 hcw85cir - ok
17:53:06.0230 0x12a0 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:53:06.0261 0x12a0 HDAudBus - ok
17:53:06.0261 0x12a0 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:53:06.0277 0x12a0 HidBatt - ok
17:53:06.0308 0x12a0 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:53:06.0324 0x12a0 HidBth - ok
17:53:06.0355 0x12a0 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
17:53:06.0386 0x12a0 HidIr - ok
17:53:06.0417 0x12a0 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
17:53:06.0448 0x12a0 hidserv - ok
17:53:06.0495 0x12a0 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:53:06.0511 0x12a0 HidUsb - ok
17:53:06.0542 0x12a0 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:53:06.0589 0x12a0 hkmsvc - ok
17:53:06.0636 0x12a0 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:53:06.0714 0x12a0 HomeGroupListener - ok
17:53:06.0792 0x12a0 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:53:06.0807 0x12a0 HomeGroupProvider - ok
17:53:06.0870 0x12a0 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:53:06.0885 0x12a0 HpSAMD - ok
17:53:06.0948 0x12a0 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:53:06.0979 0x12a0 HTTP - ok
17:53:06.0994 0x12a0 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:53:07.0010 0x12a0 hwpolicy - ok
17:53:07.0041 0x12a0 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:53:07.0057 0x12a0 i8042prt - ok
17:53:07.0104 0x12a0 [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor C:\Windows\system32\drivers\iaStor.sys
17:53:07.0135 0x12a0 iaStor - ok
17:53:07.0182 0x12a0 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:53:07.0197 0x12a0 iaStorV - ok
17:53:07.0275 0x12a0 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:53:07.0494 0x12a0 idsvc - ok
17:53:07.0634 0x12a0 IEEtwCollectorService - ok
17:53:08.0976 0x12a0 [ 0BD58366C86EF9DDC4F61AFED0CADA99, 2C4ADD577872DF0E9DE7664FA4293B8E335E18055E346B5BF644544840E420EF ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:53:10.0021 0x12a0 igfx - ok
17:53:10.0083 0x12a0 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:53:10.0114 0x12a0 iirsp - ok
17:53:10.0177 0x12a0 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
17:53:10.0411 0x12a0 IKEEXT - ok
17:53:10.0504 0x12a0 [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd C:\Windows\system32\drivers\Impcd.sys
17:53:10.0629 0x12a0 Impcd - ok
17:53:10.0988 0x12a0 [ 1B491F385EE96F9D9EE4CB430C8CD29E, 06CA97FC494F3B3FE422F1242856B643EE210959DCB6E8298254306145B688AF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:53:11.0175 0x12a0 IntcAzAudAddService - ok
17:53:11.0346 0x12a0 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
17:53:11.0454 0x12a0 intelide - ok
17:53:11.0498 0x12a0 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:53:11.0535 0x12a0 intelppm - ok
17:53:11.0645 0x12a0 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:53:11.0952 0x12a0 IPBusEnum - ok
17:53:11.0969 0x12a0 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:53:12.0128 0x12a0 IpFilterDriver - ok
17:53:12.0205 0x12a0 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:53:12.0241 0x12a0 iphlpsvc - ok
17:53:12.0304 0x12a0 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:53:12.0367 0x12a0 IPMIDRV - ok
17:53:12.0393 0x12a0 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:53:12.0473 0x12a0 IPNAT - ok
17:53:12.0550 0x12a0 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:53:12.0625 0x12a0 IRENUM - ok
17:53:12.0708 0x12a0 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:53:12.0726 0x12a0 isapnp - ok
17:53:12.0775 0x12a0 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:53:12.0796 0x12a0 iScsiPrt - ok
17:53:12.0839 0x12a0 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:53:12.0851 0x12a0 kbdclass - ok
17:53:12.0871 0x12a0 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:53:12.0992 0x12a0 kbdhid - ok
17:53:13.0026 0x12a0 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] KeyIso C:\Windows\system32\lsass.exe
17:53:13.0145 0x12a0 KeyIso - ok
17:53:13.0288 0x12a0 [ CFBA6BCBBDC7E33813D92FFB3460FA07, 4BE0DF9AC976A991731C784CD3F32C4CED67AD58267658F046798E84BA1BF78C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:53:13.0312 0x12a0 KSecDD - ok
17:53:13.0368 0x12a0 [ CE66825289EE8326CB52C4E9E785ACB0, 41113B55F891A300C7967F585F59921917EC0718C26798946056B1DE534EE0E3 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:53:13.0395 0x12a0 KSecPkg - ok
17:53:13.0427 0x12a0 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:53:13.0467 0x12a0 ksthunk - ok
17:53:13.0502 0x12a0 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
17:53:13.0613 0x12a0 KtmRm - ok
17:53:13.0668 0x12a0 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:53:13.0725 0x12a0 LanmanServer - ok
17:53:13.0755 0x12a0 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:53:13.0824 0x12a0 LanmanWorkstation - ok
17:53:13.0869 0x12a0 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:53:13.0908 0x12a0 lltdio - ok
17:53:13.0937 0x12a0 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:53:13.0987 0x12a0 lltdsvc - ok
17:53:14.0006 0x12a0 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:53:14.0089 0x12a0 lmhosts - ok
17:53:14.0296 0x12a0 [ 7F32D4C47A50E7223491E8FB9359907D, 6D3F59A8D006BED3234697933D09C8EE8F7A9F4A4196CFA878F8E8A929B24CE5 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:53:14.0349 0x12a0 LMS - ok
17:53:14.0405 0x12a0 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:53:14.0451 0x12a0 LSI_FC - ok
17:53:14.0474 0x12a0 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:53:14.0491 0x12a0 LSI_SAS - ok
17:53:14.0512 0x12a0 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:53:14.0525 0x12a0 LSI_SAS2 - ok
17:53:14.0546 0x12a0 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:53:14.0559 0x12a0 LSI_SCSI - ok
17:53:14.0584 0x12a0 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
17:53:14.0641 0x12a0 luafv - ok
17:53:14.0670 0x12a0 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:53:14.0687 0x12a0 Mcx2Svc - ok
17:53:14.0704 0x12a0 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
17:53:14.0720 0x12a0 megasas - ok
17:53:14.0773 0x12a0 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:53:14.0792 0x12a0 MegaSR - ok
17:53:14.0819 0x12a0 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:53:14.0832 0x12a0 MEIx64 - ok
17:53:14.0863 0x12a0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
17:53:14.0908 0x12a0 MMCSS - ok
17:53:14.0929 0x12a0 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
17:53:14.0996 0x12a0 Modem - ok
17:53:15.0104 0x12a0 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:53:15.0121 0x12a0 monitor - ok
17:53:15.0229 0x12a0 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:53:15.0263 0x12a0 mouclass - ok
17:53:15.0290 0x12a0 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:53:15.0322 0x12a0 mouhid - ok
17:53:15.0377 0x12a0 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:53:15.0390 0x12a0 mountmgr - ok
17:53:15.0493 0x12a0 [ 86320BA9D6A972C79D467931518B165A, 4D7ABD7E5637B9AF98D7F3D4C4DAE595C27C8FEEBAAFF9E6443271C41598FCE1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:53:15.0523 0x12a0 MozillaMaintenance - ok
17:53:15.0628 0x12a0 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
17:53:15.0656 0x12a0 mpio - ok
17:53:15.0681 0x12a0 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:53:15.0758 0x12a0 mpsdrv - ok
17:53:15.0840 0x12a0 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:53:15.0906 0x12a0 MpsSvc - ok
17:53:15.0950 0x12a0 [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:53:15.0977 0x12a0 MRxDAV - ok
17:53:16.0013 0x12a0 [ B7FADA5E1E55BB63F90EB9F8F016113B, 33C2C898E4AD0CBD34D9A6CF51987A4703009E23CD9D4F4294BF444C4D3D5A60 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:53:16.0078 0x12a0 mrxsmb - ok
17:53:16.0111 0x12a0 [ 34AFF1849B3EC042C40C5EEC9D78562A, E3378A9977B429812C38529C562FE27945706ADB5E9E877C4A90B0285631A501 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:53:16.0164 0x12a0 mrxsmb10 - ok
17:53:16.0236 0x12a0 [ 058CE7A55E140EB0C72FBA6FD2FA72DE, B1D89E524A621BDCC464882EF621BDC7779BFCBCC9FD923D70DE130C41D0DB4C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:53:16.0275 0x12a0 mrxsmb20 - ok
17:53:16.0304 0x12a0 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
17:53:16.0329 0x12a0 msahci - ok
17:53:16.0390 0x12a0 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:53:16.0406 0x12a0 msdsm - ok
17:53:16.0438 0x12a0 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
17:53:16.0462 0x12a0 MSDTC - ok
17:53:16.0485 0x12a0 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:53:16.0538 0x12a0 Msfs - ok
17:53:16.0556 0x12a0 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:53:16.0595 0x12a0 mshidkmdf - ok
17:53:16.0618 0x12a0 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:53:16.0629 0x12a0 msisadrv - ok
17:53:16.0655 0x12a0 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:53:16.0700 0x12a0 MSiSCSI - ok
17:53:16.0703 0x12a0 msiserver - ok
17:53:16.0733 0x12a0 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:53:16.0824 0x12a0 MSKSSRV - ok
17:53:16.0853 0x12a0 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:53:17.0008 0x12a0 MSPCLOCK - ok
17:53:17.0019 0x12a0 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:53:17.0075 0x12a0 MSPQM - ok
17:53:17.0106 0x12a0 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:53:17.0170 0x12a0 MsRPC - ok
17:53:17.0183 0x12a0 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:53:17.0212 0x12a0 mssmbios - ok
17:53:17.0232 0x12a0 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:53:17.0329 0x12a0 MSTEE - ok
17:53:17.0353 0x12a0 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:53:17.0367 0x12a0 MTConfig - ok
17:53:17.0379 0x12a0 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
17:53:17.0454 0x12a0 Mup - ok
17:53:17.0485 0x12a0 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
17:53:17.0609 0x12a0 napagent - ok
17:53:17.0739 0x12a0 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:53:17.0845 0x12a0 NativeWifiP - ok
17:53:17.0956 0x12a0 [ 934BB0D23A25C8C136570800A5A149B6, 15D99CE4E970FECE257F6D69810F8104720B26D8DC3787BC38CC8692ACEABD37 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
17:53:17.0988 0x12a0 NAUpdate - ok
17:53:18.0058 0x12a0 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:53:18.0101 0x12a0 NDIS - ok
17:53:18.0120 0x12a0 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:53:18.0157 0x12a0 NdisCap - ok
17:53:18.0177 0x12a0 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:53:18.0217 0x12a0 NdisTapi - ok
17:53:18.0231 0x12a0 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:53:18.0270 0x12a0 Ndisuio - ok
17:53:18.0284 0x12a0 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:53:18.0328 0x12a0 NdisWan - ok
17:53:18.0341 0x12a0 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:53:18.0386 0x12a0 NDProxy - ok
17:53:18.0416 0x12a0 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:53:18.0453 0x12a0 NetBIOS - ok
17:53:18.0489 0x12a0 [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:53:18.0517 0x12a0 NetBT - ok
17:53:18.0538 0x12a0 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] Netlogon C:\Windows\system32\lsass.exe
17:53:18.0551 0x12a0 Netlogon - ok
17:53:18.0594 0x12a0 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
17:53:18.0649 0x12a0 Netman - ok
17:53:18.0691 0x12a0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:53:18.0707 0x12a0 NetMsmqActivator - ok
17:53:18.0714 0x12a0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:53:18.0731 0x12a0 NetPipeActivator - ok
17:53:18.0768 0x12a0 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
17:53:18.0822 0x12a0 netprofm - ok
17:53:18.0847 0x12a0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:53:18.0866 0x12a0 NetTcpActivator - ok
17:53:18.0873 0x12a0 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:53:18.0890 0x12a0 NetTcpPortSharing - ok
17:53:18.0920 0x12a0 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:53:18.0932 0x12a0 nfrd960 - ok
17:53:18.0981 0x12a0 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
17:53:19.0054 0x12a0 NlaSvc - ok
17:53:19.0080 0x12a0 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:53:19.0120 0x12a0 Npfs - ok
17:53:19.0153 0x12a0 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
17:53:19.0198 0x12a0 nsi - ok
17:53:19.0207 0x12a0 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:53:19.0247 0x12a0 nsiproxy - ok
