Kegen.exe nach Treiber-update

pingodoce · 06.01.2017, 12:48

das ist auf diesem book gewesen als ich es bekommen habe.. war vorher ein business rechner der ausgemustert wurde

der lief vorher als business rechner und wurde dann ausgemustet .. .geschenkt .. familienintern

cosinus · 06.01.2017, 12:50

ahja

1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

pingodoce · 06.01.2017, 13:52

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.01.06.05
  rootkit: v2016.11.20.01

Windows 10 x86 NTFS
Internet Explorer 11.576.14393.0
ms :: DESKTOP-TGSB6RT [administrator]

06.01.2017 13:21:44
mbar-log-2017-01-06 (13-21-44).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 292489
Time elapsed: 10 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKU\S-1-5-21-1255615618-1242680333-4154777488-1001\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|shell (Hijack.ShellA.Gen) -> Data: explorer.exe,"C:\Users\ms\AppData\Roaming\assembliesbckp.exe" -> Delete on reboot. [b9f4bbbd773105313453466c7a88dc24]

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Users\ms\AppData\Local\Temp\keygen.exe (RiskWare.Tool.CK) -> Delete on reboot. [e2cba6d2b9ef1b1b303bda4f44beeb15]
C:\Users\ms\AppData\Local\Temp\svhost.exe (RiskWare.HeuristicsReservedWordExploit) -> Delete on reboot. [affe99dfc6e252e4ba4b521273905ca4]

Physical Sectors Detected: 0
(No malicious items detected)

(end)

Code:

ATTFilter

13:48:13.0339 0x18c8  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
13:48:19.0734 0x18c8  ============================================================
13:48:19.0734 0x18c8  Current date / time: 2017/01/06 13:48:19.0734
13:48:19.0734 0x18c8  SystemInfo:
13:48:19.0736 0x18c8  
13:48:19.0736 0x18c8  OS Version: 10.0.14393 ServicePack: 0.0
13:48:19.0736 0x18c8  Product type: Workstation
13:48:19.0736 0x18c8  ComputerName: DESKTOP-TGSB6RT
13:48:19.0736 0x18c8  UserName: ms
13:48:19.0736 0x18c8  Windows directory: C:\Windows
13:48:19.0736 0x18c8  System windows directory: C:\Windows
13:48:19.0736 0x18c8  Processor architecture: Intel x86
13:48:19.0736 0x18c8  Number of processors: 2
13:48:19.0736 0x18c8  Page size: 0x1000
13:48:19.0736 0x18c8  Boot type: Normal boot
13:48:19.0736 0x18c8  CodeIntegrityOptions = 0x00000000
13:48:19.0736 0x18c8  ============================================================
13:48:19.0801 0x18c8  KLMD registered as C:\Windows\system32\drivers\18521563.sys
13:48:19.0801 0x18c8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.576, osProperties = 0x18
13:48:19.0980 0x18c8  System UUID: {C0033F47-12FB-D9F3-E5F6-DB9C98A71D76}
13:48:20.0710 0x18c8  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
13:48:20.0728 0x18c8  ============================================================
13:48:20.0728 0x18c8  \Device\Harddisk0\DR0:
13:48:20.0728 0x18c8  MBR partitions:
13:48:20.0728 0x18c8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1B56E41
13:48:20.0728 0x18c8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B57000, BlocksNum 0xC43D000
13:48:20.0728 0x18c8  ============================================================
13:48:20.0734 0x18c8  C: <-> \Device\Harddisk0\DR0\Partition2
13:48:20.0736 0x18c8  D: <-> \Device\Harddisk0\DR0\Partition1
13:48:20.0736 0x18c8  ============================================================
13:48:20.0736 0x18c8  Initialize success
13:48:20.0736 0x18c8  ============================================================
13:48:43.0539 0x06a4  ============================================================
13:48:43.0539 0x06a4  Scan started
13:48:43.0539 0x06a4  Mode: Manual; SigCheck; TDLFS; 
13:48:43.0539 0x06a4  ============================================================
13:48:43.0539 0x06a4  KSN ping started
13:48:43.0748 0x06a4  KSN ping finished: true
13:48:44.0044 0x06a4  ================ Scan system memory ========================
13:48:44.0044 0x06a4  System memory - ok
13:48:44.0045 0x06a4  ================ Scan services =============================
13:48:44.0137 0x06a4  [ 03155454BC4709FC220B92360B7BBB20, 3C3EC5CFFB9EC28C2E7810CC536E8B560B6AD7B1245AD963D79A4DCA1E0A7C76 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
13:48:44.0339 0x06a4  1394ohci - ok
13:48:44.0363 0x06a4  [ 2809BD40414F0651BC84D55B7459E104, 223EF6EF3592796E962A7D8C2ABB0A27C2504B03A53BA5CF2A94DC06C1485385 ] 3ware           C:\Windows\system32\drivers\3ware.sys
13:48:44.0413 0x06a4  3ware - ok
13:48:44.0428 0x06a4  [ 943297AA998EA2B4A4E9E9DAA9954729, 6BC9E6557826A70B447443228DEFC0DF55C546DE1D6B4745CD78DDBD3605B4D1 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
13:48:44.0476 0x06a4  Accelerometer - ok
13:48:44.0507 0x06a4  [ 7A185EE3C8C42D5EA0AD695AA3756339, E3494959DAA76E5CA0E088C6F94B2C1A077B877C93B29D74F0E40C80AFDF5686 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:48:44.0585 0x06a4  ACPI - ok
13:48:44.0599 0x06a4  [ 0C970C83236D49A37EAA026AE33E1E13, 0773433CC55976C116E74AB5FB0F1076740699B2E2BDE9C6A174464A9EC64422 ] AcpiDev         C:\Windows\System32\drivers\AcpiDev.sys
13:48:44.0651 0x06a4  AcpiDev - ok
13:48:44.0665 0x06a4  [ 68BD81393B208AFACFEC59354D6ED4A5, 3FF394B2105F8AF3435B9E7D65F4788370F3C0DADBF9C221A3879616AC2A816B ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
13:48:44.0709 0x06a4  acpiex - ok
13:48:44.0720 0x06a4  [ 3A8A0B3D2EE12EC85DB725A923BC1E53, C34F941DA35F7270D2AF7E22ECDCF6D55CE01BF5F2759A902DF27D001AE64DD4 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
13:48:44.0772 0x06a4  acpipagr - ok
13:48:44.0781 0x06a4  [ 98D16BAF0AC99877C6EF5573B8F202BF, 1D9C170AFDDF698273E36BD23E1D52EE0038F62FC8C249FC6B3F41BE3C806876 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
13:48:44.0837 0x06a4  AcpiPmi - ok
13:48:44.0846 0x06a4  [ 5B15A344A42AB5AD9E3D6236B2D8261A, F6C4660494B09658086671E4F8F737680CA55BBF679EB69BF6C74CE89025629A ] acpitime        C:\Windows\System32\drivers\acpitime.sys
13:48:44.0895 0x06a4  acpitime - ok
13:48:44.0915 0x06a4  [ FB9ECE3F7B8A03E474E611031AD4CD23, 32CDBC6D32DF5C711819A85FD147511AA2E8EE7609CE7D9D352E7755D2E964BB ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
13:48:44.0984 0x06a4  ADIHdAudAddService - ok
13:48:44.0999 0x06a4  [ C92B0A0957ACAD3CEEF502A2CA10ACB8, 78BF46318B69D9479ECDC83446DD8D454AA2A9A9D94B33C5FC68933DB18AFA3B ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
13:48:45.0022 0x06a4  AdobeARMservice - ok
13:48:45.0042 0x06a4  [ B79750091FC0842182FE49D263791294, 32FC260A74C9C45CD1E8998523642C285866378FCD9478FEFD15A0CC42EC0E0B ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:48:45.0078 0x06a4  AdobeFlashPlayerUpdateSvc - ok
13:48:45.0129 0x06a4  [ 7E9D4FB10269A5DAF8DE9B012FED37B1, 6930F14AA6826946DA41FA11D370A9D76C948C5FB2CEC351FDA8DFAEFCC531AC ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
13:48:45.0227 0x06a4  ADP80XX - ok
13:48:45.0247 0x06a4  [ 12D23758621B00B8D3134095EC3325FD, 30DC1C40539FF6E14D9D692870FD6D511455F2D86DB1BF505B2500F953A611C4 ] AEADIFilters    C:\Windows\system32\AEADISRV.EXE
13:48:45.0286 0x06a4  AEADIFilters - ok
13:48:45.0313 0x06a4  [ 3B5BE5B3D3CE8D9834C2C9B325AC6A29, 86D221CFF168D61C7359425A20C0A413E6EF8B023806BBB84E5F26E4E997D74A ] AFD             C:\Windows\system32\drivers\afd.sys
13:48:45.0382 0x06a4  AFD - ok
13:48:45.0429 0x06a4  [ 7E10E3BB9B258AD8A9300F91214D67B9, CE5FAD7BF78234B64EAADF64DB23F3C342AADB9C5E3B0168E57863F494F30318 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
13:48:45.0548 0x06a4  AgereSoftModem - ok
13:48:45.0568 0x06a4  [ 266739048C6ADCC52050D057EE7B7FC4, C5CDCD14071917110A206DD99548BF1D41C1028F1CEF24F2488197B786B8978C ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
13:48:45.0632 0x06a4  ahcache - ok
13:48:45.0643 0x06a4  [ BE415E130B5598C355FD781CE36838A7, 0C0E010459E2485950F9F1B0363436ADD111DF8532360D927A5113E8A24F7D10 ] AJRouter        C:\Windows\System32\AJRouter.dll
13:48:45.0682 0x06a4  AJRouter - ok
13:48:45.0693 0x06a4  [ 0E3981D2FACC626692D3974A3BCA375A, DDB2F31CC7A8CCBCE62C23311004A60B0DE67BFC10020F1037581062C7A59381 ] ALG             C:\Windows\System32\alg.exe
13:48:45.0735 0x06a4  ALG - ok
13:48:45.0748 0x06a4  [ 3CD02476635113FD49D420ADF18F3187, AF38701C875D01939B43A27C26E6DE04601566C4FE1ED74FA4ABA48885264121 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
13:48:45.0804 0x06a4  AmdK8 - ok
13:48:45.0819 0x06a4  [ EC40FB47E51F4ED05A5A3E1FBB7A3323, 9307BEE98A161291B4094099E3DA351A65FE6DB6E3222B2F1A0861BCB38491AD ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
13:48:45.0877 0x06a4  AmdPPM - ok
13:48:45.0889 0x06a4  [ 859393BF40B714092A20561146401E48, 7F46EA0CE27971CEB6961BF3AA2AFC23A53BCA59BDC5525A8F217C15F7C2B809 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:48:45.0931 0x06a4  amdsata - ok
13:48:45.0948 0x06a4  [ 976A5D0F41721613177C352B90B330AE, 7060FF655AE3B396AC104C159BF0982329AB7307D69E5F5BB9B92A4A1E0AF5B9 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
13:48:46.0000 0x06a4  amdsbs - ok
13:48:46.0011 0x06a4  [ D41974D87F5C44902DA797BF13142AE9, 3CDD9C999316E91046B7E9D89E3BD65C6A96E2759E4E55D37980927D04E19879 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:48:46.0051 0x06a4  amdxata - ok
13:48:46.0066 0x06a4  [ 01999F61F9A20E1548A0872C0A9AAAC1, D2FE98CB692A76B52AA742A07ECCB1A03206FF7F85A052E5A32219F3770F6CF7 ] AppID           C:\Windows\system32\drivers\appid.sys
13:48:46.0117 0x06a4  AppID - ok
13:48:46.0130 0x06a4  [ 86183D1D11EBCF8E7D92CD089A74A606, 4F80A74A96EBFFBDE6B74A5457C0D50E669D36027A6E84E1A1F7BAE2331095EA ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:48:46.0178 0x06a4  AppIDSvc - ok
13:48:46.0191 0x06a4  [ 49C0FBF00247C7DC48ED6085E2F4C391, F6F4FED838473B120175128809CFB3DFCBECE925BD23FD46FFEC3300CA4A0CCE ] Appinfo         C:\Windows\System32\appinfo.dll
13:48:46.0236 0x06a4  Appinfo - ok
13:48:46.0248 0x06a4  [ 9DCCF6510C13B29D5542E80E78670507, B43B4B4E957105CB49C39897B7CE7B6AAD17945CA2FE59970C39A69E6557C150 ] applockerfltr   C:\Windows\system32\drivers\applockerfltr.sys
13:48:46.0313 0x06a4  applockerfltr - ok
13:48:46.0329 0x06a4  [ 964B3242103F4CBC5174A301B6F2ED0F, 17732F02835910C7A301FC1D467148CAEF4A4ED05D2A8B47D7A1C7E0916A00C7 ] AppMgmt         C:\Windows\System32\appmgmts.dll
13:48:46.0381 0x06a4  AppMgmt - ok
13:48:46.0409 0x06a4  [ 503A049594590BFCCBA89E2D50D24EB3, C0426DF54F9D4237F446A1E85D2F106DAECD0CFC9E95A86CCB24791A0B40D7B6 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
13:48:46.0469 0x06a4  AppReadiness - ok
13:48:46.0501 0x06a4  [ FB4AC4CD756432034439082724697BF8, 0B37555972713DB8B9A71326B30519024395C65B7188B35B84EF851AF44CEEDE ] AppVClient      C:\Windows\system32\AppVClient.exe
13:48:46.0551 0x06a4  AppVClient - ok
13:48:46.0569 0x06a4  [ 2B80ADDDB8E2F07987C056C2D2E6C41C, F76A4872593C4A2F8A961E7B8B9C931C5A476A2266E5F9BA19C7E60A603B5557 ] AppvStrm        C:\Windows\system32\drivers\AppvStrm.sys
13:48:46.0616 0x06a4  AppvStrm - ok
13:48:46.0630 0x06a4  [ C3A3693B495AAECBA08CA10380F68A28, A1EEC75DEBA3C0DA76CCD6F4A95EFB9644665416D62002F8D5C2C66EDBC4533B ] AppvVemgr       C:\Windows\system32\drivers\AppvVemgr.sys
13:48:46.0675 0x06a4  AppvVemgr - ok
13:48:46.0688 0x06a4  [ FE3BAA1D877589FA101FFE06937E8287, F93440A682B040D163CC4D6618E386AF5936782E47CC0AF628420DE9E5678438 ] AppvVfs         C:\Windows\system32\drivers\AppvVfs.sys
13:48:46.0732 0x06a4  AppvVfs - ok
13:48:46.0810 0x06a4  [ FDC4207AD1583C38D1AD68C6FC146E7A, 5CC2467B44CFE111297E1F09965BD15973C7141FE51592E4AAE3E8138C1464E6 ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
13:48:46.0954 0x06a4  AppXSvc - ok
13:48:46.0973 0x06a4  [ 976AFA23533862271F28DDA23DF9FC3B, D988693278554079F778AE52AC6FB8F580F26DF3778EE78445082970321A17C4 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
13:48:47.0017 0x06a4  arcsas - ok
13:48:47.0027 0x06a4  [ ACE407AF9DCE214772E04894C18BC18B, 5D54569C791520125ED472FFEBC6F5471DFA1D2C0274E488DAEC20824972246C ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
13:48:47.0064 0x06a4  aswHwid - ok
13:48:47.0074 0x06a4  [ 7393DE24CAE720E128FE61CC1A7632E3, 20EA724AB746973A53FF387F36F7CA445126C006A06858CA329654BED1E7CE6E ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
13:48:47.0112 0x06a4  aswKbd - ok
13:48:47.0126 0x06a4  [ 9A3BCD9CB36311EC1DB686010CE2E793, 66A9A6B3D23CA2D0D86887223AB4D8EC4F28426CFC950BAFECA9597834FBB915 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
13:48:47.0164 0x06a4  aswMonFlt - ok
13:48:47.0178 0x06a4  [ 411E8CF998E01C3247DE094376E3CB3B, 27A430466EB8E655D03B29BFB994DE657CE3878CF1D90EB51A39521BF7767954 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
13:48:47.0216 0x06a4  aswRdr - ok
13:48:47.0227 0x06a4  [ 39445B2AA5CD7711DA5572E816D5DC86, A63DF762A316CB69B3FD7731197EABDCDFB6BB21F840504A50B4363751EC909E ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
13:48:47.0263 0x06a4  aswRvrt - ok
13:48:47.0298 0x06a4  [ 03AD952FC1287D5623763E310CE081BA, BACCBDE6E1B98E9502B0ABDA5BBEC2FFDA50820085E08CFC50F81B5C728D843A ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
13:48:47.0378 0x06a4  aswSnx - ok
13:48:47.0407 0x06a4  [ E061C8C09103BBE429D9DB222ED7F4C3, 78C5DDB5BE25DED9BB58A4E12C2E3DDD3E798CFF5AC0F87D1BE615FAEC896B0E ] aswSP           C:\Windows\system32\drivers\aswSP.sys
13:48:47.0462 0x06a4  aswSP - ok
13:48:47.0478 0x06a4  [ A084E7BEA9EA4D0BE94357BFE8E987D7, C006EE86A0E6BBDFC6EC1F2708C32722AB571FC64879D6EA1FB6A230E13444B9 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
13:48:47.0506 0x06a4  aswStm - ok
13:48:47.0523 0x06a4  [ 8CA850403483A9373406707E8144EB5C, 58C33AFFB6CA2F52BE2534D3099E6F76134484657413E9B4F8A58CB3F08F8FC8 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
13:48:47.0571 0x06a4  aswVmm - ok
13:48:47.0582 0x06a4  [ D8B54F3B0714F425A1E750930F2959B7, 6926B7249E7D6506D084E00212E00E2C3CD79D556CEC4B0489459D1030163A08 ] AsyncMac        C:\Windows\System32\drivers\asyncmac.sys
13:48:47.0638 0x06a4  AsyncMac - ok
13:48:47.0647 0x06a4  [ 1D8B6976EC75698485A195A06B2DEBAC, 750281084F24190DD77CD2DE23EE8E8B46A942F30C8CCDDA2073F80B4EC01B3A ] atapi           C:\Windows\system32\drivers\atapi.sys
13:48:47.0687 0x06a4  atapi - ok
13:48:47.0713 0x06a4  [ 1EC637725AEBE586508626BA50AF3324, 8D3D873D96BAB9DA82AED3E898690BB03AD7E0108D45C3EB0B165BE52A0ADCE0 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
13:48:47.0750 0x06a4  ATSwpWDF - ok
13:48:47.0769 0x06a4  [ 9086C5B04CE8C611043B80A52B4E5482, 231D2F05EAA2FE105195F24F0EE1FE97105BB20D970831220B232FC637AF2C21 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
13:48:47.0823 0x06a4  AudioEndpointBuilder - ok
13:48:47.0858 0x06a4  [ 18590E6DF36EF89A2A1E9BBA0429CEA1, E9401391A7DF497BCF7F92147BF823F873343BF1FBAC88A204C62827CCD56973 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
13:48:47.0937 0x06a4  Audiosrv - ok
13:48:47.0956 0x06a4  [ F4E0580B5789474385E7ACB189C4AF2C, DB5BE2C852AC102AB8EB186362E582E250B843BA52B3B71AF08A5FDA8A6F91AF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:48:47.0985 0x06a4  avast! Antivirus - ok
13:48:48.0005 0x06a4  [ 24CB11F0C843ACF345AF4B6ABCC88627, B5F6F7CD21250ACE9F63691ACBECEDCE69693B2BFDCEB2C3151BC59927B7458E ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:48:48.0052 0x06a4  AxInstSV - ok
13:48:48.0075 0x06a4  [ 49EF8E38514DB9AFFC696876D3540A52, F9E088FE3F0ABCA329C20424080F4527EAADAB2A5460C188735901F581F1DAB8 ] b57nd60x        C:\Windows\System32\drivers\b57nd60x.sys
13:48:48.0157 0x06a4  b57nd60x - ok
13:48:48.0172 0x06a4  [ F777221219ED35095E903F69B058C42E, 379471A9F84B648212CEA31E9F9AA791F702CE000B59CF6ABAD13AE3AC3CA1F4 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
13:48:48.0225 0x06a4  BasicDisplay - ok
13:48:48.0236 0x06a4  [ D68ED76646F49C52D65006FC4C596A26, 4CAC90A72DF1E6112BC1AB2607E9D51AFBA96C291FE4F6767B3F303A212028BD ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
13:48:48.0285 0x06a4  BasicRender - ok
13:48:48.0299 0x06a4  [ 045ED769BF5396D346FA7493F47DF811, D0A57A040E3B18AC3A5ED56BF2D26E334DA0381AB686CC3F0517953EC3F7B46D ] bcmfn           C:\Windows\System32\drivers\bcmfn.sys
13:48:48.0351 0x06a4  bcmfn - ok
13:48:48.0363 0x06a4  [ E4D6B5E5E5CD2606391220B156235692, 4633C60BDA9FCB892054D4F338323A4C9E35915D1BF7571A38AC25D51C1BFBE5 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
13:48:48.0414 0x06a4  bcmfn2 - ok
13:48:48.0437 0x06a4  [ 1F602D94A1DB47003B373DB0F14AAAF1, 964D37C4605E0A312E51C38C94E72C6E2F4D576C5D7416EF0D3C28F275DCC4DC ] BDESVC          C:\Windows\System32\bdesvc.dll
13:48:48.0490 0x06a4  BDESVC - ok
13:48:48.0505 0x06a4  [ 47DC23ACA8BEEE31FBA52E6657767E8F, A145DF855E70020AE96BF6D9852033E79E218F91998BE57B86E27083F8E86B1B ] Beep            C:\Windows\system32\drivers\Beep.sys
13:48:48.0555 0x06a4  Beep - ok
13:48:48.0582 0x06a4  [ AFD903C0CA3AB3F70E1E6DC09E1F7C97, 30A79F603BC6828AB6EA9AA992CC5C5CBEFC3741A7FD0A58B4D6C71501255742 ] BFE             C:\Windows\System32\bfe.dll
13:48:48.0650 0x06a4  BFE - ok
13:48:48.0689 0x06a4  [ 1605DDADAF3CC89E8F803F5955C82747, 480BCA04DA5DFBFD2FB4804113806013BD43DE0E64652B63310A16F7D959ACBD ] BITS            C:\Windows\System32\qmgr.dll
13:48:48.0771 0x06a4  BITS - ok
13:48:48.0786 0x06a4  [ EB4E94E3A66E19470176972A549A5A9C, 417E34B4004DB2187483E6AF2F9811373C2D57F7773BF04E5F9145FE78CC29AB ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:48:48.0839 0x06a4  bowser - ok
13:48:48.0870 0x06a4  [ 2DBE710FC2592023F550A0A6D5E35AEA, 651BC87E88F335642BF1DFE3C729991E288EFC8ACA889CD7219C9459A7C7B6D3 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
13:48:48.0940 0x06a4  BrokerInfrastructure - ok
13:48:48.0958 0x06a4  [ 47AFBA90CD451D64352C90851761DF66, 54A6B66B1BFABD7968D4C641067E7199B0077EA3510C0D03837FB2B36FB4DD15 ] Browser         C:\Windows\System32\browser.dll
13:48:49.0001 0x06a4  Browser - ok
13:48:49.0012 0x06a4  [ AE0FB0E7C275AFAF60F822415DC6748C, C62CC0799A6DC4F4290B1FF15F95A988FF86D47D90AAFCEDA1F5752D311366A5 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
13:48:49.0064 0x06a4  BthAvrcpTg - ok
13:48:49.0075 0x06a4  [ D7CF5255298D8377812ED2E072E889A9, 6700C39D7413B5D948C01B7E90408BFA05C6EE0C5767841D32FC27234628DA09 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
13:48:49.0130 0x06a4  BthHFEnum - ok
13:48:49.0140 0x06a4  [ 36C5FB26B23A686EF24F7BF8E0FF2731, E7FAFEFE8184EFF66CA1BFCA55069F7B4FA2F4FAD70973448445A1DBE6043886 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
13:48:49.0193 0x06a4  bthhfhid - ok
13:48:49.0210 0x06a4  [ E6D7B2DC8DEDD9851CEBF4AD748DB651, D2A63D3E0F38B4D30E0D653E35F30AD2B2EC5440D41132CDAE4772846AA5ED03 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
13:48:49.0259 0x06a4  BthHFSrv - ok
13:48:49.0270 0x06a4  [ 946F5FAC425C4C616AD4B347FAA2A8C5, 5D56A9129F4ECF9A1B180E5987C9C57D2934FADFBAD2C5FCAD887DFC1649983C ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
13:48:49.0321 0x06a4  BTHMODEM - ok
13:48:49.0342 0x06a4  [ 64C79FE4EBE17BADD43E7945C3231FF6, AD4A53F594E9D23B23D71D42825DD4F1BE94D6BC03AFABE9A40E9027C55761FE ] bthserv         C:\Windows\system32\bthserv.dll
13:48:49.0401 0x06a4  bthserv - ok
13:48:49.0411 0x06a4  [ 1611E3AD41DD64FA2666BC25D3AEB6F8, 0A8E5B1B7E8235BE9516CDE477DED11EC88037AE8B2894A04F18598A33036F67 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
13:48:49.0490 0x06a4  buttonconverter - ok
13:48:49.0502 0x06a4  [ 4B51E183CB0460ACCCB08826B82BA2A5, 1B9F45AAED054EC5CA0C91CF888F7458F423609EDA4A8481BBF1D968CACEEA4A ] CapImg          C:\Windows\System32\drivers\capimg.sys
13:48:49.0585 0x06a4  CapImg - ok
13:48:49.0597 0x06a4  [ 9577B2171AD8DBC6A8BAAD75232CBF38, F939BDDB99A3A3A090A4A2728FB75E89ACFF72CB5C4BD74F00C7DA3A7028374D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:48:49.0689 0x06a4  cdfs - ok
13:48:49.0711 0x06a4  [ D7D8E3DC85C585EAE0A24BB78B718054, DA774648F3786FD2D31FCA8CE9C1B2DFAD79D49B9F7DA1078A663C4A37C610D1 ] CDPSvc          C:\Windows\System32\CDPSvc.dll
13:48:49.0766 0x06a4  CDPSvc - ok
13:48:49.0784 0x06a4  [ 00677D7D4770A93AFDDFD59C97C5DB02, BB51DA44C4AA86BC4FBD39CB10B9E5047441C1130DFA6F720D9E346C28F27A50 ] CDPUserSvc      C:\Windows\System32\CDPUserSvc.dll
13:48:49.0833 0x06a4  CDPUserSvc - ok
13:48:49.0852 0x06a4  [ 67B188419B7018D7956A38C89EFCC70A, C37C1BBA25D9AE35649BE3ED2D829008F72EA92A3ADCC7A9038D1E47928513D1 ] cdrom           C:\Windows\System32\drivers\cdrom.sys
13:48:49.0914 0x06a4  cdrom - ok
13:48:49.0930 0x06a4  [ 1D6A243ECD54F7CC294B28946F6B5B33, 7A7F19ABD4B6D73121466B4D8649BBF375034B293FBDFE02A8982D09AA9E6393 ] CertPropSvc     C:\Windows\System32\certprop.dll
13:48:49.0978 0x06a4  CertPropSvc - ok
13:48:49.0991 0x06a4  [ 3B93FFBBBD36E1DD8335CA18E8432F7C, 4C1B712BB5A60C0B275B345712265BF5C9ADB80A5295155A76F4259F89E0F1AF ] circlass        C:\Windows\System32\drivers\circlass.sys
13:48:50.0044 0x06a4  circlass - ok
13:48:50.0063 0x06a4  [ C86D5336F7EBE40E8B69CE8515283DC8, CA084894BCD3ABAA2FF61DD72BD70071B828DF03079E9F4E746D29EF0DDEB7A9 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
13:48:50.0117 0x06a4  CLFS - ok
13:48:50.0149 0x06a4  [ 45DBAD9665B07032CADF149B8CEEF24B, 2D311D62C84EDFD55C39152AC0C84359B92C056137AB9EECAA46E7862F16254F ] ClipSVC         C:\Windows\System32\ClipSVC.dll
13:48:50.0200 0x06a4  ClipSVC - ok
13:48:50.0217 0x06a4  [ 95E1EFBF28F5B071DC763D54E8A302E2, 47609CF571F29A02E94BF64D0158E0D894EC4FD42BE38970EA20202474FB9DBD ] clreg           C:\Windows\System32\drivers\registry.sys
13:48:50.0268 0x06a4  clreg - ok
13:48:50.0289 0x06a4  [ 2DE5CAA56A2BE62470E65E5B0A438821, 2BF3B3186712803E351398215190336BF22A6AA1C892E7707CB50D67BC130E56 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
13:48:50.0341 0x06a4  CmBatt - ok
13:48:50.0367 0x06a4  [ 8AD8C91D90F656948650BCAECF13448C, 30B3BF8F7855894D546149DFF81ECD3838D718511019C02DBA0D5F0DE07822A7 ] CNG             C:\Windows\system32\Drivers\cng.sys
13:48:50.0449 0x06a4  CNG - ok
13:48:50.0461 0x06a4  [ 2BC3F67E62E85D19348A3882B923E343, 6C87C1EB6FCAF65E88088EA673972EC15F7B6EBCBE961FC9008D41C280314BC1 ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
13:48:50.0504 0x06a4  cnghwassist - ok
13:48:50.0525 0x06a4  [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
13:48:50.0558 0x06a4  Com4QLBEx - ok
13:48:50.0587 0x06a4  [ A647E88E5949450EB06DF2A7738043AF, D8CF5626115285E8793C6DAA7011598C86F821F934BBD5FBDE6A0E5EE7642C8E ] CompositeBus    C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_x86_ed148199964e21c5\CompositeBus.sys
13:48:50.0650 0x06a4  CompositeBus - ok
13:48:50.0660 0x06a4  COMSysApp - ok
13:48:50.0675 0x06a4  [ 9F17B6403B954A9C7C24C70F6F90792A, E242A073742E092CF51E99AD5B9484F596A0D0CA080AEE7AB5CD1B1EE8767245 ] condrv          C:\Windows\system32\drivers\condrv.sys
13:48:50.0718 0x06a4  condrv - ok
13:48:50.0748 0x06a4  [ 2A2C56D4EE5B54D2BAAA39AE88EA0EEA, E03C3E7B802698397EAC802E6789A92D1E62626A3D0AE4FC96EAC6DFFE1783C7 ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
13:48:50.0800 0x06a4  CoreMessagingRegistrar - ok
13:48:50.0822 0x06a4  [ 2AD3EF1C870850E1C7D8F07078006555, 6B37FB025F5F7E3E6E550EEF3DE06B73744F78152057FC2D7EC1FCF2519459B1 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:48:50.0867 0x06a4  CryptSvc - ok
13:48:50.0896 0x06a4  [ DB8B45AF1B7F27FCCC28BDA6DB8D8312, C1B08606F533D16E58D1D13B35367595B1C1F66618B6D2E06E27A6D3926F4CF7 ] CSC             C:\Windows\system32\drivers\csc.sys
13:48:50.0974 0x06a4  CSC - ok
13:48:51.0010 0x06a4  [ 3CE212F62B56993010B181F914875315, E6FBAE019BA37B7D4117179341B19352FB14E3A6884261E15E3D02ECC75BB1C5 ] CscService      C:\Windows\System32\cscsvc.dll
13:48:51.0078 0x06a4  CscService - ok
13:48:51.0092 0x06a4  [ 1253A07702253E23A6D31A7EA8F0152C, 36E670C661999FFF62FD5AA3EF19465189EDBE1B212A883081B186A26F7BE5A0 ] dam             C:\Windows\system32\drivers\dam.sys
13:48:51.0133 0x06a4  dam - ok
13:48:51.0176 0x06a4  [ 16C4E1708C9574B5CC9A32324FCE51DE, A7D99F2A6B254B5E9532CE957BDDE339D6D2281290A4ABE6B8E497E9D4872D05 ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:48:51.0253 0x06a4  DcomLaunch - ok
13:48:51.0271 0x06a4  [ E32C822C524D7C72EB27A778FEE532D2, 641BF41A9364EBDABCE2576DB423171A4048850BC61F6C20534AB13933814E63 ] DcpSvc          C:\Windows\system32\dcpsvc.dll
13:48:51.0323 0x06a4  DcpSvc - ok
13:48:51.0347 0x06a4  [ 6B8D6B334672A0ED29CCA41369888431, F63EF65651E113446B528AF927F0417BC909996F3DDAC639F164933A3FF022A4 ] defragsvc       C:\Windows\System32\defragsvc.dll
13:48:51.0416 0x06a4  defragsvc - ok
13:48:51.0439 0x06a4  [ 234BAFE8BC6930A22290FB4BD42575BE, 5E6955EE67AEA5E6A61101A892EB65A10D5F31199660C5C12206DD1BEBD94BC3 ] DeviceAssociationService C:\Windows\system32\das.dll
13:48:51.0494 0x06a4  DeviceAssociationService - ok
13:48:51.0508 0x06a4  [ 0DF131F7F00E34B6C9DA053E55A80AA4, B3CA50986884B00B67EF1BB3910CA60FFEB4EA3AB9D08CBD6E82E792B650128B ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
13:48:51.0561 0x06a4  DeviceInstall - ok
13:48:51.0570 0x06a4  [ AFD78D3A35662205B8E3BF50F5FC0A70, CB50A1B5645922DF1338BDFE733E9846B89AA2F8F2AE127314A971DC12EF6702 ] DevQueryBroker  C:\Windows\system32\DevQueryBroker.dll
13:48:51.0613 0x06a4  DevQueryBroker - ok
13:48:51.0626 0x06a4  [ 9C24695688530F014821E30FC8FFD3C9, 72EAAC4F21826F5198F313421B82484A1D3FEAD4AEF4F4DC45A22C4FF3B59D20 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
13:48:51.0694 0x06a4  Dfsc - ok
13:48:51.0718 0x06a4  [ E0201A4BB639042959A11457A52DD627, CA05AE303DC32347C87B512078F4CCD9E821271D8E54A18023D1DCB1F5D0C2B6 ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:48:51.0772 0x06a4  Dhcp - ok
13:48:51.0784 0x06a4  [ 06BFFF10377726EE09E9CD38E187EF16, 51E4875DE91309D86FD24744356E70BE2E0CB3E7BE0CC9321F65544A68ADAC1B ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
13:48:51.0828 0x06a4  diagnosticshub.standardcollector.service - ok
13:48:51.0888 0x06a4  [ E16FC9748D4D9CC1B5037B78DC738F7F, 1A01B81C0AF4F4B9EEFA515CBC14D5B3E9D8DAC5B9CD5B3D771F111BAD9EA6B3 ] DiagTrack       C:\Windows\system32\diagtrack.dll
13:48:52.0005 0x06a4  DiagTrack - ok
13:48:52.0023 0x06a4  [ F2BBF4C89BE9D8A5338955CC660C9308, 95039E5786F00949D1C375FD23EA2D1AD1BD86CE01270473955D470BCCE4D9D3 ] disk            C:\Windows\system32\drivers\disk.sys
13:48:52.0066 0x06a4  disk - ok
13:48:52.0085 0x06a4  [ A185BCC083628A702D61F384B2D37DE3, 1DFD17D0E6C7C31D8330C15F33F1C6F22808A4170935C3C087BEBC9CCB3225D3 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
13:48:52.0147 0x06a4  DmEnrollmentSvc - ok
13:48:52.0158 0x06a4  [ 22C192B3FC5DD7068BA6D56D8755948E, 0D16516710C7EE7CA32AC45B5BC83E6B8AF352B18C6ED4663689B7AB74DBD0D6 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
13:48:52.0209 0x06a4  dmvsc - ok
13:48:52.0224 0x06a4  [ 98B56EE8E60A517DB651F79A10FD937B, 9B5F4CD835E441F3835BAB4D1D74C082ADA8B07B046CA77517155C74C98B3FD4 ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
13:48:52.0280 0x06a4  dmwappushservice - ok
13:48:52.0296 0x06a4  [ F3F9449C3F466434912D06E0FBA59FBD, 46BD399D7707E238E440AC8E68D7BED58E4C2D8031EF19F951796EE969956CBC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:48:52.0346 0x06a4  Dnscache - ok
13:48:52.0368 0x06a4  [ 29B816D498BB00B46328887131943ECF, 350152ECAC1693B3F66052CCC0E673827220F7B6CB960B979B1A970E68E86BB9 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:48:52.0420 0x06a4  dot3svc - ok
13:48:52.0434 0x06a4  [ 3A46434BC8319CDDC44E02664D67CA26, 74C26F8E17FA08E70F2A103C7DD032A41AD39D1564C3EEE4E30CAF557678FE24 ] DPS             C:\Windows\system32\dps.dll
13:48:52.0479 0x06a4  DPS - ok
13:48:52.0492 0x06a4  [ 065F7A30FDCFC86E850BA76C8AC3C8F8, 692D47A6231AEF32E554F43823855B4AF449B5881AF956B5E9E4F01A04D57D58 ] drmkaud         C:\Windows\system32\DRIVERS\drmkaud.sys
13:48:52.0536 0x06a4  drmkaud - ok
13:48:52.0550 0x06a4  [ 122C70C18BFABCF509F683A1D739264D, 88A29F225A5B136EAA6DFA2F03BA2CBF86B484EA32A331590216F48408F05364 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
13:48:52.0612 0x06a4  DsmSvc - ok
13:48:52.0624 0x06a4  [ 2C8B7475888EAA31315F5960DA2019B2, F5C4E6C54C3C339CCBF025FE847BF9B5C5EAE485A7707D2BF24E7174ABB260DD ] DsSvc           C:\Windows\System32\DsSvc.dll
13:48:52.0679 0x06a4  DsSvc - ok
13:48:52.0753 0x06a4  [ 26D7D93C95E514606D2470445DCB3AE4, EBC5A0619B10BB6DAC1F8A5CD32A58984C080A94D128917B8487646E40A55093 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:48:52.0906 0x06a4  DXGKrnl - ok
13:48:52.0925 0x06a4  [ 6E1E91144E0058039E2D5C0FAFF52783, A3D143A9F0B3385471449683985A3803085480DC27F811F471AC6B59EBA8F918 ] Eaphost         C:\Windows\System32\eapsvc.dll
13:48:52.0981 0x06a4  Eaphost - ok
13:48:52.0992 0x06a4  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] EFS             C:\Windows\System32\lsass.exe
13:48:53.0025 0x06a4  EFS - ok
13:48:53.0036 0x06a4  [ 13919673FB7CD6EA50B65D0A780C6668, 2F1C32B9E2F013A0F83A449FCA3CD886289E8F073A79522AA6515183613A9B0B ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
13:48:53.0080 0x06a4  EhStorClass - ok
13:48:53.0092 0x06a4  [ 985743134FA3EFCCE29420C78899C04D, 8F1DA5CC155FF315D93AF17781F0E1BC8BCCF1D649686B0C0502026E2ABCDAB1 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
13:48:53.0138 0x06a4  EhStorTcgDrv - ok
13:48:53.0146 0x06a4  ElbyVCD - ok
13:48:53.0163 0x06a4  [ 7BBC217388D13405B20B6DB2D2B149C2, 02CB05C0914A8D96F729B9FBF96E09855E06EC2624A5B3C7CE8DB6141BAB8351 ] embeddedmode    C:\Windows\System32\embeddedmodesvc.dll
13:48:53.0234 0x06a4  embeddedmode - ok
13:48:53.0253 0x06a4  [ 17641F7E9BC7EEC02420747962D9D106, B2999FBBBCD708917AD9D6FC7053632C06089D0BD2564D3F68C6F87C8E11A845 ] EntAppSvc       C:\Windows\system32\EnterpriseAppMgmtSvc.dll
13:48:53.0306 0x06a4  EntAppSvc - ok
13:48:53.0316 0x06a4  [ D7136B01DC15851F82F1ED40A3889CA0, F7744A5EADBB2CA55E7525E64AAA7301F7B749019E8146992B2B8EF7DC02A201 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
13:48:53.0366 0x06a4  ErrDev - ok
13:48:53.0381 0x06a4  [ A8CE54F53E76FDB5EDA357083369F06D, 648AA6B2521C861E63F1A0108C2201AEA7B9971DC216DF54FED5D6D66601E2FC ] ESProtectionDriver C:\Windows\system32\drivers\mbae.sys
13:48:53.0422 0x06a4  ESProtectionDriver - ok
13:48:53.0456 0x06a4  [ 297BFCA82AA994CE9B95706146764FBC, 9850D39254033EAA3FEE7ED25286CCF85608AA81D04112264A6F2C41CF153148 ] EventSystem     C:\Windows\system32\es.dll
13:48:53.0512 0x06a4  EventSystem - ok
13:48:53.0530 0x06a4  [ 0AD112D64CBE7CD0CC56BCC51A96C244, 872B791C97C3404AC056F231A436DC5FEA0AFAFDBA8843B7B0F345E551647A56 ] exfat           C:\Windows\system32\drivers\exfat.sys
13:48:53.0600 0x06a4  exfat - ok
13:48:53.0625 0x06a4  [ D2FC572D6B71CF1EB30370617AF46C4B, 416236FB42B91D435BB3613026E8CAB9E26642AD32BE69CB109C1BF6697E6F99 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:48:53.0683 0x06a4  fastfat - ok
13:48:53.0712 0x06a4  [ 0DA3553D2D52F8529B67C38D6DD0E15A, A6D590BCE75E0D70A175C115D48FC483452458B04078394C1B3829E6BF75810D ] Fax             C:\Windows\system32\fxssvc.exe
13:48:53.0779 0x06a4  Fax - ok
13:48:53.0790 0x06a4  [ A0126E7A898BB9D2903DE9F403920DE5, 6794087F2E0D9DF0A16138689A2D908D4B85C79AFE684E917121A242F21B2114 ] fdc             C:\Windows\System32\drivers\fdc.sys
13:48:53.0840 0x06a4  fdc - ok
13:48:53.0853 0x06a4  [ DC3775810E822B01FFA7F2495247D253, DB59321E07BEDD011BACC0797A41BC924384A1EA8A07905A801785603D9B687C ] fdPHost         C:\Windows\system32\fdPHost.dll
13:48:53.0899 0x06a4  fdPHost - ok
13:48:53.0909 0x06a4  [ BDEFD67A4F1BBC713BC25E8B1A6EC531, CD80EFE7BEF14894BA81028F5E303ABDB2BCD51ADF397F3D035BC11D007121ED ] FDResPub        C:\Windows\system32\fdrespub.dll
13:48:53.0978 0x06a4  FDResPub - ok
13:48:53.0990 0x06a4  [ CB1D954A95C06BE11AD1342FB118C781, 78187C52714B2A69EB3323261B64FB3239FCC861109C5057529D132B78390130 ] fhsvc           C:\Windows\system32\fhsvc.dll
13:48:54.0035 0x06a4  fhsvc - ok
13:48:54.0047 0x06a4  [ B1CBAE1E28CDC943C15A84071F458B68, BED9F204C32334204B22B6756C47692131F1A330ECC58A31BE9533DD4A6C358F ] FileCrypt       C:\Windows\system32\drivers\filecrypt.sys
13:48:54.0098 0x06a4  FileCrypt - ok
13:48:54.0109 0x06a4  [ 3FB44718D1EEAF86084E3DB63C2CCE35, BE1985D12738F1AF7367C0CA0086CD7216E989159BB880C0BDAFACB499186ECC ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:48:54.0153 0x06a4  FileInfo - ok
13:48:54.0163 0x06a4  [ D83A9B254CD6F8DA9F088B11549F7079, 34A8E248B7A66075C8EA5AA5FA180E6E2FF7A5CE8BAE09F0144EC1D23B01E87B ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:48:54.0225 0x06a4  Filetrace - ok
13:48:54.0240 0x06a4  [ 89D636A10C1D074B3CC4DA34F106728F, C836D780A4848BB2F093125390FEE2D885F80DDDB6E68AFB2D85B2672B6E4DC8 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
13:48:54.0309 0x06a4  flpydisk - ok
13:48:54.0331 0x06a4  [ 79C58738E216A568216ACE46CEEA9C21, 585A1C5426D13F009940CA84C41623C7FDDF9660C58F1B211BC744BE8AE566C7 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:48:54.0386 0x06a4  FltMgr - ok
13:48:54.0455 0x06a4  [ 51B108F8123250BCD617B628F4FF4785, DBEF8A3AF4539CD27DA596B78CD2D3AB0B0071C13FE98D634ADB75ACD34DF88C ] FontCache       C:\Windows\system32\FntCache.dll
13:48:54.0573 0x06a4  FontCache - ok
13:48:54.0588 0x06a4  [ C9427725CB6DDFA911F30D5F4E369581, 03ABCDEE3C5AF02B1D9A3E686ACA7C8E71F1E93FA26F126EA424B40E1D5DEEA4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:48:54.0617 0x06a4  FontCache3.0.0.0 - ok
13:48:54.0643 0x06a4  [ F596DF5D4C4F4135658C41FC03931076, 56D6751E418A4D30DFB9A3B9FE72F2969CE5A47AD91B568720E0B42419195189 ] FrameServer     C:\Windows\system32\FrameServer.dll
13:48:54.0708 0x06a4  FrameServer - ok
13:48:54.0720 0x06a4  [ A5B6ECA47256E837FE15937D2BDAB1CA, C5D4BC3CEB145A2130F22C27779BB19573861B0F08CB1B5E2C02C82F7FBF8BB3 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:48:54.0760 0x06a4  FsDepends - ok
13:48:54.0770 0x06a4  [ 6D729037BFBBBB21BA8F1ADC4888C254, 92FB100060B01503D880D1F150D361ABA32D839643620EFE93BAC96ADA7E9C2C ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:48:54.0809 0x06a4  Fs_Rec - ok
13:48:54.0838 0x06a4  [ 37159C90791F2D07EECA46137E021CB3, A0E14B280563B1C714B9AB03CFE2C51E283160503DA060CB5EBA0FB7EBCE9928 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:48:54.0909 0x06a4  fvevol - ok
13:48:54.0923 0x06a4  [ 55D0AB364EC299911365D85DFDDF9E53, 3673F08B233FC62B0DF464B0B310D3301A34424A5B2D1C737488A8E2FD9347DD ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
13:48:54.0992 0x06a4  gencounter - ok
13:48:55.0005 0x06a4  [ 813721B1164B29FC94711E94ED5948D5, 91A10E0CF09AB1C10045B2BA73247511312DD374938211C6E3649B8E01FB1E31 ] genericusbfn    C:\Windows\System32\drivers\genericusbfn.sys
13:48:55.0056 0x06a4  genericusbfn - ok
13:48:55.0070 0x06a4  [ 77EBF3E9386DAA51551AF429052D88D0, 94C3294BB9E14B07448734AE65B37801D3FF15BEC987D182A929A017FEF7B276 ] giveio          C:\Windows\system32\giveio.sys
13:48:55.0107 0x06a4  giveio - detected UnsignedFile.Multi.Generic ( 1 )
13:48:55.0319 0x06a4  Detect skipped due to KSN trusted
13:48:55.0319 0x06a4  giveio - ok
13:48:55.0330 0x06a4  [ 73EFE8A2747BB87F66B5646AA2262AE4, 368AAFA38F214D474206B914A4258B3679CB0B1C9080D32DFB3BF890BD5611A8 ] GPIO            C:\Windows\System32\drivers\iaiogpio.sys
13:48:55.0381 0x06a4  GPIO - ok
13:48:55.0394 0x06a4  [ 3B76B2A4EA0461434706F6F9E51F570A, 479AEB84BDBC6133E1D7CF3880D175C99C64F37D46686B06942798EBBAE3BE5F ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
13:48:55.0444 0x06a4  GPIOClx0101 - ok
13:48:55.0494 0x06a4  [ 477F552C63B73DF010E603A7515609CD, 7D488AB5C14A0F35A9CB5922FDC2028E201C2CC699FBDC58DD3CA5D910A2654C ] gpsvc           C:\Windows\System32\gpsvc.dll
13:48:55.0595 0x06a4  gpsvc - ok
13:48:55.0610 0x06a4  [ F6C07AD956D1FEE95D6A8D21CFA024A9, C23F7DAED98CDF1C128A5CB012CC916BE5FD5B9494B84F93761279505B842871 ] GpuEnergyDrv    C:\Windows\system32\drivers\gpuenergydrv.sys
13:48:55.0659 0x06a4  GpuEnergyDrv - ok
13:48:55.0672 0x06a4  [ CEA72AC01892B12514D15E21EF1BC75D, A44B9493C31479F9EB6C82FFDD6DBF0E6EA98336E6996116CD1A926C7A591214 ] GTIPCI21        C:\Windows\system32\DRIVERS\gtipci21.sys
13:48:55.0715 0x06a4  GTIPCI21 - ok
13:48:55.0725 0x06a4  [ C172F0D0329E46513B09E1FC60A27B9D, 05DE0544C8A29B2C6028D2B97F81EACED5B99B571DE507A18CE856BD30DF7D56 ] HBtnKey         C:\Windows\system32\DRIVERS\cpqbttn.sys
13:48:55.0747 0x06a4  HBtnKey - ok
13:48:55.0766 0x06a4  [ 1243DF3886454DBC0CE10F50809FEB94, 72205060CCD3E40B94A2331FDDDF2CBB248B1B9EB4B7FD7EA79263EEDFC7DB51 ] HdAudAddService C:\Windows\system32\DRIVERS\HdAudio.sys
13:48:55.0835 0x06a4  HdAudAddService - ok
13:48:55.0846 0x06a4  [ E67AAF24F03D9D1B7616C0F5663556CA, 009345F574B3A061EE2A814378151FFE682F1F6011AC4D1C39185629BCED1615 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
13:48:55.0899 0x06a4  HDAudBus - ok
13:48:55.0909 0x06a4  [ DC0EE7188ECB1DC81329242ADC9AA866, 03DCCD6A4DB164025B7048EC2D75C2EFB7C2C59AF86CFF17C8445A7B11DCC5F4 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
13:48:55.0952 0x06a4  HidBatt - ok
13:48:55.0969 0x06a4  [ B48564703C7EADF54E98BD37DAC977FF, 3DA211BCF0CAAE4723B77EA29EA8C1931CAF68BB9B2106482109871CF0BD47C0 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
13:48:56.0023 0x06a4  HidBth - ok
13:48:56.0033 0x06a4  [ 06717AF4BA807B54C79B9769815F1853, D4757F51F6F1DF9C3B2D0254E1C50C3AD509D1AEF825338C834A1E368EC664E4 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
13:48:56.0084 0x06a4  hidi2c - ok
13:48:56.0093 0x06a4  [ 886742395F435F565CBE3623E2EBB7E4, CC6666929DB21B70F2FF6DC8E0E1245B3518DF5A00612E8B5D96B9CF96F2E37D ] hidinterrupt    C:\Windows\System32\drivers\hidinterrupt.sys
13:48:56.0135 0x06a4  hidinterrupt - ok
13:48:56.0144 0x06a4  [ E1BD3175634178556EBD4EE4711BD7AF, 9EB96D3D9E92476E51FA70ADDAEEBD15DBF65C7D307793FDA68CE7DBE8AC138A ] HidIr           C:\Windows\System32\drivers\hidir.sys
13:48:56.0195 0x06a4  HidIr - ok