17:53:19.0340 0x12a0 [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:53:19.0407 0x12a0 Ntfs - ok
17:53:19.0483 0x12a0 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
17:53:19.0544 0x12a0 Null - ok
17:53:19.0581 0x12a0 [ 0EBC9D13CD96C15B1B18D8678A609E4B, B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
17:53:19.0617 0x12a0 nusb3hub - ok
17:53:19.0652 0x12a0 [ 7BDEC000D56D485021D9C1E63C2F81CA, 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
17:53:19.0689 0x12a0 nusb3xhc - ok
17:53:20.0207 0x12a0 [ 573B0941A37AEBEE96085D56A103F57B, F9A0B59F7C3B3217461F656B8AEE447C80F614E2571A603E55FDFDCB2B767751 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:53:20.0782 0x12a0 nvlddmkm - ok
17:53:20.0855 0x12a0 [ 43AF7EBEAC2AB623468E32CADDCB61A4, 19206A2785181E9524CC19F3A376FE6427968B86493E5836C8F0E5C4457881C4 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
17:53:20.0864 0x12a0 nvpciflt - ok
17:53:20.0896 0x12a0 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:53:20.0912 0x12a0 nvraid - ok
17:53:20.0947 0x12a0 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:53:20.0963 0x12a0 nvstor - ok
17:53:21.0028 0x12a0 [ C500760572C6059918FB0C960967695B, 89C4DCD2A03A75F5BFFCA39DB29D89A81E66A82F3B13FFE01D5D789A1D9172D3 ] NVSvc C:\Windows\system32\nvvsvc.exe
17:53:21.0086 0x12a0 NVSvc - ok
17:53:21.0259 0x12a0 [ F28169A7ADF7B41809CF92D369E744F0, 56972899A6FEBF7E9265A5307C7F54C8AD35ABCC9DB745FE0624B8EA759EDC2A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
17:53:21.0335 0x12a0 nvUpdatusService - ok
17:53:21.0351 0x12a0 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:53:21.0366 0x12a0 nv_agp - ok
17:53:21.0383 0x12a0 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:53:21.0398 0x12a0 ohci1394 - ok
17:53:21.0468 0x12a0 [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:53:21.0480 0x12a0 ose - ok
17:53:21.0522 0x12a0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:53:21.0545 0x12a0 p2pimsvc - ok
17:53:21.0564 0x12a0 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
17:53:21.0591 0x12a0 p2psvc - ok
17:53:21.0619 0x12a0 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
17:53:21.0635 0x12a0 Parport - ok
17:53:21.0660 0x12a0 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:53:21.0674 0x12a0 partmgr - ok
17:53:21.0711 0x12a0 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:53:21.0744 0x12a0 PcaSvc - ok
17:53:21.0866 0x12a0 [ 4B5F5774FF1C577B9515FDD2B5C535C5, 1D053020079124AC526D84AFFB17BF4A1563ECD872C83B4B6299C9AA6A732557 ] PCDSRVC{D3412D80-CF3B4A27-06020200}_0 c:\program files\my dell\pcdsrvc_x64.pkms
17:53:21.0877 0x12a0 PCDSRVC{D3412D80-CF3B4A27-06020200}_0 - ok
17:53:21.0911 0x12a0 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
17:53:21.0931 0x12a0 pci - ok
17:53:21.0953 0x12a0 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
17:53:21.0966 0x12a0 pciide - ok
17:53:22.0003 0x12a0 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:53:22.0021 0x12a0 pcmcia - ok
17:53:22.0034 0x12a0 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
17:53:22.0047 0x12a0 pcw - ok
17:53:22.0105 0x12a0 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:53:22.0137 0x12a0 PEAUTH - ok
17:53:22.0201 0x12a0 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:53:22.0217 0x12a0 PerfHost - ok
17:53:22.0301 0x12a0 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
17:53:22.0383 0x12a0 pla - ok
17:53:22.0435 0x12a0 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:53:22.0464 0x12a0 PlugPlay - ok
17:53:22.0483 0x12a0 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:53:22.0498 0x12a0 PNRPAutoReg - ok
17:53:22.0520 0x12a0 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:53:22.0543 0x12a0 PNRPsvc - ok
17:53:22.0579 0x12a0 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:53:22.0624 0x12a0 PolicyAgent - ok
17:53:22.0652 0x12a0 [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\Windows\system32\umpo.dll
17:53:22.0683 0x12a0 Power - ok
17:53:22.0708 0x12a0 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:53:22.0748 0x12a0 PptpMiniport - ok
17:53:22.0766 0x12a0 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
17:53:22.0781 0x12a0 Processor - ok
17:53:22.0816 0x12a0 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
17:53:22.0846 0x12a0 ProfSvc - ok
17:53:22.0860 0x12a0 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:53:22.0875 0x12a0 ProtectedStorage - ok
17:53:22.0896 0x12a0 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:53:22.0934 0x12a0 Psched - ok
17:53:22.0969 0x12a0 [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:53:22.0982 0x12a0 PxHlpa64 - ok
17:53:23.0072 0x12a0 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:53:23.0193 0x12a0 ql2300 - ok
17:53:23.0297 0x12a0 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:53:23.0314 0x12a0 ql40xx - ok
17:53:23.0424 0x12a0 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
17:53:23.0451 0x12a0 QWAVE - ok
17:53:23.0467 0x12a0 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:53:23.0487 0x12a0 QWAVEdrv - ok
17:53:23.0517 0x12a0 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:53:23.0554 0x12a0 RasAcd - ok
17:53:23.0577 0x12a0 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:53:23.0615 0x12a0 RasAgileVpn - ok
17:53:23.0651 0x12a0 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
17:53:23.0694 0x12a0 RasAuto - ok
17:53:23.0718 0x12a0 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:53:23.0760 0x12a0 Rasl2tp - ok
17:53:23.0784 0x12a0 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
17:53:23.0833 0x12a0 RasMan - ok
17:53:23.0849 0x12a0 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:53:23.0888 0x12a0 RasPppoe - ok
17:53:23.0919 0x12a0 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:53:23.0959 0x12a0 RasSstp - ok
17:53:23.0974 0x12a0 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:53:24.0020 0x12a0 rdbss - ok
17:53:24.0034 0x12a0 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:53:24.0050 0x12a0 rdpbus - ok
17:53:24.0081 0x12a0 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:53:24.0117 0x12a0 RDPCDD - ok
17:53:24.0131 0x12a0 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:53:24.0211 0x12a0 RDPENCDD - ok
17:53:24.0242 0x12a0 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:53:24.0296 0x12a0 RDPREFMP - ok
17:53:24.0334 0x12a0 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:53:24.0353 0x12a0 RDPWD - ok
17:53:24.0404 0x12a0 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:53:24.0422 0x12a0 rdyboost - ok
17:53:24.0449 0x12a0 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:53:24.0492 0x12a0 RemoteAccess - ok
17:53:24.0528 0x12a0 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:53:24.0570 0x12a0 RemoteRegistry - ok
17:53:24.0623 0x12a0 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
17:53:24.0647 0x12a0 RFCOMM - ok
17:53:24.0751 0x12a0 [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
17:53:24.0798 0x12a0 RoxMediaDB12OEM - ok
17:53:24.0832 0x12a0 [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
17:53:24.0848 0x12a0 RoxWatch12 - ok
17:53:24.0881 0x12a0 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:53:24.0919 0x12a0 RpcEptMapper - ok
17:53:24.0942 0x12a0 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
17:53:24.0956 0x12a0 RpcLocator - ok
17:53:25.0007 0x12a0 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
17:53:25.0048 0x12a0 RpcSs - ok
17:53:25.0101 0x12a0 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:53:25.0146 0x12a0 rspndr - ok
17:53:25.0232 0x12a0 [ 135A64530D7699AD48F29D73A658DD11, 35838AE8ACFD9047C68DD0C8910557A82998E5CD778D5B98D4767AFA4BCE85BB ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:53:25.0250 0x12a0 RSUSBSTOR - ok
17:53:25.0316 0x12a0 [ A73ED14670220307874AD6BC2F279349, 0AAAB96BD5CCE5AE6334D0D43BE9AEB1EB2C8EFA6996289595FB7D394E11B444 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:53:25.0337 0x12a0 RTL8167 - ok
17:53:25.0360 0x12a0 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] SamSs C:\Windows\system32\lsass.exe
17:53:25.0373 0x12a0 SamSs - ok
17:53:25.0411 0x12a0 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:53:25.0424 0x12a0 sbp2port - ok
17:53:25.0460 0x12a0 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:53:25.0505 0x12a0 SCardSvr - ok
17:53:25.0522 0x12a0 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:53:25.0565 0x12a0 scfilter - ok
17:53:25.0633 0x12a0 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
17:53:25.0698 0x12a0 Schedule - ok
17:53:25.0724 0x12a0 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:53:25.0763 0x12a0 SCPolicySvc - ok
17:53:25.0799 0x12a0 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:53:25.0819 0x12a0 SDRSVC - ok
17:53:25.0866 0x12a0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:53:25.0893 0x12a0 secdrv - ok
17:53:25.0940 0x12a0 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
17:53:25.0988 0x12a0 seclogon - ok
17:53:26.0028 0x12a0 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
17:53:26.0073 0x12a0 SENS - ok
17:53:26.0096 0x12a0 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:53:26.0109 0x12a0 SensrSvc - ok
17:53:26.0149 0x12a0 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
17:53:26.0164 0x12a0 Serenum - ok
17:53:26.0181 0x12a0 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
17:53:26.0198 0x12a0 Serial - ok
17:53:26.0212 0x12a0 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:53:26.0226 0x12a0 sermouse - ok
17:53:26.0257 0x12a0 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
17:53:26.0307 0x12a0 SessionEnv - ok
17:53:26.0322 0x12a0 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:53:26.0339 0x12a0 sffdisk - ok
17:53:26.0366 0x12a0 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:53:26.0382 0x12a0 sffp_mmc - ok
17:53:26.0391 0x12a0 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:53:26.0407 0x12a0 sffp_sd - ok
17:53:26.0421 0x12a0 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:53:26.0436 0x12a0 sfloppy - ok
17:53:26.0546 0x12a0 [ 29DDEA72C5BDF61D62F4D438DC0E497C, 6A125EBC8B1377C1F5DFC441B843B0D6933C57678248CE1D23BF8D7A862F93FB ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
17:53:26.0611 0x12a0 SftService - ok
17:53:26.0652 0x12a0 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:53:26.0705 0x12a0 SharedAccess - ok
17:53:26.0742 0x12a0 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:53:26.0793 0x12a0 ShellHWDetection - ok
17:53:26.0815 0x12a0 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:53:26.0831 0x12a0 SiSRaid2 - ok
17:53:26.0852 0x12a0 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:53:26.0866 0x12a0 SiSRaid4 - ok
17:53:26.0927 0x12a0 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:53:26.0952 0x12a0 SkypeUpdate - ok
17:53:26.0966 0x12a0 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:53:27.0008 0x12a0 Smb - ok
17:53:27.0174 0x12a0 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:53:27.0223 0x12a0 SNMPTRAP - ok
17:53:27.0247 0x12a0 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
17:53:27.0259 0x12a0 spldr - ok
17:53:27.0311 0x12a0 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
17:53:27.0351 0x12a0 Spooler - ok
17:53:27.0497 0x12a0 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
17:53:27.0681 0x12a0 sppsvc - ok
17:53:27.0720 0x12a0 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:53:27.0760 0x12a0 sppuinotify - ok
17:53:27.0802 0x12a0 [ F2F4B895296EE3ECCE781CC2A296A5D1, 126321EDDA8141A42DBE7C90675948433063E6D5B6DEFD805AA0797C95A461EE ] srv C:\Windows\system32\DRIVERS\srv.sys
17:53:27.0831 0x12a0 srv - ok
17:53:27.0869 0x12a0 [ FD0008BEDD2723170CCA7D61837DFD52, F9F576FA7B84CAB5180B9080D62B8A00B3E5D5BC73199B11C63193742529227D ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:53:27.0894 0x12a0 srv2 - ok
17:53:27.0927 0x12a0 [ 63B5845D9379262083655D5C6AB8DFC5, 1813D2FC41ADCDAC6E3A522373B9DB934CC27B89E7185E0E4FC26E30CDAF1523 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:53:27.0945 0x12a0 srvnet - ok
17:53:27.0982 0x12a0 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:53:28.0032 0x12a0 SSDPSRV - ok
17:53:28.0042 0x12a0 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:53:28.0085 0x12a0 SstpSvc - ok
17:53:28.0127 0x12a0 [ 0683504BBB3FFC0A73D9D217B63DD0E0, 1E96C8363A702E4E833128CC88BEF639F85BA96E7393B5A41D4BE1744EA34DB5 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:53:28.0153 0x12a0 Stereo Service - ok
17:53:28.0182 0x12a0 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:53:28.0193 0x12a0 stexstor - ok