13:48:56.0205 0x06a4  [ BE6A279ED7023652DD94FA19E9B27882, A5A0E3AF6121BF2122C7652CB0232651FFBADB9CE2B04580C8112886686191A2 ] hidserv         C:\Windows\system32\hidserv.dll
13:48:56.0248 0x06a4  hidserv - ok
13:48:56.0257 0x06a4  [ 5E0186347B8E9A868EFAC611BE88206B, 1AEFF85613248DAF5724BE99A7CAD9115505CAF4807A2D5D391DB3AC6C6EF4C0 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
13:48:56.0306 0x06a4  HidUsb - ok
13:48:56.0323 0x06a4  [ 6098A3A34FB7709E5542BD772AC65261, 37E001A413D9669323F4887569F08A58A5C485707D0695466F25E2DF86E1FD67 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:48:56.0374 0x06a4  HomeGroupListener - ok
13:48:56.0397 0x06a4  [ E5D081908B6DD64BDFC125A56428AEA5, 751E9EA2168C475690C1A081FBDEC80F2BD140D77C61C9CD4C9ECA338D2A99F3 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:48:56.0458 0x06a4  HomeGroupProvider - ok
13:48:56.0470 0x06a4  [ 91AB80156F5DF5B1495A687E5047961B, 3F6F91200553A2DC907D12903C3EE9EE36BDC82521628515C6AFDA09789F8DC6 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
13:48:56.0504 0x06a4  hpdskflt - ok
13:48:56.0513 0x06a4  [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr      C:\Windows\System32\drivers\HpqKbFiltr.sys
13:48:56.0561 0x06a4  HpqKbFiltr - ok
13:48:56.0580 0x06a4  [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
13:48:56.0605 0x06a4  hpqwmiex - ok
13:48:56.0618 0x06a4  [ 4823026B825C419071EF342EAA02AC25, 313EDCA453777A1888EB3B2BD14F5F3266F265C6B829DF37E8EBFD5D74C9415F ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:48:56.0662 0x06a4  HpSAMD - ok
13:48:56.0673 0x06a4  [ 361069D78E96F27647EA99A5A5789DC3, 771E790C304BB159094C4AA24A1F20C92DBD9D41917B59EEE8AFA3A88558048C ] hpsrv           C:\Windows\system32\Hpservice.exe
13:48:56.0699 0x06a4  hpsrv - ok
13:48:56.0737 0x06a4  [ 4C448A376B2830E04C479526EBDBB5C2, F697191DE2A2A6D72CC6766204A11B757C503AB21B622736E39BBA357E167C5F ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:48:56.0821 0x06a4  HTTP - ok
13:48:56.0835 0x06a4  [ 87DD07FD11E223C6F3322C242818E35B, A13F5E957926F441F899AF82C1CF72C425569B049DB32B06D8712A48A8132C57 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:48:56.0873 0x06a4  hwpolicy - ok
13:48:56.0882 0x06a4  [ 13757A2431D14C7E9E4221D7E4E49266, 6BD7A6CBC6606380153EE7DCC1A8A0F0AC9E74BCF9665E64BA8123BE63813E2C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
13:48:56.0932 0x06a4  hyperkbd - ok
13:48:56.0944 0x06a4  [ 7D889F2D2464940C2DA8A218F5282F21, 06A8CE55D30EEADD3BCDBCD66F2CADA074D32E60B474BBE18759CB5A4318BD89 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
13:48:56.0998 0x06a4  i8042prt - ok
13:48:57.0007 0x06a4  [ 9FD2F64E54C2B4B2EC0F0C7BF9997C34, 659417B7005DF6716231A66D2BA947A3F12957B5A9801826DF7808B2C8AAE2C7 ] iagpio          C:\Windows\System32\drivers\iagpio.sys
13:48:57.0058 0x06a4  iagpio - ok
13:48:57.0069 0x06a4  [ A0D5587F43A9824840A8D1EE4BDB184E, B7A7557BBB4E8C25883FE39070F5C71C0AFC080EEF72CFADD563C3572ECE0314 ] iai2c           C:\Windows\System32\drivers\iai2c.sys
13:48:57.0122 0x06a4  iai2c - ok
13:48:57.0134 0x06a4  [ 646D3B416BC970C3CD2F53844FD156A5, 045CBA642382B33DB1E222302B14DD46838895A73CE50426FD180B4CA918253A ] iaioi2c         C:\Windows\System32\drivers\iaioi2c.sys
13:48:57.0201 0x06a4  iaioi2c - ok
13:48:57.0231 0x06a4  [ 679359487C5ED5DD1FBF357749EBB020, C53A8D79E019E889C6B1B956CCC39F6B6D0F88FD71BD092FBC5DC64D5E8192DD ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
13:48:57.0299 0x06a4  iaStorAV - ok
13:48:57.0323 0x06a4  [ 9B62A8511B3D9154F4B2A47C7EECBBA5, C04681055B84A4BD75F4AA405CF40EDCA3DEA77D4BADB37A441BC687E7A5EF18 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:48:57.0379 0x06a4  iaStorV - ok
13:48:57.0395 0x06a4  [ C44E3058903C80EB48205919E887CAB4, 0EF5C7625EE3BE52DFDF44804CA4CF9C7F5FEE22315AF1BBA4213C888025B4A0 ] icssvc          C:\Windows\System32\tetheringservice.dll
13:48:57.0447 0x06a4  icssvc - ok
13:48:57.0618 0x06a4  [ 35CBB5A4A91DA63C8EE6F36FE9B1FDB5, C0055E3D904F79A1C3810381F3383FD276DBE4D75357E45C21ED0C8842BF77B0 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
13:48:57.0970 0x06a4  igfx - ok
13:48:58.0026 0x06a4  [ D0A86D037E8FC3584FBF882F0232B194, 2A002A0FAB09A4544C6363DC4132E3138D9D776D208FEB25B8626916BECF2BDC ] IKEEXT          C:\Windows\System32\ikeext.dll
13:48:58.0103 0x06a4  IKEEXT - ok
13:48:58.0118 0x06a4  [ 7C28B5FF1A83FAD4EB2964A6769DB972, AD0B0F7BDFE6DC3411D3D0168F286E2F7A7215DAE6B6704D772F3A79C3CA7913 ] IndirectKmd     C:\Windows\System32\drivers\IndirectKmd.sys
13:48:58.0166 0x06a4  IndirectKmd - ok
13:48:58.0180 0x06a4  [ FF01147A374A06FEAB1BFAC93287C8C7, 62384B44EE90A019A07594B761D3E645E31F8FE3B52A7E99654D1468450A76CF ] intelide        C:\Windows\system32\drivers\intelide.sys
13:48:58.0227 0x06a4  intelide - ok
13:48:58.0259 0x06a4  [ 8CA679CF6CC09754F8398AE18242503B, 63004515749D468AC29A109F76028AAC2BA6C8B0246A26F6901C4308BA81AE29 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
13:48:58.0303 0x06a4  intelpep - ok
13:48:58.0319 0x06a4  [ 27242FBDF64B9B1C29A8555279DD47E2, 5B055E2652B87EE98CAE9834EAF58207AA417BD64E581FA3313F52644E505685 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
13:48:58.0377 0x06a4  intelppm - ok
13:48:58.0389 0x06a4  [ 061B3A4E1FC4EA13225D9C4830733172, E43F6A7962B1E6A1CBBC90A68BD3497ECB5A0F4E25FD2A522890CEB1380DAF9A ] iorate          C:\Windows\system32\drivers\iorate.sys
13:48:58.0429 0x06a4  iorate - ok
13:48:58.0439 0x06a4  [ 0936FE04B833C852CAADE4A4EF7520FD, 6B69D2E2AFC30E6D759BB0DA1573DD090FF3C9C7E2E542C4598B401C2249085B ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:48:58.0492 0x06a4  IpFilterDriver - ok
13:48:58.0534 0x06a4  [ 2A1F3BF1C239647775E41F8020F93629, 4C7EA6753BC98F82D32765C55C4295077DA1D91978FAE3AC947C77FDF789EE21 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:48:58.0616 0x06a4  iphlpsvc - ok
13:48:58.0630 0x06a4  [ 3CE14CA8BE8E6738657EF6A2BEA8BC51, 19696986B1A01B8A656F52BF4E2107FB07F88B3BD4217F16C6374330E23EAC4B ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
13:48:58.0671 0x06a4  IPMIDRV - ok
13:48:58.0691 0x06a4  [ 3FDB0E7AC49A78D21B470863CDA5E342, 0439E9EBD40FD1E293CD0676F4029617E03AABF7A1B668C38D2EAED4DF2A836C ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:48:58.0750 0x06a4  IPNAT - ok
13:48:58.0763 0x06a4  [ 100935549DB97F99CC9DB141B10E4AA7, 3E591D073202A901695BF3A8EB1E9D48391D4E5387E3CC86B9CDB365A2076C06 ] irda            C:\Windows\system32\drivers\irda.sys
13:48:58.0822 0x06a4  irda - ok
13:48:58.0831 0x06a4  [ D428B631C883610C92A83DCA0A813D76, 59F3F4FACD2671BD97A4D0DA67CA2B02EFB8B01E2E66AA9D937E99AB88BF462B ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:48:58.0881 0x06a4  IRENUM - ok
13:48:58.0894 0x06a4  [ 51CF322AE4D5C752FA3977B419341ABB, 2DA9ADBAF91E57DF41EFB389C21EB0F9D34B9F5A705AE2E4B5113189BB2FCB24 ] irmon           C:\Windows\System32\irmon.dll
13:48:58.0935 0x06a4  irmon - ok
13:48:58.0945 0x06a4  [ 15DD238B3E280A3E31E2F5BB29630B98, 57F37172410C74DB5DEBC10FD9DB55D2D959F45E5AEA51FAEA900B119A34FD80 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:48:58.0985 0x06a4  isapnp - ok
13:48:59.0003 0x06a4  [ 3AE6DA207A27333CBD71B132B695BBBD, 0BD58DAFAD2199AB9312B020315628153A8DC1EDBE6FD7C48F18F785349BB7FA ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
13:48:59.0056 0x06a4  iScsiPrt - ok
13:48:59.0071 0x06a4  [ D09509545F6E0B1D5895129DA5255FB4, E0FC5F564A134DE6030C1561D253056B7E449F56402D3119A82EA4B158A5D17A ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
13:48:59.0112 0x06a4  kbdclass - ok
13:48:59.0121 0x06a4  [ 12A96DA887C835D83D492CF12FF3E098, A8E48F341D1478C2A81AB8175404CB1949510DCCC658FE66682C770BDB1BF3E1 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
13:48:59.0169 0x06a4  kbdhid - ok
13:48:59.0182 0x06a4  [ A6B39C3BA2D85BF7D640EBE81995DD64, 4A72D372CDA0F862505C640EF43C0F0C01E0E0533E4CC4439FDAE6D20F4ADE72 ] kdnic           C:\Windows\System32\drivers\kdnic.sys
13:48:59.0231 0x06a4  kdnic - ok
13:48:59.0245 0x06a4  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] KeyIso          C:\Windows\system32\lsass.exe
13:48:59.0278 0x06a4  KeyIso - ok
13:48:59.0291 0x06a4  [ D1030A854286D7A2171C239D8FCE5C02, 24475DA6F6ED2CCAECB5E0C11748EF509B86991A49F1887196F96BC2A804BA42 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:48:59.0336 0x06a4  KSecDD - ok
13:48:59.0351 0x06a4  [ 755F5B189F8B92B10A0DF2175B064C63, 9F0FDAAD5C3D1BEABA18EA9B1C3A34AE9614DE67DFA7222A8B16BA17AE619DCE ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:48:59.0399 0x06a4  KSecPkg - ok
13:48:59.0419 0x06a4  [ FC5E079DD7EEAE9EEC0F441459FCE8D7, 5D8B26EE0520227CC4AD0D5D3AC8291531807628EC9917372EA1D819EFBB7427 ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:48:59.0476 0x06a4  KtmRm - ok
13:48:59.0493 0x06a4  [ 258661013CC98B51218CCEF4ED7F0834, 1432FCFAB25F4965C3E3E7A964AE076CC9420980FBC33D2BAC0BBD04F3A351EA ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:48:59.0551 0x06a4  LanmanServer - ok
13:48:59.0571 0x06a4  [ 64C3883E74D12CB08C4091874C8B8DEA, 84C84E6CBD9223912CAF0FCE69BAE2036FEC3F414CCCB44FE6452BAAF8BD20A0 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:48:59.0628 0x06a4  LanmanWorkstation - ok
13:48:59.0645 0x06a4  [ 1C9CAD178A37A3C7047BDA51FF39D454, 5ADD6AB911D2AF6E94E39286D94EEAF5462AA719FBE977FAFF7717E09608C1B0 ] lfsvc           C:\Windows\System32\lfsvc.dll
13:48:59.0688 0x06a4  lfsvc - ok
13:48:59.0697 0x06a4  [ 9D43EA3F9CB70E07486378D2D61D0770, 40C7DBF2DF77D7A290059C464F918BFA60F4586A25B4B9ED67900A3BEC7FDE64 ] LicenseManager  C:\Windows\system32\LicenseManagerSvc.dll
13:48:59.0739 0x06a4  LicenseManager - ok
13:48:59.0749 0x06a4  [ 1A8B2F55C261A041A4F9D684FBB2DFFD, 3A8D24A46DEB1841D5644594953426A371109DA11D7CC2E0C49B28697D715B26 ] lltdio          C:\Windows\system32\drivers\lltdio.sys
13:48:59.0803 0x06a4  lltdio - ok
13:48:59.0819 0x06a4  [ 5DCBC3F45B9070DAB1A4413284F3DFB1, 210B33442B102C1BBEB5B85AEFD35E8B4B3B81DF36C8A2AD6DC21F2BC2FE57AA ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:48:59.0868 0x06a4  lltdsvc - ok
13:48:59.0877 0x06a4  [ BE7615B2C86641644525E5FD448CBE4C, 72435837BBED624442A25C88685F0D09636ABDCF0CEFCDEEB66C6DEAF01E36AA ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:48:59.0921 0x06a4  lmhosts - ok
13:48:59.0939 0x06a4  [ 08947A02B42C4AE496E9E0AFF99D0059, C3FC294220F77C8756E670420F766E092CBA41055143A6A8E38B5F42BF8C5B6E ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
13:48:59.0983 0x06a4  LSI_SAS - ok
13:48:59.0996 0x06a4  [ 083C404C6CF4578AE46AB28F72DA4B1E, 6E2C868B87F742CF20B0AAC752AA067B7D6378B59A563310FB4CF927507CC305 ] LSI_SAS2i       C:\Windows\system32\drivers\lsi_sas2i.sys
13:49:00.0045 0x06a4  LSI_SAS2i - ok
13:49:00.0061 0x06a4  [ D0F4EC4718F7EB222C8AD76BC3B5E013, 90B161571A5EE8E880198A978B7022E7A43A9D1D756EB198A7DB65C8A91843E2 ] LSI_SAS3i       C:\Windows\system32\drivers\lsi_sas3i.sys
13:49:00.0103 0x06a4  LSI_SAS3i - ok
13:49:00.0114 0x06a4  [ 0BAB30365711E81D11311BF1C30F9F75, C2C3A0090E43B6BBC504F9EA0A4CD31D48B125A7B689F0D5815B78B961E308ED ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
13:49:00.0158 0x06a4  LSI_SSS - ok
13:49:00.0192 0x06a4  [ 35754BFDE1F707A3202ECADC7F369A56, D297B8868A88BE8F3B13ED82166AD2255046B2A9BFABD20F5CA041AEA0772170 ] LSM             C:\Windows\System32\lsm.dll
13:49:00.0263 0x06a4  LSM - ok
13:49:00.0277 0x06a4  [ 32A1009A6933E75BB0BB85DE9AEE84FE, 8C2ECD0C3EFB9C91B71769A72D9229D8047E876E28237EC75C6C3E1490802536 ] luafv           C:\Windows\system32\drivers\luafv.sys
13:49:00.0337 0x06a4  luafv - ok
13:49:00.0352 0x06a4  [ 599D0CB2A9EB7F07BAD948D852083FCB, 5BA77A5DCDF5D9A295AE160C05E5212EE933898456ECC016B0CA4895CD82369F ] MapsBroker      C:\Windows\System32\moshost.dll
13:49:00.0400 0x06a4  MapsBroker - ok
13:49:00.0417 0x06a4  [ 7023B5835A1D6E5C69518AB6FED7DD0C, FD073393FA572EC098F640AF80997E8EFEE2837699384D95350F1C719FE71863 ] MBAMChameleon   C:\Windows\system32\drivers\MBAMChameleon.sys
13:49:00.0461 0x06a4  MBAMChameleon - ok
13:49:00.0471 0x06a4  [ D9351F554ED0784764DB0564186906AE, C7DC59A8D528A9A2FCF592D20C20B40D4315B1C09E82A4C1D0B5C6807E8E7338 ] MBAMProtection  C:\Windows\system32\drivers\mbam.sys
13:49:00.0504 0x06a4  MBAMProtection - ok
13:49:00.0629 0x06a4  [ 28D7A3DEC41EB05A80BAF58697B54E98, 8C87C56396C4922C225F9B7F92888434DA9C6CC467FA643107CE11F8D51A329B ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
13:49:00.0761 0x06a4  MBAMService - ok
13:49:00.0789 0x06a4  [ BF7D701D9EDDA9737DF8A39C1C0B8210, A4F5B4B411CFB3939CABC7F5DE2CAE97F023A51D877AD0CEC3123E0B7E708FAE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
13:49:00.0844 0x06a4  MBAMSwissArmy - ok
13:49:00.0858 0x06a4  [ D98E46A7173656E4B92C9D1C4943BFA7, 2B62183553530DE58AC29ADB0CFE210C51F1F62A910F2E4F39BE846A24FE9056 ] megasas         C:\Windows\system32\drivers\megasas.sys
13:49:00.0899 0x06a4  megasas - ok
13:49:00.0914 0x06a4  [ BC14937F97BF810850FDC0D30D916334, 289AFE9C61C9EA8749773A16CB7670ED040EF12DFA042F9FDD6E6CC2C7CA68C2 ] megasas2i       C:\Windows\system32\drivers\MegaSas2i.sys
13:49:00.0954 0x06a4  megasas2i - ok
13:49:00.0980 0x06a4  [ 31DBF4F3D492A056A40C97E089D7B8D7, A87A40FF9713EE18146F1C239DCF8E8044C7ED3667AE0A5854458285038C831E ] megasr          C:\Windows\system32\drivers\megasr.sys
13:49:01.0051 0x06a4  megasr - ok
13:49:01.0069 0x06a4  [ 6C031C152D14E2A92E0A8EC779F90E1E, C7C1CC6E4987C88A2516B794216ECA60B9624FB991721629EF3311CE8D90BDD9 ] MessagingService C:\Windows\System32\MessagingService.dll
13:49:01.0112 0x06a4  MessagingService - ok
13:49:01.0127 0x06a4  [ F0EFB8F9E7F30641FADDBAB4EFD00C19, 77109E6E967AF41F16026C325F6D3FAF071FBDDEA2D49A515D611777CA372954 ] MMCSS           C:\Windows\system32\drivers\mmcss.sys
13:49:01.0177 0x06a4  MMCSS - ok
13:49:01.0188 0x06a4  [ 5573DCE55EFAD536FAEF3A35952D5CCA, 615E5DAF92697A3494247640A04BEF4CCDD0215A4E97ED8931CBC50C67202D44 ] Modem           C:\Windows\system32\drivers\modem.sys
13:49:01.0237 0x06a4  Modem - ok
13:49:01.0246 0x06a4  [ 53D96D67E61A57577E3F682117E7053B, C4F426B1C3D39A3A60FF361BA136DFD1EFCBAD79777CC612EB0EF1096D14A8D0 ] monitor         C:\Windows\System32\drivers\monitor.sys
13:49:01.0296 0x06a4  monitor - ok
13:49:01.0313 0x06a4  [ 3437EA58173F7E5D3D704B3A6ACA642B, 877D0F9A6C696835220E8FB9C4A527E93CD3FCB19615D4A36AA2829915A0C29F ] mouclass        C:\Windows\System32\drivers\mouclass.sys
13:49:01.0356 0x06a4  mouclass - ok
13:49:01.0366 0x06a4  [ 14E01A66D7F55A5086A22E92B5D1D482, 7691E660C7C952A2B7148D9CAB83EC4F52AB7845FF769B517903C8BDDD9F4784 ] mouhid          C:\Windows\System32\drivers\mouhid.sys
13:49:01.0417 0x06a4  mouhid - ok
13:49:01.0430 0x06a4  [ D086985BBC9463ABD18B04A701CF5AA0, F189D83C3BE2977F777F01ABD79113FC00D09359C52C60457B5A1F3EEBBA8CD2 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:49:01.0472 0x06a4  mountmgr - ok
13:49:01.0487 0x06a4  [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:49:01.0515 0x06a4  MozillaMaintenance - ok
13:49:01.0526 0x06a4  [ CCDDE4B4962A7F5BE0A754B48D9E6BCA, C10EF4C3653259B3BB61ED6BDCE0A2D65AC59F1D611B80A31A297C0D0B38C93F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:49:01.0579 0x06a4  mpsdrv - ok
13:49:01.0614 0x06a4  [ D1F7B4D73964AC2156732C772EBDC10A, 2519B250D4647FB0E16A12066E7797609E8F11A1AB4F4C740E503CD686159A63 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:49:01.0689 0x06a4  MpsSvc - ok
13:49:01.0707 0x06a4  [ E24D4FDF59F925D277D481B22D05BF3A, 6FF00B015C405C81C287C609E4260C686450F68C6C677E4D2C6F8D1B7540B3BB ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:49:01.0760 0x06a4  MRxDAV - ok
13:49:01.0788 0x06a4  [ 9549298C64834EF719F81C272ED03CD3, 63269DA24C7798AB3F34D15E427EBC7A86CBD65091C9973482B3FD4B26846B6C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:49:01.0853 0x06a4  mrxsmb - ok
13:49:01.0872 0x06a4  [ F3887F36C197E14C4DDA517EFFE6A9E1, 21667D8FC73445C9741BC825BFCAE4D7FE19A76143F84BD8184D5D30CC05359B ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:49:01.0933 0x06a4  mrxsmb10 - ok
13:49:01.0949 0x06a4  [ 6F9697BFCC9EF7714CC69E99FEA52D14, CE30F63CA38CB381AE5AFD60B9B8F25627A784620E687D2B792EDF0C9D317E90 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:49:01.0999 0x06a4  mrxsmb20 - ok
13:49:02.0014 0x06a4  [ B518C756312C1C383B18CF0C924AF732, BAE81F81C683AD97C31BDAF25F701B4C212AC93B8F62B18F05C0E48951E1D9A6 ] MsBridge        C:\Windows\system32\drivers\bridge.sys
13:49:02.0069 0x06a4  MsBridge - ok
13:49:02.0088 0x06a4  [ 8C5C7992443917AD41C04C1FB6208315, 16F330EF061B8D8F3052A67C559154F60A5BE87C4AA92BD0FEB9410C60FF6A61 ] MSDTC           C:\Windows\System32\msdtc.exe
13:49:02.0135 0x06a4  MSDTC - ok
13:49:02.0153 0x06a4  [ CC0842323F6A55DFF24BA7ED03E24872, E34C6743F2C29FBD0416BB8CD3172A597DB9903F7AFE89648AB02967A46BBECA ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:49:02.0205 0x06a4  Msfs - ok
13:49:02.0215 0x06a4  [ 8510450FD3647F2F495D76E26DEAA3C7, B6F333BB1C65921841FCDC98C5CB3D658C0588774B113D38CE4FF1944968FE84 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
13:49:02.0258 0x06a4  msgpiowin32 - ok
13:49:02.0272 0x06a4  [ 0642FFFD9A66D4BF539142D2EA3B7107, 48A6B9461D8599FC07053066933F5B0B22071F691525E239B874494C80BD2E99 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:49:02.0324 0x06a4  mshidkmdf - ok
13:49:02.0333 0x06a4  [ B57054E2DEFDF633509358E1CFF702E6, 713B76B3AB861C22206F1C30CDFBCB8104B06EB5C98B499293CA56175C71A191 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
13:49:02.0383 0x06a4  mshidumdf - ok
13:49:02.0394 0x06a4  [ 4217EA4A2D4DE7642507BD9598F5C3E8, EF1336CE44A5A0055C7C2015D55EAFBEA3EEA39D19B9DD6256E509F9E91828D5 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:49:02.0435 0x06a4  msisadrv - ok
13:49:02.0453 0x06a4  [ 04F6E3444A431FDF50D1498929024E19, 395784475091267E25563FC28E787AF97B309FE3AF6A706D5B0A40723AE4FFB5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:49:02.0500 0x06a4  MSiSCSI - ok
13:49:02.0509 0x06a4  msiserver - ok
13:49:02.0520 0x06a4  [ 92D051C41C29C366B1FB7CA07045E56B, 31FA43550595654776358735D87DB67E7496D23B58CE6C7A1E415EFB3F6999CD ] MSKSSRV         C:\Windows\system32\DRIVERS\MSKSSRV.sys
13:49:02.0581 0x06a4  MSKSSRV - ok
13:49:02.0594 0x06a4  [ 4DE3058B79BFB48F79654B46970A02DE, C19CFB2EFAD2D55223B18889B5DDDDAD00778727720A2FCB5BA243E3ABDC4D67 ] MsLldp          C:\Windows\system32\drivers\mslldp.sys
13:49:02.0657 0x06a4  MsLldp - ok
13:49:02.0669 0x06a4  [ 093D83C03E1A1A9947B951234A4C0C9D, 83A824016F33A51BF3390E86AC39E7F380F3C59A107A12BAEE4C32225821D3B2 ] MSPCLOCK        C:\Windows\system32\DRIVERS\MSPCLOCK.sys
13:49:02.0725 0x06a4  MSPCLOCK - ok
13:49:02.0734 0x06a4  [ 4699BEC54D996CB5FCCCAC24A3ECCBBE, B0028067036C5C8B922E2AFC4202B4C3EB145DFEA8AAF2CFF215A46399AC356A ] MSPQM           C:\Windows\system32\DRIVERS\MSPQM.sys
13:49:02.0789 0x06a4  MSPQM - ok
13:49:02.0804 0x06a4  [ EF426772B40A5F8B8832D81D948F76EE, F57B57F2954A1617DF2432ECEFFE27E4C6D16660169465D6EA8B32CD5642525C ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:49:02.0855 0x06a4  MsRPC - ok
13:49:02.0876 0x06a4  [ E3B9AE489707AE178BF20D94A252BBF2, FEFC61D8BC1ADC0B7B3AAC12F15411B037E1E434057627FBCF3B373DE7EB90FE ] MsSecFlt        C:\Windows\system32\drivers\mssecflt.sys
13:49:02.0925 0x06a4  MsSecFlt - ok
13:49:02.0937 0x06a4  [ B657BE9141A1507B7E3B8A0B3F0EA329, 2FEB56C95D979CC9967A25623B3B2D3896846769212E7E657BCD0AA7EA85F7D0 ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
13:49:02.0976 0x06a4  mssmbios - ok
13:49:02.0984 0x06a4  [ 6FED2BF0C76FBD0178F70E7A5A30ED70, C86FAA9BA4D6B0817B5098F120BB77D00064CC1FBFDF03C6BFEDDFCBE8CA81D8 ] MSTEE           C:\Windows\system32\DRIVERS\MSTEE.sys
13:49:03.0043 0x06a4  MSTEE - ok
13:49:03.0058 0x06a4  [ DA767F51E37113713D660138254A4E3F, CCC80CFD211F69F4D84951F66D94D92C345F72F7B9F56A4BC86F2CB6D7C817D7 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
13:49:03.0110 0x06a4  MTConfig - ok
13:49:03.0122 0x06a4  [ 9CFA4FF187394C636007FB81E15D2E5E, 63295423B7942E53E0946BBE5936F0A0C48FF8B8C7A5B5DF41A383A9339C56A8 ] Mup             C:\Windows\system32\Drivers\mup.sys
13:49:03.0165 0x06a4  Mup - ok
13:49:03.0175 0x06a4  [ 97D7E6AED8F0F70613D4661FEB717AF7, 51152A9B891D0A308505FCC2AE00BBAB89290A1E6E785A311886734BA93F0869 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
13:49:03.0221 0x06a4  mvumis - ok
13:49:03.0252 0x06a4  [ 6CADBF41FC06B6370256C4CD5771B9BA, 9254A2F39E23957323D3CF09D98A4C2423112AF7234FCA76CC447E9DB2B31335 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:49:03.0331 0x06a4  NativeWifiP - ok
13:49:03.0346 0x06a4  [ 8AEE13EBE7FFC98C45B0C04C5C6F29B3, E84D2CD5DD0024212A3814D575D384FA1AA34DDDF3AD2506FA33DEE53C0AD662 ] NcaSvc          C:\Windows\System32\ncasvc.dll
13:49:03.0395 0x06a4  NcaSvc - ok
13:49:03.0417 0x06a4  [ C8A80E6C483826A7AF941C86C958B2D7, 28941336B062E0B19A355A47B4BDD376E88F85700ADAECC959ECA016627FD46F ] NcbService      C:\Windows\System32\ncbservice.dll
13:49:03.0472 0x06a4  NcbService - ok
13:49:03.0490 0x06a4  [ A919B5FBFE50A7C1D0C4661E00C2C7AE, 991124BBA769FD2B8F1480290DAA81A5436E6D36989DDE293E265B4B182733B1 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
13:49:03.0551 0x06a4  NcdAutoSetup - ok
13:49:03.0594 0x06a4  [ F7A91BC77A4DDAAAD4062747B593EA27, DF931F4A901641750C4A950111A59CDD7FF2D196B976FD561714585F2F46AFE3 ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:49:03.0690 0x06a4  NDIS - ok
13:49:03.0706 0x06a4  [ 166C2C9834BE1ED431CEF7E29D50DDEE, 2ACB97C4B50866C8B310355575A14FDFE288477AA17862692621E373880A6BCD ] NdisCap         C:\Windows\system32\drivers\ndiscap.sys
13:49:03.0755 0x06a4  NdisCap - ok
13:49:03.0768 0x06a4  [ F636C9239528DD57CCA634D8AA7EA39C, BEA1328C4B4ED9BFDECE05BB9B4EC69A2DF2CA620DF89DDB5C5A93D7C8ED38FD ] NdisImPlatform  C:\Windows\system32\drivers\NdisImPlatform.sys
13:49:03.0830 0x06a4  NdisImPlatform - ok
13:49:03.0841 0x06a4  [ 119553FA6C6820362F49C6F99957B8AE, 37B733F87AE0A9AF78BC5B97D0026094EC06D5CDB370F3D65522E1E68A4117A8 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:49:03.0898 0x06a4  NdisTapi - ok
13:49:03.0909 0x06a4  [ 0F196ACC070C0AFEAB38F1562E984814, 735747A8D526F7E1FF7BCF1CF189D9BC16A9D22728CE6F6E41C25C384F276A8D ] Ndisuio         C:\Windows\system32\drivers\ndisuio.sys
13:49:03.0958 0x06a4  Ndisuio - ok
13:49:03.0968 0x06a4  [ 8C4619BFE8F2B59AB9CD61B7C7F1EBF6, 3AE5FD177DCA4EE2BB100CB916DF07B0FC25E76C198EFADD6C831A9644716153 ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
13:49:04.0019 0x06a4  NdisVirtualBus - ok
13:49:04.0034 0x06a4  [ 4D0B4130FA4489E565238693BF08C7EF, D450E272F7F23475506252A77A8750D1184538BABD62FFC6408B0C0ED45C071D ] NdisWan         C:\Windows\System32\drivers\ndiswan.sys
13:49:04.0102 0x06a4  NdisWan - ok
13:49:04.0122 0x06a4  [ 4D0B4130FA4489E565238693BF08C7EF, D450E272F7F23475506252A77A8750D1184538BABD62FFC6408B0C0ED45C071D ] ndiswanlegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
13:49:04.0188 0x06a4  ndiswanlegacy - ok
13:49:04.0201 0x06a4  [ C5EDAC2BF6B08F2C0613A0997728AFA0, A3FD738EDE1859C53CF567FB87FA33E8D80BFCC1CB1E33F2F2603D225C6F3106 ] ndproxy         C:\Windows\system32\DRIVERS\NDProxy.sys
13:49:04.0257 0x06a4  ndproxy - ok
13:49:04.0273 0x06a4  [ 8A74EC3B7EFD422572909D54EE510DCF, 00E66FC076E4BCDCF5E5C8E3328ACA2986815A818C64A3450263AA4B78EEC02F ] Ndu             C:\Windows\system32\drivers\Ndu.sys
13:49:04.0337 0x06a4  Ndu - ok
13:49:04.0355 0x06a4  [ 63D8BC59B39D3C5CF79638BBEF173190, 8F2831A2267D8C4B95D521914F72476B3F69BC928E1BEF2427C7B873E192D13C ] NetAdapterCx    C:\Windows\system32\drivers\NetAdapterCx.sys
13:49:04.0412 0x06a4  NetAdapterCx - ok
13:49:04.0422 0x06a4  [ 538984DAB17A517155E1914621C0DEFD, 710C3EEA56B4A1B613EA72B2188A445F9BB1269729076D64DEEFA78643906304 ] NetBIOS         C:\Windows\system32\drivers\netbios.sys
13:49:04.0463 0x06a4  NetBIOS - ok
13:49:04.0489 0x06a4  [ 19B3776EE853B95924BAEDEF14702135, 7E39B01AB275641A5F4938CB3AE8BDF5140E829CFE28849CDBBF6083C4D62A0F ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:49:04.0551 0x06a4  NetBT - ok
13:49:04.0562 0x06a4  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] Netlogon        C:\Windows\system32\lsass.exe
13:49:04.0598 0x06a4  Netlogon - ok
13:49:04.0613 0x06a4  [ EE495A358221B1378EF3F061BFA0E957, 3252DA2B7B959400EF66B39F340021567BF0D05245695F8DDE3C270666417DAB ] Netman          C:\Windows\System32\netman.dll
13:49:04.0664 0x06a4  Netman - ok
13:49:04.0688 0x06a4  [ F14FE8786CE58E62F3B9D75D41934EF5, 6031B883066F6311F6B36588AE7C9A7003DD23E82022444494CFD4D8C5C03AEB ] netprofm        C:\Windows\System32\netprofmsvc.dll
13:49:04.0750 0x06a4  netprofm - ok
13:49:04.0767 0x06a4  [ B35F1AA2507385B77764BDC569622430, 1ACB22773E56FAC77F398E3FCD7F2552599E5B5BCD4D6AB69AD606556CA42069 ] NetSetupSvc     C:\Windows\System32\NetSetupSvc.dll
13:49:04.0817 0x06a4  NetSetupSvc - ok
13:49:04.0837 0x06a4  [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:49:04.0868 0x06a4  NetTcpPortSharing - ok
13:49:05.0112 0x06a4  [ 2D8BE96190FBE41B27FEC87C63F4CDD4, D3A1D37331027CE286B093B9535A2D353EFF4F068055186C2C3FB3048C12A786 ] netwlv32        C:\Windows\System32\drivers\netwlv32.sys
13:49:05.0562 0x06a4  netwlv32 - ok
13:49:05.0606 0x06a4  [ BA532E5655D46193C068EFB59668948A, F9C42557C1A867A9A78930D3B587A7D8307E6202D89365EF3663A8E8C95AD746 ] NgcCtnrSvc      C:\Windows\System32\NgcCtnrSvc.dll
13:49:05.0661 0x06a4  NgcCtnrSvc - ok
13:49:05.0698 0x06a4  [ 5F46471A72497B6FCF9F8044F3A8F383, 2FE35A8A60F01BA5C8D1B9BF2AACA3D8F5BBBE857AF432CCB93095E38814E8F0 ] NgcSvc          C:\Windows\system32\ngcsvc.dll
13:49:05.0778 0x06a4  NgcSvc - ok
13:49:05.0799 0x06a4  [ F8E8E13C15D503A445AD07C6F9660A0B, DFC5E44A0F796C886A8792D736BFAC2A8BADF8F67AD23AD569B8B3A0E268F13F ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:49:05.0855 0x06a4  NlaSvc - ok
13:49:05.0868 0x06a4  [ C404AC553CABF90F1EB327AC1CA91614, E36F0420E904D6F8F8FEABCCF555E0B43ED4ECA1006A86C625F986B719C5016C ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:49:05.0922 0x06a4  Npfs - ok
13:49:05.0935 0x06a4  [ D538DBD5654E98804B1AC997B0562A2D, 2D39E0BB9FFDE0FFE1F4D5947739FA459C5E1282DB99A24F82216CF86C44CE76 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
13:49:05.0986 0x06a4  npsvctrig - ok
13:49:05.0999 0x06a4  [ 80101B43A747AA905A42BDA6CD62B380, 67B3A8ACF1C86F3BFF7BB037D8DE262AB3FFDD32A5CB31D1E66470814DFDE99A ] nsi             C:\Windows\system32\nsisvc.dll
13:49:06.0042 0x06a4  nsi - ok
13:49:06.0051 0x06a4  [ 73CD0852308102CA33AB6C362F786AF7, 98D69243174B0E6F11AF488849A74BDBA52A36C9959E2C7BD468A7F9C44E08BA ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:49:06.0099 0x06a4  nsiproxy - ok
13:49:06.0187 0x06a4  [ 08EFFF2FFD9E85CEDBC103B1C514EDBD, 3E61E66CFD378CF6D3062DD27F20992B65BBE64FD93E3D4441DC8E67063D420D ] NTFS            C:\Windows\system32\drivers\NTFS.sys
13:49:06.0334 0x06a4  NTFS - ok
13:49:06.0351 0x06a4  [ 63F0747EBCEA98247EB874051A0C9488, C67F74E1504C18E64E719C5C6828E3716C0120FB8B4844D6B83A1585E7EA5D73 ] Null            C:\Windows\system32\drivers\Null.sys
13:49:06.0401 0x06a4  Null - ok
13:49:06.0418 0x06a4  [ BED83E7AB1E5294B694FE2BB29F1789D, D4BD7D8B71E3EFA38E39CFB6CC58460F3E743BC2550AC6BBC79EDB0865D72413 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:49:06.0464 0x06a4  nvraid - ok
13:49:06.0480 0x06a4  [ 818D8E3EE673E953604B470D2174F34E, 22E29445DCC39ECBC1D792B5BCFCC2EA0CFA405CDE29B93793B13A8658B96FCA ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:49:06.0532 0x06a4  nvstor - ok
13:49:06.0561 0x06a4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:49:06.0596 0x06a4  odserv - ok
13:49:06.0618 0x06a4  [ ABE4E24B7B1E84F9591377EE94646DFD, 63838AD4569B7C74908DFF4CF083C7D0360C58692AEDBF02D1EC88BC2CC2A134 ] OneSyncSvc      C:\Windows\System32\APHostService.dll
13:49:06.0673 0x06a4  OneSyncSvc - ok
13:49:06.0693 0x06a4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:49:06.0718 0x06a4  ose - ok
13:49:06.0746 0x06a4  [ 3E6C5C05831A79A0891D14697D96805C, 34848FB4D6ED1BDCDF8C9DD2730E633EA24B85720BDE0A9F7984F25AA66579E1 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:49:06.0801 0x06a4  p2pimsvc - ok
13:49:06.0830 0x06a4  [ 4F27C92AEE3749BA64411E280CC9C0B2, D2A4272ED9E8ECACD2E9233453E44119029F160E7FAC94FAA0E986327D50F174 ] p2psvc          C:\Windows\system32\p2psvc.dll
13:49:06.0888 0x06a4  p2psvc - ok
13:49:06.0902 0x06a4  [ 102319D1AB9C8AE57ABF4542C15E46E5, BA259E25ED2750F003A895FF8CA87C06DF2A6E5BAFD5E7B6E31BF39A7315B87C ] Parport         C:\Windows\System32\drivers\parport.sys
13:49:06.0953 0x06a4  Parport - ok
13:49:06.0966 0x06a4  [ 42269F1CBE52927874351B1731733B22, 83EA42FF99AB16597232D9D155BEED6421EF31730CBA1B3BD5F577EAABC12E7A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:49:07.0011 0x06a4  partmgr - ok
13:49:07.0026 0x06a4  [ 80DAAC28A277CCC83EA1385AED473355, 6EA1581DB1CE4615FF2ACAC771B8C6305C84B5A8BF2DC0CF2FF3202672FF897B ] Parvdm          C:\Windows\System32\drivers\parvdm.sys
13:49:07.0074 0x06a4  Parvdm - ok
13:49:07.0101 0x06a4  [ C83B47DEC66042DD97DDC3D41E538339, 8C9467074EA6A0FAF62BB5A99A657519B255C59A2B5BC6FF2D97C4B4D6FF18F2 ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:49:07.0149 0x06a4  PcaSvc - ok
13:49:07.0171 0x06a4  [ C9C52D44D7B6AA975A61B4A8B5476BC0, CCCF40E0F4939CBEB0B8DB3FEDA1BDFEF8B3973D5524775C38D8055B810B5380 ] pci             C:\Windows\system32\drivers\pci.sys
13:49:07.0230 0x06a4  pci - ok
13:49:07.0241 0x06a4  [ 08E17B65E01DAAB8B2CC3F0614890724, 1338620701E772BE8712E99170403CFAE5B600BCF845BA4AA981F6DA2BCF33E8 ] pciide          C:\Windows\system32\drivers\pciide.sys
13:49:07.0279 0x06a4  pciide - ok
13:49:07.0290 0x06a4  [ 1FD051E1D86C1DB5291BD69D65077DA4, 5E7BCBA03331EE266963E3D5BC064DDF9FBAFD1CDE8211703DD97A5725A2E087 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
13:49:07.0335 0x06a4  pcmcia - ok
13:49:07.0346 0x06a4  [ D22AA1E0C19412A39E4B743BA5B43A78, F04ECD06C3123D07749AA4A04749EE920A8E15F5CF9C1FD17DC549D5CC146170 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:49:07.0388 0x06a4  pcw - ok
13:49:07.0400 0x06a4  [ 0D1809586AB5D1155364357EF69A45AE, A3BC593607926CC03EC0904AB406041173F3CD60D72443C929157EF59579F52A ] pdc             C:\Windows\system32\drivers\pdc.sys
13:49:07.0444 0x06a4  pdc - ok
13:49:07.0485 0x06a4  [ D02A4B0D37D81280B7C448B73435FDDD, 3130B35ED73DD534B1763E16673F6AAF4F9F59FE075C5360F4886481BB8E71E2 ] PEAuth          C:\Windows\system32\drivers\peauth.sys
13:49:07.0588 0x06a4  PEAuth - ok
13:49:07.0653 0x06a4  [ 0A0D6BF8E93ADA8F8B8BE0ADB9CD20C6, F06AEE4A9787461254488A9E9AA3B08FFF99FE3299BB33D5A4D5D356E051771C ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
13:49:07.0781 0x06a4  PeerDistSvc - ok
13:49:07.0796 0x06a4  [ C2DBE18F68AA0C9508587FFACB794D8F, 39B75BF33DC2BF339EB3288AE1DD68B7220E0B0A29370706D7ADDB1B7A2EBAD2 ] percsas2i       C:\Windows\system32\drivers\percsas2i.sys
13:49:07.0835 0x06a4  percsas2i - ok
13:49:07.0846 0x06a4  [ 21E6E1D427806D971D553CC0DAF9BCA5, 59AA1690B99805DDD806FC818FD16EB8FDCE986E70882A5F3D2D075321DADF6C ] percsas3i       C:\Windows\system32\drivers\percsas3i.sys
13:49:07.0888 0x06a4  percsas3i - ok
13:49:07.0949 0x06a4  [ 985FDF6931077D696A162BB38E1ED25F, 866EE5F34A3F498BF939AD1F3ECEC2C7C3623BFEEF40EFA96B29B6DB490C7AEE ] PhoneSvc        C:\Windows\System32\PhoneService.dll
13:49:08.0026 0x06a4  PhoneSvc - ok
13:49:08.0043 0x06a4  [ EE804160B61FACC25D11C3CCB273B10C, 898B9DA62FDC038E828758DE958F93F839F1CD4406BDB89DBB5C85A565B1B03E ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
13:49:08.0093 0x06a4  PimIndexMaintenanceSvc - ok
13:49:08.0162 0x06a4  [ 0FAA756716218E68D46F9E2FEE624242, B564D84CBB5BC83379DE99DD0A85082238562B539E9B0E775E424EA8CB5BF512 ] pla             C:\Windows\system32\pla.dll
13:49:08.0285 0x06a4  pla - ok
13:49:08.0301 0x06a4  [ 0DF131F7F00E34B6C9DA053E55A80AA4, B3CA50986884B00B67EF1BB3910CA60FFEB4EA3AB9D08CBD6E82E792B650128B ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:49:08.0359 0x06a4  PlugPlay - ok
13:49:08.0369 0x06a4  [ 98C7DF7455A5F844EEFE0C0310CFC2DB, 67543EB480F7D1AB24E93CC5ACE40DD6ABC3BE63047F4DA64D5D682B2832AB99 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:49:08.0413 0x06a4  PNRPAutoReg - ok
13:49:08.0431 0x06a4  [ 3E6C5C05831A79A0891D14697D96805C, 34848FB4D6ED1BDCDF8C9DD2730E633EA24B85720BDE0A9F7984F25AA66579E1 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:49:08.0488 0x06a4  PNRPsvc - ok
13:49:08.0510 0x06a4  [ 7AF808286EDF23A486F1D8203EAA04DE, 41B95BD98176A2485E929E79829C5ABB6BAC55C90C55F677B1E5B6429970581C ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:49:08.0564 0x06a4  PolicyAgent - ok
13:49:08.0583 0x06a4  [ EFD8B7C6843CB9D4EE3485AAD1EFBF51, 9E8819BD2EAC1A210B0C1A20A7A2A38674BA9EC716C18C860DC930CB6D61FE7B ] Power           C:\Windows\system32\umpo.dll
13:49:08.0632 0x06a4  Power - ok
13:49:08.0644 0x06a4  [ D688353B3F783BFA1A4BC0FAD178271F, 2E7AB5076A8AB13F6430CACEB1DA1D21E0BC75DBF36049D51E8636C5DE8139F6 ] PptpMiniport    C:\Windows\System32\drivers\raspptp.sys
13:49:08.0707 0x06a4  PptpMiniport - ok
13:49:08.0816 0x06a4  [ D0818657648366B03C7CB4AA2DCED253, 2AC0FB8B679F51C6EBF5346F75AC543797EA1617D1F69A2830F305823AB7B35D ] PrintNotify     C:\Windows\system32\spool\drivers\W32X86\3\PrintConfig.dll
13:49:08.0994 0x06a4  PrintNotify - ok
13:49:09.0016 0x06a4  [ 2ED95B75DB64C871A8C613144A0C3162, 9966B2E22BFAA94CFED092A0C929FF329C27156D2F746D225919406E15EF9CCE ] Processor       C:\Windows\System32\drivers\processr.sys
13:49:09.0072 0x06a4  Processor - ok
13:49:09.0092 0x06a4  [ CEF5388090C7BF568DC2F9F1EF3E0327, 8430198B92BCBB17620221039C202CE1C36EA4E597D17E401BD704AED8DAD5A5 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:49:09.0148 0x06a4  ProfSvc - ok
13:49:09.0162 0x06a4  [ B825DF8604FD4491E85B2BAC084680FC, 9336CD2658B169A0797C79B9CD8FD96FA1DBB44CEEA3F4E79547BADF5E2DBDED ] Psched          C:\Windows\system32\drivers\pacer.sys
13:49:09.0210 0x06a4  Psched - ok
13:49:09.0228 0x06a4  [ C0C426DB80A332672B9648C595BD5D1D, FE00DADA570CF5DC827FA8A13DAFDC17B05EA06F203F2F535866072692D47D60 ] QWAVE           C:\Windows\system32\qwave.dll
13:49:09.0281 0x06a4  QWAVE - ok
13:49:09.0293 0x06a4  [ E418B13CA54FD910B731E6740C2D9890, C9DE1E03391987BB05EE99D846E9E06BBAD8E2D65AC611EECD73353AD63D0760 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:49:09.0342 0x06a4  QWAVEdrv - ok
13:49:09.0351 0x06a4  [ 63C90667A3D22FE239164EDC12B5C763, C216E004CD815DB346FF0199AE733787D6B156EA9EB68A03AC68D5C8933B7C55 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:49:09.0400 0x06a4  RasAcd - ok
13:49:09.0429 0x06a4  [ DD661FB42A6BE5AD95F1B37AF215F01E, 7B6A6FC72EE38BF318FB0787F117BBBEC189A25DFCC39C969C905F9924B0290B ] RasAgileVpn     C:\Windows\System32\drivers\AgileVpn.sys
13:49:09.0484 0x06a4  RasAgileVpn - ok
13:49:09.0496 0x06a4  [ FBFB61A337B298D1A9CA811F6E9EF038, D4D631CADA79F65D97108377772EC54BB7A4DE24B501656EF34647B485B7568B ] RasAuto         C:\Windows\System32\rasauto.dll
13:49:09.0541 0x06a4  RasAuto - ok
13:49:09.0554 0x06a4  [ 26F09741A8FF5EE03C66B33EB5C2A7D2, 82586D05A798BC7FBCCF144F0C0ACE7E430025E9B1BE8C5EC04A30C720DB15DB ] Rasl2tp         C:\Windows\System32\drivers\rasl2tp.sys
13:49:09.0614 0x06a4  Rasl2tp - ok
13:49:09.0643 0x06a4  [ F7C88EF77BDFD6B287930C87ECDCC161, 7BD1F41BBB4CBF9EE144933A15821CA70B316896C2B8330C5D00ED9CF835253B ] RasMan          C:\Windows\System32\rasmans.dll
13:49:09.0716 0x06a4  RasMan - ok
13:49:09.0730 0x06a4  [ CF3C50512A5F98DF406BAC8BFB3CF3EB, 463455E808AEAC658511B6A9A80B79B2C9921CAFEA16C7AF2ABED1FCE2B33269 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:49:09.0783 0x06a4  RasPppoe - ok
13:49:09.0795 0x06a4  [ 57E6CD6C4CB8418955402682EB13CD8C, 6252E6FB4B5A6DCDF6B81975D5E8F5598C642A83A4C95286A48A9E76EF674965 ] RasSstp         C:\Windows\System32\drivers\rassstp.sys
13:49:09.0853 0x06a4  RasSstp - ok
13:49:09.0876 0x06a4  [ 6764CDF0BF3B63387255A29999471BA8, 9226E93958146BCAB3177D141752F579C2FC3AEB5E1DF9887A038A487EC0496B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:49:09.0933 0x06a4  rdbss - ok
13:49:09.0953 0x06a4  [ 3FF15051B75EA5D575690E6EAE00A484, D07ABD771418B287D760F5DFA8570100245AF2AEE79D47CC483BDA50D57F862F ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys

pingodoce · 06.01.2017, 14:13

Code:

ATTFilter

13:49:10.0007 0x06a4  rdpbus - ok
13:49:10.0020 0x06a4  [ F064A9E33658E8A73280AE8AA5723C59, 7CA4992F2AC4470F9E08F2FA0A8F62211149AECDD6838885B97BD9DBF4702986 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
13:49:10.0077 0x06a4  RDPDR - ok
13:49:10.0097 0x06a4  [ AFB4D0A3BBD65FF57199C5FFBDC480B2, 152159102226F11EAA8BCDF1E19D76FE5B964F26ED2D35E7E210E61BFDD6BB22 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:49:10.0138 0x06a4  RdpVideoMiniport - ok
13:49:10.0154 0x06a4  [ 50BF0AB46CB3551294CBCF5798539785, 003C2552C5AAC0EC925E487572C484E2BCDC0EB951FD2A0B5D45230737CFB288 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:49:10.0210 0x06a4  rdyboost - ok
13:49:10.0246 0x06a4  [ 35BA17FF927B79EDDEE436ADEB98EF21, 7409F4FAA7641D6C7971027BDA848A50E273561C0F99ACC3DCD37DC51A779A82 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:49:10.0308 0x06a4  RemoteAccess - ok
13:49:10.0323 0x06a4  [ 0FBF0AA8506AF66C0EF191CB2D3F5BDA, 585C245D4263227972B7654EC5DB131E69D6D5967C005F3C07A73079B1F80D58 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:49:10.0380 0x06a4  RemoteRegistry - ok
13:49:10.0405 0x06a4  [ 120A37CB8639F0F89DD142826FB6E89D, 75688B8E706C71FB89EB743FC69904E1EAE2C1DB3A6AAA7ED64D12DE5DA66506 ] RetailDemo      C:\Windows\system32\RDXService.dll
13:49:10.0475 0x06a4  RetailDemo - ok
13:49:10.0489 0x06a4  [ AD8F8A14C13E35CF8C3150C61BF47492, 2AB8A19C58BC0D09A7CD88726C5512DAC6B7C62175928298841BE2164348FE33 ] RmSvc           C:\Windows\System32\RMapi.dll
13:49:10.0536 0x06a4  RmSvc - ok
13:49:10.0548 0x06a4  [ AF4D1F6CB8DF6C2146586951BAF49D04, A3DC9FC28CD54D5D920950268B3FD96F06F1FD5A4D121EE3D475B9BE3EA56996 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:49:10.0593 0x06a4  RpcEptMapper - ok
13:49:10.0604 0x06a4  [ B9B285FA98F1F2575FA6E4BDC2A80A06, 7193FB715B60AC83FA528316E5291477ABBC404996FE71133044A03D5ED14A88 ] RpcLocator      C:\Windows\system32\locator.exe
13:49:10.0668 0x06a4  RpcLocator - ok
13:49:10.0706 0x06a4  [ 16C4E1708C9574B5CC9A32324FCE51DE, A7D99F2A6B254B5E9532CE957BDDE339D6D2281290A4ABE6B8E497E9D4872D05 ] RpcSs           C:\Windows\system32\rpcss.dll
13:49:10.0801 0x06a4  RpcSs - ok
13:49:10.0816 0x06a4  [ F3D1D3148CE384C8143F05452A2FAC91, 15BB4412078B1BB428EF5864CDED360713709A540D1E1A5A2EE19F0D9307127F ] rspndr          C:\Windows\system32\drivers\rspndr.sys
13:49:10.0869 0x06a4  rspndr - ok
13:49:10.0878 0x06a4  [ 4C98A80A7C43B709376598F75D0AB704, 98E71FA3C71FEC6DBD253091DB4817500648A0E593D70E90576B855CB5E6365F ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
13:49:10.0927 0x06a4  s3cap - ok
13:49:10.0938 0x06a4  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] SamSs           C:\Windows\system32\lsass.exe
13:49:10.0971 0x06a4  SamSs - ok
13:49:10.0987 0x06a4  [ F97AE73A2A532FED0A018E437DB1B410, 2F4402357A83666245A9C66BA792C90D75A9CF272E366E3444933791628BE2FC ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:49:11.0030 0x06a4  sbp2port - ok
13:49:11.0046 0x06a4  [ 9C634680E53ECE17B61472EA2D680208, FE0F599AB1E42E38E105009141A7F0DF08E0B8B2ACBA50AE15841E3DD6ED32AB ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:49:11.0104 0x06a4  SCardSvr - ok
13:49:11.0118 0x06a4  [ 2B5CAE7ABF1B2916EDC22A9BAC5B031E, 91C27DE8DF833C102D042087786DA231596E14A62E5682F9C06DA9F0950C4AF5 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
13:49:11.0170 0x06a4  ScDeviceEnum - ok
13:49:11.0182 0x06a4  [ C49723BB449D63A1C0BAB91CE5482DBC, 2C96C10E6C9287DA6393F9F684DF701402337CDE06ABFC9E1FC5283A5AAF4777 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:49:11.0238 0x06a4  scfilter - ok
13:49:11.0271 0x06a4  [ 959E10CACAC2208310C6EF595248DCC0, 82B423F83B90282B4023AB39FC1D1C0BABECDAE49E5459475C0D8046A4525ADE ] Schedule        C:\Windows\system32\schedsvc.dll
13:49:11.0357 0x06a4  Schedule - ok
13:49:11.0374 0x06a4  [ 1D6A243ECD54F7CC294B28946F6B5B33, 7A7F19ABD4B6D73121466B4D8649BBF375034B293FBDFE02A8982D09AA9E6393 ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:49:11.0421 0x06a4  SCPolicySvc - ok
13:49:11.0435 0x06a4  [ 9790B97C403208C61198BB0C2A4DAABC, E2A3AC7FFF064B3849135E3771E7246845B84664147014A06265835D451DB07D ] SCR3XX2K        C:\Windows\system32\DRIVERS\SCR3XX2K.sys
13:49:11.0481 0x06a4  SCR3XX2K - ok
13:49:11.0498 0x06a4  [ 94AA0D516E1186B671FDB1F9A050309C, 01F2881DF3EC5C22469020E37875E1B37B96BCFCDDA9111DD756C52109F19A8D ] sdbus           C:\Windows\System32\drivers\sdbus.sys
13:49:11.0551 0x06a4  sdbus - ok
13:49:11.0567 0x06a4  [ 4607024D1E475A9E7E2E59FC7429C614, B014D41F88BE47FBBD2AF8EDA477E3630154F944F185C914B8934F1181CDF5C7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:49:11.0615 0x06a4  SDRSVC - ok
13:49:11.0626 0x06a4  [ 26C918084DA80A1E019FA54B57582289, 089D9D752492068FBCBD9DD27B4CEB9DDA082563BFE6B29ACC0484D7D9E12A57 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
13:49:11.0668 0x06a4  sdstor - ok
13:49:11.0684 0x06a4  [ EE331C415B3B184642A9FAA38954A93A, 211C25FFA407F1FF664C3CBE7C34F37A5FFE5E485ACD18985AE5512B7076C169 ] seclogon        C:\Windows\system32\seclogon.dll
13:49:11.0729 0x06a4  seclogon - ok
13:49:11.0741 0x06a4  [ EB32C35D4EB4D058C397A3EE92DB082C, 5BA376B64F202E1E82AE7386CCD1B81EE123780F6A75F17535EB9791C2DA82BB ] SENS            C:\Windows\System32\sens.dll
13:49:11.0788 0x06a4  SENS - ok
13:49:11.0859 0x06a4  [ FA3D960943CAD952FB2280E8BA183736, 32C2C086902139E4AF9793B75DDD061EC4BFFEFC04C75F08B806F1C79F1F3D00 ] Sense           C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe
13:49:11.0954 0x06a4  Sense - ok
13:49:12.0006 0x06a4  [ 19A4E4C9A4EF2904BCE49616DD50C03D, C14EE41A37DE3AEA3543D62D6F6234BB911D8958FEAB27C3E3BF38DDA2B20738 ] SensorDataService C:\Windows\System32\SensorDataService.exe
13:49:12.0094 0x06a4  SensorDataService - ok
13:49:12.0117 0x06a4  [ 238FEBCC332BED9E71ECDF2CD2A4FE70, 3A2220D2E08ADD98E201C0A6211B04D772C7747A1D4653EB1787DCF80B046142 ] SensorService   C:\Windows\system32\SensorService.dll
13:49:12.0174 0x06a4  SensorService - ok
13:49:12.0190 0x06a4  [ 24E024F7010DF54D232E5FEFD0E35076, 21A3BDA1C6F633611D508FFE2E3DB2190CCEAAC50FD3B70D4A08652BBC642AE5 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:49:12.0244 0x06a4  SensrSvc - ok
13:49:12.0260 0x06a4  [ 3AF853CC0C6690BEFD6645FBDB45CF39, 569706FA305BF3DFE70D341B46615802DE0EB117AF5CD278EEF5C94790BDE3A7 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
13:49:12.0303 0x06a4  SerCx - ok
13:49:12.0316 0x06a4  [ 4B7E7F5E4C4F585BB23BE0FE031DA2B4, DD5619C08A5792DA92F230052536E00B03249A12042DEC90700BD641CD82EB74 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
13:49:12.0362 0x06a4  SerCx2 - ok
13:49:12.0373 0x06a4  [ 87A300D27D76E281A0077020AA46B105, 906F0118D16F5A2997FBB5C95DBAA0382DF02F04DB033917E81CB9381C3E67CA ] Serenum         C:\Windows\System32\drivers\serenum.sys
13:49:12.0421 0x06a4  Serenum - ok
13:49:12.0433 0x06a4  [ F3635BECE1FA3BACAD12C93CDEE45A8B, 6F07C06FE5DC550BAD71175A354FC1E21D6A729DCF6BD3970A1D0D89597C64B2 ] Serial          C:\Windows\System32\drivers\serial.sys
13:49:12.0492 0x06a4  Serial - ok
13:49:12.0503 0x06a4  [ 3DD6073C72024027EDDDD41B7D1CDCAD, 3A5FD257774E78217195BC257DC29DEC25C20CE690928729554380722A9D52F9 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
13:49:12.0552 0x06a4  sermouse - ok
13:49:12.0590 0x06a4  [ EB4F3BDE38ABF0AEECDFEA76E2CB1EFF, 94A3DC0F7A9D33B1BFA5F61FB21883A97BAE4A013B1CCAD7DC7A1C450708BEEE ] SessionEnv      C:\Windows\system32\sessenv.dll
13:49:12.0649 0x06a4  SessionEnv - ok
13:49:12.0659 0x06a4  [ 1B4A5247D0F167F8361C16A59478D5C8, A662312F63C0DA78D67907DE56954BB3D2AC7E1B84619BF32F625C7A564AF677 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
13:49:12.0708 0x06a4  sfloppy - ok
13:49:12.0738 0x06a4  [ 01B428DA0C4EB6F97633B3E457B389B3, F5F8F237283A263AE3C08B81E000D5FA5A7D2274CAD3EAC736E07F3E76499E4D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:49:12.0802 0x06a4  SharedAccess - ok
13:49:12.0835 0x06a4  [ 25FD6DC3D4EC699E4EF5CFB91BFC6ECF, C396BD9E892146768AA6F63DFD28ECA57E3E5A16A5681595CCD08D7FB2F093D3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:49:12.0914 0x06a4  ShellHWDetection - ok
13:49:12.0930 0x06a4  [ 48E8F5FAA0D397A555D39544B9471BAE, 3895678514051D11985107C70A6E57865C90BC5922AD36EDC28C37FDC7BCEFE2 ] shpamsvc        C:\Windows\system32\Windows.SharedPC.AccountManager.dll
13:49:12.0984 0x06a4  shpamsvc - ok
13:49:12.0998 0x06a4  [ E1A38396A6434446F265ECE72A375C5C, 2584661E9C784A07C14BCF0E1D79940C750E45480843DB949CE23467FA7480E6 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
13:49:13.0038 0x06a4  SiSRaid2 - ok
13:49:13.0050 0x06a4  [ 407A47319F097271CA1FF7ADFD13CD82, 7AFC9126AC85EBF6B17022AA95C62E09D9E033EFEB4AC1ACD63F72CA13443FF8 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
13:49:13.0092 0x06a4  SiSRaid4 - ok
13:49:13.0103 0x06a4  [ 71C635D7796D394138BFFBB8C2559CFB, 0A2D7B7720781C8A3A318C1E58B9F8D27BCA3E918E88C230F9F9EF5210B2344E ] smphost         C:\Windows\System32\smphost.dll
13:49:13.0147 0x06a4  smphost - ok
13:49:13.0170 0x06a4  [ 8512CFE5DDC918C31BADD397B8DCB703, 4810CA8155BECF1815963EC9C35BFF3029CB7CB1C28751123BEDF60F20A6AD1E ] SmsRouter       C:\Windows\system32\SmsRouterSvc.dll
13:49:13.0237 0x06a4  SmsRouter - ok
13:49:13.0261 0x06a4  [ 7D21A60C6BF71645B080B42C14FDF1B2, 0BF8EC8A347F1A12E91DE14489CFC2317612AD22CF234046A71E2C0E0AA83C1A ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:49:13.0306 0x06a4  SNMPTRAP - ok
13:49:13.0330 0x06a4  [ 8152DD698E377476C787B91F297A32BB, 1A7152C108BF465E2678F196B35D50BDF06C51C4040F2359642BEFA4749E672B ] spaceport       C:\Windows\system32\drivers\spaceport.sys
13:49:13.0395 0x06a4  spaceport - ok
13:49:13.0409 0x06a4  [ 0F36602CAE7758CD4086EEF6FF83D47D, 225BBCC3BF6B578EB395F2D28A21518CFB7FB4F687A43B8B1AECF5BCFB94E44A ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
13:49:13.0453 0x06a4  SpbCx - ok
13:49:13.0464 0x06a4  [ 3FA2E254BFBCE52B3C6F1BF23AAB6911, 1E94D4E6D903E98F60C240DC841DCACE5F9E8BBB0802E6648A49AB80C23318CB ] speedfan        C:\Windows\system32\speedfan.sys
13:49:13.0494 0x06a4  speedfan - ok
13:49:13.0521 0x06a4  [ 809A5855DD62DBA26E48C986B12B1860, 637D82140848CE6C7CB8AF216A8DEABB4D4B81F45229AE54FEB0D2179007B337 ] Spooler         C:\Windows\System32\spoolsv.exe
13:49:13.0590 0x06a4  Spooler - ok
13:49:13.0771 0x06a4  [ D3A29AF4ED4675630BE468D8AC1D1FC3, 1ACBF70E31D35FDA1B135EB091743A88464949C9B2AD6205C8251EA08CD31B53 ] sppsvc          C:\Windows\system32\sppsvc.exe
13:49:13.0993 0x06a4  sppsvc - ok
13:49:14.0033 0x06a4  [ 3091FC9281816A0AA9F4C0FBEA4449CB, EC0E87A4C52319C3FB643ADD525C5B478EFB35FC3069E68606D2F540987365F8 ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:49:14.0102 0x06a4  srv - ok
13:49:14.0134 0x06a4  [ 9D7897177101D7D3CC76FDF0772E3000, 137A7D5EBABB345A194EB5346183CA2277DA103DA730EDDCB1EA8341D67EC401 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:49:14.0231 0x06a4  srv2 - ok
13:49:14.0254 0x06a4  [ 43182E4DEC2794B7CB5B944F2F04C2AC, 1ADE7DBC17D2FDE5A7059F8104CE240CD60F8940280384CE2571318A072D2F0F ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:49:14.0312 0x06a4  srvnet - ok
13:49:14.0329 0x06a4  [ 1D2163A2238D7003A775ECB3C89BB996, 0EC3AEFAA19C27E4BDD966DDFDD96DBD0B2D232CF443B857618D7CA0A46FAF9B ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:49:14.0380 0x06a4  SSDPSRV - ok
13:49:14.0396 0x06a4  [ 234194CD4BA69FAC3C0F87550316E55D, 45881DF6E8B5ED032BFC89931DA526BAA828AB5C5DBCC05484C251FD8A95F1E1 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:49:14.0449 0x06a4  SstpSvc - ok
13:49:14.0575 0x06a4  [ FE68CCE3D2985526FB00C692E92E0FE2, 7C514F45398296A96C14B2C3EA77DA36970635BE7568D0FA24DB0D870B36379D ] StateRepository C:\Windows\system32\windows.staterepository.dll
13:49:14.0792 0x06a4  StateRepository - ok
13:49:14.0812 0x06a4  [ EB59E7B245151F65A44408EC6518D0B1, 771106419A24A684F8AD006597DFAA8D350C16C677E1F574467C8F9D666AA4E5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
13:49:14.0853 0x06a4  stexstor - ok
13:49:14.0880 0x06a4  [ 68312F861BFA5CE2E02F23DB5F2669AA, 2DBC40B18F576004F4828275808473AA224400B342EB2D33D48CCB7231F7FACA ] StiSvc          C:\Windows\System32\wiaservc.dll
13:49:14.0950 0x06a4  StiSvc - ok
13:49:14.0965 0x06a4  [ 3471008FDDA7CC58AAF8F28B246D0953, A6DB9787159EF230A42929F69121E3E4E5FDE13BFD97CBDD450C9ED4668C30AC ] storahci        C:\Windows\system32\drivers\storahci.sys
13:49:15.0016 0x06a4  storahci - ok
13:49:15.0028 0x06a4  [ 42DCF1819631593A957C1F04E8198641, 72FB0FF762D59277DECFC0AE01CA120741098BA84971BE3669EB2E41B765A5A4 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
13:49:15.0073 0x06a4  storflt - ok
13:49:15.0084 0x06a4  [ F6BF76CC2EA03262838F2DE6975BECD4, 1560FEF2E9AF1FDFD9C8CA5DFCCCEA516CCF11B3C2066A07A0AD7A00A4762D1D ] stornvme        C:\Windows\system32\drivers\stornvme.sys
13:49:15.0128 0x06a4  stornvme - ok
13:49:15.0142 0x06a4  [ E7ED6F07B04B5886370691B39BA7761E, 97FF2621A4FF043ADCEB7740CDC647293300C4431277346F207061546FA3A54A ] storqosflt      C:\Windows\system32\drivers\storqosflt.sys
13:49:15.0202 0x06a4  storqosflt - ok
13:49:15.0222 0x06a4  [ A02F1DC0A416FDE7D6F98896592669F2, D3A212CF08E015F6FAD90EEAA2A7E513960FEE979117267006416F5A8B13E755 ] StorSvc         C:\Windows\system32\storsvc.dll
13:49:15.0282 0x06a4  StorSvc - ok
13:49:15.0295 0x06a4  [ F8C3E2482BA5D34BA24FAC60DEAD9A2F, 911BBEF6B02B5E0905450E0DDA731CCBCB1D3CC9B77B960555D976384700F744 ] storufs         C:\Windows\system32\drivers\storufs.sys
13:49:15.0334 0x06a4  storufs - ok
13:49:15.0345 0x06a4  [ 926CF05CE1AA19C0979C617B7E04EDC9, 75B13969070710CA7D3F32745362656612238CC6A53A0F80D4175968CEE7A389 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
13:49:15.0385 0x06a4  storvsc - ok
13:49:15.0395 0x06a4  [ D71C4D8DEBCDC19B1ABAB63E39BAEECE, 7B211911FA5E6D9F115519647E03C49404A7614225505630F74EF81B52AB3434 ] svsvc           C:\Windows\system32\svsvc.dll
13:49:15.0444 0x06a4  svsvc - ok
13:49:15.0455 0x06a4  [ 179A21FDBF70D7BBD1461CC0EE4AC553, AC5EAF8E870F49595CA1F6AA6AB487757860DBFB3A8AF5B1B4B44D283ADCA08D ] swenum          C:\Windows\System32\drivers\swenum.sys
13:49:15.0497 0x06a4  swenum - ok
13:49:15.0523 0x06a4  [ AD9F34D0BC67A4643BB217E8B6C8DAA0, 014F1927F79EF491C00C247278A856CE4125A7B26F871F74FC56FB7FC32FE3AC ] swprv           C:\Windows\System32\swprv.dll
13:49:15.0586 0x06a4  swprv - ok
13:49:15.0599 0x06a4  [ E642BE03D50EA1F13935588123513598, 83B7A29AF398285A688F5655CF1440993FDC3DC41C47A7E711CC7019135D0D8D ] Synth3dVsc      C:\Windows\System32\drivers\Synth3dVsc.sys
13:49:15.0650 0x06a4  Synth3dVsc - ok
13:49:15.0667 0x06a4  [ 3D6316279C3540AA268BF025F4621EF3, 042C268DD1A98BC91721DAB31F20AEC06EF086EF8AED2BB05CF138106ED0C7DB ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
13:49:15.0694 0x06a4  SynTP - ok
13:49:15.0730 0x06a4  [ B1031B316803002E68DFD56C9A70C355, ED34170782EDA25C72BECC37CE16F4D9E3CD580B59067F268AAEC28575E25FBB ] SysMain         C:\Windows\system32\sysmain.dll
13:49:15.0821 0x06a4  SysMain - ok
13:49:15.0844 0x06a4  [ C3E7921B1BD1057E50B893C90FED240C, F60DC85276D7CA35D7710047ECFCC4490D1F01DDBBCD3355FB9E971B7AD2AA93 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
13:49:15.0899 0x06a4  SystemEventsBroker - ok
13:49:15.0914 0x06a4  [ 731C95317C6D74A9956875BF248B6BE6, FDBB0B793AEB06A508B862B2E5EEEF5DEC1FAFBC60BEAE5B7E1F76EAAE8C9CF0 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:49:15.0964 0x06a4  TabletInputService - ok
13:49:15.0982 0x06a4  [ 0CBA864DBB0E503101C746BEFC01BBDE, 33B61454E0EF068C903FCEB4D0682A394F6150B8ADB5C6568C29EDE8327B10BB ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:49:16.0042 0x06a4  TapiSrv - ok
13:49:16.0119 0x06a4  [ 36E88DE70C5D3C7C35531A1F775FCFC2, 4B8054B6231CBEE26FF8F60D9DC0C273B2ABA52F9FA6D29E76DF5DBFBFE6C9E0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:49:16.0270 0x06a4  Tcpip - ok
13:49:16.0352 0x06a4  [ 36E88DE70C5D3C7C35531A1F775FCFC2, 4B8054B6231CBEE26FF8F60D9DC0C273B2ABA52F9FA6D29E76DF5DBFBFE6C9E0 ] Tcpip6          C:\Windows\system32\drivers\tcpip.sys
13:49:16.0501 0x06a4  Tcpip6 - ok
13:49:16.0527 0x06a4  [ 1B443D953FA0C54CAB8DD0AFF0B12DA1, 640F755C10EA563D50407FB814BA96ADED52A2943BA4019FCDFECC3D8D73D3EB ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:49:16.0575 0x06a4  tcpipreg - ok
13:49:16.0593 0x06a4  [ E8DC8115AE2C912694ACB51BD48D417D, 4931107529CD77F535E7BA574A2CDBE4543DE0E8A68FBCBB0ED072A0FD84299D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:49:16.0637 0x06a4  tdx - ok
13:49:16.0649 0x06a4  [ 2DC0F2A9C15BC327D6812A62F895B022, 8CB51EBA9D5355B26BA470BC1C2C42741126ABBBA593F353807A36A72EDE9887 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
13:49:16.0692 0x06a4  terminpt - ok
13:49:16.0732 0x06a4  [ 8938289B183BE6473D502D94586377DE, 6E1F32F59B366058CB174A0E6D809527A95EA09EE7B23A51FCB63B478F8EE9F9 ] TermService     C:\Windows\System32\termsrv.dll
13:49:16.0821 0x06a4  TermService - ok
13:49:16.0835 0x06a4  [ 5413CAA38F5E5496AFFBE6270A2F2A92, 78EE27DCDC611198CC9D4BC8582F0FF4D36AB957D9882CF3DB4B2DF40581F27B ] Themes          C:\Windows\system32\themeservice.dll
13:49:16.0890 0x06a4  Themes - ok
13:49:16.0908 0x06a4  [ 70147D6F6BA11781FEC5EEC2B2CD183C, E8869BD655FDB2B363E47E7579860CCF1EE3AA603FF967874070B40C262F1957 ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
13:49:16.0968 0x06a4  TieringEngineService - ok
13:49:16.0986 0x06a4  [ C424F991494E5674F2E9B3CF9F5F55D1, CC799C9154431763D052AB8B41EFAE71A039EDD6EAC5E6D892E22C8BEF1D2BB5 ] tifm21          C:\Windows\system32\drivers\tifm21.sys
13:49:17.0055 0x06a4  tifm21 - ok
13:49:17.0081 0x06a4  [ B623B8DFFEAF4178029966DAB1556596, 9B79725A1AD4C76D1C41B8242664450A58414B1401DDBCF62DA90DD1B83E9FB2 ] tiledatamodelsvc C:\Windows\system32\tileobjserver.dll
13:49:17.0145 0x06a4  tiledatamodelsvc - ok
13:49:17.0160 0x06a4  [ 91D9BB3E2B956A8EB8843A4F9EA4E901, B0572EB3CA14372905C586CF7F7A52650DC0503278A4DFBAE2256B74636FB55F ] TimeBrokerSvc   C:\Windows\System32\TimeBrokerServer.dll
13:49:17.0208 0x06a4  TimeBrokerSvc - ok
13:49:17.0224 0x06a4  [ ABB71F0B6B1939FDF2CB1E1131530E70, EA0FB91DA733B9B32641F4CAB9966589C0291369182984B65487938993BDD8FB ] TPM             C:\Windows\System32\drivers\tpm.sys
13:49:17.0274 0x06a4  TPM - ok
13:49:17.0293 0x06a4  [ E3B4514D9CA7F9151F49D6217F27AF37, A4FB4DF7E75DB7E222E91357DD584614439C08CF39B1EBBFBC2EE854A31613F6 ] TrkWks          C:\Windows\System32\trkwks.dll
13:49:17.0340 0x06a4  TrkWks - ok
13:49:17.0351 0x06a4  [ 17A95C725623DB689E6AABE46B82EAD5, 729E6A37C533763B4ED31D5F5F940A12234EE0C8E674C6AF5C19C0C70F72010E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:49:17.0405 0x06a4  TrustedInstaller - ok
13:49:17.0422 0x06a4  [ A3ECB86DB90D0F9A95ADB13686C7F680, D1A2F4841957EE45928E2178623982873A5E1C46F927F68F4F6660DAEB47127D ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:49:17.0480 0x06a4  TsUsbFlt - ok
13:49:17.0490 0x06a4  [ 38C939FB0B952054102B0E36FAF8B039, 339A39F90CAB5576EB7DD9F6673F1BBA0CC4BB5F5DE120BC61FEDBC7FD403981 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
13:49:17.0546 0x06a4  TsUsbGD - ok
13:49:17.0560 0x06a4  [ EE5E794D067A096C246567D0CBB7BF77, 81969C49F50B8EA62367C11872AFA67E5D65391778D337CA6146EE47C4FEC8D3 ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
13:49:17.0615 0x06a4  tsusbhub - ok
13:49:17.0631 0x06a4  [ 9DB33E16FF4D5868EEC877E46A91A8A8, F37FC4F3A9DD4C90DEFD8B2812AF88A212C315C5CA6B5C47B54CC8B8B4BEECB8 ] tunnel          C:\Windows\System32\drivers\tunnel.sys
13:49:17.0686 0x06a4  tunnel - ok
13:49:17.0704 0x06a4  [ B564A572014AE16153544B1104DF878E, 548B59C94DA03AF0034C6AC5A8EE7E4A5D9ACA5E60BBA321BA064BBFB4A3FB21 ] tzautoupdate    C:\Windows\system32\tzautoupdate.dll
13:49:17.0750 0x06a4  tzautoupdate - ok
13:49:17.0766 0x06a4  [ 59E4999207E82FDE73C2C084CB9BB942, 340AFF852A244E6C0CD3201130A0366FB7D5B151060814DD9CC3FBDE8B0321C0 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
13:49:17.0809 0x06a4  UASPStor - ok
13:49:17.0822 0x06a4  [ B77AA4582655163B5DB2D20CD8A339CD, 16B839C06091B447DD61EECBA93F79638DA26F21B6E6F9552ABC5EEE6C027E24 ] UcmCx0101       C:\Windows\system32\Drivers\UcmCx.sys
13:49:17.0874 0x06a4  UcmCx0101 - ok
13:49:17.0887 0x06a4  [ 32E88DC1104A3BC7CA4B0D9ABB59BAA8, D589DF17177C074B4CB92E1BC5A0561E7EDC2AAF8E5AD514A8C34D994E6B6DF8 ] UcmTcpciCx0101  C:\Windows\system32\Drivers\UcmTcpciCx.sys
13:49:17.0952 0x06a4  UcmTcpciCx0101 - ok
13:49:17.0962 0x06a4  [ 0887EED62FE7BCA5D5A004393127E250, A28C40B31E0121552389F3959E56CFFB4FF34F221457109BEAB6B4F0BC6A7AE8 ] UcmUcsi         C:\Windows\System32\drivers\UcmUcsi.sys
13:49:18.0014 0x06a4  UcmUcsi - ok
13:49:18.0031 0x06a4  [ 2063C0A85FF2EC5902F480B15EF91011, E7B28A45F0D3E2568872B9A38A46625A9F729DC250830E28CB45DC535FC293B6 ] Ucx01000        C:\Windows\system32\drivers\ucx01000.sys
13:49:18.0084 0x06a4  Ucx01000 - ok
13:49:18.0097 0x06a4  [ 5824FA518595A90F9215DBE1C51F91C8, CCAEA4B62BACECB5D09888F91C89A01CA89E552D4346437F850547809E84C341 ] UdeCx           C:\Windows\system32\drivers\udecx.sys
13:49:18.0148 0x06a4  UdeCx - ok
13:49:18.0167 0x06a4  [ 8947C71283391E0FE5527017A91D405B, E72441E0BF2FCF9BFC977EFD0755A812C02FA06CA4435A8AEAC23B5110164AE9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:49:18.0238 0x06a4  udfs - ok
13:49:18.0250 0x06a4  [ 06BA4A02C78D112E8CA886898B77EA68, 9351146962E02D85622B4178FA7FC1DDCD8E3724773F076496576BCF248E329A ] UEFI            C:\Windows\System32\drivers\UEFI.sys
13:49:18.0289 0x06a4  UEFI - ok
13:49:18.0300 0x06a4  [ 77491C8F08F6B3C2AE9ABA4DB3A6A1A0, 45046D7600E7CDFE177DC907CCEAE0FC0C048A95F16221866FD0A23B348E95A1 ] UevAgentDriver  C:\Windows\system32\drivers\UevAgentDriver.sys
13:49:18.0341 0x06a4  UevAgentDriver - ok
13:49:18.0381 0x06a4  [ 3FC5416FE141F45F9182994FFFEA8FFE, 73BE66EA7032CF41421A7E49E47CF4282EBB625B93E16DA903FB1183CCB434CB ] UevAgentService C:\Windows\system32\AgentService.exe
13:49:18.0462 0x06a4  UevAgentService - ok
13:49:18.0480 0x06a4  [ B164D49099D0243474718049B29D4546, A5318D2711E859F0D968FF613463A0ED503EEE1B8B9691553EC0E482D1566FAF ] Ufx01000        C:\Windows\system32\drivers\ufx01000.sys
13:49:18.0536 0x06a4  Ufx01000 - ok
13:49:18.0551 0x06a4  [ 34FBBDA1849B17F8E97772F8A58CDC22, 63A1ED6398F0FB34D8399403576A30DA2F87407BD692863CBB4831F55BE7C8F1 ] UfxChipidea     C:\Windows\System32\drivers\UfxChipidea.sys
13:49:18.0596 0x06a4  UfxChipidea - ok
13:49:18.0612 0x06a4  [ 8A7B7C41F7796220FE4B9D183403ABCA, 04D90D1858537125A9232F7312561A2F2F15532EAA3F6E027C8926E4F925A27B ] ufxsynopsys     C:\Windows\System32\drivers\ufxsynopsys.sys
13:49:18.0657 0x06a4  ufxsynopsys - ok
13:49:18.0684 0x06a4  [ D80204E8447B30550BC77C97565859E2, DB6BCBBDCDF203C726247EC06EC3E14D3C642222A1320341BC4E8319FE0B916A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:49:18.0729 0x06a4  UI0Detect - ok
13:49:18.0740 0x06a4  [ 632C1E517ED21AD5C044205D177F7082, C35B3E6E87E7F2D182A037DC7B4F15824FB7A7DCCC0AC90F681DB774060BFFAF ] umbus           C:\Windows\System32\drivers\umbus.sys
13:49:18.0795 0x06a4  umbus - ok
13:49:18.0805 0x06a4  [ 49C06B189A5714DFD38378FA4059521E, D834D2C4EB34471928F38C0BC74855DD7F1783862DFD0FC986B8ABE17596FE2A ] UmPass          C:\Windows\System32\drivers\umpass.sys
13:49:18.0853 0x06a4  UmPass - ok
13:49:18.0872 0x06a4  [ DE544A44D74FAD98579FF6C6DC7D1684, 5C38B94479039A8921C5854BECA140DCD498E65AD76ABCB93B8EFBCF64E9CC7F ] UmRdpService    C:\Windows\System32\umrdp.dll
13:49:18.0925 0x06a4  UmRdpService - ok
13:49:18.0968 0x06a4  [ 58A2C2CC89D528DE8FE8D3EADC8FBAE4, D682EA1AF11D49B391ABB7AB83A9DFB321534D7A892B5CFD50637AD1C1AEF3E4 ] UnistoreSvc     C:\Windows\System32\unistore.dll
13:49:19.0061 0x06a4  UnistoreSvc - ok
13:49:19.0097 0x06a4  [ AC79703EBF464C6EA2AE2CC65E6878A0, 3DD888BE1189B824455D0F8F5DC91026AE18E3BECB95F68827FA4E659E0AFC4B ] upnphost        C:\Windows\System32\upnphost.dll
13:49:19.0163 0x06a4  upnphost - ok
13:49:19.0175 0x06a4  [ 5B121FF570059764F34C9C3F9E2D8AB5, E386458BF7DACE6BA452260BB8B2E3AFA8A4D21CCCD9931F6D97694871E428EF ] UrsChipidea     C:\Windows\System32\drivers\urschipidea.sys
13:49:19.0216 0x06a4  UrsChipidea - ok
13:49:19.0227 0x06a4  [ D4DC4C2C309053BB93A44F40560F9EBD, A69D950533467F83233CC4A71105E15EEBFA444EFC3B13DF21952E22515215B2 ] UrsCx01000      C:\Windows\system32\drivers\urscx01000.sys
13:49:19.0270 0x06a4  UrsCx01000 - ok
13:49:19.0286 0x06a4  [ 6AC432C3C051AD5E99186E364F3A66B8, 9E48D06AF7061B329FE4E4D1F29D360F87ED3A661BA62CCF54C74CD3A358D1C2 ] UrsSynopsys     C:\Windows\System32\drivers\urssynopsys.sys
13:49:19.0329 0x06a4  UrsSynopsys - ok
13:49:19.0343 0x06a4  [ 10B85AC4C93EB71232A31C88E8EA3238, 73246DE85F7C098E34D6A8C607F796AED9D43A1DABD16437832E261259612CD8 ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
13:49:19.0388 0x06a4  usbccgp - ok
13:49:19.0401 0x06a4  [ C7E28A3297CB8C3BE938AFF4095F6EC5, AC0D5D860968ED96D9A24086F52018BC99463321942695D75C1D9712503CDB42 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
13:49:19.0456 0x06a4  usbcir - ok
13:49:19.0468 0x06a4  [ AF30D171BED850525E6A56581B43D260, 56487740DCBAAF87E043A414AF1F1CB45B842FF4B7A6E5E9E5C748B6F1D1D177 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
13:49:19.0512 0x06a4  usbehci - ok
13:49:19.0541 0x06a4  [ 5B15A1C6C27EA30E500E92C197410946, 9514D56B3AFB0B0973163AC06480E04E0AB4A1292EDE582D6CF34E4596A7E28F ] usbhub          C:\Windows\System32\drivers\usbhub.sys
13:49:19.0602 0x06a4  usbhub - ok
13:49:19.0630 0x06a4  [ AB7A95CCB00CBDC4CBB4E566DCCFDE97, 38F9CC1F2BD6BC049F50A85094FE9F36BC8EDB0FE939A1B6C590C86724D6C3DA ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
13:49:19.0694 0x06a4  USBHUB3 - ok
13:49:19.0706 0x06a4  [ B18BE03B2077BA681043BA628D43C55E, B8FF9A2ACEBE3D68D58B49873D4899B93705B1A44FBE146A01C9E4EF91959D80 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
13:49:19.0753 0x06a4  usbohci - ok
13:49:19.0764 0x06a4  [ D8A438D6683D398CF844BD8B0F548243, 4034A459272325138581CCEDC39230A6A2A891854EE2B20DA7CCA5073A804EFE ] usbprint        C:\Windows\System32\drivers\usbprint.sys
13:49:19.0812 0x06a4  usbprint - ok
13:49:19.0830 0x06a4  [ BBBC806581BF4181A874CAB3A7D5D3B7, 401B437A09B057EF967233D34AD8F40B759C860563B97ECCE2A855D947CF0E7A ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
13:49:19.0879 0x06a4  usbscan - ok
13:49:19.0892 0x06a4  [ 147D2178C690782CF4CD175137961739, E940B5385CF92F007CDBC972CF3FF0BC19E0746F0B63F12518A21EC780BBBB36 ] usbser          C:\Windows\System32\drivers\usbser.sys
13:49:19.0946 0x06a4  usbser - ok
13:49:19.0959 0x06a4  [ BAE8E7603769E3A5DC9D14A6EAEBF438, C9E89BA93A24A5EBA59948CD52240C2A124C308946557F7DD9FC3589A7EDB9A5 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
13:49:20.0003 0x06a4  USBSTOR - ok
13:49:20.0015 0x06a4  [ 011BBB3175DBBA3B2369B2FEBF76C596, 5161FDDF7D525F8E4F9AAE3BA42E618D7C9F1870C7CEF24F69303DE0A3D3AC7C ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
13:49:20.0063 0x06a4  usbuhci - ok
13:49:20.0086 0x06a4  [ 8A3035C326FFF5AF27B60D37218B8244, A07C975D8222891B1578A1279EB373A1CD8887B344324EE66306BEBE0BFBC6DB ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
13:49:20.0144 0x06a4  USBXHCI - ok
13:49:20.0200 0x06a4  [ 3CD3C6C375586AE73D7C5114D350A555, D7B9BB123E25628F7B34068DED16D460DD4B7398487FA6DCF4C48705CC8BB5C9 ] UserDataSvc     C:\Windows\System32\userdataservice.dll
13:49:20.0304 0x06a4  UserDataSvc - ok
13:49:20.0355 0x06a4  [ F4C4C45AB57A2DED6798A571C499BB67, 3B449245C96A7845C439276A371CBAA3FB0969DA579ED4F3A84B77E736A4F250 ] UserManager     C:\Windows\System32\usermgr.dll
13:49:20.0441 0x06a4  UserManager - ok
13:49:20.0468 0x06a4  [ 9AC80232F5A41903164FC69E2B505BFE, 73FB73F40F621382FA6B9C8CA19C10BA2D77CBCCEFE7C3573E8046400206FB03 ] UsoSvc          C:\Windows\system32\usocore.dll
13:49:20.0529 0x06a4  UsoSvc - ok
13:49:20.0544 0x06a4  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] VaultSvc        C:\Windows\system32\lsass.exe
13:49:20.0578 0x06a4  VaultSvc - ok
13:49:20.0595 0x06a4  [ 054BAE75AC02A04A2D49EE2D251DCFE2, B4F8A7C2AB5DAF6A2EA8E1069DD5A81CB5FAC28984299D0A74C1F3533D902762 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:49:20.0640 0x06a4  vdrvroot - ok
13:49:20.0669 0x06a4  [ E0081D34E432AE616CD2B40B43EFA9C8, 1E3D7E367AE3B1DE24C499833583ED244A9425BB321107758FFA233BD1AA5DAA ] vds             C:\Windows\System32\vds.exe
13:49:20.0746 0x06a4  vds - ok
13:49:20.0763 0x06a4  [ FE2B69C1FFBE1A51AB1E82B169030D96, 41C3EF746CA14092E3B90572B5CBD19AE3D96406A3D25386CC20860C55069322 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
13:49:20.0811 0x06a4  VerifierExt - ok
13:49:20.0841 0x06a4  [ CDCD4AFBB61D4D6C2B263FC922B2D708, 977AF1E1B7A9EBAB677C1279A811F593B1844ADFCC2E6547F52A164F56845B82 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
13:49:20.0911 0x06a4  vhdmp - ok
13:49:20.0925 0x06a4  [ C2A8ABA5BFC09E32489B79E28B2011AF, 92876EEE6AF26237F62E149B2AD10BE5EC52425A79A5EC1898EA807509CAC3BC ] vhf             C:\Windows\System32\drivers\vhf.sys
13:49:20.0978 0x06a4  vhf - ok
13:49:20.0992 0x06a4  [ D4BFDCC6EDAB8BBFAF4208F73C95F2D5, 2D05CD3056DE57F4144A1F169FE3656071A99E0BF6395BEAC60FB25EF634B5AA ] ViaC7           C:\Windows\System32\drivers\viac7.sys
13:49:21.0049 0x06a4  ViaC7 - ok
13:49:21.0061 0x06a4  [ 66317468ED907DF1AF053BB82A71B79E, 28C68377D51CCCFDAB46AE3E0CE4FBF3C3F785E35B0CEBF605A1B29139953683 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
13:49:21.0107 0x06a4  vmbus - ok
13:49:21.0120 0x06a4  [ CAACA09A933CD00E0B5793BF86A8C27D, 173F6ECEC53FACDF047EB586A634F1E95914766067AFFAED4853DD7BF53E91A0 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
13:49:21.0168 0x06a4  VMBusHID - ok
13:49:21.0177 0x06a4  [ E3FEA0FEE08EEBD39CC175824CEBCDEC, 6396624D3F4D8A94A067FFD3D1A1EB63B7BEDA3F834B8C75A5E805E063FF6A6C ] vmgid           C:\Windows\System32\drivers\vmgid.sys
13:49:21.0226 0x06a4  vmgid - ok
13:49:21.0243 0x06a4  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicguestinterface C:\Windows\System32\icsvc.dll
13:49:21.0293 0x06a4  vmicguestinterface - ok
13:49:21.0308 0x06a4  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicheartbeat   C:\Windows\System32\icsvc.dll
13:49:21.0360 0x06a4  vmicheartbeat - ok
13:49:21.0376 0x06a4  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmickvpexchange C:\Windows\System32\icsvc.dll
13:49:21.0423 0x06a4  vmickvpexchange - ok
13:49:21.0445 0x06a4  [ 4CDFD55654E4A7D54555E569A1A83D53, 372DBF5E2CA3B3F96B40B0188086ED9AB713170643AE425B3034E635A5C0FACC ] vmicrdv         C:\Windows\System32\icsvcext.dll
13:49:21.0496 0x06a4  vmicrdv - ok
13:49:21.0514 0x06a4  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicshutdown    C:\Windows\System32\icsvc.dll
13:49:21.0563 0x06a4  vmicshutdown - ok
13:49:21.0579 0x06a4  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmictimesync    C:\Windows\System32\icsvc.dll
13:49:21.0631 0x06a4  vmictimesync - ok
13:49:21.0647 0x06a4  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicvmsession   C:\Windows\System32\icsvc.dll
13:49:21.0695 0x06a4  vmicvmsession - ok
13:49:21.0715 0x06a4  [ 4CDFD55654E4A7D54555E569A1A83D53, 372DBF5E2CA3B3F96B40B0188086ED9AB713170643AE425B3034E635A5C0FACC ] vmicvss         C:\Windows\System32\icsvcext.dll
13:49:21.0766 0x06a4  vmicvss - ok
13:49:21.0780 0x06a4  [ BE964AE62A6D50974A55316DEF69024B, EA6AF0CDD8A5D8539430BA606B6E1715D2EB8260C468E9AE796B317E46FD166C ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:49:21.0823 0x06a4  volmgr - ok
13:49:21.0845 0x06a4  [ F298FFA396D2D080C037192B53EA50FD, 2ACE3483654B6B30016A61580AF2AB26AFA1E78D8ADE441A9B6DBAE16FFBC192 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:49:21.0901 0x06a4  volmgrx - ok
13:49:21.0927 0x06a4  [ 8FC38A2B3D7A58A69065F43479E848FA, 34799558BD16BCB69798C4F3B16E27B67F0FF42109592057620581AE2DFE4FD1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:49:21.0989 0x06a4  volsnap - ok
13:49:22.0002 0x06a4  [ C70060C3A0A7F743A4B19BA15C547F3F, 713DFEB429AB2D581DE2BE8A296DB84BB8DCF3462400FC5C68A3378A3E3230A6 ] volume          C:\Windows\system32\drivers\volume.sys
13:49:22.0042 0x06a4  volume - ok
13:49:22.0056 0x06a4  [ 8DE15757A11F8EDD9F610C12C5F537CB, 85BDE61EC558D2E7BC7FC524D6CF69BC280DF4E332A9E0467DE83B2B084AF4A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
13:49:22.0108 0x06a4  vsmraid - ok
13:49:22.0161 0x06a4  [ 1E2A8C962D8A1FE95F04C94C1BEC0D85, ED8EE2575721D21501F3B00C2E5BD5F9997ED718376122217BEC720FC6349BC1 ] VSS             C:\Windows\system32\vssvc.exe
13:49:22.0263 0x06a4  VSS - ok
13:49:22.0284 0x06a4  [ 0EE3E25278FAEA3E90FE8CA6AE74F315, 89D596E9E8BED9039976E27D38E3DE3B9AF3D88F319312BA737C72A1E5E02459 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
13:49:22.0342 0x06a4  VSTXRAID - ok
13:49:22.0358 0x06a4  [ 2FF242A6A60A905A67DFB2506C492265, 6A530C168B19AB1B611C9FD821BAA43A20D67B7E88B9BAB968DDA15C6857B05D ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
13:49:22.0410 0x06a4  vwifibus - ok
13:49:22.0421 0x06a4  [ A6A334EE3B97813B92EA9C5E284CF6F7, 30FC86DDDA57F605D87E20A9DD6B8AF13EA2E67B14F6D97B09C61F47640EDB6F ] vwififlt        C:\Windows\system32\drivers\vwififlt.sys
13:49:22.0471 0x06a4  vwififlt - ok
13:49:22.0499 0x06a4  [ 1843F07FD89975B3837F270E2E24D349, DF6BABF77C84DD49D193A23745DF5AF1117AEF29B373FFB2CBB3A8B6817659A0 ] W32Time         C:\Windows\system32\w32time.dll
13:49:22.0562 0x06a4  W32Time - ok
13:49:22.0575 0x06a4  [ 7C69152B72D7DD0739AE8A1341E0F4CD, 83F8FBB8440D815E60D8CE31539E831034ADFD2FD17BFB5E5307CE7D95EC92D8 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
13:49:22.0626 0x06a4  WacomPen - ok
13:49:22.0652 0x06a4  [ 8F0CD0DBD02B69E572F8C25EB29E4F7D, 6F5C146A006D27E2D332AC432B4E204C8AF77C308946803CF1124760FFBB5969 ] WalletService   C:\Windows\system32\WalletService.dll
13:49:22.0712 0x06a4  WalletService - ok
13:49:22.0724 0x06a4  [ 14F0C0485643A73866C29CAE6139F453, F3D408B2BC841505B480CE2C232815203D2D5985F49BC3F0C22695B5ECCFBEAA ] wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
13:49:22.0784 0x06a4  wanarp - ok
13:49:22.0795 0x06a4  [ 14F0C0485643A73866C29CAE6139F453, F3D408B2BC841505B480CE2C232815203D2D5985F49BC3F0C22695B5ECCFBEAA ] wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:49:22.0852 0x06a4  wanarpv6 - ok
13:49:22.0908 0x06a4  [ 9BF5B67B8747DDD380BEC84915E6F4D5, 610BBB0AF28B5C93EBE34512EC35D45989C6F9EB33FD3BDCF0CD014174A1BFFF ] wbengine        C:\Windows\system32\wbengine.exe
13:49:23.0017 0x06a4  wbengine - ok
13:49:23.0050 0x06a4  [ DD073EA5AE9D9ACD88A3AC864C7CC611, 087E3768E7BDDC554568FFC8F8449440B8666CD3A373FCDAF1EB0E1FA337B27F ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:49:23.0119 0x06a4  WbioSrvc - ok
13:49:23.0140 0x06a4  [ 73A7F5CFAA063059A2CA99D3C0BBAC53, 34554A0CEEE46BAE124C60726B0C8F747357F2A7B5F69AB322860034312FC12E ] wcifs           C:\Windows\system32\drivers\wcifs.sys
13:49:23.0183 0x06a4  wcifs - ok
13:49:23.0214 0x06a4  [ ACEE8C0CD4F41A85E5506BAC810B5280, AAFC5137AD4E9337C6C6E2EDFAA2FC544E656A0239EBDC1BF4F3A68A443AFB43 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
13:49:23.0295 0x06a4  Wcmsvc - ok
13:49:23.0322 0x06a4  [ A9C5CDFB96F7E773BD08F98F6F67B178, 86447ED1A244702312316CA52BA646068F5864CDE3B627095104EB390B67729F ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:49:23.0385 0x06a4  wcncsvc - ok
13:49:23.0398 0x06a4  [ E135FE0A35B9ABF096DC359A8ACACF1F, 0180650A7664365FD2B5D3C0654DCF4ED612687E199585BCF7A6C6B89B739E75 ] wcnfs           C:\Windows\system32\drivers\wcnfs.sys
13:49:23.0447 0x06a4  wcnfs - ok
13:49:23.0461 0x06a4  [ 425B817D6F6F436F5C1F7A70A71CAC5F, 55583BE180F82F28B5C57B0F921F20DAAF126FCFC7271E96DBAF29F58FA8D89A ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
13:49:23.0503 0x06a4  WdBoot - ok
13:49:23.0533 0x06a4  [ B3ECCD6A9477D36AC7B2047BDE6E5B68, C894AEA1EDB76AD5C6B5E46EC493EC0BDC8D1D754CB0288D3D2A6F0604073C1B ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:49:23.0601 0x06a4  Wdf01000 - ok
13:49:23.0622 0x06a4  [ 827C5B8D98046934469E97F3E7E1839B, BC82D44C76B98E317116198AB5A758FB3B89D094BAB85FB243DE61CF93452FFA ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
13:49:23.0676 0x06a4  WdFilter - ok
13:49:23.0691 0x06a4  [ 2E63CA57869CFA25CB072BEFE64A2640, 7569BF5BF1A7783BC46F7157CA808CD91F9345B79A76EC408872F0380D1F08A9 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:49:23.0742 0x06a4  WdiServiceHost - ok
13:49:23.0753 0x06a4  [ 2E63CA57869CFA25CB072BEFE64A2640, 7569BF5BF1A7783BC46F7157CA808CD91F9345B79A76EC408872F0380D1F08A9 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:49:23.0806 0x06a4  WdiSystemHost - ok
13:49:23.0835 0x06a4  [ DF180E0BBC3D22E9B7E05C31265E5869, E287C1E2E122A6D6776AB7B57D9025BED9CDD15146EA10166091882866BEDDA9 ] wdiwifi         C:\Windows\system32\DRIVERS\wdiwifi.sys
13:49:23.0924 0x06a4  wdiwifi - ok
13:49:23.0943 0x06a4  [ DE385F0605E3B6E46EDC98253FFAD452, 8F62657541E2CEFBA7E2C4053B39C3B29E6D7FBCD96EEB571DE3F830B4933328 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
13:49:23.0987 0x06a4  WdNisDrv - ok
13:49:24.0005 0x06a4  [ 1DE903C9D0E9567F951212604462539B, 364D9A067F526C969177A4BD86C7C581D6494D1F509E0EF7B80A5A2931D92624 ] WdNisSvc        C:\Program Files\Windows Defender\NisSrv.exe
13:49:24.0041 0x06a4  WdNisSvc - ok
13:49:24.0059 0x06a4  [ DC496ECFC465280A610188C9B316DA21, C27274788811EDC28EEFBC391114A6930FC8FF81A806A7D8331E707493A7DFF8 ] WebClient       C:\Windows\System32\webclnt.dll
13:49:24.0118 0x06a4  WebClient - ok
13:49:24.0132 0x06a4  [ DCB16389E07EE11A4561641F19AE74BF, 2C97B8736A79C4435635EDA7808D05F90E59E17A53CBD62732109E4B3EC6294B ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:49:24.0188 0x06a4  Wecsvc - ok
13:49:24.0199 0x06a4  [ 4E43223E27023C8D5585F494DB595513, ED5A28DB9325AE3A0E556F2B8BE1B28376EC263DEF0D5938E718107819C08A08 ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
13:49:24.0244 0x06a4  WEPHOSTSVC - ok
13:49:24.0257 0x06a4  [ 83D0F9807F16369DCE733B9F8474B146, 01E23E477D4B14FA517FDCEC72E281D9BD7A32833FA6C874AADDE08A1F9F3052 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:49:24.0312 0x06a4  wercplsupport - ok
13:49:24.0333 0x06a4  [ 9D466F2FAFE95EDA8A5A3B36FA66F1A1, 8D69E15F14508A232551A5AC6DA3B90A5F4258DFBD1E44C89FC1BAD4B0529667 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:49:24.0384 0x06a4  WerSvc - ok
13:49:24.0401 0x06a4  [ 40C04E51FD65150677CB830A53DCB0FC, 82CDDA7ED826995C546FE89B550E81058F300DB7DC6D15DE51A87EBEFB396F98 ] WFPLWFS         C:\Windows\system32\drivers\wfplwfs.sys
13:49:24.0446 0x06a4  WFPLWFS - ok
13:49:24.0459 0x06a4  [ CDC1769844D191B0F655E6A5DC2F2F5E, 05B3C3F47C0D5F910973650CB3ED8C95849E4DB5C25831584716B130EBC04EE5 ] WiaRpc          C:\Windows\System32\wiarpc.dll
13:49:24.0505 0x06a4  WiaRpc - ok
13:49:24.0516 0x06a4  [ 9E321217D4D584FE9BF725F20C4CC294, 8852801F088F3C83D742B80F19D06A74CA4EAC496F0D1C45FDA51E3D1B423FA6 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:49:24.0557 0x06a4  WIMMount - ok
13:49:24.0568 0x06a4  [ 7D1F24D54137D7486005A5FB4A6F9F9A, 2379D517874A502C163DA09050E3BEE7ACB00EFF9E6DA91784DB0BA824A01EB8 ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe
13:49:24.0596 0x06a4  WinDefend - ok
13:49:24.0626 0x06a4  [ 8DEBCBA33D27E86E66217346F84EA393, 78EA417276D13352E4CE42F23DFF125AA31616D073CCA044AB691EBE635F214B ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
13:49:24.0675 0x06a4  WindowsTrustedRT - ok
13:49:24.0687 0x06a4  [ 764A9285DFA402C04D11EA3BEE9FB851, E9DC8A75AF08727C699091526EED3D90803C00B428834B09B45495B54A4DAE2D ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
13:49:24.0728 0x06a4  WindowsTrustedRTProxy - ok
13:49:24.0761 0x06a4  [ DF51C1442A3DB8ADE2B78DCDEC2419FD, 3DB1ECADCEFAA924256022689B8D7B775C0961B2A22E39207229A98B63F32F27 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
13:49:24.0835 0x06a4  WinHttpAutoProxySvc - ok
13:49:24.0862 0x06a4  [ 85B8515170C41F40153CF428C45918B4, E566E4BF7E2E5FFE596A987F3362C65066E2EFB83C0CBB53E6BBB2D5F333E577 ] winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:49:24.0912 0x06a4  winmgmt - ok
13:49:25.0003 0x06a4  [ B124B6D66EE6FAB7B59FD114A633A1D1, 4192DFB5FF29A0B9F49FE8EFFBBF956B5460B0FD29FD4C420DBD436938FC96B4 ] WinRM           C:\Windows\system32\WsmSvc.dll
13:49:25.0174 0x06a4  WinRM - ok
13:49:25.0203 0x06a4  [ D45B4DDEAF7B8B753E35D3A7EF1ABBB5, F9ED1D758A437F37DFFF8009A499581D15F538336EC4E25B7D71452C182F8193 ] WINUSB          C:\Windows\System32\drivers\WinUSB.SYS
13:49:25.0259 0x06a4  WINUSB - ok
13:49:25.0286 0x06a4  [ 0542FEBA39BA33E01F129B4E039A4D0E, 035C4CB919CEF55561F455E456F65843DA886AB9164292C5803EF4F65A4ABD6F ] wisvc           C:\Windows\system32\flightsettings.dll
13:49:25.0349 0x06a4  wisvc - ok
13:49:25.0432 0x06a4  [ 85E6D93EEFAAEC8B73338A1246304AEF, 54B4D393820F25CE33BA13DCD7A666AD937D07DC2697424410BB80D6F1193249 ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:49:25.0576 0x06a4  Wlansvc - ok
13:49:25.0647 0x06a4  [ 90A67E90454B62CC1177F4C8AA2A6539, A4F1CA1C587CE5A030669B5880107FCD0774AF30EEC8DCA58B4B26FD44812D85 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
13:49:25.0774 0x06a4  wlidsvc - ok
13:49:25.0790 0x06a4  [ E50F32F363CFE38CAF704DBF88D6DA0F, 99224A21D01498DA92BF39690A2B6A3E37910A701C7DD1D1280A5007DA0CAA33 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
13:49:25.0839 0x06a4  WmiAcpi - ok
13:49:25.0860 0x06a4  [ A6676784CCFCB5DA356919A536EA270B, 2C1867A359A6D284D8E4B37E3D92F39A2F2ED22BEB93C749CE86FBD5DDC32C50 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:49:25.0905 0x06a4  wmiApSrv - ok
13:49:25.0949 0x06a4  [ CA3A3E61D5F44D8FD276135A6D68C3B8, 2E94B8AB72E92E69A3BEA3DA00690229947F65C504FE8F0160A19E7BB61B1924 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
13:49:26.0033 0x06a4  WMPNetworkSvc - ok
13:49:26.0052 0x06a4  [ BBAA859E8B0F5FB93E3437C4001B80B1, 5300E165917DE761F97C6FDAC854979CF48BD6FCDD06968F2A0C3F0B843AB6BE ] Wof             C:\Windows\system32\drivers\Wof.sys
13:49:26.0103 0x06a4  Wof - ok
13:49:26.0177 0x06a4  [ F2B8A725EFBC4C8200E246FABFFE33AF, 408D1549C20D32F29986D58240B3CBD45B9F1601764509AF8CD5C341FAA8ACB5 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
13:49:26.0293 0x06a4  workfolderssvc - ok
13:49:26.0310 0x06a4  [ 6F9118D0EFC0C409D3846517BFA9D898, 1B76926C8072DA37BB060E716A570425D169AD0D843E34DAB897A30D18AF0CBC ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:49:26.0358 0x06a4  WPDBusEnum - ok
13:49:26.0372 0x06a4  [ 35A1CD286CD4B9E0CD35FC21BFEC7C32, EB4BCC9797E56914DB773CAC7775DF852AC62362866F1AB3F1A4DBF67AFC92A7 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
13:49:26.0416 0x06a4  WpdUpFltr - ok
13:49:26.0437 0x06a4  [ 8B80FC74A784038DA57CDA49E7D2449F, 198B524F214632B648240BC270550F81498121B7E9B13B77227BBE41E046BB08 ] WpnService      C:\Windows\system32\WpnService.dll
13:49:26.0492 0x06a4  WpnService - ok
13:49:26.0504 0x06a4  [ 347865964017A38FAE32A03B671A77F8, 937184DB1EE1E9CE9ACA40BA4A80DFCF6A9EDA29BB106803FC4AAA3824C7CB17 ] WpnUserService  C:\Windows\System32\WpnUserService.dll
13:49:26.0550 0x06a4  WpnUserService - ok
13:49:26.0569 0x06a4  [ 3FC8AFC8059B341003BDCECC8BA93488, 6FBF64E439307D4E2E89EDA7E8FE5026462F72C9C96D0C300F0D186D4C418263 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:49:26.0619 0x06a4  ws2ifsl - ok
13:49:26.0635 0x06a4  [ A2B922E063D99F47906B4E9D3CEC4F74, 6E74D852ADFB9AED5EE601749D4D62B005F3FA9A9407421126E3944561AF5521 ] wscsvc          C:\Windows\System32\wscsvc.dll
13:49:26.0691 0x06a4  wscsvc - ok
13:49:26.0702 0x06a4  [ C5A42AA31E4859C33D168DC870898D38, 45FDE8D16D54FB0A8DD955352D3C5F2391339C6B0B3D74B77D1D1CA3DBBCD296 ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
13:49:26.0750 0x06a4  WSDPrintDevice - ok
13:49:26.0760 0x06a4  WSearch - ok
13:49:26.0849 0x06a4  [ C1D0D50D405652C965D73DE67AA6528C, F2D34C56CE82CCA39215FF9F495C6287E6BD9BCBFD531F40F99CD9DABF9B0CAD ] wuauserv        C:\Windows\system32\wuaueng.dll
13:49:26.0992 0x06a4  wuauserv - ok
13:49:27.0015 0x06a4  [ A69B4FEC9A2FD5E700B145BEDCC953EC, 2B2DD7088C8991B9B05DCDCC25FC4C981FA82A159A548B94CAD6F0842307B5CF ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:49:27.0069 0x06a4  WudfPf - ok
13:49:27.0087 0x06a4  [ F3EA9F77B4D4017395600660E6E91B76, 051A3846D94AC7A522DB2E9DFCA1DAAD1CA726221627F2224E583B08831F82C6 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:49:27.0148 0x06a4  WUDFRd - ok
13:49:27.0163 0x06a4  [ FB483547CFB8349D199E7945F8910AE0, 41E27B60E9358B0237E609DDCE46AE2AFBBC1FBA83A79F0509B7829259F3C3D3 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:49:27.0212 0x06a4  wudfsvc - ok
13:49:27.0228 0x06a4  [ F3EA9F77B4D4017395600660E6E91B76, 051A3846D94AC7A522DB2E9DFCA1DAAD1CA726221627F2224E583B08831F82C6 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
13:49:27.0288 0x06a4  WUDFWpdFs - ok
13:49:27.0302 0x06a4  [ F3EA9F77B4D4017395600660E6E91B76, 051A3846D94AC7A522DB2E9DFCA1DAAD1CA726221627F2224E583B08831F82C6 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
13:49:27.0362 0x06a4  WUDFWpdMtp - ok
13:49:27.0409 0x06a4  [ CFB4DCA521797379DE850BC2E96B8154, 31EC580BF90E370307DD05BFC8A95046A349214F58BA36CDE5919C9F41BF9B1D ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:49:27.0508 0x06a4  WwanSvc - ok
13:49:27.0556 0x06a4  [ 2BA581012300FA37E286F2A8A0025315, ACF784790F2C113A174ECF944CDD906CC806FF74D951E329853DF556E133D69E ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
13:49:27.0631 0x06a4  XblAuthManager - ok
13:49:27.0687 0x06a4  [ 2ADCF6881D83E44505D92629A5DE8400, 17A1579E7950060B0B18991A9CB2ED5997BE4466529053DA661D5DB17A33E8FF ] XblGameSave     C:\Windows\System32\XblGameSave.dll
13:49:27.0773 0x06a4  XblGameSave - ok
13:49:27.0793 0x06a4  [ EA4937052D0B96DBA4467689D17A8D8A, E13515C9C317C401345765E87D5B39AC63943007EDDD7497A0ED57DEDD4E41A8 ] xboxgip         C:\Windows\System32\drivers\xboxgip.sys
13:49:27.0874 0x06a4  xboxgip - ok
13:49:27.0918 0x06a4  [ BBB5285C89E9ACFC4966396F8BECDED9, 8F5CA758541901415C44E00F0E472342BCCFEFC00372A02636E5EB21D067DFD2 ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
13:49:28.0012 0x06a4  XboxNetApiSvc - ok
13:49:28.0028 0x06a4  [ 6EC0B4104D1CC029F527572E34C13111, F58030F4E53F893964D781DA707A0A9ED1360CAAD9C8299C4DB777072341D8DE ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
13:49:28.0079 0x06a4  xinputhid - ok
13:49:28.0085 0x06a4  ================ Scan global ===============================
13:49:28.0100 0x06a4  [ ED4E568A6E265034DF3C439F944AD42B, E95A6A756F1667F16617BF937BB25EE9798A2CF544D8ADF56DAA3FBCB13E59DB ] C:\Windows\system32\basesrv.dll
13:49:28.0115 0x06a4  [ FA428F4051AD21836F3B0F052C2FED22, 132AF940560E0B8E4239BE004CC70995485347E0E217DF06E72CBA51611EE9ED ] C:\Windows\system32\winsrv.dll
13:49:28.0137 0x06a4  [ D485674D247F8827EFEB92F8F4F111CC, 038D7963DD4D2605E3A1141BE8A858650F608C5763C389FC31906CB771E64DE1 ] C:\Windows\system32\sxssrv.dll
13:49:28.0165 0x06a4  [ F430DD178E518BF1C5D6199F473AE2AD, DD70653D5C68D2E8A1D46E33BD5FF026A6A253F31B1DADB63A2D801DF2E305D7 ] C:\Windows\system32\services.exe
13:49:28.0182 0x06a4  [ Global ] - ok
13:49:28.0183 0x06a4  ================ Scan MBR ==================================
13:49:28.0189 0x06a4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:49:28.0316 0x06a4  \Device\Harddisk0\DR0 - ok
13:49:28.0317 0x06a4  ================ Scan VBR ==================================
13:49:28.0322 0x06a4  [ B5AC3DED7BECAB9867BFDF3E4427EA04 ] \Device\Harddisk0\DR0\Partition1
13:49:28.0324 0x06a4  \Device\Harddisk0\DR0\Partition1 - ok
13:49:28.0331 0x06a4  [ 58377A2B790A468AC173DD930DE5B163 ] \Device\Harddisk0\DR0\Partition2
13:49:28.0332 0x06a4  \Device\Harddisk0\DR0\Partition2 - ok
13:49:28.0335 0x06a4  ================ Scan generic autorun ======================
13:49:28.0345 0x06a4  [ A3418E4D4A5EE636D44922DC2567FA18, 21F89584534A6A02284A6E1BD502A3530E372E6FCF1285BFD68DB074CCE655EA ] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
13:49:28.0385 0x06a4  SynTPStart - ok
13:49:28.0401 0x06a4  [ FE7CE849DB8C3986B2E721C6A3184FAA, 9879821AF51D13DB22EE2A8B351C5C8BB338408D325D9ACEC95237F3DE502069 ] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
13:49:28.0428 0x06a4  QlbCtrl.exe - ok
13:49:28.0751 0x06a4  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\System32\OneDriveSetup.exe
13:49:29.0066 0x06a4  OneDriveSetup - ok
13:49:29.0404 0x06a4  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\System32\OneDriveSetup.exe
13:49:29.0718 0x06a4  OneDriveSetup - ok
13:49:30.0051 0x06a4  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\System32\OneDriveSetup.exe
13:49:30.0362 0x06a4  OneDriveSetup - ok
13:49:30.0411 0x06a4  [ FD9A7F99A09DB266D0C1361B0ACCBD7E, 579160BDACDFE39AE5DDD7B5C2964453E89BA8D933F3FB16C6E3897EA3BDED29 ] C:\Users\ms\AppData\Local\Microsoft\OneDrive\OneDrive.exe
13:49:30.0454 0x06a4  OneDrive - ok
13:49:30.0699 0x06a4  [ C2C9E42D6C51E99C1BAB44F108E8851C, F513A2FCE15AD1F7C4A8A4E67CA2C9613EE305FAAE8D674BC3019A96DEEDFF61 ] C:\Program Files\CCleaner\CCleaner.exe
13:49:30.0937 0x06a4  CCleaner Monitoring - ok
13:49:30.0962 0x06a4  VoipConnect - ok
13:49:30.0968 0x06a4  Waiting for KSN requests completion. In queue: 217
13:49:32.0001 0x06a4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
13:49:32.0003 0x06a4  AV detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 12.3.3154.0 ), 0x41000 ( enabled : updated )
13:49:32.0015 0x06a4  Win FW state via NFP2: enabled ( trusted )
13:49:32.0148 0x06a4  ============================================================
13:49:32.0148 0x06a4  Scan finished
13:49:32.0148 0x06a4  ============================================================
13:49:32.0165 0x1dc8  Detected object count: 0
13:49:32.0165 0x1dc8  Actual detected object count: 0

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.01.06.05
  rootkit: v2016.11.20.01

Windows 10 x86 NTFS
Internet Explorer 11.576.14393.0
ms :: DESKTOP-TGSB6RT [administrator]

06.01.2017 13:21:44
mbar-log-2017-01-06 (13-21-44).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 292489
Time elapsed: 10 minute(s), 57 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 1
HKU\S-1-5-21-1255615618-1242680333-4154777488-1001\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|shell (Hijack.ShellA.Gen) -> Data: explorer.exe,"C:\Users\ms\AppData\Roaming\assembliesbckp.exe" -> Delete on reboot. [b9f4bbbd773105313453466c7a88dc24]

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Users\ms\AppData\Local\Temp\keygen.exe (RiskWare.Tool.CK) -> Delete on reboot. [e2cba6d2b9ef1b1b303bda4f44beeb15]
C:\Users\ms\AppData\Local\Temp\svhost.exe (RiskWare.HeuristicsReservedWordExploit) -> Delete on reboot. [affe99dfc6e252e4ba4b521273905ca4]

Physical Sectors Detected: 0
(No malicious items detected)

(end)

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.01.06.05
  rootkit: v2016.11.20.01

Windows 10 x86 NTFS
Internet Explorer 11.576.14393.0
ms :: DESKTOP-TGSB6RT [administrator]

06.01.2017 13:59:15
mbar-log-2017-01-06 (13-59-15).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 291512
Time elapsed: 10 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

cosinus · 06.01.2017, 14:36

Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

pingodoce · 06.01.2017, 15:25

...

JRT Logfile:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 10 Pro x86 
Ran by ms (Administrator) on 06.01.2017 at 15:16:41,54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.01.2017 at 15:17:49,49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

--- --- ---

Code:

ATTFilter

# AdwCleaner v6.041 - Bericht erstellt am 06/01/2017 um 14:55:50
# Aktualisiert am 16/12/2016 von Malwarebytes
# Datenbank : 2017-01-05.2 [Server]
# Betriebssystem : Windows 10 Pro  (X86)
# Benutzername : ms - DESKTOP-TGSB6RT
# Gestartet von : C:\Users\ms\Downloads\AdwCleaner_6.041.exe
# Modus: Löschen
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\ProgramData\Application Data\lavasoft\web companion


***** [ Dateien ] *****

[-] Datei gelöscht: C:\Windows\system32\lavasofttcpservice.dll
[-] Datei gelöscht: C:\Windows\system32\LavasoftTcpServiceOff.ini


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataContainer.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTable.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableFields.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.DataTableHolder.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.LSPLogic.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.ReadOnlyManager.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\LavasoftTcpServiceLib.WFPController.1
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\TypeLib\{ED62BC6E-64F1-46BE-866F-4C8DC0DF7057}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Lavasoft\Web Companion
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com


***** [ Browser ] *****



*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

cosinus · 06.01.2017, 15:30

adwcleaner Logfile ist unvollständig

pingodoce · 06.01.2017, 16:10

Code:

ATTFilter

# AdwCleaner v6.041 - Bericht erstellt am 06/01/2017 um 14:53:50
# Aktualisiert am 16/12/2016 von Malwarebytes
# Datenbank : 2017-01-05.2 [Server]
# Betriebssystem : Windows 10 Pro  (X86)
# Benutzername : ms - DESKTOP-TGSB6RT
# Gestartet von : C:\Users\ms\Downloads\AdwCleaner_6.041.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Ordner Gefunden: C:\ProgramData\Application Data\lavasoft\web companion


***** [ Dateien ] *****

Datei Gefunden: C:\Windows\system32\lavasofttcpservice.dll
Datei Gefunden: C:\Windows\system32\LavasoftTcpServiceOff.ini


***** [ DLL ] *****

Keine infizierten DLLs gefunden.

cosinus · 06.01.2017, 16:21

Und wieder unvollständig. Und es wurde lt. dem letzten Log nichts gelöscht.

Wie wärs mal mit Anleitung richtig lesen???

pingodoce · 06.01.2017, 19:00

Code:

ATTFilter

# Aktualisiert am 16/12/2016 von Malwarebytes
# Datenbank : 2017-01-06.1 [Server]
# Betriebssystem : Windows 10 Pro  (X86)
# Benutzername : ms - DESKTOP-TGSB6RT
# Gestartet von : C:\Users\ms\Downloads\AdwCleaner_6.041.exe
# Modus: Suchlauf
# Unterstützung : https://www.malwarebytes.com/support



***** [ Dienste ] *****

Keine schädlichen Dienste gefunden.


***** [ Ordner ] *****

Keine schädlichen Ordner gefunden.


***** [ Dateien ] *****

Keine schädlichen Dateien gefunden.


***** [ DLL ] *****

Keine infizierten DLLs gefunden.


***** [ WMI ] *****

Keine schädlichen Schlüssel gefunden.


***** [ Verknüpfungen ] *****

Keine infizierten Verknüpfungen gefunden.


***** [ Aufgabenplanung ] *****

Keine schädlichen Aufgaben gefunden.


***** [ Registrierungsdatenbank ] *****

Keine schädlichen Elemente in der Registrierungsdatenbank gefunden.


***** [ Internetbrowser ] *****

Keine schädlichen Elemente in Firefox basierten Browsern gefunden.
Keine schädlichen Elemente in Chrome basierten Browsern gefunden.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [3021 Bytes] - [06/01/2017 14:55:50]
C:\AdwCleaner\AdwCleaner[S0].txt - [2954 Bytes] - [06/01/2017 14:53:50]
C:\AdwCleaner\AdwCleaner[S1].txt - [1335 Bytes] - [06/01/2017 18:30:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1408 Bytes] ##########

JRT Logfile:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 10 Pro x86 
Ran by ms (Administrator) on 06.01.2017 at 18:35:55,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 0 




Registry: 0 





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.01.2017 at 18:37:02,92
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

--- --- ---

so ... ich habe die alles nach anleitung gemacht...
hier sind noch einmal die adaware und die jrt reports

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2017.01.06.07
  rootkit: v2016.11.20.01

Windows 10 x86 NTFS
Internet Explorer 11.576.14393.0
ms :: DESKTOP-TGSB6RT [administrator]

06.01.2017 18:41:30
mbar-log-2017-01-06 (18-41-30).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 291392
Time elapsed: 9 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

Code:

ATTFilter

18:57:43.0542 0x0580  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
18:57:49.0718 0x0580  ============================================================
18:57:49.0718 0x0580  Current date / time: 2017/01/06 18:57:49.0718
18:57:49.0718 0x0580  SystemInfo:
18:57:49.0718 0x0580  
18:57:49.0718 0x0580  OS Version: 10.0.14393 ServicePack: 0.0
18:57:49.0718 0x0580  Product type: Workstation
18:57:49.0718 0x0580  ComputerName: DESKTOP-TGSB6RT
18:57:49.0718 0x0580  UserName: ms
18:57:49.0718 0x0580  Windows directory: C:\Windows
18:57:49.0718 0x0580  System windows directory: C:\Windows
18:57:49.0718 0x0580  Processor architecture: Intel x86
18:57:49.0718 0x0580  Number of processors: 2
18:57:49.0718 0x0580  Page size: 0x1000
18:57:49.0718 0x0580  Boot type: Normal boot
18:57:49.0718 0x0580  CodeIntegrityOptions = 0x00000000
18:57:49.0718 0x0580  ============================================================
18:57:49.0765 0x0580  KLMD registered as C:\Windows\system32\drivers\58609004.sys
18:57:49.0765 0x0580  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.576, osProperties = 0x18
18:57:49.0849 0x0580  System UUID: {C0033F47-12FB-D9F3-E5F6-DB9C98A71D76}
18:57:50.0336 0x0580  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3C91, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
18:57:50.0351 0x0580  ============================================================
18:57:50.0351 0x0580  \Device\Harddisk0\DR0:
18:57:50.0351 0x0580  MBR partitions:
18:57:50.0351 0x0580  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1B56E41
18:57:50.0351 0x0580  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B57000, BlocksNum 0xC43D000
18:57:50.0351 0x0580  ============================================================
18:57:50.0351 0x0580  C: <-> \Device\Harddisk0\DR0\Partition2
18:57:50.0351 0x0580  D: <-> \Device\Harddisk0\DR0\Partition1
18:57:50.0351 0x0580  ============================================================
18:57:50.0367 0x0580  Initialize success
18:57:50.0367 0x0580  ============================================================
18:58:47.0614 0x1920  ============================================================
18:58:47.0614 0x1920  Scan started
18:58:47.0614 0x1920  Mode: Manual; SigCheck; TDLFS; 
18:58:47.0614 0x1920  ============================================================
18:58:47.0614 0x1920  KSN ping started
18:58:47.0768 0x1920  KSN ping finished: true
18:58:48.0395 0x1920  ================ Scan system memory ========================
18:58:48.0395 0x1920  System memory - ok
18:58:48.0396 0x1920  ================ Scan services =============================
18:58:48.0483 0x1920  [ 03155454BC4709FC220B92360B7BBB20, 3C3EC5CFFB9EC28C2E7810CC536E8B560B6AD7B1245AD963D79A4DCA1E0A7C76 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
18:58:48.0643 0x1920  1394ohci - ok
18:58:48.0667 0x1920  [ 2809BD40414F0651BC84D55B7459E104, 223EF6EF3592796E962A7D8C2ABB0A27C2504B03A53BA5CF2A94DC06C1485385 ] 3ware           C:\Windows\system32\drivers\3ware.sys
18:58:48.0702 0x1920  3ware - ok
18:58:48.0715 0x1920  [ 943297AA998EA2B4A4E9E9DAA9954729, 6BC9E6557826A70B447443228DEFC0DF55C546DE1D6B4745CD78DDBD3605B4D1 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
18:58:48.0751 0x1920  Accelerometer - ok
18:58:48.0782 0x1920  [ 7A185EE3C8C42D5EA0AD695AA3756339, E3494959DAA76E5CA0E088C6F94B2C1A077B877C93B29D74F0E40C80AFDF5686 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:58:48.0836 0x1920  ACPI - ok
18:58:48.0847 0x1920  [ 0C970C83236D49A37EAA026AE33E1E13, 0773433CC55976C116E74AB5FB0F1076740699B2E2BDE9C6A174464A9EC64422 ] AcpiDev         C:\Windows\System32\drivers\AcpiDev.sys
18:58:48.0889 0x1920  AcpiDev - ok
18:58:48.0902 0x1920  [ 68BD81393B208AFACFEC59354D6ED4A5, 3FF394B2105F8AF3435B9E7D65F4788370F3C0DADBF9C221A3879616AC2A816B ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
18:58:48.0933 0x1920  acpiex - ok
18:58:48.0942 0x1920  [ 3A8A0B3D2EE12EC85DB725A923BC1E53, C34F941DA35F7270D2AF7E22ECDCF6D55CE01BF5F2759A902DF27D001AE64DD4 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
18:58:48.0991 0x1920  acpipagr - ok
18:58:49.0004 0x1920  [ 98D16BAF0AC99877C6EF5573B8F202BF, 1D9C170AFDDF698273E36BD23E1D52EE0038F62FC8C249FC6B3F41BE3C806876 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
18:58:49.0046 0x1920  AcpiPmi - ok
18:58:49.0058 0x1920  [ 5B15A344A42AB5AD9E3D6236B2D8261A, F6C4660494B09658086671E4F8F737680CA55BBF679EB69BF6C74CE89025629A ] acpitime        C:\Windows\System32\drivers\acpitime.sys
18:58:49.0093 0x1920  acpitime - ok
18:58:49.0112 0x1920  [ FB9ECE3F7B8A03E474E611031AD4CD23, 32CDBC6D32DF5C711819A85FD147511AA2E8EE7609CE7D9D352E7755D2E964BB ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
18:58:49.0170 0x1920  ADIHdAudAddService - ok
18:58:49.0183 0x1920  [ C92B0A0957ACAD3CEEF502A2CA10ACB8, 78BF46318B69D9479ECDC83446DD8D454AA2A9A9D94B33C5FC68933DB18AFA3B ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:58:49.0207 0x1920  AdobeARMservice - ok
18:58:49.0226 0x1920  [ B79750091FC0842182FE49D263791294, 32FC260A74C9C45CD1E8998523642C285866378FCD9478FEFD15A0CC42EC0E0B ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:58:49.0260 0x1920  AdobeFlashPlayerUpdateSvc - ok
18:58:49.0310 0x1920  [ 7E9D4FB10269A5DAF8DE9B012FED37B1, 6930F14AA6826946DA41FA11D370A9D76C948C5FB2CEC351FDA8DFAEFCC531AC ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
18:58:49.0386 0x1920  ADP80XX - ok
18:58:49.0406 0x1920  [ 12D23758621B00B8D3134095EC3325FD, 30DC1C40539FF6E14D9D692870FD6D511455F2D86DB1BF505B2500F953A611C4 ] AEADIFilters    C:\Windows\system32\AEADISRV.EXE
18:58:49.0445 0x1920  AEADIFilters - ok
18:58:49.0470 0x1920  [ 3B5BE5B3D3CE8D9834C2C9B325AC6A29, 86D221CFF168D61C7359425A20C0A413E6EF8B023806BBB84E5F26E4E997D74A ] AFD             C:\Windows\system32\drivers\afd.sys
18:58:49.0519 0x1920  AFD - ok
18:58:49.0565 0x1920  [ 7E10E3BB9B258AD8A9300F91214D67B9, CE5FAD7BF78234B64EAADF64DB23F3C342AADB9C5E3B0168E57863F494F30318 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
18:58:49.0664 0x1920  AgereSoftModem - ok
18:58:49.0683 0x1920  [ 266739048C6ADCC52050D057EE7B7FC4, C5CDCD14071917110A206DD99548BF1D41C1028F1CEF24F2488197B786B8978C ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
18:58:49.0731 0x1920  ahcache - ok
18:58:49.0740 0x1920  [ BE415E130B5598C355FD781CE36838A7, 0C0E010459E2485950F9F1B0363436ADD111DF8532360D927A5113E8A24F7D10 ] AJRouter        C:\Windows\System32\AJRouter.dll
18:58:49.0777 0x1920  AJRouter - ok
18:58:49.0791 0x1920  [ 0E3981D2FACC626692D3974A3BCA375A, DDB2F31CC7A8CCBCE62C23311004A60B0DE67BFC10020F1037581062C7A59381 ] ALG             C:\Windows\System32\alg.exe
18:58:49.0833 0x1920  ALG - ok
18:58:49.0845 0x1920  [ 3CD02476635113FD49D420ADF18F3187, AF38701C875D01939B43A27C26E6DE04601566C4FE1ED74FA4ABA48885264121 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
18:58:49.0887 0x1920  AmdK8 - ok
18:58:49.0901 0x1920  [ EC40FB47E51F4ED05A5A3E1FBB7A3323, 9307BEE98A161291B4094099E3DA351A65FE6DB6E3222B2F1A0861BCB38491AD ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
18:58:49.0941 0x1920  AmdPPM - ok
18:58:49.0952 0x1920  [ 859393BF40B714092A20561146401E48, 7F46EA0CE27971CEB6961BF3AA2AFC23A53BCA59BDC5525A8F217C15F7C2B809 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:58:49.0981 0x1920  amdsata - ok
18:58:50.0001 0x1920  [ 976A5D0F41721613177C352B90B330AE, 7060FF655AE3B396AC104C159BF0982329AB7307D69E5F5BB9B92A4A1E0AF5B9 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:58:50.0035 0x1920  amdsbs - ok
18:58:50.0045 0x1920  [ D41974D87F5C44902DA797BF13142AE9, 3CDD9C999316E91046B7E9D89E3BD65C6A96E2759E4E55D37980927D04E19879 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:58:50.0072 0x1920  amdxata - ok
18:58:50.0088 0x1920  [ 01999F61F9A20E1548A0872C0A9AAAC1, D2FE98CB692A76B52AA742A07ECCB1A03206FF7F85A052E5A32219F3770F6CF7 ] AppID           C:\Windows\system32\drivers\appid.sys
18:58:50.0123 0x1920  AppID - ok
18:58:50.0135 0x1920  [ 86183D1D11EBCF8E7D92CD089A74A606, 4F80A74A96EBFFBDE6B74A5457C0D50E669D36027A6E84E1A1F7BAE2331095EA ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:58:50.0184 0x1920  AppIDSvc - ok
18:58:50.0196 0x1920  [ 49C0FBF00247C7DC48ED6085E2F4C391, F6F4FED838473B120175128809CFB3DFCBECE925BD23FD46FFEC3300CA4A0CCE ] Appinfo         C:\Windows\System32\appinfo.dll
18:58:50.0241 0x1920  Appinfo - ok
18:58:50.0249 0x1920  [ 9DCCF6510C13B29D5542E80E78670507, B43B4B4E957105CB49C39897B7CE7B6AAD17945CA2FE59970C39A69E6557C150 ] applockerfltr   C:\Windows\system32\drivers\applockerfltr.sys
18:58:50.0301 0x1920  applockerfltr - ok
18:58:50.0318 0x1920  [ 964B3242103F4CBC5174A301B6F2ED0F, 17732F02835910C7A301FC1D467148CAEF4A4ED05D2A8B47D7A1C7E0916A00C7 ] AppMgmt         C:\Windows\System32\appmgmts.dll
18:58:50.0366 0x1920  AppMgmt - ok
18:58:50.0398 0x1920  [ 503A049594590BFCCBA89E2D50D24EB3, C0426DF54F9D4237F446A1E85D2F106DAECD0CFC9E95A86CCB24791A0B40D7B6 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
18:58:50.0464 0x1920  AppReadiness - ok
18:58:50.0494 0x1920  [ FB4AC4CD756432034439082724697BF8, 0B37555972713DB8B9A71326B30519024395C65B7188B35B84EF851AF44CEEDE ] AppVClient      C:\Windows\system32\AppVClient.exe
18:58:50.0552 0x1920  AppVClient - ok
18:58:50.0566 0x1920  [ 2B80ADDDB8E2F07987C056C2D2E6C41C, F76A4872593C4A2F8A961E7B8B9C931C5A476A2266E5F9BA19C7E60A603B5557 ] AppvStrm        C:\Windows\system32\drivers\AppvStrm.sys
18:58:50.0596 0x1920  AppvStrm - ok
18:58:50.0609 0x1920  [ C3A3693B495AAECBA08CA10380F68A28, A1EEC75DEBA3C0DA76CCD6F4A95EFB9644665416D62002F8D5C2C66EDBC4533B ] AppvVemgr       C:\Windows\system32\drivers\AppvVemgr.sys
18:58:50.0642 0x1920  AppvVemgr - ok
18:58:50.0654 0x1920  [ FE3BAA1D877589FA101FFE06937E8287, F93440A682B040D163CC4D6618E386AF5936782E47CC0AF628420DE9E5678438 ] AppvVfs         C:\Windows\system32\drivers\AppvVfs.sys
18:58:50.0687 0x1920  AppvVfs - ok
18:58:50.0765 0x1920  [ FDC4207AD1583C38D1AD68C6FC146E7A, 5CC2467B44CFE111297E1F09965BD15973C7141FE51592E4AAE3E8138C1464E6 ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
18:58:50.0921 0x1920  AppXSvc - ok
18:58:50.0940 0x1920  [ 976AFA23533862271F28DDA23DF9FC3B, D988693278554079F778AE52AC6FB8F580F26DF3778EE78445082970321A17C4 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:58:50.0972 0x1920  arcsas - ok
18:58:50.0983 0x1920  [ ACE407AF9DCE214772E04894C18BC18B, 5D54569C791520125ED472FFEBC6F5471DFA1D2C0274E488DAEC20824972246C ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
18:58:51.0009 0x1920  aswHwid - ok
18:58:51.0018 0x1920  [ 7393DE24CAE720E128FE61CC1A7632E3, 20EA724AB746973A53FF387F36F7CA445126C006A06858CA329654BED1E7CE6E ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
18:58:51.0040 0x1920  aswKbd - ok
18:58:51.0052 0x1920  [ 9A3BCD9CB36311EC1DB686010CE2E793, 66A9A6B3D23CA2D0D86887223AB4D8EC4F28426CFC950BAFECA9597834FBB915 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
18:58:51.0076 0x1920  aswMonFlt - ok
18:58:51.0088 0x1920  [ 411E8CF998E01C3247DE094376E3CB3B, 27A430466EB8E655D03B29BFB994DE657CE3878CF1D90EB51A39521BF7767954 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
18:58:51.0112 0x1920  aswRdr - ok
18:58:51.0122 0x1920  [ 39445B2AA5CD7711DA5572E816D5DC86, A63DF762A316CB69B3FD7731197EABDCDFB6BB21F840504A50B4363751EC909E ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
18:58:51.0149 0x1920  aswRvrt - ok
18:58:51.0188 0x1920  [ 03AD952FC1287D5623763E310CE081BA, BACCBDE6E1B98E9502B0ABDA5BBEC2FFDA50820085E08CFC50F81B5C728D843A ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
18:58:51.0240 0x1920  aswSnx - ok
18:58:51.0271 0x1920  [ E061C8C09103BBE429D9DB222ED7F4C3, 78C5DDB5BE25DED9BB58A4E12C2E3DDD3E798CFF5AC0F87D1BE615FAEC896B0E ] aswSP           C:\Windows\system32\drivers\aswSP.sys
18:58:51.0309 0x1920  aswSP - ok
18:58:51.0323 0x1920  [ A084E7BEA9EA4D0BE94357BFE8E987D7, C006EE86A0E6BBDFC6EC1F2708C32722AB571FC64879D6EA1FB6A230E13444B9 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
18:58:51.0349 0x1920  aswStm - ok
18:58:51.0365 0x1920  [ 8CA850403483A9373406707E8144EB5C, 58C33AFFB6CA2F52BE2534D3099E6F76134484657413E9B4F8A58CB3F08F8FC8 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
18:58:51.0395 0x1920  aswVmm - ok
18:58:51.0413 0x1920  [ D8B54F3B0714F425A1E750930F2959B7, 6926B7249E7D6506D084E00212E00E2C3CD79D556CEC4B0489459D1030163A08 ] AsyncMac        C:\Windows\System32\drivers\asyncmac.sys
18:58:51.0453 0x1920  AsyncMac - ok
18:58:51.0464 0x1920  [ 1D8B6976EC75698485A195A06B2DEBAC, 750281084F24190DD77CD2DE23EE8E8B46A942F30C8CCDDA2073F80B4EC01B3A ] atapi           C:\Windows\system32\drivers\atapi.sys
18:58:51.0490 0x1920  atapi - ok
18:58:51.0516 0x1920  [ 1EC637725AEBE586508626BA50AF3324, 8D3D873D96BAB9DA82AED3E898690BB03AD7E0108D45C3EB0B165BE52A0ADCE0 ] ATSwpWDF        C:\Windows\system32\DRIVERS\ATSwpWDF.sys
18:58:51.0555 0x1920  ATSwpWDF - ok
18:58:51.0575 0x1920  [ 9086C5B04CE8C611043B80A52B4E5482, 231D2F05EAA2FE105195F24F0EE1FE97105BB20D970831220B232FC637AF2C21 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
18:58:51.0631 0x1920  AudioEndpointBuilder - ok
18:58:51.0669 0x1920  [ 18590E6DF36EF89A2A1E9BBA0429CEA1, E9401391A7DF497BCF7F92147BF823F873343BF1FBAC88A204C62827CCD56973 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
18:58:51.0750 0x1920  Audiosrv - ok
18:58:51.0767 0x1920  [ F4E0580B5789474385E7ACB189C4AF2C, DB5BE2C852AC102AB8EB186362E582E250B843BA52B3B71AF08A5FDA8A6F91AF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:58:51.0797 0x1920  avast! Antivirus - ok
18:58:51.0817 0x1920  [ 24CB11F0C843ACF345AF4B6ABCC88627, B5F6F7CD21250ACE9F63691ACBECEDCE69693B2BFDCEB2C3151BC59927B7458E ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:58:51.0860 0x1920  AxInstSV - ok
18:58:51.0883 0x1920  [ 49EF8E38514DB9AFFC696876D3540A52, F9E088FE3F0ABCA329C20424080F4527EAADAB2A5460C188735901F581F1DAB8 ] b57nd60x        C:\Windows\System32\drivers\b57nd60x.sys
18:58:51.0946 0x1920  b57nd60x - ok
18:58:51.0957 0x1920  [ F777221219ED35095E903F69B058C42E, 379471A9F84B648212CEA31E9F9AA791F702CE000B59CF6ABAD13AE3AC3CA1F4 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
18:58:51.0999 0x1920  BasicDisplay - ok
18:58:52.0011 0x1920  [ D68ED76646F49C52D65006FC4C596A26, 4CAC90A72DF1E6112BC1AB2607E9D51AFBA96C291FE4F6767B3F303A212028BD ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
18:58:52.0047 0x1920  BasicRender - ok
18:58:52.0061 0x1920  [ 045ED769BF5396D346FA7493F47DF811, D0A57A040E3B18AC3A5ED56BF2D26E334DA0381AB686CC3F0517953EC3F7B46D ] bcmfn           C:\Windows\System32\drivers\bcmfn.sys
18:58:52.0100 0x1920  bcmfn - ok
18:58:52.0108 0x1920  [ E4D6B5E5E5CD2606391220B156235692, 4633C60BDA9FCB892054D4F338323A4C9E35915D1BF7571A38AC25D51C1BFBE5 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
18:58:52.0144 0x1920  bcmfn2 - ok
18:58:52.0165 0x1920  [ 1F602D94A1DB47003B373DB0F14AAAF1, 964D37C4605E0A312E51C38C94E72C6E2F4D576C5D7416EF0D3C28F275DCC4DC ] BDESVC          C:\Windows\System32\bdesvc.dll
18:58:52.0221 0x1920  BDESVC - ok
18:58:52.0233 0x1920  [ 47DC23ACA8BEEE31FBA52E6657767E8F, A145DF855E70020AE96BF6D9852033E79E218F91998BE57B86E27083F8E86B1B ] Beep            C:\Windows\system32\drivers\Beep.sys
18:58:52.0276 0x1920  Beep - ok
18:58:52.0302 0x1920  [ AFD903C0CA3AB3F70E1E6DC09E1F7C97, 30A79F603BC6828AB6EA9AA992CC5C5CBEFC3741A7FD0A58B4D6C71501255742 ] BFE             C:\Windows\System32\bfe.dll
18:58:52.0369 0x1920  BFE - ok
18:58:52.0407 0x1920  [ 1605DDADAF3CC89E8F803F5955C82747, 480BCA04DA5DFBFD2FB4804113806013BD43DE0E64652B63310A16F7D959ACBD ] BITS            C:\Windows\System32\qmgr.dll
18:58:52.0495 0x1920  BITS - ok
18:58:52.0509 0x1920  [ EB4E94E3A66E19470176972A549A5A9C, 417E34B4004DB2187483E6AF2F9811373C2D57F7773BF04E5F9145FE78CC29AB ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:58:52.0550 0x1920  bowser - ok
18:58:52.0580 0x1920  [ 2DBE710FC2592023F550A0A6D5E35AEA, 651BC87E88F335642BF1DFE3C729991E288EFC8ACA889CD7219C9459A7C7B6D3 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
18:58:52.0651 0x1920  BrokerInfrastructure - ok
18:58:52.0668 0x1920  [ 47AFBA90CD451D64352C90851761DF66, 54A6B66B1BFABD7968D4C641067E7199B0077EA3510C0D03837FB2B36FB4DD15 ] Browser         C:\Windows\System32\browser.dll
18:58:52.0715 0x1920  Browser - ok
18:58:52.0724 0x1920  [ AE0FB0E7C275AFAF60F822415DC6748C, C62CC0799A6DC4F4290B1FF15F95A988FF86D47D90AAFCEDA1F5752D311366A5 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
18:58:52.0766 0x1920  BthAvrcpTg - ok
18:58:52.0780 0x1920  [ D7CF5255298D8377812ED2E072E889A9, 6700C39D7413B5D948C01B7E90408BFA05C6EE0C5767841D32FC27234628DA09 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
18:58:52.0818 0x1920  BthHFEnum - ok
18:58:52.0827 0x1920  [ 36C5FB26B23A686EF24F7BF8E0FF2731, E7FAFEFE8184EFF66CA1BFCA55069F7B4FA2F4FAD70973448445A1DBE6043886 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
18:58:52.0862 0x1920  bthhfhid - ok
18:58:52.0879 0x1920  [ E6D7B2DC8DEDD9851CEBF4AD748DB651, D2A63D3E0F38B4D30E0D653E35F30AD2B2EC5440D41132CDAE4772846AA5ED03 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
18:58:52.0930 0x1920  BthHFSrv - ok
18:58:52.0940 0x1920  [ 946F5FAC425C4C616AD4B347FAA2A8C5, 5D56A9129F4ECF9A1B180E5987C9C57D2934FADFBAD2C5FCAD887DFC1649983C ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
18:58:52.0980 0x1920  BTHMODEM - ok
18:58:52.0996 0x1920  [ 64C79FE4EBE17BADD43E7945C3231FF6, AD4A53F594E9D23B23D71D42825DD4F1BE94D6BC03AFABE9A40E9027C55761FE ] bthserv         C:\Windows\system32\bthserv.dll
18:58:53.0039 0x1920  bthserv - ok
18:58:53.0051 0x1920  [ 1611E3AD41DD64FA2666BC25D3AEB6F8, 0A8E5B1B7E8235BE9516CDE477DED11EC88037AE8B2894A04F18598A33036F67 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
18:58:53.0088 0x1920  buttonconverter - ok
18:58:53.0105 0x1920  [ 4B51E183CB0460ACCCB08826B82BA2A5, 1B9F45AAED054EC5CA0C91CF888F7458F423609EDA4A8481BBF1D968CACEEA4A ] CapImg          C:\Windows\System32\drivers\capimg.sys
18:58:53.0147 0x1920  CapImg - ok
18:58:53.0159 0x1920  [ 9577B2171AD8DBC6A8BAAD75232CBF38, F939BDDB99A3A3A090A4A2728FB75E89ACFF72CB5C4BD74F00C7DA3A7028374D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:58:53.0206 0x1920  cdfs - ok
18:58:53.0224 0x1920  [ D7D8E3DC85C585EAE0A24BB78B718054, DA774648F3786FD2D31FCA8CE9C1B2DFAD79D49B9F7DA1078A663C4A37C610D1 ] CDPSvc          C:\Windows\System32\CDPSvc.dll
18:58:53.0278 0x1920  CDPSvc - ok
18:58:53.0298 0x1920  [ 00677D7D4770A93AFDDFD59C97C5DB02, BB51DA44C4AA86BC4FBD39CB10B9E5047441C1130DFA6F720D9E346C28F27A50 ] CDPUserSvc      C:\Windows\System32\CDPUserSvc.dll
18:58:53.0349 0x1920  CDPUserSvc - ok
18:58:53.0366 0x1920  [ 67B188419B7018D7956A38C89EFCC70A, C37C1BBA25D9AE35649BE3ED2D829008F72EA92A3ADCC7A9038D1E47928513D1 ] cdrom           C:\Windows\System32\drivers\cdrom.sys
18:58:53.0407 0x1920  cdrom - ok
18:58:53.0424 0x1920  [ 1D6A243ECD54F7CC294B28946F6B5B33, 7A7F19ABD4B6D73121466B4D8649BBF375034B293FBDFE02A8982D09AA9E6393 ] CertPropSvc     C:\Windows\System32\certprop.dll
18:58:53.0473 0x1920  CertPropSvc - ok
18:58:53.0483 0x1920  [ 3B93FFBBBD36E1DD8335CA18E8432F7C, 4C1B712BB5A60C0B275B345712265BF5C9ADB80A5295155A76F4259F89E0F1AF ] circlass        C:\Windows\System32\drivers\circlass.sys
18:58:53.0520 0x1920  circlass - ok
18:58:53.0541 0x1920  [ C86D5336F7EBE40E8B69CE8515283DC8, CA084894BCD3ABAA2FF61DD72BD70071B828DF03079E9F4E746D29EF0DDEB7A9 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
18:58:53.0579 0x1920  CLFS - ok
18:58:53.0610 0x1920  [ 45DBAD9665B07032CADF149B8CEEF24B, 2D311D62C84EDFD55C39152AC0C84359B92C056137AB9EECAA46E7862F16254F ] ClipSVC         C:\Windows\System32\ClipSVC.dll
18:58:53.0663 0x1920  ClipSVC - ok
18:58:53.0676 0x1920  [ 95E1EFBF28F5B071DC763D54E8A302E2, 47609CF571F29A02E94BF64D0158E0D894EC4FD42BE38970EA20202474FB9DBD ] clreg           C:\Windows\System32\drivers\registry.sys
18:58:53.0716 0x1920  clreg - ok
18:58:53.0733 0x1920  [ 2DE5CAA56A2BE62470E65E5B0A438821, 2BF3B3186712803E351398215190336BF22A6AA1C892E7707CB50D67BC130E56 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
18:58:53.0769 0x1920  CmBatt - ok
18:58:53.0801 0x1920  [ 8AD8C91D90F656948650BCAECF13448C, 30B3BF8F7855894D546149DFF81ECD3838D718511019C02DBA0D5F0DE07822A7 ] CNG             C:\Windows\system32\Drivers\cng.sys
18:58:53.0856 0x1920  CNG - ok
18:58:53.0870 0x1920  [ 2BC3F67E62E85D19348A3882B923E343, 6C87C1EB6FCAF65E88088EA673972EC15F7B6EBCBE961FC9008D41C280314BC1 ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
18:58:53.0897 0x1920  cnghwassist - ok
18:58:53.0912 0x1920  [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:58:53.0941 0x1920  Com4QLBEx - ok
18:58:53.0967 0x1920  [ A647E88E5949450EB06DF2A7738043AF, D8CF5626115285E8793C6DAA7011598C86F821F934BBD5FBDE6A0E5EE7642C8E ] CompositeBus    C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_x86_ed148199964e21c5\CompositeBus.sys
18:58:54.0005 0x1920  CompositeBus - ok
18:58:54.0013 0x1920  COMSysApp - ok
18:58:54.0029 0x1920  [ 9F17B6403B954A9C7C24C70F6F90792A, E242A073742E092CF51E99AD5B9484F596A0D0CA080AEE7AB5CD1B1EE8767245 ] condrv          C:\Windows\system32\drivers\condrv.sys
18:58:54.0056 0x1920  condrv - ok
18:58:54.0085 0x1920  [ 2A2C56D4EE5B54D2BAAA39AE88EA0EEA, E03C3E7B802698397EAC802E6789A92D1E62626A3D0AE4FC96EAC6DFFE1783C7 ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
18:58:54.0140 0x1920  CoreMessagingRegistrar - ok
18:58:54.0162 0x1920  [ 2AD3EF1C870850E1C7D8F07078006555, 6B37FB025F5F7E3E6E550EEF3DE06B73744F78152057FC2D7EC1FCF2519459B1 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:58:54.0214 0x1920  CryptSvc - ok
18:58:54.0237 0x1920  [ DB8B45AF1B7F27FCCC28BDA6DB8D8312, C1B08606F533D16E58D1D13B35367595B1C1F66618B6D2E06E27A6D3926F4CF7 ] CSC             C:\Windows\system32\drivers\csc.sys
18:58:54.0297 0x1920  CSC - ok
18:58:54.0329 0x1920  [ 3CE212F62B56993010B181F914875315, E6FBAE019BA37B7D4117179341B19352FB14E3A6884261E15E3D02ECC75BB1C5 ] CscService      C:\Windows\System32\cscsvc.dll
18:58:54.0399 0x1920  CscService - ok
18:58:54.0412 0x1920  [ 1253A07702253E23A6D31A7EA8F0152C, 36E670C661999FFF62FD5AA3EF19465189EDBE1B212A883081B186A26F7BE5A0 ] dam             C:\Windows\system32\drivers\dam.sys
18:58:54.0442 0x1920  dam - ok
18:58:54.0477 0x1920  [ 16C4E1708C9574B5CC9A32324FCE51DE, A7D99F2A6B254B5E9532CE957BDDE339D6D2281290A4ABE6B8E497E9D4872D05 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:58:54.0559 0x1920  DcomLaunch - ok
18:58:54.0576 0x1920  [ E32C822C524D7C72EB27A778FEE532D2, 641BF41A9364EBDABCE2576DB423171A4048850BC61F6C20534AB13933814E63 ] DcpSvc          C:\Windows\system32\dcpsvc.dll
18:58:54.0627 0x1920  DcpSvc - ok
18:58:54.0649 0x1920  [ 6B8D6B334672A0ED29CCA41369888431, F63EF65651E113446B528AF927F0417BC909996F3DDAC639F164933A3FF022A4 ] defragsvc       C:\Windows\System32\defragsvc.dll
18:58:54.0717 0x1920  defragsvc - ok
18:58:54.0741 0x1920  [ 234BAFE8BC6930A22290FB4BD42575BE, 5E6955EE67AEA5E6A61101A892EB65A10D5F31199660C5C12206DD1BEBD94BC3 ] DeviceAssociationService C:\Windows\system32\das.dll
18:58:54.0798 0x1920  DeviceAssociationService - ok
18:58:54.0813 0x1920  [ 0DF131F7F00E34B6C9DA053E55A80AA4, B3CA50986884B00B67EF1BB3910CA60FFEB4EA3AB9D08CBD6E82E792B650128B ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
18:58:54.0866 0x1920  DeviceInstall - ok
18:58:54.0875 0x1920  [ AFD78D3A35662205B8E3BF50F5FC0A70, CB50A1B5645922DF1338BDFE733E9846B89AA2F8F2AE127314A971DC12EF6702 ] DevQueryBroker  C:\Windows\system32\DevQueryBroker.dll
18:58:54.0913 0x1920  DevQueryBroker - ok
18:58:54.0928 0x1920  [ 9C24695688530F014821E30FC8FFD3C9, 72EAAC4F21826F5198F313421B82484A1D3FEAD4AEF4F4DC45A22C4FF3B59D20 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
18:58:54.0979 0x1920  Dfsc - ok
18:58:54.0997 0x1920  [ E0201A4BB639042959A11457A52DD627, CA05AE303DC32347C87B512078F4CCD9E821271D8E54A18023D1DCB1F5D0C2B6 ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:58:55.0052 0x1920  Dhcp - ok
18:58:55.0064 0x1920  [ 06BFFF10377726EE09E9CD38E187EF16, 51E4875DE91309D86FD24744356E70BE2E0CB3E7BE0CC9321F65544A68ADAC1B ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
18:58:55.0109 0x1920  diagnosticshub.standardcollector.service - ok
18:58:55.0169 0x1920  [ E16FC9748D4D9CC1B5037B78DC738F7F, 1A01B81C0AF4F4B9EEFA515CBC14D5B3E9D8DAC5B9CD5B3D771F111BAD9EA6B3 ] DiagTrack       C:\Windows\system32\diagtrack.dll
18:58:55.0293 0x1920  DiagTrack - ok
18:58:55.0309 0x1920  [ F2BBF4C89BE9D8A5338955CC660C9308, 95039E5786F00949D1C375FD23EA2D1AD1BD86CE01270473955D470BCCE4D9D3 ] disk            C:\Windows\system32\drivers\disk.sys
18:58:55.0340 0x1920  disk - ok
18:58:55.0359 0x1920  [ A185BCC083628A702D61F384B2D37DE3, 1DFD17D0E6C7C31D8330C15F33F1C6F22808A4170935C3C087BEBC9CCB3225D3 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
18:58:55.0420 0x1920  DmEnrollmentSvc - ok
18:58:55.0430 0x1920  [ 22C192B3FC5DD7068BA6D56D8755948E, 0D16516710C7EE7CA32AC45B5BC83E6B8AF352B18C6ED4663689B7AB74DBD0D6 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
18:58:55.0475 0x1920  dmvsc - ok
18:58:55.0485 0x1920  [ 98B56EE8E60A517DB651F79A10FD937B, 9B5F4CD835E441F3835BAB4D1D74C082ADA8B07B046CA77517155C74C98B3FD4 ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
18:58:55.0537 0x1920  dmwappushservice - ok