17:53:28.0245 0x12a0 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
17:53:28.0296 0x12a0 stisvc - ok
17:53:28.0344 0x12a0 [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
17:53:28.0355 0x12a0 stllssvr - ok
17:53:28.0388 0x12a0 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:53:28.0400 0x12a0 swenum - ok
17:53:28.0442 0x12a0 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
17:53:28.0499 0x12a0 swprv - ok
17:53:28.0593 0x12a0 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
17:53:28.0671 0x12a0 SysMain - ok
17:53:28.0701 0x12a0 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:53:28.0723 0x12a0 TabletInputService - ok
17:53:28.0751 0x12a0 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
17:53:28.0803 0x12a0 TapiSrv - ok
17:53:28.0899 0x12a0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:53:28.0971 0x12a0 Tcpip - ok
17:53:29.0036 0x12a0 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:53:29.0105 0x12a0 TCPIP6 - ok
17:53:29.0141 0x12a0 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:53:29.0154 0x12a0 tcpipreg - ok
17:53:29.0190 0x12a0 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:53:29.0210 0x12a0 TDPIPE - ok
17:53:29.0234 0x12a0 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:53:29.0288 0x12a0 TDTCP - ok
17:53:29.0374 0x12a0 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:53:29.0407 0x12a0 tdx - ok
17:53:29.0438 0x12a0 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:53:29.0451 0x12a0 TermDD - ok
17:53:29.0503 0x12a0 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
17:53:29.0733 0x12a0 TermService - ok
17:53:29.0772 0x12a0 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
17:53:29.0806 0x12a0 Themes - ok
17:53:29.0841 0x12a0 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
17:53:29.0879 0x12a0 THREADORDER - ok
17:53:29.0936 0x12a0 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
17:53:30.0019 0x12a0 TrkWks - ok
17:53:30.0119 0x12a0 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:53:30.0174 0x12a0 TrustedInstaller - ok
17:53:30.0212 0x12a0 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:53:30.0232 0x12a0 tssecsrv - ok
17:53:30.0260 0x12a0 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:53:30.0308 0x12a0 TsUsbFlt - ok
17:53:30.0329 0x12a0 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:53:30.0343 0x12a0 TsUsbGD - ok
17:53:30.0376 0x12a0 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:53:30.0417 0x12a0 tunnel - ok
17:53:30.0432 0x12a0 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:53:30.0445 0x12a0 uagp35 - ok
17:53:30.0480 0x12a0 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:53:30.0540 0x12a0 udfs - ok
17:53:30.0563 0x12a0 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:53:30.0579 0x12a0 UI0Detect - ok
17:53:30.0602 0x12a0 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:53:30.0614 0x12a0 uliagpkx - ok
17:53:30.0650 0x12a0 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:53:30.0674 0x12a0 umbus - ok
17:53:30.0686 0x12a0 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
17:53:30.0701 0x12a0 UmPass - ok
17:53:30.0869 0x12a0 [ 2C16648A12999AE69A9EBF41974B0BA2, 06008F61B6EC36CD34CB8C4BA983371DB7A9F4BEE15E5329F5E90FEEE300D258 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:53:30.0985 0x12a0 UNS - ok
17:53:31.0022 0x12a0 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
17:53:31.0072 0x12a0 upnphost - ok
17:53:31.0108 0x12a0 [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:53:31.0140 0x12a0 usbccgp - ok
17:53:31.0169 0x12a0 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:53:31.0204 0x12a0 usbcir - ok
17:53:31.0236 0x12a0 [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:53:31.0263 0x12a0 usbehci - ok
17:53:31.0318 0x12a0 [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:53:31.0341 0x12a0 usbhub - ok
17:53:31.0362 0x12a0 [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:53:31.0375 0x12a0 usbohci - ok
17:53:31.0411 0x12a0 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:53:31.0436 0x12a0 usbprint - ok
17:53:31.0469 0x12a0 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
17:53:31.0501 0x12a0 usbscan - ok
17:53:31.0541 0x12a0 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:53:31.0588 0x12a0 USBSTOR - ok
17:53:31.0620 0x12a0 [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:53:31.0632 0x12a0 usbuhci - ok
17:53:31.0672 0x12a0 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:53:31.0703 0x12a0 usbvideo - ok
17:53:31.0725 0x12a0 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
17:53:31.0764 0x12a0 UxSms - ok
17:53:31.0783 0x12a0 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] VaultSvc C:\Windows\system32\lsass.exe
17:53:31.0796 0x12a0 VaultSvc - ok
17:53:31.0815 0x12a0 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:53:31.0828 0x12a0 vdrvroot - ok
17:53:31.0867 0x12a0 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
17:53:31.0923 0x12a0 vds - ok
17:53:31.0970 0x12a0 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:53:31.0997 0x12a0 vga - ok
17:53:32.0013 0x12a0 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:53:32.0103 0x12a0 VgaSave - ok
17:53:32.0182 0x12a0 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:53:32.0210 0x12a0 vhdmp - ok
17:53:32.0240 0x12a0 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
17:53:32.0250 0x12a0 viaide - ok
17:53:32.0276 0x12a0 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:53:32.0290 0x12a0 volmgr - ok
17:53:32.0317 0x12a0 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:53:32.0342 0x12a0 volmgrx - ok
17:53:32.0366 0x12a0 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:53:32.0389 0x12a0 volsnap - ok
17:53:32.0404 0x12a0 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:53:32.0421 0x12a0 vsmraid - ok
17:53:32.0503 0x12a0 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
17:53:32.0587 0x12a0 VSS - ok
17:53:32.0607 0x12a0 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:53:32.0624 0x12a0 vwifibus - ok
17:53:32.0661 0x12a0 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:53:32.0681 0x12a0 vwififlt - ok
17:53:32.0714 0x12a0 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
17:53:32.0761 0x12a0 W32Time - ok
17:53:32.0777 0x12a0 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:53:32.0791 0x12a0 WacomPen - ok
17:53:32.0827 0x12a0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:53:32.0868 0x12a0 WANARP - ok
17:53:32.0874 0x12a0 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:53:32.0911 0x12a0 Wanarpv6 - ok
17:53:32.0991 0x12a0 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
17:53:33.0062 0x12a0 wbengine - ok
17:53:33.0107 0x12a0 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:53:33.0133 0x12a0 WbioSrvc - ok
17:53:33.0165 0x12a0 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:53:33.0196 0x12a0 wcncsvc - ok
17:53:33.0235 0x12a0 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:53:33.0259 0x12a0 WcsPlugInService - ok
17:53:33.0283 0x12a0 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
17:53:33.0298 0x12a0 Wd - ok
17:53:33.0354 0x12a0 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:53:33.0409 0x12a0 Wdf01000 - ok
17:53:33.0440 0x12a0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:53:33.0464 0x12a0 WdiServiceHost - ok
17:53:33.0470 0x12a0 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:53:33.0485 0x12a0 WdiSystemHost - ok
17:53:33.0513 0x12a0 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
17:53:33.0548 0x12a0 WebClient - ok
17:53:33.0577 0x12a0 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:53:33.0626 0x12a0 Wecsvc - ok
17:53:33.0648 0x12a0 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:53:33.0690 0x12a0 wercplsupport - ok
17:53:33.0724 0x12a0 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
17:53:33.0764 0x12a0 WerSvc - ok
17:53:33.0794 0x12a0 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:53:33.0833 0x12a0 WfpLwf - ok
17:53:33.0877 0x12a0 [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
17:53:33.0903 0x12a0 WimFltr - ok
17:53:33.0923 0x12a0 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:53:33.0936 0x12a0 WIMMount - ok
17:53:33.0961 0x12a0 WinDefend - ok
17:53:33.0973 0x12a0 WinHttpAutoProxySvc - ok
17:53:34.0021 0x12a0 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:53:34.0066 0x12a0 Winmgmt - ok
17:53:34.0173 0x12a0 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
17:53:34.0282 0x12a0 WinRM - ok
17:53:34.0323 0x12a0 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:53:34.0341 0x12a0 WinUsb - ok
17:53:34.0389 0x12a0 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:53:34.0435 0x12a0 Wlansvc - ok
17:53:34.0481 0x12a0 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:53:34.0493 0x12a0 wlcrasvc - ok
17:53:34.0634 0x12a0 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:53:34.0717 0x12a0 wlidsvc - ok
17:53:34.0740 0x12a0 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:53:34.0752 0x12a0 WmiAcpi - ok
17:53:34.0782 0x12a0 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:53:34.0802 0x12a0 wmiApSrv - ok
17:53:34.0831 0x12a0 WMPNetworkSvc - ok
17:53:34.0857 0x12a0 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:53:34.0870 0x12a0 WPCSvc - ok
17:53:34.0884 0x12a0 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:53:34.0902 0x12a0 WPDBusEnum - ok
17:53:34.0934 0x12a0 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:53:34.0973 0x12a0 ws2ifsl - ok
17:53:34.0991 0x12a0 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
17:53:35.0014 0x12a0 wscsvc - ok
17:53:35.0018 0x12a0 WSearch - ok
17:53:35.0157 0x12a0 [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv C:\Windows\system32\wuaueng.dll
17:53:35.0266 0x12a0 wuauserv - ok
|
|
24.11.2016, 18:09
| #3 |
| | Supremo - Microsoft Betrüger Anruf Teil zwei des Logs
__________________Code:
ATTFilter 17:53:35.0312 0x12a0 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:53:35.0333 0x12a0 WudfPf - ok
17:53:35.0363 0x12a0 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:53:35.0382 0x12a0 WUDFRd - ok
17:53:35.0407 0x12a0 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:53:35.0423 0x12a0 wudfsvc - ok
17:53:35.0468 0x12a0 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
17:53:35.0496 0x12a0 WwanSvc - ok
17:53:35.0518 0x12a0 ================ Scan global ===============================
17:53:35.0578 0x12a0 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
17:53:35.0618 0x12a0 [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
17:53:35.0634 0x12a0 [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
17:53:35.0665 0x12a0 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:53:35.0709 0x12a0 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
17:53:35.0717 0x12a0 [ Global ] - ok
17:53:35.0718 0x12a0 ================ Scan MBR ==================================
17:53:35.0736 0x12a0 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:53:36.0121 0x12a0 \Device\Harddisk0\DR0 - ok
17:53:36.0121 0x12a0 ================ Scan VBR ==================================
17:53:36.0155 0x12a0 [ FE731FB528BADED0BC745A53FF3415EF ] \Device\Harddisk0\DR0\Partition1
17:53:36.0156 0x12a0 \Device\Harddisk0\DR0\Partition1 - ok
17:53:36.0167 0x12a0 [ D39E8A71F220585694DA039AD2CD953A ] \Device\Harddisk0\DR0\Partition2
17:53:36.0169 0x12a0 \Device\Harddisk0\DR0\Partition2 - ok
17:53:36.0171 0x12a0 [ CBF42771D9D658E4244637B565E9B98C ] \Device\Harddisk0\DR0\Partition3
17:53:36.0173 0x12a0 \Device\Harddisk0\DR0\Partition3 - ok
17:53:36.0173 0x12a0 ================ Scan generic autorun ======================
17:53:36.0438 0x12a0 [ F61770056D5428F92058743CB3D5C611, AA5868633F4F548794F99906D1527CCCD1FC2AF00EE95980E29BFCAB35A7A06F ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
17:53:36.0712 0x12a0 RTHDVCPL - ok
17:53:36.0745 0x12a0 [ E8AE4ACB2CD8820148E1D9C07E48E652, 90BD819C1BEFDDE862919727296506BC9492169B2BE2A4DDC0A6CD037559DA9E ] C:\Windows\system32\igfxtray.exe
17:53:36.0760 0x12a0 IgfxTray - ok
17:53:36.0781 0x12a0 [ 3858ECC97EAC5C3EBB7104E3A08E6C2C, CE8A897748DFDBA043D4244B18A6767D9834684ECDE425C0686659293DD59F06 ] C:\Windows\system32\igfxpers.exe
17:53:36.0805 0x12a0 Persistence - ok
17:53:36.0878 0x12a0 [ 445962F0584117EAC182FE6895AACB4D, 0CF43354CEA056E662506992A641A09753E36A5A36FF4D3B1AB4F37397190AC7 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
17:53:36.0907 0x12a0 AtherosBtStack - detected UnsignedFile.Multi.Generic ( 1 )