18:58:55.0552 0x1920  [ F3F9449C3F466434912D06E0FBA59FBD, 46BD399D7707E238E440AC8E68D7BED58E4C2D8031EF19F951796EE969956CBC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:58:55.0603 0x1920  Dnscache - ok
18:58:55.0625 0x1920  [ 29B816D498BB00B46328887131943ECF, 350152ECAC1693B3F66052CCC0E673827220F7B6CB960B979B1A970E68E86BB9 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:58:55.0674 0x1920  dot3svc - ok
18:58:55.0688 0x1920  [ 3A46434BC8319CDDC44E02664D67CA26, 74C26F8E17FA08E70F2A103C7DD032A41AD39D1564C3EEE4E30CAF557678FE24 ] DPS             C:\Windows\system32\dps.dll
18:58:55.0734 0x1920  DPS - ok
18:58:55.0743 0x1920  [ 065F7A30FDCFC86E850BA76C8AC3C8F8, 692D47A6231AEF32E554F43823855B4AF449B5881AF956B5E9E4F01A04D57D58 ] drmkaud         C:\Windows\system32\DRIVERS\drmkaud.sys
18:58:55.0771 0x1920  drmkaud - ok
18:58:55.0784 0x1920  [ 122C70C18BFABCF509F683A1D739264D, 88A29F225A5B136EAA6DFA2F03BA2CBF86B484EA32A331590216F48408F05364 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
18:58:55.0837 0x1920  DsmSvc - ok
18:58:55.0850 0x1920  [ 2C8B7475888EAA31315F5960DA2019B2, F5C4E6C54C3C339CCBF025FE847BF9B5C5EAE485A7707D2BF24E7174ABB260DD ] DsSvc           C:\Windows\System32\DsSvc.dll
18:58:55.0898 0x1920  DsSvc - ok
18:58:55.0970 0x1920  [ 26D7D93C95E514606D2470445DCB3AE4, EBC5A0619B10BB6DAC1F8A5CD32A58984C080A94D128917B8487646E40A55093 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:58:56.0081 0x1920  DXGKrnl - ok
18:58:56.0100 0x1920  [ 6E1E91144E0058039E2D5C0FAFF52783, A3D143A9F0B3385471449683985A3803085480DC27F811F471AC6B59EBA8F918 ] Eaphost         C:\Windows\System32\eapsvc.dll
18:58:56.0150 0x1920  Eaphost - ok
18:58:56.0159 0x1920  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] EFS             C:\Windows\System32\lsass.exe
18:58:56.0192 0x1920  EFS - ok
18:58:56.0205 0x1920  [ 13919673FB7CD6EA50B65D0A780C6668, 2F1C32B9E2F013A0F83A449FCA3CD886289E8F073A79522AA6515183613A9B0B ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
18:58:56.0235 0x1920  EhStorClass - ok
18:58:56.0248 0x1920  [ 985743134FA3EFCCE29420C78899C04D, 8F1DA5CC155FF315D93AF17781F0E1BC8BCCF1D649686B0C0502026E2ABCDAB1 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
18:58:56.0281 0x1920  EhStorTcgDrv - ok
18:58:56.0289 0x1920  ElbyVCD - ok
18:58:56.0303 0x1920  [ 7BBC217388D13405B20B6DB2D2B149C2, 02CB05C0914A8D96F729B9FBF96E09855E06EC2624A5B3C7CE8DB6141BAB8351 ] embeddedmode    C:\Windows\System32\embeddedmodesvc.dll
18:58:56.0352 0x1920  embeddedmode - ok
18:58:56.0372 0x1920  [ 17641F7E9BC7EEC02420747962D9D106, B2999FBBBCD708917AD9D6FC7053632C06089D0BD2564D3F68C6F87C8E11A845 ] EntAppSvc       C:\Windows\system32\EnterpriseAppMgmtSvc.dll
18:58:56.0426 0x1920  EntAppSvc - ok
18:58:56.0434 0x1920  [ D7136B01DC15851F82F1ED40A3889CA0, F7744A5EADBB2CA55E7525E64AAA7301F7B749019E8146992B2B8EF7DC02A201 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
18:58:56.0470 0x1920  ErrDev - ok
18:58:56.0494 0x1920  [ A8CE54F53E76FDB5EDA357083369F06D, 648AA6B2521C861E63F1A0108C2201AEA7B9971DC216DF54FED5D6D66601E2FC ] ESProtectionDriver C:\Windows\system32\drivers\mbae.sys
18:58:56.0521 0x1920  ESProtectionDriver - ok
18:58:56.0546 0x1920  [ 297BFCA82AA994CE9B95706146764FBC, 9850D39254033EAA3FEE7ED25286CCF85608AA81D04112264A6F2C41CF153148 ] EventSystem     C:\Windows\system32\es.dll
18:58:56.0604 0x1920  EventSystem - ok
18:58:56.0622 0x1920  [ 0AD112D64CBE7CD0CC56BCC51A96C244, 872B791C97C3404AC056F231A436DC5FEA0AFAFDBA8843B7B0F345E551647A56 ] exfat           C:\Windows\system32\drivers\exfat.sys
18:58:56.0678 0x1920  exfat - ok
18:58:56.0696 0x1920  [ D2FC572D6B71CF1EB30370617AF46C4B, 416236FB42B91D435BB3613026E8CAB9E26642AD32BE69CB109C1BF6697E6F99 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:58:56.0739 0x1920  fastfat - ok
18:58:56.0766 0x1920  [ 0DA3553D2D52F8529B67C38D6DD0E15A, A6D590BCE75E0D70A175C115D48FC483452458B04078394C1B3829E6BF75810D ] Fax             C:\Windows\system32\fxssvc.exe
18:58:56.0834 0x1920  Fax - ok
18:58:56.0845 0x1920  [ A0126E7A898BB9D2903DE9F403920DE5, 6794087F2E0D9DF0A16138689A2D908D4B85C79AFE684E917121A242F21B2114 ] fdc             C:\Windows\System32\drivers\fdc.sys
18:58:56.0882 0x1920  fdc - ok
18:58:56.0891 0x1920  [ DC3775810E822B01FFA7F2495247D253, DB59321E07BEDD011BACC0797A41BC924384A1EA8A07905A801785603D9B687C ] fdPHost         C:\Windows\system32\fdPHost.dll
18:58:56.0933 0x1920  fdPHost - ok
18:58:56.0942 0x1920  [ BDEFD67A4F1BBC713BC25E8B1A6EC531, CD80EFE7BEF14894BA81028F5E303ABDB2BCD51ADF397F3D035BC11D007121ED ] FDResPub        C:\Windows\system32\fdrespub.dll
18:58:56.0987 0x1920  FDResPub - ok
18:58:57.0007 0x1920  [ CB1D954A95C06BE11AD1342FB118C781, 78187C52714B2A69EB3323261B64FB3239FCC861109C5057529D132B78390130 ] fhsvc           C:\Windows\system32\fhsvc.dll
18:58:57.0054 0x1920  fhsvc - ok
18:58:57.0066 0x1920  [ B1CBAE1E28CDC943C15A84071F458B68, BED9F204C32334204B22B6756C47692131F1A330ECC58A31BE9533DD4A6C358F ] FileCrypt       C:\Windows\system32\drivers\filecrypt.sys
18:58:57.0107 0x1920  FileCrypt - ok
18:58:57.0117 0x1920  [ 3FB44718D1EEAF86084E3DB63C2CCE35, BE1985D12738F1AF7367C0CA0086CD7216E989159BB880C0BDAFACB499186ECC ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:58:57.0146 0x1920  FileInfo - ok
18:58:57.0155 0x1920  [ D83A9B254CD6F8DA9F088B11549F7079, 34A8E248B7A66075C8EA5AA5FA180E6E2FF7A5CE8BAE09F0144EC1D23B01E87B ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:58:57.0197 0x1920  Filetrace - ok
18:58:57.0206 0x1920  [ 89D636A10C1D074B3CC4DA34F106728F, C836D780A4848BB2F093125390FEE2D885F80DDDB6E68AFB2D85B2672B6E4DC8 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
18:58:57.0248 0x1920  flpydisk - ok
18:58:57.0269 0x1920  [ 79C58738E216A568216ACE46CEEA9C21, 585A1C5426D13F009940CA84C41623C7FDDF9660C58F1B211BC744BE8AE566C7 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:58:57.0309 0x1920  FltMgr - ok
18:58:57.0371 0x1920  [ 51B108F8123250BCD617B628F4FF4785, DBEF8A3AF4539CD27DA596B78CD2D3AB0B0071C13FE98D634ADB75ACD34DF88C ] FontCache       C:\Windows\system32\FntCache.dll
18:58:57.0505 0x1920  FontCache - ok
18:58:57.0519 0x1920  [ C9427725CB6DDFA911F30D5F4E369581, 03ABCDEE3C5AF02B1D9A3E686ACA7C8E71F1E93FA26F126EA424B40E1D5DEEA4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:58:57.0549 0x1920  FontCache3.0.0.0 - ok
18:58:57.0574 0x1920  [ F596DF5D4C4F4135658C41FC03931076, 56D6751E418A4D30DFB9A3B9FE72F2969CE5A47AD91B568720E0B42419195189 ] FrameServer     C:\Windows\system32\FrameServer.dll
18:58:57.0640 0x1920  FrameServer - ok
18:58:57.0651 0x1920  [ A5B6ECA47256E837FE15937D2BDAB1CA, C5D4BC3CEB145A2130F22C27779BB19573861B0F08CB1B5E2C02C82F7FBF8BB3 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:58:57.0679 0x1920  FsDepends - ok
18:58:57.0691 0x1920  [ 6D729037BFBBBB21BA8F1ADC4888C254, 92FB100060B01503D880D1F150D361ABA32D839643620EFE93BAC96ADA7E9C2C ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:58:57.0720 0x1920  Fs_Rec - ok
18:58:57.0749 0x1920  [ 37159C90791F2D07EECA46137E021CB3, A0E14B280563B1C714B9AB03CFE2C51E283160503DA060CB5EBA0FB7EBCE9928 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:58:57.0801 0x1920  fvevol - ok
18:58:57.0813 0x1920  [ 55D0AB364EC299911365D85DFDDF9E53, 3673F08B233FC62B0DF464B0B310D3301A34424A5B2D1C737488A8E2FD9347DD ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
18:58:57.0853 0x1920  gencounter - ok
18:58:57.0862 0x1920  [ 813721B1164B29FC94711E94ED5948D5, 91A10E0CF09AB1C10045B2BA73247511312DD374938211C6E3649B8E01FB1E31 ] genericusbfn    C:\Windows\System32\drivers\genericusbfn.sys
18:58:57.0901 0x1920  genericusbfn - ok
18:58:57.0910 0x1920  [ 77EBF3E9386DAA51551AF429052D88D0, 94C3294BB9E14B07448734AE65B37801D3FF15BEC987D182A929A017FEF7B276 ] giveio          C:\Windows\system32\giveio.sys
18:58:57.0932 0x1920  giveio - detected UnsignedFile.Multi.Generic ( 1 )
18:58:58.0976 0x1920  Detect skipped due to KSN trusted
18:58:58.0976 0x1920  giveio - ok
18:58:58.0988 0x1920  [ 73EFE8A2747BB87F66B5646AA2262AE4, 368AAFA38F214D474206B914A4258B3679CB0B1C9080D32DFB3BF890BD5611A8 ] GPIO            C:\Windows\System32\drivers\iaiogpio.sys
18:58:59.0026 0x1920  GPIO - ok
18:58:59.0042 0x1920  [ 3B76B2A4EA0461434706F6F9E51F570A, 479AEB84BDBC6133E1D7CF3880D175C99C64F37D46686B06942798EBBAE3BE5F ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
18:58:59.0074 0x1920  GPIOClx0101 - ok
18:58:59.0122 0x1920  [ 477F552C63B73DF010E603A7515609CD, 7D488AB5C14A0F35A9CB5922FDC2028E201C2CC699FBDC58DD3CA5D910A2654C ] gpsvc           C:\Windows\System32\gpsvc.dll
18:58:59.0230 0x1920  gpsvc - ok
18:58:59.0248 0x1920  [ F6C07AD956D1FEE95D6A8D21CFA024A9, C23F7DAED98CDF1C128A5CB012CC916BE5FD5B9494B84F93761279505B842871 ] GpuEnergyDrv    C:\Windows\system32\drivers\gpuenergydrv.sys
18:58:59.0284 0x1920  GpuEnergyDrv - ok
18:58:59.0295 0x1920  [ CEA72AC01892B12514D15E21EF1BC75D, A44B9493C31479F9EB6C82FFDD6DBF0E6EA98336E6996116CD1A926C7A591214 ] GTIPCI21        C:\Windows\system32\DRIVERS\gtipci21.sys
18:58:59.0335 0x1920  GTIPCI21 - ok
18:58:59.0344 0x1920  [ C172F0D0329E46513B09E1FC60A27B9D, 05DE0544C8A29B2C6028D2B97F81EACED5B99B571DE507A18CE856BD30DF7D56 ] HBtnKey         C:\Windows\system32\DRIVERS\cpqbttn.sys
18:58:59.0361 0x1920  HBtnKey - ok
18:58:59.0382 0x1920  [ 1243DF3886454DBC0CE10F50809FEB94, 72205060CCD3E40B94A2331FDDDF2CBB248B1B9EB4B7FD7EA79263EEDFC7DB51 ] HdAudAddService C:\Windows\system32\DRIVERS\HdAudio.sys
18:58:59.0448 0x1920  HdAudAddService - ok
18:58:59.0459 0x1920  [ E67AAF24F03D9D1B7616C0F5663556CA, 009345F574B3A061EE2A814378151FFE682F1F6011AC4D1C39185629BCED1615 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
18:58:59.0512 0x1920  HDAudBus - ok
18:58:59.0521 0x1920  [ DC0EE7188ECB1DC81329242ADC9AA866, 03DCCD6A4DB164025B7048EC2D75C2EFB7C2C59AF86CFF17C8445A7B11DCC5F4 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
18:58:59.0549 0x1920  HidBatt - ok
18:58:59.0560 0x1920  [ B48564703C7EADF54E98BD37DAC977FF, 3DA211BCF0CAAE4723B77EA29EA8C1931CAF68BB9B2106482109871CF0BD47C0 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
18:58:59.0600 0x1920  HidBth - ok
18:58:59.0612 0x1920  [ 06717AF4BA807B54C79B9769815F1853, D4757F51F6F1DF9C3B2D0254E1C50C3AD509D1AEF825338C834A1E368EC664E4 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
18:58:59.0654 0x1920  hidi2c - ok
18:58:59.0663 0x1920  [ 886742395F435F565CBE3623E2EBB7E4, CC6666929DB21B70F2FF6DC8E0E1245B3518DF5A00612E8B5D96B9CF96F2E37D ] hidinterrupt    C:\Windows\System32\drivers\hidinterrupt.sys
18:58:59.0691 0x1920  hidinterrupt - ok
18:58:59.0700 0x1920  [ E1BD3175634178556EBD4EE4711BD7AF, 9EB96D3D9E92476E51FA70ADDAEEBD15DBF65C7D307793FDA68CE7DBE8AC138A ] HidIr           C:\Windows\System32\drivers\hidir.sys
18:58:59.0738 0x1920  HidIr - ok
18:58:59.0752 0x1920  [ BE6A279ED7023652DD94FA19E9B27882, A5A0E3AF6121BF2122C7652CB0232651FFBADB9CE2B04580C8112886686191A2 ] hidserv         C:\Windows\system32\hidserv.dll
18:58:59.0792 0x1920  hidserv - ok
18:58:59.0805 0x1920  [ 5E0186347B8E9A868EFAC611BE88206B, 1AEFF85613248DAF5724BE99A7CAD9115505CAF4807A2D5D391DB3AC6C6EF4C0 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
18:58:59.0842 0x1920  HidUsb - ok
18:58:59.0861 0x1920  [ 6098A3A34FB7709E5542BD772AC65261, 37E001A413D9669323F4887569F08A58A5C485707D0695466F25E2DF86E1FD67 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:58:59.0913 0x1920  HomeGroupListener - ok
18:58:59.0935 0x1920  [ E5D081908B6DD64BDFC125A56428AEA5, 751E9EA2168C475690C1A081FBDEC80F2BD140D77C61C9CD4C9ECA338D2A99F3 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:58:59.0999 0x1920  HomeGroupProvider - ok
18:59:00.0013 0x1920  [ 91AB80156F5DF5B1495A687E5047961B, 3F6F91200553A2DC907D12903C3EE9EE36BDC82521628515C6AFDA09789F8DC6 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
18:59:00.0032 0x1920  hpdskflt - ok
18:59:00.0043 0x1920  [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr      C:\Windows\System32\drivers\HpqKbFiltr.sys
18:59:00.0088 0x1920  HpqKbFiltr - ok
18:59:00.0102 0x1920  [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
18:59:00.0128 0x1920  hpqwmiex - ok
18:59:00.0139 0x1920  [ 4823026B825C419071EF342EAA02AC25, 313EDCA453777A1888EB3B2BD14F5F3266F265C6B829DF37E8EBFD5D74C9415F ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:59:00.0168 0x1920  HpSAMD - ok
18:59:00.0176 0x1920  [ 361069D78E96F27647EA99A5A5789DC3, 771E790C304BB159094C4AA24A1F20C92DBD9D41917B59EEE8AFA3A88558048C ] hpsrv           C:\Windows\system32\Hpservice.exe
18:59:00.0199 0x1920  hpsrv - ok
18:59:00.0235 0x1920  [ 4C448A376B2830E04C479526EBDBB5C2, F697191DE2A2A6D72CC6766204A11B757C503AB21B622736E39BBA357E167C5F ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:59:00.0298 0x1920  HTTP - ok
18:59:00.0313 0x1920  [ 87DD07FD11E223C6F3322C242818E35B, A13F5E957926F441F899AF82C1CF72C425569B049DB32B06D8712A48A8132C57 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:59:00.0339 0x1920  hwpolicy - ok
18:59:00.0348 0x1920  [ 13757A2431D14C7E9E4221D7E4E49266, 6BD7A6CBC6606380153EE7DCC1A8A0F0AC9E74BCF9665E64BA8123BE63813E2C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
18:59:00.0383 0x1920  hyperkbd - ok
18:59:00.0396 0x1920  [ 7D889F2D2464940C2DA8A218F5282F21, 06A8CE55D30EEADD3BCDBCD66F2CADA074D32E60B474BBE18759CB5A4318BD89 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
18:59:00.0437 0x1920  i8042prt - ok
18:59:00.0446 0x1920  [ 9FD2F64E54C2B4B2EC0F0C7BF9997C34, 659417B7005DF6716231A66D2BA947A3F12957B5A9801826DF7808B2C8AAE2C7 ] iagpio          C:\Windows\System32\drivers\iagpio.sys
18:59:00.0483 0x1920  iagpio - ok
18:59:00.0497 0x1920  [ A0D5587F43A9824840A8D1EE4BDB184E, B7A7557BBB4E8C25883FE39070F5C71C0AFC080EEF72CFADD563C3572ECE0314 ] iai2c           C:\Windows\System32\drivers\iai2c.sys
18:59:00.0542 0x1920  iai2c - ok
18:59:00.0552 0x1920  [ 646D3B416BC970C3CD2F53844FD156A5, 045CBA642382B33DB1E222302B14DD46838895A73CE50426FD180B4CA918253A ] iaioi2c         C:\Windows\System32\drivers\iaioi2c.sys
18:59:00.0604 0x1920  iaioi2c - ok
18:59:00.0632 0x1920  [ 679359487C5ED5DD1FBF357749EBB020, C53A8D79E019E889C6B1B956CCC39F6B6D0F88FD71BD092FBC5DC64D5E8192DD ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
18:59:00.0682 0x1920  iaStorAV - ok
18:59:00.0704 0x1920  [ 9B62A8511B3D9154F4B2A47C7EECBBA5, C04681055B84A4BD75F4AA405CF40EDCA3DEA77D4BADB37A441BC687E7A5EF18 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:59:00.0746 0x1920  iaStorV - ok
18:59:00.0764 0x1920  [ C44E3058903C80EB48205919E887CAB4, 0EF5C7625EE3BE52DFDF44804CA4CF9C7F5FEE22315AF1BBA4213C888025B4A0 ] icssvc          C:\Windows\System32\tetheringservice.dll
18:59:00.0816 0x1920  icssvc - ok
18:59:00.0989 0x1920  [ 35CBB5A4A91DA63C8EE6F36FE9B1FDB5, C0055E3D904F79A1C3810381F3383FD276DBE4D75357E45C21ED0C8842BF77B0 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
18:59:01.0311 0x1920  igfx - ok
18:59:01.0359 0x1920  [ D0A86D037E8FC3584FBF882F0232B194, 2A002A0FAB09A4544C6363DC4132E3138D9D776D208FEB25B8626916BECF2BDC ] IKEEXT          C:\Windows\System32\ikeext.dll
18:59:01.0438 0x1920  IKEEXT - ok
18:59:01.0454 0x1920  [ 7C28B5FF1A83FAD4EB2964A6769DB972, AD0B0F7BDFE6DC3411D3D0168F286E2F7A7215DAE6B6704D772F3A79C3CA7913 ] IndirectKmd     C:\Windows\System32\drivers\IndirectKmd.sys
18:59:01.0494 0x1920  IndirectKmd - ok
18:59:01.0511 0x1920  [ FF01147A374A06FEAB1BFAC93287C8C7, 62384B44EE90A019A07594B761D3E645E31F8FE3B52A7E99654D1468450A76CF ] intelide        C:\Windows\system32\drivers\intelide.sys
18:59:01.0539 0x1920  intelide - ok
18:59:01.0550 0x1920  [ 8CA679CF6CC09754F8398AE18242503B, 63004515749D468AC29A109F76028AAC2BA6C8B0246A26F6901C4308BA81AE29 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
18:59:01.0579 0x1920  intelpep - ok
18:59:01.0591 0x1920  [ 27242FBDF64B9B1C29A8555279DD47E2, 5B055E2652B87EE98CAE9834EAF58207AA417BD64E581FA3313F52644E505685 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
18:59:01.0630 0x1920  intelppm - ok
18:59:01.0641 0x1920  [ 061B3A4E1FC4EA13225D9C4830733172, E43F6A7962B1E6A1CBBC90A68BD3497ECB5A0F4E25FD2A522890CEB1380DAF9A ] iorate          C:\Windows\system32\drivers\iorate.sys
18:59:01.0669 0x1920  iorate - ok
18:59:01.0678 0x1920  [ 0936FE04B833C852CAADE4A4EF7520FD, 6B69D2E2AFC30E6D759BB0DA1573DD090FF3C9C7E2E542C4598B401C2249085B ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:59:01.0720 0x1920  IpFilterDriver - ok
18:59:01.0760 0x1920  [ 2A1F3BF1C239647775E41F8020F93629, 4C7EA6753BC98F82D32765C55C4295077DA1D91978FAE3AC947C77FDF789EE21 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:59:01.0847 0x1920  iphlpsvc - ok
18:59:01.0860 0x1920  [ 3CE14CA8BE8E6738657EF6A2BEA8BC51, 19696986B1A01B8A656F52BF4E2107FB07F88B3BD4217F16C6374330E23EAC4B ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
18:59:01.0890 0x1920  IPMIDRV - ok
18:59:01.0908 0x1920  [ 3FDB0E7AC49A78D21B470863CDA5E342, 0439E9EBD40FD1E293CD0676F4029617E03AABF7A1B668C38D2EAED4DF2A836C ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:59:01.0951 0x1920  IPNAT - ok
18:59:01.0965 0x1920  [ 100935549DB97F99CC9DB141B10E4AA7, 3E591D073202A901695BF3A8EB1E9D48391D4E5387E3CC86B9CDB365A2076C06 ] irda            C:\Windows\system32\drivers\irda.sys
18:59:02.0008 0x1920  irda - ok
18:59:02.0018 0x1920  [ D428B631C883610C92A83DCA0A813D76, 59F3F4FACD2671BD97A4D0DA67CA2B02EFB8B01E2E66AA9D937E99AB88BF462B ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:59:02.0058 0x1920  IRENUM - ok
18:59:02.0067 0x1920  [ 51CF322AE4D5C752FA3977B419341ABB, 2DA9ADBAF91E57DF41EFB389C21EB0F9D34B9F5A705AE2E4B5113189BB2FCB24 ] irmon           C:\Windows\System32\irmon.dll
18:59:02.0107 0x1920  irmon - ok
18:59:02.0117 0x1920  [ 15DD238B3E280A3E31E2F5BB29630B98, 57F37172410C74DB5DEBC10FD9DB55D2D959F45E5AEA51FAEA900B119A34FD80 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:59:02.0146 0x1920  isapnp - ok
18:59:02.0166 0x1920  [ 3AE6DA207A27333CBD71B132B695BBBD, 0BD58DAFAD2199AB9312B020315628153A8DC1EDBE6FD7C48F18F785349BB7FA ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
18:59:02.0205 0x1920  iScsiPrt - ok
18:59:02.0214 0x1920  [ D09509545F6E0B1D5895129DA5255FB4, E0FC5F564A134DE6030C1561D253056B7E449F56402D3119A82EA4B158A5D17A ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
18:59:02.0243 0x1920  kbdclass - ok
18:59:02.0256 0x1920  [ 12A96DA887C835D83D492CF12FF3E098, A8E48F341D1478C2A81AB8175404CB1949510DCCC658FE66682C770BDB1BF3E1 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
18:59:02.0293 0x1920  kbdhid - ok
18:59:02.0302 0x1920  [ A6B39C3BA2D85BF7D640EBE81995DD64, 4A72D372CDA0F862505C640EF43C0F0C01E0E0533E4CC4439FDAE6D20F4ADE72 ] kdnic           C:\Windows\System32\drivers\kdnic.sys
18:59:02.0339 0x1920  kdnic - ok
18:59:02.0352 0x1920  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] KeyIso          C:\Windows\system32\lsass.exe
18:59:02.0383 0x1920  KeyIso - ok
18:59:02.0395 0x1920  [ D1030A854286D7A2171C239D8FCE5C02, 24475DA6F6ED2CCAECB5E0C11748EF509B86991A49F1887196F96BC2A804BA42 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:59:02.0425 0x1920  KSecDD - ok
18:59:02.0438 0x1920  [ 755F5B189F8B92B10A0DF2175B064C63, 9F0FDAAD5C3D1BEABA18EA9B1C3A34AE9614DE67DFA7222A8B16BA17AE619DCE ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:59:02.0474 0x1920  KSecPkg - ok
18:59:02.0494 0x1920  [ FC5E079DD7EEAE9EEC0F441459FCE8D7, 5D8B26EE0520227CC4AD0D5D3AC8291531807628EC9917372EA1D819EFBB7427 ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:59:02.0553 0x1920  KtmRm - ok
18:59:02.0569 0x1920  [ 258661013CC98B51218CCEF4ED7F0834, 1432FCFAB25F4965C3E3E7A964AE076CC9420980FBC33D2BAC0BBD04F3A351EA ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:59:02.0624 0x1920  LanmanServer - ok
18:59:02.0642 0x1920  [ 64C3883E74D12CB08C4091874C8B8DEA, 84C84E6CBD9223912CAF0FCE69BAE2036FEC3F414CCCB44FE6452BAAF8BD20A0 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:59:02.0697 0x1920  LanmanWorkstation - ok
18:59:02.0711 0x1920  [ 1C9CAD178A37A3C7047BDA51FF39D454, 5ADD6AB911D2AF6E94E39286D94EEAF5462AA719FBE977FAFF7717E09608C1B0 ] lfsvc           C:\Windows\System32\lfsvc.dll
18:59:02.0752 0x1920  lfsvc - ok
18:59:02.0765 0x1920  [ 9D43EA3F9CB70E07486378D2D61D0770, 40C7DBF2DF77D7A290059C464F918BFA60F4586A25B4B9ED67900A3BEC7FDE64 ] LicenseManager  C:\Windows\system32\LicenseManagerSvc.dll
18:59:02.0811 0x1920  LicenseManager - ok
18:59:02.0820 0x1920  [ 1A8B2F55C261A041A4F9D684FBB2DFFD, 3A8D24A46DEB1841D5644594953426A371109DA11D7CC2E0C49B28697D715B26 ] lltdio          C:\Windows\system32\drivers\lltdio.sys
18:59:02.0858 0x1920  lltdio - ok
18:59:02.0873 0x1920  [ 5DCBC3F45B9070DAB1A4413284F3DFB1, 210B33442B102C1BBEB5B85AEFD35E8B4B3B81DF36C8A2AD6DC21F2BC2FE57AA ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:59:02.0922 0x1920  lltdsvc - ok
18:59:02.0930 0x1920  [ BE7615B2C86641644525E5FD448CBE4C, 72435837BBED624442A25C88685F0D09636ABDCF0CEFCDEEB66C6DEAF01E36AA ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:59:02.0972 0x1920  lmhosts - ok
18:59:02.0990 0x1920  [ 08947A02B42C4AE496E9E0AFF99D0059, C3FC294220F77C8756E670420F766E092CBA41055143A6A8E38B5F42BF8C5B6E ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:59:03.0021 0x1920  LSI_SAS - ok
18:59:03.0036 0x1920  [ 083C404C6CF4578AE46AB28F72DA4B1E, 6E2C868B87F742CF20B0AAC752AA067B7D6378B59A563310FB4CF927507CC305 ] LSI_SAS2i       C:\Windows\system32\drivers\lsi_sas2i.sys
18:59:03.0067 0x1920  LSI_SAS2i - ok
18:59:03.0078 0x1920  [ D0F4EC4718F7EB222C8AD76BC3B5E013, 90B161571A5EE8E880198A978B7022E7A43A9D1D756EB198A7DB65C8A91843E2 ] LSI_SAS3i       C:\Windows\system32\drivers\lsi_sas3i.sys
18:59:03.0110 0x1920  LSI_SAS3i - ok
18:59:03.0121 0x1920  [ 0BAB30365711E81D11311BF1C30F9F75, C2C3A0090E43B6BBC504F9EA0A4CD31D48B125A7B689F0D5815B78B961E308ED ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
18:59:03.0150 0x1920  LSI_SSS - ok
18:59:03.0180 0x1920  [ 35754BFDE1F707A3202ECADC7F369A56, D297B8868A88BE8F3B13ED82166AD2255046B2A9BFABD20F5CA041AEA0772170 ] LSM             C:\Windows\System32\lsm.dll
18:59:03.0254 0x1920  LSM - ok
18:59:03.0267 0x1920  [ 32A1009A6933E75BB0BB85DE9AEE84FE, 8C2ECD0C3EFB9C91B71769A72D9229D8047E876E28237EC75C6C3E1490802536 ] luafv           C:\Windows\system32\drivers\luafv.sys
18:59:03.0314 0x1920  luafv - ok
18:59:03.0328 0x1920  [ 599D0CB2A9EB7F07BAD948D852083FCB, 5BA77A5DCDF5D9A295AE160C05E5212EE933898456ECC016B0CA4895CD82369F ] MapsBroker      C:\Windows\System32\moshost.dll
18:59:03.0373 0x1920  MapsBroker - ok
18:59:03.0389 0x1920  [ 7023B5835A1D6E5C69518AB6FED7DD0C, FD073393FA572EC098F640AF80997E8EFEE2837699384D95350F1C719FE71863 ] MBAMChameleon   C:\Windows\system32\drivers\MBAMChameleon.sys
18:59:03.0415 0x1920  MBAMChameleon - ok
18:59:03.0428 0x1920  [ D9351F554ED0784764DB0564186906AE, C7DC59A8D528A9A2FCF592D20C20B40D4315B1C09E82A4C1D0B5C6807E8E7338 ] MBAMProtection  C:\Windows\system32\drivers\mbam.sys
18:59:03.0453 0x1920  MBAMProtection - ok
18:59:03.0574 0x1920  [ 28D7A3DEC41EB05A80BAF58697B54E98, 8C87C56396C4922C225F9B7F92888434DA9C6CC467FA643107CE11F8D51A329B ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
18:59:03.0733 0x1920  MBAMService - ok
18:59:03.0762 0x1920  [ BF7D701D9EDDA9737DF8A39C1C0B8210, A4F5B4B411CFB3939CABC7F5DE2CAE97F023A51D877AD0CEC3123E0B7E708FAE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
18:59:03.0792 0x1920  MBAMSwissArmy - ok
18:59:03.0805 0x1920  [ D98E46A7173656E4B92C9D1C4943BFA7, 2B62183553530DE58AC29ADB0CFE210C51F1F62A910F2E4F39BE846A24FE9056 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:59:03.0833 0x1920  megasas - ok
18:59:03.0843 0x1920  [ BC14937F97BF810850FDC0D30D916334, 289AFE9C61C9EA8749773A16CB7670ED040EF12DFA042F9FDD6E6CC2C7CA68C2 ] megasas2i       C:\Windows\system32\drivers\MegaSas2i.sys
18:59:03.0872 0x1920  megasas2i - ok
18:59:03.0898 0x1920  [ 31DBF4F3D492A056A40C97E089D7B8D7, A87A40FF9713EE18146F1C239DCF8E8044C7ED3667AE0A5854458285038C831E ] megasr          C:\Windows\system32\drivers\megasr.sys
18:59:03.0944 0x1920  megasr - ok
18:59:03.0956 0x1920  [ 6C031C152D14E2A92E0A8EC779F90E1E, C7C1CC6E4987C88A2516B794216ECA60B9624FB991721629EF3311CE8D90BDD9 ] MessagingService C:\Windows\System32\MessagingService.dll
18:59:03.0999 0x1920  MessagingService - ok
18:59:04.0018 0x1920  [ F0EFB8F9E7F30641FADDBAB4EFD00C19, 77109E6E967AF41F16026C325F6D3FAF071FBDDEA2D49A515D611777CA372954 ] MMCSS           C:\Windows\system32\drivers\mmcss.sys
18:59:04.0062 0x1920  MMCSS - ok
18:59:04.0071 0x1920  [ 5573DCE55EFAD536FAEF3A35952D5CCA, 615E5DAF92697A3494247640A04BEF4CCDD0215A4E97ED8931CBC50C67202D44 ] Modem           C:\Windows\system32\drivers\modem.sys
18:59:04.0109 0x1920  Modem - ok
18:59:04.0118 0x1920  [ 53D96D67E61A57577E3F682117E7053B, C4F426B1C3D39A3A60FF361BA136DFD1EFCBAD79777CC612EB0EF1096D14A8D0 ] monitor         C:\Windows\System32\drivers\monitor.sys
18:59:04.0155 0x1920  monitor - ok
18:59:04.0164 0x1920  [ 3437EA58173F7E5D3D704B3A6ACA642B, 877D0F9A6C696835220E8FB9C4A527E93CD3FCB19615D4A36AA2829915A0C29F ] mouclass        C:\Windows\System32\drivers\mouclass.sys
18:59:04.0193 0x1920  mouclass - ok
18:59:04.0203 0x1920  [ 14E01A66D7F55A5086A22E92B5D1D482, 7691E660C7C952A2B7148D9CAB83EC4F52AB7845FF769B517903C8BDDD9F4784 ] mouhid          C:\Windows\System32\drivers\mouhid.sys
18:59:04.0241 0x1920  mouhid - ok