17:53:39.0494 0x12a0 AtherosBtStack ( UnsignedFile.Multi.Generic ) - warning
17:53:39.0562 0x12a0 [ E716CA5D6992132D28D99970696B8E13, 765994D4DC64A938B2230EA23F232E175DD153E3D1BE31269C61106E2B4CE335 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
17:53:39.0600 0x12a0 AthBtTray - detected UnsignedFile.Multi.Generic ( 1 )
17:53:39.0600 0x12a0 AthBtTray ( UnsignedFile.Multi.Generic ) - warning
17:53:39.0600 0x12a0 Force sending object to P2P due to detect: C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
17:53:39.0604 0x12a0 Object send P2P result: false
17:53:39.0740 0x12a0 [ D713106D059C67888CD5F5A862059D7B, 5F9344DA3AE43EEAFAC9E662DF380D77730DEE0AFE8DA31ED7C654E86BE196E5 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
17:53:39.0850 0x12a0 avgnt - ok
17:53:39.0911 0x12a0 [ B69B3F28C5DB496202C88F5A181640AC, 6ECD6DCFE27A043457BA910289849534ED9D173856DAF694687366E1A2C7A135 ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
17:53:39.0923 0x12a0 Avira SystrayStartTrigger - ok
17:53:39.0990 0x12a0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:53:40.0053 0x12a0 Sidebar - ok
17:53:40.0080 0x12a0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:53:40.0102 0x12a0 mctadmin - ok
17:53:40.0148 0x12a0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:53:40.0208 0x12a0 Sidebar - ok
17:53:40.0225 0x12a0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:53:40.0260 0x12a0 mctadmin - ok
17:53:40.0313 0x12a0 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:53:40.0443 0x12a0 Sidebar - ok
17:53:40.0470 0x12a0 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:53:40.0621 0x12a0 mctadmin - ok
17:53:41.0463 0x12a0 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.23.58 ), 0x41000 ( enabled : updated )
17:53:42.0407 0x12a0 Win FW state via NFP2: enabled ( trusted )
17:53:42.0531 0x12a0 ============================================================
17:53:42.0531 0x12a0 Scan finished
17:53:42.0531 0x12a0 ============================================================
17:53:42.0541 0x07bc Detected object count: 2
17:53:42.0541 0x07bc Actual detected object count: 2
17:54:05.0635 0x07bc AtherosBtStack ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:05.0635 0x07bc AtherosBtStack ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:05.0635 0x07bc AthBtTray ( UnsignedFile.Multi.Generic ) - skipped by user
17:54:05.0636 0x07bc AthBtTray ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:54:14.0611 0x1604 ============================================================
17:54:14.0611 0x1604 Scan started
17:54:14.0611 0x1604 Mode: Manual; SigCheck; TDLFS;
17:54:14.0611 0x1604 ============================================================
17:54:14.0611 0x1604 KSN ping started
17:54:18.0719 0x1604 KSN ping finished: true
17:54:20.0379 0x1604 ================ Scan system memory ========================
17:54:20.0379 0x1604 System memory - ok
17:54:20.0379 0x1604 ================ Scan services =============================
17:54:20.0571 0x1604 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:54:20.0734 0x1604 1394ohci - ok
17:54:20.0783 0x1604 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:54:20.0805 0x1604 ACPI - ok
17:54:20.0823 0x1604 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:54:20.0838 0x1604 AcpiPmi - ok
17:54:20.0984 0x1604 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:54:20.0997 0x1604 AdobeARMservice - ok
17:54:21.0135 0x1604 [ 9BAF21BA600EC4E5FD9A66AD3E4FF5A6, 5E02E5E80557F6EC870EB7CC2DE95169D4225B87A2FE7E796736205F51C15816 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:54:21.0150 0x1604 AdobeFlashPlayerUpdateSvc - ok
17:54:21.0188 0x1604 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:54:21.0212 0x1604 adp94xx - ok
17:54:21.0268 0x1604 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:54:21.0288 0x1604 adpahci - ok
17:54:21.0315 0x1604 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:54:21.0332 0x1604 adpu320 - ok
17:54:21.0377 0x1604 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:54:21.0390 0x1604 AeLookupSvc - ok
17:54:21.0442 0x1604 [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
17:54:21.0453 0x1604 AERTFilters - ok
17:54:21.0504 0x1604 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
17:54:21.0529 0x1604 AFD - ok
17:54:21.0568 0x1604 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
17:54:21.0579 0x1604 agp440 - ok
17:54:21.0614 0x1604 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
17:54:21.0629 0x1604 ALG - ok
17:54:21.0661 0x1604 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
17:54:21.0672 0x1604 aliide - ok
17:54:21.0709 0x1604 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
17:54:21.0719 0x1604 amdide - ok
17:54:21.0758 0x1604 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
17:54:21.0771 0x1604 AmdK8 - ok
17:54:21.0785 0x1604 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
17:54:21.0799 0x1604 AmdPPM - ok
17:54:21.0838 0x1604 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:54:21.0850 0x1604 amdsata - ok
17:54:21.0877 0x1604 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
17:54:21.0893 0x1604 amdsbs - ok
17:54:21.0917 0x1604 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:54:21.0932 0x1604 amdxata - ok
17:54:22.0041 0x1604 [ 04B856A07EDCFEE14C4CB0D389531020, 38094E6FECF22FBC72B46C4A78519F9E698092DF28A81C5742332FCA6609CB9B ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
17:54:22.0089 0x1604 AntiVirMailService - ok
17:54:22.0156 0x1604 [ FE817303FA4308B6149D2FC1D07D0DF2, 471EA57785EE40FE244BB2AF10FB5F5B113F1D79F34CAE28CC46177AB3F15141 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:54:22.0178 0x1604 AntiVirSchedulerService - ok
17:54:22.0229 0x1604 [ FE817303FA4308B6149D2FC1D07D0DF2, 471EA57785EE40FE244BB2AF10FB5F5B113F1D79F34CAE28CC46177AB3F15141 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:54:22.0251 0x1604 AntiVirService - ok
17:54:22.0382 0x1604 [ 82A7739C01B7FBD6738B08C6FEB13CE5, 49BD8764CC7BB8F3AEFD8A8585A2F492C0B48A6AAACA86BDE7CB6D182EADD703 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
17:54:22.0436 0x1604 AntiVirWebService - ok
17:54:22.0482 0x1604 [ 24ED0EB2B2558970176ECEE680F8F806, 262473534CBFB6DBA5258A981025BA4AB86BB06D9031A7379F1DFE48F69D789D ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
17:54:22.0502 0x1604 ApfiltrService - ok
17:54:22.0530 0x1604 [ 6474F8823C7188D2DA579F01FB6CED6B, 81D4E9D026CA60FB8840D520D151B8C2F4745A75DF90A4D6C80641F1A23AB605 ] AppID C:\Windows\system32\drivers\appid.sys
17:54:22.0544 0x1604 AppID - ok
17:54:22.0559 0x1604 [ 8F58BA1F7772D6D7CE45F03309608001, CDB109E0DD241042C058F7D81A1BDEBC34435CB2DC4A7A7A3692193DD5806097 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:54:22.0571 0x1604 AppIDSvc - ok
17:54:22.0605 0x1604 [ B62867835B41BCD839D9896AB4D7DF09, 98036D0202DB6171E90485898175833AC44873A85E6453EBE928E433B364CE07 ] Appinfo C:\Windows\System32\appinfo.dll
17:54:22.0623 0x1604 Appinfo - ok
17:54:22.0657 0x1604 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
17:54:22.0669 0x1604 arc - ok
17:54:22.0691 0x1604 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:54:22.0705 0x1604 arcsas - ok
17:54:22.0790 0x1604 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:54:22.0803 0x1604 aspnet_state - ok
17:54:22.0830 0x1604 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:54:22.0878 0x1604 AsyncMac - ok
17:54:22.0900 0x1604 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
17:54:22.0911 0x1604 atapi - ok
17:54:22.0937 0x1604 [ CBE61B4494165F458BD87E37181EE934, E95654DCC0F977A3604B6BE435BEE109AC8F9F7494FD3A132F5FB477BBF7B105 ] AthBTPort C:\Windows\system32\DRIVERS\btath_flt.sys
17:54:23.0013 0x1604 AthBTPort - ok
17:54:23.0104 0x1604 [ 650F111D5CDA64C10AE4B9D1BA9D4FFF, 99AD83993D724538687F084318404DBF314C2249AB593AF9DD3783B0AB6B3B25 ] Atheros Bt&Wlan Coex Agent C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
17:54:23.0117 0x1604 Atheros Bt&Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 )
17:54:23.0117 0x1604 Detect skipped due to KSN trusted
17:54:23.0117 0x1604 Atheros Bt&Wlan Coex Agent - ok
17:54:23.0141 0x1604 [ 44FB485B94A8332D877F659366CEDBC8, 4CCA7D7FB3E7DEB8977B070C6BBC8315F2DB9FE66ADCB8A6A355A0C138EC6463 ] AtherosSvc C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
17:54:23.0150 0x1604 AtherosSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:54:23.0150 0x1604 Detect skipped due to KSN trusted
17:54:23.0150 0x1604 AtherosSvc - ok
17:54:23.0263 0x1604 [ 5493ED5D300AFC7A9A0A87FCA08E5381, 654869EB4D295317921BC3855D4FE5D3FE6031DC7655EA1805347DA8E5177FFA ] athr C:\Windows\system32\DRIVERS\athrx.sys
17:54:23.0408 0x1604 athr - ok
17:54:23.0470 0x1604 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:54:23.0504 0x1604 AudioEndpointBuilder - ok
17:54:23.0527 0x1604 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:54:23.0561 0x1604 AudioSrv - ok
17:54:23.0595 0x1604 [ 3ED4B40C5EF146FB65392B553E65EBA8, 680E31F05E797162A40A67D8B7BF225DC390C38522BA2A28BA5CF70C254AAE6F ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
17:54:23.0614 0x1604 avgntflt - ok
17:54:23.0643 0x1604 [ E745629CBC104D2B446CFB859084BEB5, 3FC86742A44D9867F7CE7FD28DB4591B745495AF6A96E057A5F62ACD87E9E5B5 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
17:54:23.0658 0x1604 avipbb - ok
17:54:23.0760 0x1604 [ B9789F30438091DC528797ABFD310B01, 9C8678DFCF4A377954B8FE5C7C49C51B290A216671860200EAE6A4FD5A07E1E0 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
17:54:23.0788 0x1604 Avira.ServiceHost - ok
17:54:23.0817 0x1604 [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
17:54:23.0830 0x1604 avkmgr - ok
17:54:23.0850 0x1604 [ 138A53D17B040F5A3A307D44A89D0905, AD212E430F2DE43F037BECF6A46FCD53270A5EE11427030C7D5CBC3EAAAAA029 ] avnetflt C:\Windows\system32\DRIVERS\avnetflt.sys
17:54:23.0874 0x1604 avnetflt - ok
17:54:23.0905 0x1604 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:54:23.0927 0x1604 AxInstSV - ok
17:54:23.0984 0x1604 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
17:54:24.0049 0x1604 b06bdrv - ok
17:54:24.0100 0x1604 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:54:24.0125 0x1604 b57nd60a - ok
17:54:24.0151 0x1604 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
17:54:24.0173 0x1604 BDESVC - ok
17:54:24.0191 0x1604 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
17:54:24.0227 0x1604 Beep - ok
17:54:24.0277 0x1604 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
17:54:24.0318 0x1604 BFE - ok
17:54:24.0376 0x1604 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
17:54:24.0443 0x1604 BITS - ok
17:54:24.0472 0x1604 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:54:24.0485 0x1604 blbdrive - ok
17:54:24.0522 0x1604 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:54:24.0543 0x1604 bowser - ok
17:54:24.0558 0x1604 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
17:54:24.0573 0x1604 BrFiltLo - ok
17:54:24.0600 0x1604 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
17:54:24.0626 0x1604 BrFiltUp - ok
17:54:24.0649 0x1604 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
17:54:24.0685 0x1604 Browser - ok
17:54:24.0717 0x1604 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:54:24.0743 0x1604 Brserid - ok
17:54:24.0766 0x1604 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:54:24.0783 0x1604 BrSerWdm - ok
17:54:24.0807 0x1604 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:54:24.0822 0x1604 BrUsbMdm - ok
17:54:24.0836 0x1604 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:54:24.0849 0x1604 BrUsbSer - ok
17:54:24.0891 0x1604 [ FE70889A85C57A9268101B2DB0474509, 9E957390A52BE4E5642724FEC06A201682F93DD1C6F2C00A5F57351460CF5AE0 ] BTATH_A2DP C:\Windows\system32\drivers\btath_a2dp.sys
17:54:24.0973 0x1604 BTATH_A2DP - ok
17:54:25.0021 0x1604 [ A9DF22429E8D69ED849B0BBBE16BD327, 853A2F34EDBE62889769B6B75B50A6E57971279EAF3936E03EF46D311B5483C5 ] BTATH_BUS C:\Windows\system32\DRIVERS\btath_bus.sys
17:54:25.0112 0x1604 BTATH_BUS - ok
17:54:25.0147 0x1604 [ C864FF85EE16D61C2BDD5EF76824625F, 6D2FE57688D9E8B4277BF6DA9C219DEB367274364FBE17EFC353CEDB2D7EA35D ] BTATH_HCRP C:\Windows\system32\DRIVERS\btath_hcrp.sys
17:54:25.0167 0x1604 BTATH_HCRP - ok
17:54:25.0178 0x1604 [ 0DEA505EFB5D771826D177EF8B8A208F, FD8027DA791F04077490749AC5A08F73CCBA1731462579AA9008CD8DD82FBBBC ] BTATH_LWFLT C:\Windows\system32\DRIVERS\btath_lwflt.sys
17:54:25.0200 0x1604 BTATH_LWFLT - ok
17:54:25.0227 0x1604 [ 724C8088C96EFE7A3E63FEC21D4681C0, 4F9B258BE0FEA634A0D93B3892F2F039A7CAD184C9A81DFC2B67B0D4B39C5035 ] BTATH_RCP C:\Windows\system32\DRIVERS\btath_rcp.sys
17:54:25.0247 0x1604 BTATH_RCP - ok
17:54:25.0287 0x1604 [ FF59EE1DDAC776246F43BF434194650F, 1033E459007BBC85623236AC538BBC8B7D5A718F40E501996FE5508B1116B103 ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
17:54:25.0319 0x1604 BtFilter - ok
17:54:25.0346 0x1604 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
17:54:25.0368 0x1604 BthEnum - ok
17:54:25.0390 0x1604 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:54:25.0407 0x1604 BTHMODEM - ok
17:54:25.0432 0x1604 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
17:54:25.0453 0x1604 BthPan - ok
17:54:25.0503 0x1604 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
17:54:25.0550 0x1604 BTHPORT - ok
17:54:25.0584 0x1604 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
17:54:25.0630 0x1604 bthserv - ok
17:54:25.0657 0x1604 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
17:54:25.0671 0x1604 BTHUSB - ok
17:54:25.0699 0x1604 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:54:25.0739 0x1604 cdfs - ok
17:54:25.0760 0x1604 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:54:25.0777 0x1604 cdrom - ok
17:54:25.0805 0x1604 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
17:54:25.0843 0x1604 CertPropSvc - ok
17:54:25.0877 0x1604 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
17:54:25.0894 0x1604 circlass - ok
17:54:25.0938 0x1604 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
17:54:25.0961 0x1604 CLFS - ok
17:54:26.0036 0x1604 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:54:26.0070 0x1604 clr_optimization_v2.0.50727_32 - ok
17:54:26.0113 0x1604 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:54:26.0127 0x1604 clr_optimization_v2.0.50727_64 - ok
17:54:26.0179 0x1604 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:54:26.0205 0x1604 clr_optimization_v4.0.30319_32 - ok
17:54:26.0221 0x1604 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:54:26.0238 0x1604 clr_optimization_v4.0.30319_64 - ok
17:54:26.0267 0x1604 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:54:26.0280 0x1604 CmBatt - ok
17:54:26.0300 0x1604 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:54:26.0312 0x1604 cmdide - ok
17:54:26.0362 0x1604 [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG C:\Windows\system32\Drivers\cng.sys
17:54:26.0418 0x1604 CNG - ok
17:54:26.0469 0x1604 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:54:26.0480 0x1604 Compbatt - ok
17:54:26.0493 0x1604 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
17:54:26.0528 0x1604 CompositeBus - ok
17:54:26.0536 0x1604 COMSysApp - ok
17:54:26.0551 0x1604 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:54:26.0564 0x1604 crcdisk - ok
17:54:26.0613 0x1604 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:54:26.0652 0x1604 CryptSvc - ok
17:54:26.0686 0x1604 [ BC3D4F90978CD7C8EABD1BAF3BF7873A, 5978139650FC51BE0CAB12061702C7BC7BEDF6E7C3A047FF0A6328AA674E4226 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
17:54:26.0733 0x1604 CtClsFlt - ok
17:54:26.0788 0x1604 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
17:54:26.0817 0x1604 DcomLaunch - ok
17:54:26.0863 0x1604 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
17:54:26.0911 0x1604 defragsvc - ok
17:54:26.0947 0x1604 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:54:26.0984 0x1604 DfsC - ok
17:54:27.0016 0x1604 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
17:54:27.0059 0x1604 Dhcp - ok
17:54:27.0144 0x1604 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
17:54:27.0196 0x1604 DiagTrack - ok
17:54:27.0216 0x1604 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
17:54:27.0252 0x1604 discache - ok
17:54:27.0298 0x1604 [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
17:54:27.0310 0x1604 Disk - ok
17:54:27.0339 0x1604 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:54:27.0356 0x1604 Dnscache - ok
17:54:27.0396 0x1604 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
17:54:27.0437 0x1604 dot3svc - ok
17:54:27.0453 0x1604 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
17:54:27.0491 0x1604 DPS - ok
17:54:27.0523 0x1604 [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:54:27.0545 0x1604 drmkaud - ok
17:54:27.0617 0x1604 [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:54:27.0656 0x1604 DXGKrnl - ok
17:54:27.0686 0x1604 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
17:54:27.0732 0x1604 EapHost - ok
17:54:27.0920 0x1604 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
17:54:28.0022 0x1604 ebdrv - ok
17:54:28.0052 0x1604 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] EFS C:\Windows\System32\lsass.exe
17:54:28.0097 0x1604 EFS - ok
17:54:28.0168 0x1604 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:54:28.0201 0x1604 ehRecvr - ok
17:54:28.0220 0x1604 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
17:54:28.0237 0x1604 ehSched - ok
17:54:28.0284 0x1604 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:54:28.0316 0x1604 elxstor - ok
17:54:28.0346 0x1604 [ 6106653B08F4F72EEAA7F099E7C408A4, 96B77284744F8761C4F2558388E0AEE2140618B484FF53FA8B222B340D2A9C84 ] epmntdrv C:\Windows\system32\epmntdrv.sys
17:54:28.0354 0x1604 epmntdrv - detected UnsignedFile.Multi.Generic ( 1 )
17:54:28.0354 0x1604 Detect skipped due to KSN trusted
17:54:28.0354 0x1604 epmntdrv - ok
17:54:28.0370 0x1604 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:54:28.0386 0x1604 ErrDev - ok
17:54:28.0411 0x1604 [ 991C04A31777ED77CB92A4F96F14C2E2, 6CC2A311D8E67032D0847D70B20DCA87B52B2B7FB3C380B3A5AB6C233E955DD2 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
17:54:28.0421 0x1604 EuGdiDrv - detected UnsignedFile.Multi.Generic ( 1 )
17:54:28.0421 0x1604 Detect skipped due to KSN trusted
17:54:28.0421 0x1604 EuGdiDrv - ok
17:54:28.0461 0x1604 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
17:54:28.0509 0x1604 EventSystem - ok
17:54:28.0535 0x1604 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
17:54:28.0579 0x1604 exfat - ok
17:54:28.0616 0x1604 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:54:28.0658 0x1604 fastfat - ok
17:54:28.0705 0x1604 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
17:54:28.0736 0x1604 Fax - ok
17:54:28.0758 0x1604 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
17:54:28.0771 0x1604 fdc - ok
17:54:28.0790 0x1604 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
17:54:28.0825 0x1604 fdPHost - ok
17:54:28.0857 0x1604 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
17:54:28.0896 0x1604 FDResPub - ok
17:54:28.0936 0x1604 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:54:28.0949 0x1604 FileInfo - ok
17:54:28.0967 0x1604 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:54:29.0002 0x1604 Filetrace - ok
17:54:29.0021 0x1604 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
17:54:29.0034 0x1604 flpydisk - ok
17:54:29.0061 0x1604 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:54:29.0085 0x1604 FltMgr - ok
17:54:29.0121 0x1604 [ F910874E4789DC95F37D2CF6285A85FA, 797EB187F9C88CBD2904F037B83C99DDC69A2BC87A608FB956999F81A6D085C2 ] FLxHCIc C:\Windows\system32\DRIVERS\FLxHCIc.sys
17:54:29.0138 0x1604 FLxHCIc - ok
17:54:29.0150 0x1604 [ B957F9A14F696DBC0DC65497AAFD0CA4, D4B25A1BCF4A6375C51B59E46578C7BC3ACCA64CDD63107A55486844BE9E0B8B ] FLxHCIh C:\Windows\system32\DRIVERS\FLxHCIh.sys
17:54:29.0159 0x1604 FLxHCIh - ok
17:54:29.0244 0x1604 [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
17:54:29.0289 0x1604 FontCache - ok
17:54:29.0337 0x1604 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:54:29.0348 0x1604 FontCache3.0.0.0 - ok
17:54:29.0366 0x1604 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:54:29.0386 0x1604 FsDepends - ok
17:54:29.0412 0x1604 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:54:29.0424 0x1604 Fs_Rec - ok
17:54:29.0457 0x1604 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:54:29.0476 0x1604 fvevol - ok
17:54:29.0516 0x1604 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:54:29.0528 0x1604 gagp30kx - ok
17:54:29.0604 0x1604 [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
17:54:29.0642 0x1604 gpsvc - ok
17:54:29.0667 0x1604 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:54:29.0679 0x1604 hcw85cir - ok
17:54:29.0695 0x1604 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:54:29.0714 0x1604 HDAudBus - ok
17:54:29.0733 0x1604 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
17:54:29.0746 0x1604 HidBatt - ok
17:54:29.0774 0x1604 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:54:29.0793 0x1604 HidBth - ok
17:54:29.0816 0x1604 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
17:54:29.0833 0x1604 HidIr - ok
17:54:29.0855 0x1604 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
17:54:29.0896 0x1604 hidserv - ok
17:54:29.0914 0x1604 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys
17:54:29.0926 0x1604 HidUsb - ok
17:54:29.0951 0x1604 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:54:29.0987 0x1604 hkmsvc - ok
17:54:30.0009 0x1604 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:54:30.0029 0x1604 HomeGroupListener - ok
17:54:30.0057 0x1604 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:54:30.0075 0x1604 HomeGroupProvider - ok
17:54:30.0105 0x1604 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:54:30.0118 0x1604 HpSAMD - ok
17:54:30.0178 0x1604 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:54:30.0225 0x1604 HTTP - ok
17:54:30.0245 0x1604 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:54:30.0257 0x1604 hwpolicy - ok
17:54:30.0274 0x1604 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:54:30.0289 0x1604 i8042prt - ok
17:54:30.0343 0x1604 [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor C:\Windows\system32\drivers\iaStor.sys
17:54:30.0363 0x1604 iaStor - ok
17:54:30.0399 0x1604 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:54:30.0423 0x1604 iaStorV - ok
17:54:30.0502 0x1604 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:54:30.0547 0x1604 idsvc - ok
17:54:30.0554 0x1604 IEEtwCollectorService - ok
17:54:31.0031 0x1604 [ 0BD58366C86EF9DDC4F61AFED0CADA99, 2C4ADD577872DF0E9DE7664FA4293B8E335E18055E346B5BF644544840E420EF ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
17:54:31.0407 0x1604 igfx - ok
17:54:31.0496 0x1604 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:54:31.0507 0x1604 iirsp - ok
17:54:31.0586 0x1604 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
17:54:31.0622 0x1604 IKEEXT - ok
17:54:31.0656 0x1604 [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd C:\Windows\system32\drivers\Impcd.sys
17:54:31.0677 0x1604 Impcd - ok
17:54:31.0830 0x1604 [ 1B491F385EE96F9D9EE4CB430C8CD29E, 06CA97FC494F3B3FE422F1242856B643EE210959DCB6E8298254306145B688AF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:54:31.0968 0x1604 IntcAzAudAddService - ok
17:54:31.0995 0x1604 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
17:54:32.0009 0x1604 intelide - ok
17:54:32.0036 0x1604 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:54:32.0050 0x1604 intelppm - ok
17:54:32.0086 0x1604 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:54:32.0129 0x1604 IPBusEnum - ok
17:54:32.0140 0x1604 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:54:32.0181 0x1604 IpFilterDriver - ok
17:54:32.0232 0x1604 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:54:32.0262 0x1604 iphlpsvc - ok
17:54:32.0287 0x1604 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:54:32.0302 0x1604 IPMIDRV - ok
17:54:32.0321 0x1604 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:54:32.0366 0x1604 IPNAT - ok
17:54:32.0379 0x1604 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:54:32.0396 0x1604 IRENUM - ok
17:54:32.0406 0x1604 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:54:32.0417 0x1604 isapnp - ok
17:54:32.0466 0x1604 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:54:32.0484 0x1604 iScsiPrt - ok
17:54:32.0515 0x1604 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:54:32.0528 0x1604 kbdclass - ok
17:54:32.0543 0x1604 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:54:32.0567 0x1604 kbdhid - ok
17:54:32.0587 0x1604 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] KeyIso C:\Windows\system32\lsass.exe
17:54:32.0599 0x1604 KeyIso - ok
17:54:32.0634 0x1604 [ CFBA6BCBBDC7E33813D92FFB3460FA07, 4BE0DF9AC976A991731C784CD3F32C4CED67AD58267658F046798E84BA1BF78C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:54:32.0647 0x1604 KSecDD - ok
17:54:32.0673 0x1604 [ CE66825289EE8326CB52C4E9E785ACB0, 41113B55F891A300C7967F585F59921917EC0718C26798946056B1DE534EE0E3 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:54:32.0689 0x1604 KSecPkg - ok
17:54:32.0720 0x1604 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:54:32.0755 0x1604 ksthunk - ok
17:54:32.0795 0x1604 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
17:54:32.0842 0x1604 KtmRm - ok
17:54:32.0907 0x1604 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:54:32.0983 0x1604 LanmanServer - ok
17:54:33.0005 0x1604 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:54:33.0137 0x1604 LanmanWorkstation - ok
17:54:33.0152 0x1604 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:54:33.0188 0x1604 lltdio - ok
17:54:33.0220 0x1604 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:54:33.0264 0x1604 lltdsvc - ok
17:54:33.0289 0x1604 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:54:33.0349 0x1604 lmhosts - ok
17:54:33.0412 0x1604 [ 7F32D4C47A50E7223491E8FB9359907D, 6D3F59A8D006BED3234697933D09C8EE8F7A9F4A4196CFA878F8E8A929B24CE5 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:54:33.0430 0x1604 LMS - ok
17:54:33.0466 0x1604 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:54:33.0493 0x1604 LSI_FC - ok
17:54:33.0512 0x1604 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:54:33.0525 0x1604 LSI_SAS - ok
17:54:33.0540 0x1604 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
17:54:33.0551 0x1604 LSI_SAS2 - ok
17:54:33.0573 0x1604 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:54:33.0591 0x1604 LSI_SCSI - ok
17:54:33.0612 0x1604 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
17:54:33.0663 0x1604 luafv - ok
17:54:33.0687 0x1604 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:54:33.0708 0x1604 Mcx2Svc - ok
17:54:33.0731 0x1604 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
17:54:33.0744 0x1604 megasas - ok
17:54:33.0790 0x1604 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
17:54:33.0810 0x1604 MegaSR - ok
17:54:33.0835 0x1604 [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:54:33.0849 0x1604 MEIx64 - ok
17:54:33.0881 0x1604 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
17:54:33.0926 0x1604 MMCSS - ok
17:54:33.0944 0x1604 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
17:54:33.0982 0x1604 Modem - ok
17:54:33.0998 0x1604 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:54:34.0017 0x1604 monitor - ok
17:54:34.0034 0x1604 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:54:34.0053 0x1604 mouclass - ok
17:54:34.0073 0x1604 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:54:34.0086 0x1604 mouhid - ok
17:54:34.0129 0x1604 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:54:34.0144 0x1604 mountmgr - ok
17:54:34.0188 0x1604 [ 86320BA9D6A972C79D467931518B165A, 4D7ABD7E5637B9AF98D7F3D4C4DAE595C27C8FEEBAAFF9E6443271C41598FCE1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:54:34.0214 0x1604 MozillaMaintenance - ok
17:54:34.0249 0x1604 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
17:54:34.0264 0x1604 mpio - ok
17:54:34.0286 0x1604 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:54:34.0329 0x1604 mpsdrv - ok
17:54:34.0381 0x1604 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:54:34.0443 0x1604 MpsSvc - ok
17:54:34.0489 0x1604 [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:54:34.0556 0x1604 MRxDAV - ok
17:54:34.0607 0x1604 [ B7FADA5E1E55BB63F90EB9F8F016113B, 33C2C898E4AD0CBD34D9A6CF51987A4703009E23CD9D4F4294BF444C4D3D5A60 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:54:34.0623 0x1604 mrxsmb - ok
17:54:34.0662 0x1604 [ 34AFF1849B3EC042C40C5EEC9D78562A, E3378A9977B429812C38529C562FE27945706ADB5E9E877C4A90B0285631A501 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:54:34.0684 0x1604 mrxsmb10 - ok
17:54:34.0719 0x1604 [ 058CE7A55E140EB0C72FBA6FD2FA72DE, B1D89E524A621BDCC464882EF621BDC7779BFCBCC9FD923D70DE130C41D0DB4C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:54:34.0736 0x1604 mrxsmb20 - ok
17:54:34.0776 0x1604 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
17:54:34.0794 0x1604 msahci - ok
17:54:34.0866 0x1604 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:54:34.0911 0x1604 msdsm - ok
17:54:34.0943 0x1604 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
17:54:35.0014 0x1604 MSDTC - ok
17:54:35.0035 0x1604 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:54:35.0078 0x1604 Msfs - ok
17:54:35.0095 0x1604 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:54:35.0134 0x1604 mshidkmdf - ok
17:54:35.0157 0x1604 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:54:35.0167 0x1604 msisadrv - ok
17:54:35.0193 0x1604 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:54:35.0232 0x1604 MSiSCSI - ok
17:54:35.0238 0x1604 msiserver - ok
17:54:35.0261 0x1604 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:54:35.0307 0x1604 MSKSSRV - ok
17:54:35.0323 0x1604 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:54:35.0358 0x1604 MSPCLOCK - ok
17:54:35.0369 0x1604 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:54:35.0407 0x1604 MSPQM - ok
17:54:35.0433 0x1604 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:54:35.0455 0x1604 MsRPC - ok
17:54:35.0477 0x1604 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:54:35.0488 0x1604 mssmbios - ok
17:54:35.0503 0x1604 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:54:35.0545 0x1604 MSTEE - ok
17:54:35.0558 0x1604 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
17:54:35.0570 0x1604 MTConfig - ok
17:54:35.0596 0x1604 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
17:54:35.0609 0x1604 Mup - ok
17:54:35.0655 0x1604 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
17:54:35.0769 0x1604 napagent - ok
17:54:35.0799 0x1604 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:54:35.0825 0x1604 NativeWifiP - ok
17:54:35.0927 0x1604 [ 934BB0D23A25C8C136570800A5A149B6, 15D99CE4E970FECE257F6D69810F8104720B26D8DC3787BC38CC8692ACEABD37 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
17:54:35.0954 0x1604 NAUpdate - ok
17:54:36.0017 0x1604 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:54:36.0064 0x1604 NDIS - ok
17:54:36.0081 0x1604 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:54:36.0116 0x1604 NdisCap - ok
17:54:36.0138 0x1604 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:54:36.0376 0x1604 NdisTapi - ok
17:54:36.0391 0x1604 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:54:36.0529 0x1604 Ndisuio - ok
17:54:36.0556 0x1604 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:54:36.0667 0x1604 NdisWan - ok
17:54:36.0679 0x1604 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:54:36.0713 0x1604 NDProxy - ok
17:54:36.0731 0x1604 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:54:36.0915 0x1604 NetBIOS - ok
17:54:36.0960 0x1604 [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:54:36.0987 0x1604 NetBT - ok
17:54:37.0009 0x1604 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] Netlogon C:\Windows\system32\lsass.exe
17:54:37.0021 0x1604 Netlogon - ok
17:54:37.0064 0x1604 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
17:54:37.0122 0x1604 Netman - ok
17:54:37.0162 0x1604 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:54:37.0177 0x1604 NetMsmqActivator - ok
17:54:37.0186 0x1604 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:54:37.0201 0x1604 NetPipeActivator - ok
17:54:37.0220 0x1604 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
17:54:37.0268 0x1604 netprofm - ok
17:54:37.0278 0x1604 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:54:37.0293 0x1604 NetTcpActivator - ok
17:54:37.0302 0x1604 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:54:37.0318 0x1604 NetTcpPortSharing - ok
17:54:37.0357 0x1604 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:54:37.0368 0x1604 nfrd960 - ok
17:54:37.0418 0x1604 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
17:54:37.0554 0x1604 NlaSvc - ok
17:54:37.0573 0x1604 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:54:37.0712 0x1604 Npfs - ok
17:54:37.0742 0x1604 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
17:54:37.0877 0x1604 nsi - ok
17:54:37.0900 0x1604 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:54:38.0013 0x1604 nsiproxy - ok
17:54:38.0117 0x1604 [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:54:38.0215 0x1604 Ntfs - ok
17:54:38.0265 0x1604 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
17:54:38.0357 0x1604 Null - ok
17:54:38.0391 0x1604 [ 0EBC9D13CD96C15B1B18D8678A609E4B, B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
17:54:38.0405 0x1604 nusb3hub - ok
17:54:38.0433 0x1604 [ 7BDEC000D56D485021D9C1E63C2F81CA, 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
17:54:38.0483 0x1604 nusb3xhc - ok
17:54:38.0989 0x1604 [ 573B0941A37AEBEE96085D56A103F57B, F9A0B59F7C3B3217461F656B8AEE447C80F614E2571A603E55FDFDCB2B767751 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:54:39.0377 0x1604 nvlddmkm - ok
17:54:39.0448 0x1604 [ 43AF7EBEAC2AB623468E32CADDCB61A4, 19206A2785181E9524CC19F3A376FE6427968B86493E5836C8F0E5C4457881C4 ] nvpciflt C:\Windows\system32\DRIVERS\nvpciflt.sys
17:54:39.0456 0x1604 nvpciflt - ok
17:54:39.0478 0x1604 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:54:39.0492 0x1604 nvraid - ok
17:54:39.0530 0x1604 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:54:39.0545 0x1604 nvstor - ok
17:54:39.0631 0x1604 [ C500760572C6059918FB0C960967695B, 89C4DCD2A03A75F5BFFCA39DB29D89A81E66A82F3B13FFE01D5D789A1D9172D3 ] NVSvc C:\Windows\system32\nvvsvc.exe
17:54:39.0668 0x1604 NVSvc - ok
17:54:39.0773 0x1604 [ F28169A7ADF7B41809CF92D369E744F0, 56972899A6FEBF7E9265A5307C7F54C8AD35ABCC9DB745FE0624B8EA759EDC2A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
17:54:39.0892 0x1604 nvUpdatusService - ok
17:54:39.0923 0x1604 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:54:39.0937 0x1604 nv_agp - ok
17:54:39.0954 0x1604 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:54:39.0968 0x1604 ohci1394 - ok
17:54:40.0031 0x1604 [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:54:40.0042 0x1604 ose - ok
17:54:40.0103 0x1604 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:54:40.0129 0x1604 p2pimsvc - ok
17:54:40.0158 0x1604 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
17:54:40.0191 0x1604 p2psvc - ok
17:54:40.0223 0x1604 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
17:54:40.0238 0x1604 Parport - ok
17:54:40.0264 0x1604 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:54:40.0276 0x1604 partmgr - ok
17:54:40.0315 0x1604 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:54:40.0346 0x1604 PcaSvc - ok
17:54:40.0426 0x1604 [ 4B5F5774FF1C577B9515FDD2B5C535C5, 1D053020079124AC526D84AFFB17BF4A1563ECD872C83B4B6299C9AA6A732557 ] PCDSRVC{D3412D80-CF3B4A27-06020200}_0 c:\program files\my dell\pcdsrvc_x64.pkms
17:54:40.0436 0x1604 PCDSRVC{D3412D80-CF3B4A27-06020200}_0 - ok
17:54:40.0470 0x1604 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
17:54:40.0486 0x1604 pci - ok
17:54:40.0513 0x1604 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
17:54:40.0523 0x1604 pciide - ok
17:54:40.0563 0x1604 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:54:40.0580 0x1604 pcmcia - ok
17:54:40.0605 0x1604 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
17:54:40.0616 0x1604 pcw - ok
17:54:40.0676 0x1604 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:54:40.0705 0x1604 PEAUTH - ok
17:54:40.0772 0x1604 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:54:40.0786 0x1604 PerfHost - ok
17:54:40.0870 0x1604 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
17:54:40.0943 0x1604 pla - ok
17:54:40.0985 0x1604 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:54:41.0009 0x1604 PlugPlay - ok
17:54:41.0032 0x1604 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:54:41.0044 0x1604 PNRPAutoReg - ok
17:54:41.0070 0x1604 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:54:41.0090 0x1604 PNRPsvc - ok
17:54:41.0139 0x1604 [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:54:41.0167 0x1604 PolicyAgent - ok
17:54:41.0212 0x1604 [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\Windows\system32\umpo.dll
17:54:41.0229 0x1604 Power - ok
17:54:41.0256 0x1604 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:54:41.0293 0x1604 PptpMiniport - ok
17:54:41.0315 0x1604 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
17:54:41.0326 0x1604 Processor - ok
17:54:41.0357 0x1604 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
17:54:41.0373 0x1604 ProfSvc - ok
17:54:41.0404 0x1604 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:54:41.0420 0x1604 ProtectedStorage - ok
17:54:41.0435 0x1604 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:54:41.0482 0x1604 Psched - ok
17:54:41.0513 0x1604 [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:54:41.0513 0x1604 PxHlpa64 - ok
17:54:41.0607 0x1604 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:54:41.0654 0x1604 ql2300 - ok
17:54:41.0701 0x1604 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:54:41.0701 0x1604 ql40xx - ok
17:54:41.0747 0x1604 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
17:54:41.0763 0x1604 QWAVE - ok
17:54:41.0794 0x1604 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:54:41.0810 0x1604 QWAVEdrv - ok
17:54:41.0841 0x1604 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:54:41.0872 0x1604 RasAcd - ok
17:54:41.0888 0x1604 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:54:41.0919 0x1604 RasAgileVpn - ok
17:54:41.0950 0x1604 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
17:54:41.0981 0x1604 RasAuto - ok
17:54:42.0013 0x1604 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:54:42.0059 0x1604 Rasl2tp - ok
17:54:42.0075 0x1604 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
17:54:42.0122 0x1604 RasMan - ok
17:54:42.0153 0x1604 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:54:42.0184 0x1604 RasPppoe - ok
17:54:42.0215 0x1604 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:54:42.0247 0x1604 RasSstp - ok
17:54:42.0278 0x1604 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:54:42.0309 0x1604 rdbss - ok
17:54:42.0325 0x1604 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
17:54:42.0340 0x1604 rdpbus - ok
17:54:42.0371 0x1604 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:54:42.0403 0x1604 RDPCDD - ok
17:54:42.0418 0x1604 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:54:42.0449 0x1604 RDPENCDD - ok
17:54:42.0465 0x1604 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:54:42.0496 0x1604 RDPREFMP - ok
17:54:42.0543 0x1604 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:54:42.0559 0x1604 RDPWD - ok
17:54:42.0605 0x1604 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:54:42.0621 0x1604 rdyboost - ok
17:54:42.0652 0x1604 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:54:42.0699 0x1604 RemoteAccess - ok
17:54:42.0730 0x1604 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:54:42.0761 0x1604 RemoteRegistry - ok
17:54:42.0793 0x1604 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
17:54:42.0824 0x1604 RFCOMM - ok
17:54:42.0917 0x1604 [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
17:54:42.0949 0x1604 RoxMediaDB12OEM - ok
17:54:42.0995 0x1604 [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
17:54:43.0011 0x1604 RoxWatch12 - ok
17:54:43.0058 0x1604 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:54:43.0089 0x1604 RpcEptMapper - ok
17:54:43.0136 0x1604 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
17:54:43.0136 0x1604 RpcLocator - ok
17:54:43.0245 0x1604 [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
17:54:43.0276 0x1604 RpcSs - ok
17:54:43.0323 0x1604 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:54:43.0354 0x1604 rspndr - ok
17:54:43.0401 0x1604 [ 135A64530D7699AD48F29D73A658DD11, 35838AE8ACFD9047C68DD0C8910557A82998E5CD778D5B98D4767AFA4BCE85BB ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
17:54:43.0401 0x1604 RSUSBSTOR - ok
17:54:43.0448 0x1604 [ A73ED14670220307874AD6BC2F279349, 0AAAB96BD5CCE5AE6334D0D43BE9AEB1EB2C8EFA6996289595FB7D394E11B444 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:54:43.0463 0x1604 RTL8167 - ok
17:54:43.0495 0x1604 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] SamSs C:\Windows\system32\lsass.exe
17:54:43.0510 0x1604 SamSs - ok
17:54:43.0541 0x1604 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:54:43.0557 0x1604 sbp2port - ok
17:54:43.0588 0x1604 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:54:43.0635 0x1604 SCardSvr - ok
17:54:43.0651 0x1604 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:54:43.0682 0x1604 scfilter - ok
17:54:43.0744 0x1604 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
17:54:43.0791 0x1604 Schedule - ok
17:54:43.0838 0x1604 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:54:43.0869 0x1604 SCPolicySvc - ok
17:54:43.0900 0x1604 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:54:43.0916 0x1604 SDRSVC - ok
17:54:43.0947 0x1604 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:54:43.0963 0x1604 secdrv - ok
17:54:44.0009 0x1604 [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
17:54:44.0009 0x1604 seclogon - ok
17:54:44.0041 0x1604 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
17:54:44.0072 0x1604 SENS - ok
17:54:44.0087 0x1604 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:54:44.0103 0x1604 SensrSvc - ok
17:54:44.0134 0x1604 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
17:54:44.0150 0x1604 Serenum - ok
17:54:44.0181 0x1604 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
17:54:44.0197 0x1604 Serial - ok
17:54:44.0212 0x1604 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:54:44.0228 0x1604 sermouse - ok
17:54:44.0275 0x1604 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
17:54:44.0337 0x1604 SessionEnv - ok
17:54:44.0353 0x1604 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:54:44.0368 0x1604 sffdisk - ok
17:54:44.0399 0x1604 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:54:44.0415 0x1604 sffp_mmc - ok
17:54:44.0415 0x1604 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:54:44.0431 0x1604 sffp_sd - ok
17:54:44.0446 0x1604 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:54:44.0462 0x1604 sfloppy - ok
17:54:44.0571 0x1604 [ 29DDEA72C5BDF61D62F4D438DC0E497C, 6A125EBC8B1377C1F5DFC441B843B0D6933C57678248CE1D23BF8D7A862F93FB ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
17:54:44.0633 0x1604 SftService - ok
17:54:44.0665 0x1604 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:54:44.0711 0x1604 SharedAccess - ok
17:54:44.0758 0x1604 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:54:44.0805 0x1604 ShellHWDetection - ok
17:54:44.0821 0x1604 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:54:44.0836 0x1604 SiSRaid2 - ok
17:54:44.0867 0x1604 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:54:44.0883 0x1604 SiSRaid4 - ok
17:54:44.0930 0x1604 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:54:44.0945 0x1604 SkypeUpdate - ok
17:54:44.0961 0x1604 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:54:45.0008 0x1604 Smb - ok
17:54:45.0039 0x1604 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:54:45.0055 0x1604 SNMPTRAP - ok
17:54:45.0101 0x1604 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
17:54:45.0117 0x1604 spldr - ok
17:54:45.0148 0x1604 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
17:54:45.0179 0x1604 Spooler - ok
17:54:45.0335 0x1604 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
17:54:45.0460 0x1604 sppsvc - ok
17:54:45.0491 0x1604 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:54:45.0538 0x1604 sppuinotify - ok
17:54:45.0569 0x1604 [ F2F4B895296EE3ECCE781CC2A296A5D1, 126321EDDA8141A42DBE7C90675948433063E6D5B6DEFD805AA0797C95A461EE ] srv C:\Windows\system32\DRIVERS\srv.sys
17:54:45.0601 0x1604 srv - ok
17:54:45.0647 0x1604 [ FD0008BEDD2723170CCA7D61837DFD52, F9F576FA7B84CAB5180B9080D62B8A00B3E5D5BC73199B11C63193742529227D ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:54:45.0663 0x1604 srv2 - ok
17:54:45.0710 0x1604 [ 63B5845D9379262083655D5C6AB8DFC5, 1813D2FC41ADCDAC6E3A522373B9DB934CC27B89E7185E0E4FC26E30CDAF1523 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:54:45.0725 0x1604 srvnet - ok
17:54:45.0757 0x1604 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:54:45.0803 0x1604 SSDPSRV - ok
17:54:45.0850 0x1604 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:54:45.0881 0x1604 SstpSvc - ok
17:54:46.0022 0x1604 [ 0683504BBB3FFC0A73D9D217B63DD0E0, 1E96C8363A702E4E833128CC88BEF639F85BA96E7393B5A41D4BE1744EA34DB5 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:54:46.0053 0x1604 Stereo Service - ok
17:54:46.0084 0x1604 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:54:46.0100 0x1604 stexstor - ok
17:54:46.0303 0x1604 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
17:54:46.0443 0x1604 stisvc - ok
17:54:46.0661 0x1604 [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
17:54:46.0693 0x1604 stllssvr - ok
17:54:46.0724 0x1604 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:54:46.0739 0x1604 swenum - ok
17:54:46.0786 0x1604 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
17:54:46.0833 0x1604 swprv - ok
17:54:46.0927 0x1604 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
17:54:46.0989 0x1604 SysMain - ok
17:54:47.0051 0x1604 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:54:47.0067 0x1604 TabletInputService - ok
17:54:47.0161 0x1604 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
17:54:47.0207 0x1604 TapiSrv - ok
17:54:47.0317 0x1604 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:54:47.0395 0x1604 Tcpip - ok
17:54:47.0441 0x1604 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:54:47.0519 0x1604 TCPIP6 - ok
17:54:47.0535 0x1604 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:54:47.0551 0x1604 tcpipreg - ok
17:54:47.0582 0x1604 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:54:47.0597 0x1604 TDPIPE - ok
17:54:47.0629 0x1604 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:54:47.0644 0x1604 TDTCP - ok
17:54:47.0691 0x1604 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:54:47.0707 0x1604 tdx - ok
17:54:47.0738 0x1604 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:54:47.0753 0x1604 TermDD - ok
17:54:47.0800 0x1604 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
17:54:47.0831 0x1604 TermService - ok
17:54:47.0863 0x1604 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
17:54:47.0894 0x1604 Themes - ok
17:54:47.0909 0x1604 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
17:54:47.0956 0x1604 THREADORDER - ok
17:54:47.0972 0x1604 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
17:54:48.0019 0x1604 TrkWks - ok
17:54:48.0065 0x1604 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:54:48.0112 0x1604 TrustedInstaller - ok
17:54:48.0159 0x1604 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:54:48.0159 0x1604 tssecsrv - ok
17:54:48.0190 0x1604 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:54:48.0221 0x1604 TsUsbFlt - ok
17:54:48.0237 0x1604 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
17:54:48.0253 0x1604 TsUsbGD - ok
17:54:48.0268 0x1604 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:54:48.0362 0x1604 tunnel - ok
17:54:48.0393 0x1604 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:54:48.0393 0x1604 uagp35 - ok
17:54:48.0424 0x1604 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:54:48.0471 0x1604 udfs - ok
17:54:48.0502 0x1604 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:54:48.0533 0x1604 UI0Detect - ok
17:54:48.0549 0x1604 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:54:48.0565 0x1604 uliagpkx - ok
17:54:48.0596 0x1604 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:54:48.0611 0x1604 umbus - ok
17:54:48.0627 0x1604 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
17:54:48.0643 0x1604 UmPass - ok
17:54:48.0814 0x1604 [ 2C16648A12999AE69A9EBF41974B0BA2, 06008F61B6EC36CD34CB8C4BA983371DB7A9F4BEE15E5329F5E90FEEE300D258 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:54:48.0939 0x1604 UNS - ok
17:54:48.0986 0x1604 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
17:54:49.0048 0x1604 upnphost - ok
17:54:49.0189 0x1604 [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:54:49.0204 0x1604 usbccgp - ok
17:54:49.0235 0x1604 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:54:49.0251 0x1604 usbcir - ok
17:54:49.0282 0x1604 [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:54:49.0298 0x1604 usbehci - ok
17:54:49.0313 0x1604 [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:54:49.0345 0x1604 usbhub - ok
17:54:49.0376 0x1604 [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:54:49.0376 0x1604 usbohci - ok
17:54:49.0423 0x1604 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:54:49.0750 0x1604 usbprint - ok
17:54:49.0781 0x1604 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
17:54:49.0813 0x1604 usbscan - ok
17:54:49.0906 0x1604 [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:54:50.0000 0x1604 USBSTOR - ok
17:54:50.0047 0x1604 [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:54:50.0078 0x1604 usbuhci - ok
17:54:50.0109 0x1604 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:54:50.0156 0x1604 usbvideo - ok
17:54:50.0171 0x1604 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
17:54:50.0218 0x1604 UxSms - ok
17:54:50.0234 0x1604 [ 13FE29C1C8E782829C7FAA3B14F4A666, C53F7F9039E79AC6D5BDA94981A187570D6C7828930B6064CEFC17DC172EA20E ] VaultSvc C:\Windows\system32\lsass.exe
17:54:50.0249 0x1604 VaultSvc - ok
17:54:50.0281 0x1604 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:54:50.0296 0x1604 vdrvroot - ok
17:54:50.0327 0x1604 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
17:54:50.0374 0x1604 vds - ok
17:54:50.0390 0x1604 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:54:50.0452 0x1604 vga - ok
17:54:50.0468 0x1604 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
17:54:50.0499 0x1604 VgaSave - ok
17:54:50.0530 0x1604 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
17:54:50.0546 0x1604 vhdmp - ok
17:54:50.0577 0x1604 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
17:54:50.0577 0x1604 viaide - ok
17:54:50.0624 0x1604 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:54:50.0624 0x1604 volmgr - ok
17:54:50.0655 0x1604 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:54:50.0686 0x1604 volmgrx - ok
17:54:50.0702 0x1604 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:54:50.0733 0x1604 volsnap - ok
17:54:50.0764 0x1604 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:54:50.0780 0x1604 vsmraid - ok
17:54:50.0873 0x1604 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
17:54:50.0967 0x1604 VSS - ok
17:54:50.0967 0x1604 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:54:50.0983 0x1604 vwifibus - ok
17:54:51.0014 0x1604 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:54:51.0029 0x1604 vwififlt - ok
17:54:51.0092 0x1604 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
17:54:51.0139 0x1604 W32Time - ok
17:54:51.0170 0x1604 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:54:51.0170 0x1604 WacomPen - ok
17:54:51.0201 0x1604 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:54:51.0232 0x1604 WANARP - ok
17:54:51.0248 0x1604 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:54:51.0279 0x1604 Wanarpv6 - ok
17:54:51.0357 0x1604 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
17:54:51.0404 0x1604 wbengine - ok
17:54:51.0435 0x1604 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:54:51.0466 0x1604 WbioSrvc - ok
17:54:51.0497 0x1604 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:54:51.0529 0x1604 wcncsvc - ok
17:54:51.0560 0x1604 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:54:51.0560 0x1604 WcsPlugInService - ok
17:54:51.0591 0x1604 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
17:54:51.0607 0x1604 Wd - ok
17:54:51.0669 0x1604 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:54:51.0700 0x1604 Wdf01000 - ok
17:54:51.0731 0x1604 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:54:51.0747 0x1604 WdiServiceHost - ok
17:54:51.0747 0x1604 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:54:51.0763 0x1604 WdiSystemHost - ok
17:54:51.0794 0x1604 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
17:54:51.0825 0x1604 WebClient - ok
17:54:51.0856 0x1604 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:54:51.0903 0x1604 Wecsvc - ok
17:54:51.0934 0x1604 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:54:51.0965 0x1604 wercplsupport - ok
17:54:51.0981 0x1604 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
17:54:52.0028 0x1604 WerSvc - ok
17:54:52.0043 0x1604 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:54:52.0075 0x1604 WfpLwf - ok
17:54:52.0106 0x1604 [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
17:54:52.0121 0x1604 WimFltr - ok
17:54:52.0137 0x1604 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:54:52.0153 0x1604 WIMMount - ok
17:54:52.0184 0x1604 WinDefend - ok
17:54:52.0199 0x1604 WinHttpAutoProxySvc - ok
17:54:52.0246 0x1604 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:54:52.0293 0x1604 Winmgmt - ok
17:54:52.0387 0x1604 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
17:54:52.0465 0x1604 WinRM - ok
17:54:52.0496 0x1604 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:54:52.0511 0x1604 WinUsb - ok
17:54:52.0574 0x1604 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:54:52.0621 0x1604 Wlansvc - ok
17:54:52.0667 0x1604 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:54:52.0683 0x1604 wlcrasvc - ok
17:54:52.0777 0x1604 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:54:52.0855 0x1604 wlidsvc - ok
17:54:52.0870 0x1604 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
17:54:52.0886 0x1604 WmiAcpi - ok
17:54:52.0917 0x1604 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:54:52.0933 0x1604 wmiApSrv - ok
17:54:52.0979 0x1604 WMPNetworkSvc - ok
17:54:52.0995 0x1604 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:54:53.0011 0x1604 WPCSvc - ok
17:54:53.0042 0x1604 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:54:53.0089 0x1604 WPDBusEnum - ok
17:54:53.0135 0x1604 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:54:53.0229 0x1604 ws2ifsl - ok
17:54:53.0291 0x1604 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
17:54:53.0307 0x1604 wscsvc - ok
17:54:53.0323 0x1604 WSearch - ok
17:54:53.0479 0x1604 [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv C:\Windows\system32\wuaueng.dll
17:54:53.0557 0x1604 wuauserv - ok
17:54:53.0603 0x1604 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:54:53.0603 0x1604 WudfPf - ok
17:54:53.0635 0x1604 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:54:53.0650 0x1604 WUDFRd - ok
17:54:53.0666 0x1604 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:54:53.0681 0x1604 wudfsvc - ok
17:54:53.0728 0x1604 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
17:54:53.0744 0x1604 WwanSvc - ok
17:54:53.0759 0x1604 ================ Scan global ===============================
17:54:53.0791 0x1604 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
17:54:53.0837 0x1604 [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
17:54:53.0853 0x1604 [ E0E4D286839FC27F56A85B4710E16B6B, 6BBBADB8904D6159E6171A339E0BF30A41D14E885D560BFB8BB73B1FF7239E1A ] C:\Windows\system32\winsrv.dll
17:54:53.0884 0x1604 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:54:53.0931 0x1604 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
17:54:53.0931 0x1604 [ Global ] - ok
17:54:53.0947 0x1604 ================ Scan MBR ==================================
17:54:53.0962 0x1604 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:54:54.0602 0x1604 \Device\Harddisk0\DR0 - ok
17:54:54.0602 0x1604 ================ Scan VBR ==================================
17:54:54.0617 0x1604 [ FE731FB528BADED0BC745A53FF3415EF ] \Device\Harddisk0\DR0\Partition1
17:54:54.0617 0x1604 \Device\Harddisk0\DR0\Partition1 - ok
17:54:54.0649 0x1604 [ D39E8A71F220585694DA039AD2CD953A ] \Device\Harddisk0\DR0\Partition2
17:54:54.0649 0x1604 \Device\Harddisk0\DR0\Partition2 - ok
17:54:54.0680 0x1604 [ CBF42771D9D658E4244637B565E9B98C ] \Device\Harddisk0\DR0\Partition3
17:54:54.0680 0x1604 \Device\Harddisk0\DR0\Partition3 - ok
17:54:54.0680 0x1604 ================ Scan generic autorun ======================
17:54:55.0132 0x1604 [ F61770056D5428F92058743CB3D5C611, AA5868633F4F548794F99906D1527CCCD1FC2AF00EE95980E29BFCAB35A7A06F ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
17:54:55.0585 0x1604 RTHDVCPL - ok
17:54:55.0647 0x1604 [ E8AE4ACB2CD8820148E1D9C07E48E652, 90BD819C1BEFDDE862919727296506BC9492169B2BE2A4DDC0A6CD037559DA9E ] C:\Windows\system32\igfxtray.exe
17:54:55.0663 0x1604 IgfxTray - ok
17:54:55.0694 0x1604 [ 3858ECC97EAC5C3EBB7104E3A08E6C2C, CE8A897748DFDBA043D4244B18A6767D9834684ECDE425C0686659293DD59F06 ] C:\Windows\system32\igfxpers.exe
17:54:55.0725 0x1604 Persistence - ok
17:54:55.0850 0x1604 [ 445962F0584117EAC182FE6895AACB4D, 0CF43354CEA056E662506992A641A09753E36A5A36FF4D3B1AB4F37397190AC7 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
17:54:55.0897 0x1604 AtherosBtStack - detected UnsignedFile.Multi.Generic ( 1 )
17:54:55.0897 0x1604 AtherosBtStack ( UnsignedFile.Multi.Generic ) - warning
17:54:55.0897 0x1604 Force sending object to P2P due to detect: C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
17:54:55.0897 0x1604 Object send P2P result: false
17:54:55.0943 0x1604 [ E716CA5D6992132D28D99970696B8E13, 765994D4DC64A938B2230EA23F232E175DD153E3D1BE31269C61106E2B4CE335 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
17:54:55.0959 0x1604 AthBtTray - detected UnsignedFile.Multi.Generic ( 1 )
17:54:55.0959 0x1604 AthBtTray ( UnsignedFile.Multi.Generic ) - warning
17:54:56.0099 0x1604 [ D713106D059C67888CD5F5A862059D7B, 5F9344DA3AE43EEAFAC9E662DF380D77730DEE0AFE8DA31ED7C654E86BE196E5 ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
17:54:56.0131 0x1604 avgnt - ok
17:54:56.0209 0x1604 [ B69B3F28C5DB496202C88F5A181640AC, 6ECD6DCFE27A043457BA910289849534ED9D173856DAF694687366E1A2C7A135 ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
17:54:56.0255 0x1604 Avira SystrayStartTrigger - ok
17:54:56.0333 0x1604 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:54:56.0380 0x1604 Sidebar - ok
17:54:56.0396 0x1604 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:54:56.0411 0x1604 mctadmin - ok
17:54:56.0458 0x1604 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:54:56.0505 0x1604 Sidebar - ok
17:54:56.0521 0x1604 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:54:56.0536 0x1604 mctadmin - ok
17:54:56.0567 0x1604 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:54:56.0614 0x1604 Sidebar - ok
17:54:56.0630 0x1604 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:54:56.0645 0x1604 mctadmin - ok
17:54:56.0755 0x1604 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 15.0.23.58 ), 0x41000 ( enabled : updated )
17:54:57.0082 0x1604 Win FW state via NFP2: enabled ( trusted )
17:54:57.0129 0x1604 ============================================================
17:54:57.0129 0x1604 Scan finished
17:54:57.0129 0x1604 ============================================================
17:54:57.0145 0x15fc Detected object count: 2
17:54:57.0145 0x15fc Actual detected object count: 2
17:55:05.0881 0x15fc AtherosBtStack ( UnsignedFile.Multi.Generic ) - skipped by user
17:55:05.0881 0x15fc AtherosBtStack ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:55:05.0881 0x15fc AthBtTray ( UnsignedFile.Multi.Generic ) - skipped by user
17:55:05.0881 0x15fc AthBtTray ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
28.11.2016, 14:26
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Supremo - Microsoft Betrüger Anruf Was heißt hier genau Opfer, was genau ist passiert, welche Anweisungen hast du umgesetzt?
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
29.11.2016, 17:17
| #5 |
| | Supremo - Microsoft Betrüger Anruf Ich wurde angerufen und der Gauner hat sich als Microsoft Mitarbeiter ausgegeben. Ich habe daraufhin die Website besucht, die er mir genannt hat und dann auch diese "Teamviewer" Version gestartet. Ich habe ihm also Kennung und Passwort gegeben. Er hat daraufhin die Steuerung übernehmen können und hier diverse Trojanermeldungen o.ä. vorgegaukelt. Er wollte dass ich Software von ihm kaufe und habe dann abgeblockt. Und er hat dann die Browserfenster geschlossen und dann auch die Teamviewer Verbindung geschlossen. Ich bin jetzt unsicher, ob er mir irgendeinen Trojaner/Remotesoftware o.ä. aufgespielt hat. Daher würde ich ja gerne Hilfe haben! |
|
29.11.2016, 23:06
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Supremo - Microsoft Betrüger Anruf Ja und ich nach was passiert ist, damit man sich halt ein Bild machen kann. Ich war ja auch schließlich bei dem Vorfall nicht dabei. +++ WICHTIGER HINWEIS +++ Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache. Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung! Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben. Gelesen und verstanden?
__________________ --> Supremo - Microsoft Betrüger Anruf |
|
| Themen zu Supremo - Microsoft Betrüger Anruf |
| antivir, antivirus, avira, cpu, defender, euro, flash player, helper, home, homepage, installation, mozilla, problem gelöst, proxy, prozesse, realtek, registry, scan, services.exe, software, super, svchost.exe, system, udp, vista, windows, wlan |
Linear-Darstellung