pingodoce · 06.01.2017, 19:02

Code:

ATTFilter

18:59:04.0254 0x1920  [ D086985BBC9463ABD18B04A701CF5AA0, F189D83C3BE2977F777F01ABD79113FC00D09359C52C60457B5A1F3EEBBA8CD2 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:59:04.0289 0x1920  mountmgr - ok
18:59:04.0307 0x1920  [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:59:04.0335 0x1920  MozillaMaintenance - ok
18:59:04.0348 0x1920  [ CCDDE4B4962A7F5BE0A754B48D9E6BCA, C10EF4C3653259B3BB61ED6BDCE0A2D65AC59F1D611B80A31A297C0D0B38C93F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:59:04.0386 0x1920  mpsdrv - ok
18:59:04.0422 0x1920  [ D1F7B4D73964AC2156732C772EBDC10A, 2519B250D4647FB0E16A12066E7797609E8F11A1AB4F4C740E503CD686159A63 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:59:04.0500 0x1920  MpsSvc - ok
18:59:04.0515 0x1920  [ E24D4FDF59F925D277D481B22D05BF3A, 6FF00B015C405C81C287C609E4260C686450F68C6C677E4D2C6F8D1B7540B3BB ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:59:04.0558 0x1920  MRxDAV - ok
18:59:04.0583 0x1920  [ 9549298C64834EF719F81C272ED03CD3, 63269DA24C7798AB3F34D15E427EBC7A86CBD65091C9973482B3FD4B26846B6C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:59:04.0628 0x1920  mrxsmb - ok
18:59:04.0645 0x1920  [ F3887F36C197E14C4DDA517EFFE6A9E1, 21667D8FC73445C9741BC825BFCAE4D7FE19A76143F84BD8184D5D30CC05359B ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:59:04.0693 0x1920  mrxsmb10 - ok
18:59:04.0706 0x1920  [ 6F9697BFCC9EF7714CC69E99FEA52D14, CE30F63CA38CB381AE5AFD60B9B8F25627A784620E687D2B792EDF0C9D317E90 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:59:04.0741 0x1920  mrxsmb20 - ok
18:59:04.0752 0x1920  [ B518C756312C1C383B18CF0C924AF732, BAE81F81C683AD97C31BDAF25F701B4C212AC93B8F62B18F05C0E48951E1D9A6 ] MsBridge        C:\Windows\system32\drivers\bridge.sys
18:59:04.0793 0x1920  MsBridge - ok
18:59:04.0806 0x1920  [ 8C5C7992443917AD41C04C1FB6208315, 16F330EF061B8D8F3052A67C559154F60A5BE87C4AA92BD0FEB9410C60FF6A61 ] MSDTC           C:\Windows\System32\msdtc.exe
18:59:04.0853 0x1920  MSDTC - ok
18:59:04.0870 0x1920  [ CC0842323F6A55DFF24BA7ED03E24872, E34C6743F2C29FBD0416BB8CD3172A597DB9903F7AFE89648AB02967A46BBECA ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:59:04.0909 0x1920  Msfs - ok
18:59:04.0918 0x1920  [ 8510450FD3647F2F495D76E26DEAA3C7, B6F333BB1C65921841FCDC98C5CB3D658C0588774B113D38CE4FF1944968FE84 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
18:59:04.0946 0x1920  msgpiowin32 - ok
18:59:04.0958 0x1920  [ 0642FFFD9A66D4BF539142D2EA3B7107, 48A6B9461D8599FC07053066933F5B0B22071F691525E239B874494C80BD2E99 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:59:04.0999 0x1920  mshidkmdf - ok
18:59:05.0007 0x1920  [ B57054E2DEFDF633509358E1CFF702E6, 713B76B3AB861C22206F1C30CDFBCB8104B06EB5C98B499293CA56175C71A191 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
18:59:05.0043 0x1920  mshidumdf - ok
18:59:05.0054 0x1920  [ 4217EA4A2D4DE7642507BD9598F5C3E8, EF1336CE44A5A0055C7C2015D55EAFBEA3EEA39D19B9DD6256E509F9E91828D5 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:59:05.0081 0x1920  msisadrv - ok
18:59:05.0096 0x1920  [ 04F6E3444A431FDF50D1498929024E19, 395784475091267E25563FC28E787AF97B309FE3AF6A706D5B0A40723AE4FFB5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:59:05.0142 0x1920  MSiSCSI - ok
18:59:05.0149 0x1920  msiserver - ok
18:59:05.0159 0x1920  [ 92D051C41C29C366B1FB7CA07045E56B, 31FA43550595654776358735D87DB67E7496D23B58CE6C7A1E415EFB3F6999CD ] MSKSSRV         C:\Windows\system32\DRIVERS\MSKSSRV.sys
18:59:05.0210 0x1920  MSKSSRV - ok
18:59:05.0220 0x1920  [ 4DE3058B79BFB48F79654B46970A02DE, C19CFB2EFAD2D55223B18889B5DDDDAD00778727720A2FCB5BA243E3ABDC4D67 ] MsLldp          C:\Windows\system32\drivers\mslldp.sys
18:59:05.0265 0x1920  MsLldp - ok
18:59:05.0276 0x1920  [ 093D83C03E1A1A9947B951234A4C0C9D, 83A824016F33A51BF3390E86AC39E7F380F3C59A107A12BAEE4C32225821D3B2 ] MSPCLOCK        C:\Windows\system32\DRIVERS\MSPCLOCK.sys
18:59:05.0326 0x1920  MSPCLOCK - ok
18:59:05.0334 0x1920  [ 4699BEC54D996CB5FCCCAC24A3ECCBBE, B0028067036C5C8B922E2AFC4202B4C3EB145DFEA8AAF2CFF215A46399AC356A ] MSPQM           C:\Windows\system32\DRIVERS\MSPQM.sys
18:59:05.0380 0x1920  MSPQM - ok
18:59:05.0398 0x1920  [ EF426772B40A5F8B8832D81D948F76EE, F57B57F2954A1617DF2432ECEFFE27E4C6D16660169465D6EA8B32CD5642525C ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:59:05.0432 0x1920  MsRPC - ok
18:59:05.0449 0x1920  [ E3B9AE489707AE178BF20D94A252BBF2, FEFC61D8BC1ADC0B7B3AAC12F15411B037E1E434057627FBCF3B373DE7EB90FE ] MsSecFlt        C:\Windows\system32\drivers\mssecflt.sys
18:59:05.0483 0x1920  MsSecFlt - ok
18:59:05.0496 0x1920  [ B657BE9141A1507B7E3B8A0B3F0EA329, 2FEB56C95D979CC9967A25623B3B2D3896846769212E7E657BCD0AA7EA85F7D0 ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
18:59:05.0524 0x1920  mssmbios - ok
18:59:05.0536 0x1920  [ 6FED2BF0C76FBD0178F70E7A5A30ED70, C86FAA9BA4D6B0817B5098F120BB77D00064CC1FBFDF03C6BFEDDFCBE8CA81D8 ] MSTEE           C:\Windows\system32\DRIVERS\MSTEE.sys
18:59:05.0585 0x1920  MSTEE - ok
18:59:05.0601 0x1920  [ DA767F51E37113713D660138254A4E3F, CCC80CFD211F69F4D84951F66D94D92C345F72F7B9F56A4BC86F2CB6D7C817D7 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
18:59:05.0636 0x1920  MTConfig - ok
18:59:05.0648 0x1920  [ 9CFA4FF187394C636007FB81E15D2E5E, 63295423B7942E53E0946BBE5936F0A0C48FF8B8C7A5B5DF41A383A9339C56A8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:59:05.0678 0x1920  Mup - ok
18:59:05.0690 0x1920  [ 97D7E6AED8F0F70613D4661FEB717AF7, 51152A9B891D0A308505FCC2AE00BBAB89290A1E6E785A311886734BA93F0869 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
18:59:05.0718 0x1920  mvumis - ok
18:59:05.0745 0x1920  [ 6CADBF41FC06B6370256C4CD5771B9BA, 9254A2F39E23957323D3CF09D98A4C2423112AF7234FCA76CC447E9DB2B31335 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:59:05.0809 0x1920  NativeWifiP - ok
18:59:05.0826 0x1920  [ 8AEE13EBE7FFC98C45B0C04C5C6F29B3, E84D2CD5DD0024212A3814D575D384FA1AA34DDDF3AD2506FA33DEE53C0AD662 ] NcaSvc          C:\Windows\System32\ncasvc.dll
18:59:05.0873 0x1920  NcaSvc - ok
18:59:05.0894 0x1920  [ C8A80E6C483826A7AF941C86C958B2D7, 28941336B062E0B19A355A47B4BDD376E88F85700ADAECC959ECA016627FD46F ] NcbService      C:\Windows\System32\ncbservice.dll
18:59:05.0950 0x1920  NcbService - ok
18:59:05.0962 0x1920  [ A919B5FBFE50A7C1D0C4661E00C2C7AE, 991124BBA769FD2B8F1480290DAA81A5436E6D36989DDE293E265B4B182733B1 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
18:59:06.0022 0x1920  NcdAutoSetup - ok
18:59:06.0065 0x1920  [ F7A91BC77A4DDAAAD4062747B593EA27, DF931F4A901641750C4A950111A59CDD7FF2D196B976FD561714585F2F46AFE3 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:59:06.0133 0x1920  NDIS - ok
18:59:06.0147 0x1920  [ 166C2C9834BE1ED431CEF7E29D50DDEE, 2ACB97C4B50866C8B310355575A14FDFE288477AA17862692621E373880A6BCD ] NdisCap         C:\Windows\system32\drivers\ndiscap.sys
18:59:06.0185 0x1920  NdisCap - ok
18:59:06.0196 0x1920  [ F636C9239528DD57CCA634D8AA7EA39C, BEA1328C4B4ED9BFDECE05BB9B4EC69A2DF2CA620DF89DDB5C5A93D7C8ED38FD ] NdisImPlatform  C:\Windows\system32\drivers\NdisImPlatform.sys
18:59:06.0244 0x1920  NdisImPlatform - ok
18:59:06.0253 0x1920  [ 119553FA6C6820362F49C6F99957B8AE, 37B733F87AE0A9AF78BC5B97D0026094EC06D5CDB370F3D65522E1E68A4117A8 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:59:06.0297 0x1920  NdisTapi - ok
18:59:06.0306 0x1920  [ 0F196ACC070C0AFEAB38F1562E984814, 735747A8D526F7E1FF7BCF1CF189D9BC16A9D22728CE6F6E41C25C384F276A8D ] Ndisuio         C:\Windows\system32\drivers\ndisuio.sys
18:59:06.0346 0x1920  Ndisuio - ok
18:59:06.0354 0x1920  [ 8C4619BFE8F2B59AB9CD61B7C7F1EBF6, 3AE5FD177DCA4EE2BB100CB916DF07B0FC25E76C198EFADD6C831A9644716153 ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
18:59:06.0391 0x1920  NdisVirtualBus - ok
18:59:06.0405 0x1920  [ 4D0B4130FA4489E565238693BF08C7EF, D450E272F7F23475506252A77A8750D1184538BABD62FFC6408B0C0ED45C071D ] NdisWan         C:\Windows\System32\drivers\ndiswan.sys
18:59:06.0456 0x1920  NdisWan - ok
18:59:06.0469 0x1920  [ 4D0B4130FA4489E565238693BF08C7EF, D450E272F7F23475506252A77A8750D1184538BABD62FFC6408B0C0ED45C071D ] ndiswanlegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
18:59:06.0519 0x1920  ndiswanlegacy - ok
18:59:06.0530 0x1920  [ C5EDAC2BF6B08F2C0613A0997728AFA0, A3FD738EDE1859C53CF567FB87FA33E8D80BFCC1CB1E33F2F2603D225C6F3106 ] ndproxy         C:\Windows\system32\DRIVERS\NDProxy.sys
18:59:06.0580 0x1920  ndproxy - ok
18:59:06.0593 0x1920  [ 8A74EC3B7EFD422572909D54EE510DCF, 00E66FC076E4BCDCF5E5C8E3328ACA2986815A818C64A3450263AA4B78EEC02F ] Ndu             C:\Windows\system32\drivers\Ndu.sys
18:59:06.0641 0x1920  Ndu - ok
18:59:06.0653 0x1920  [ 63D8BC59B39D3C5CF79638BBEF173190, 8F2831A2267D8C4B95D521914F72476B3F69BC928E1BEF2427C7B873E192D13C ] NetAdapterCx    C:\Windows\system32\drivers\NetAdapterCx.sys
18:59:06.0692 0x1920  NetAdapterCx - ok
18:59:06.0705 0x1920  [ 538984DAB17A517155E1914621C0DEFD, 710C3EEA56B4A1B613EA72B2188A445F9BB1269729076D64DEEFA78643906304 ] NetBIOS         C:\Windows\system32\drivers\netbios.sys
18:59:06.0734 0x1920  NetBIOS - ok
18:59:06.0758 0x1920  [ 19B3776EE853B95924BAEDEF14702135, 7E39B01AB275641A5F4938CB3AE8BDF5140E829CFE28849CDBBF6083C4D62A0F ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:59:06.0805 0x1920  NetBT - ok
18:59:06.0815 0x1920  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] Netlogon        C:\Windows\system32\lsass.exe
18:59:06.0849 0x1920  Netlogon - ok
18:59:06.0864 0x1920  [ EE495A358221B1378EF3F061BFA0E957, 3252DA2B7B959400EF66B39F340021567BF0D05245695F8DDE3C270666417DAB ] Netman          C:\Windows\System32\netman.dll
18:59:06.0915 0x1920  Netman - ok
18:59:06.0942 0x1920  [ F14FE8786CE58E62F3B9D75D41934EF5, 6031B883066F6311F6B36588AE7C9A7003DD23E82022444494CFD4D8C5C03AEB ] netprofm        C:\Windows\System32\netprofmsvc.dll
18:59:07.0006 0x1920  netprofm - ok
18:59:07.0023 0x1920  [ B35F1AA2507385B77764BDC569622430, 1ACB22773E56FAC77F398E3FCD7F2552599E5B5BCD4D6AB69AD606556CA42069 ] NetSetupSvc     C:\Windows\System32\NetSetupSvc.dll
18:59:07.0073 0x1920  NetSetupSvc - ok
18:59:07.0091 0x1920  [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:59:07.0121 0x1920  NetTcpPortSharing - ok
18:59:07.0365 0x1920  [ 2D8BE96190FBE41B27FEC87C63F4CDD4, D3A1D37331027CE286B093B9535A2D353EFF4F068055186C2C3FB3048C12A786 ] netwlv32        C:\Windows\System32\drivers\netwlv32.sys
18:59:07.0794 0x1920  netwlv32 - ok
18:59:07.0833 0x1920  [ BA532E5655D46193C068EFB59668948A, F9C42557C1A867A9A78930D3B587A7D8307E6202D89365EF3663A8E8C95AD746 ] NgcCtnrSvc      C:\Windows\System32\NgcCtnrSvc.dll
18:59:07.0887 0x1920  NgcCtnrSvc - ok
18:59:07.0921 0x1920  [ 5F46471A72497B6FCF9F8044F3A8F383, 2FE35A8A60F01BA5C8D1B9BF2AACA3D8F5BBBE857AF432CCB93095E38814E8F0 ] NgcSvc          C:\Windows\system32\ngcsvc.dll
18:59:08.0005 0x1920  NgcSvc - ok
18:59:08.0025 0x1920  [ F8E8E13C15D503A445AD07C6F9660A0B, DFC5E44A0F796C886A8792D736BFAC2A8BADF8F67AD23AD569B8B3A0E268F13F ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:59:08.0083 0x1920  NlaSvc - ok
18:59:08.0095 0x1920  [ C404AC553CABF90F1EB327AC1CA91614, E36F0420E904D6F8F8FEABCCF555E0B43ED4ECA1006A86C625F986B719C5016C ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:59:08.0132 0x1920  Npfs - ok
18:59:08.0141 0x1920  [ D538DBD5654E98804B1AC997B0562A2D, 2D39E0BB9FFDE0FFE1F4D5947739FA459C5E1282DB99A24F82216CF86C44CE76 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
18:59:08.0177 0x1920  npsvctrig - ok
18:59:08.0186 0x1920  [ 80101B43A747AA905A42BDA6CD62B380, 67B3A8ACF1C86F3BFF7BB037D8DE262AB3FFDD32A5CB31D1E66470814DFDE99A ] nsi             C:\Windows\system32\nsisvc.dll
18:59:08.0235 0x1920  nsi - ok
18:59:08.0244 0x1920  [ 73CD0852308102CA33AB6C362F786AF7, 98D69243174B0E6F11AF488849A74BDBA52A36C9959E2C7BD468A7F9C44E08BA ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:59:08.0279 0x1920  nsiproxy - ok
18:59:08.0359 0x1920  [ 08EFFF2FFD9E85CEDBC103B1C514EDBD, 3E61E66CFD378CF6D3062DD27F20992B65BBE64FD93E3D4441DC8E67063D420D ] NTFS            C:\Windows\system32\drivers\NTFS.sys
18:59:08.0477 0x1920  NTFS - ok
18:59:08.0494 0x1920  [ 63F0747EBCEA98247EB874051A0C9488, C67F74E1504C18E64E719C5C6828E3716C0120FB8B4844D6B83A1585E7EA5D73 ] Null            C:\Windows\system32\drivers\Null.sys
18:59:08.0534 0x1920  Null - ok
18:59:08.0546 0x1920  [ BED83E7AB1E5294B694FE2BB29F1789D, D4BD7D8B71E3EFA38E39CFB6CC58460F3E743BC2550AC6BBC79EDB0865D72413 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:59:08.0579 0x1920  nvraid - ok
18:59:08.0595 0x1920  [ 818D8E3EE673E953604B470D2174F34E, 22E29445DCC39ECBC1D792B5BCFCC2EA0CFA405CDE29B93793B13A8658B96FCA ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:59:08.0628 0x1920  nvstor - ok
18:59:08.0661 0x1920  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:59:08.0700 0x1920  odserv - ok
18:59:08.0720 0x1920  [ ABE4E24B7B1E84F9591377EE94646DFD, 63838AD4569B7C74908DFF4CF083C7D0360C58692AEDBF02D1EC88BC2CC2A134 ] OneSyncSvc      C:\Windows\System32\APHostService.dll
18:59:08.0773 0x1920  OneSyncSvc - ok
18:59:08.0789 0x1920  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:59:08.0814 0x1920  ose - ok
18:59:08.0841 0x1920  [ 3E6C5C05831A79A0891D14697D96805C, 34848FB4D6ED1BDCDF8C9DD2730E633EA24B85720BDE0A9F7984F25AA66579E1 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:59:08.0897 0x1920  p2pimsvc - ok
18:59:08.0925 0x1920  [ 4F27C92AEE3749BA64411E280CC9C0B2, D2A4272ED9E8ECACD2E9233453E44119029F160E7FAC94FAA0E986327D50F174 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:59:08.0984 0x1920  p2psvc - ok
18:59:08.0996 0x1920  [ 102319D1AB9C8AE57ABF4542C15E46E5, BA259E25ED2750F003A895FF8CA87C06DF2A6E5BAFD5E7B6E31BF39A7315B87C ] Parport         C:\Windows\System32\drivers\parport.sys
18:59:09.0035 0x1920  Parport - ok
18:59:09.0048 0x1920  [ 42269F1CBE52927874351B1731733B22, 83EA42FF99AB16597232D9D155BEED6421EF31730CBA1B3BD5F577EAABC12E7A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:59:09.0078 0x1920  partmgr - ok
18:59:09.0087 0x1920  [ 80DAAC28A277CCC83EA1385AED473355, 6EA1581DB1CE4615FF2ACAC771B8C6305C84B5A8BF2DC0CF2FF3202672FF897B ] Parvdm          C:\Windows\System32\drivers\parvdm.sys
18:59:09.0122 0x1920  Parvdm - ok
18:59:09.0145 0x1920  [ C83B47DEC66042DD97DDC3D41E538339, 8C9467074EA6A0FAF62BB5A99A657519B255C59A2B5BC6FF2D97C4B4D6FF18F2 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:59:09.0194 0x1920  PcaSvc - ok
18:59:09.0212 0x1920  [ C9C52D44D7B6AA975A61B4A8B5476BC0, CCCF40E0F4939CBEB0B8DB3FEDA1BDFEF8B3973D5524775C38D8055B810B5380 ] pci             C:\Windows\system32\drivers\pci.sys
18:59:09.0250 0x1920  pci - ok
18:59:09.0263 0x1920  [ 08E17B65E01DAAB8B2CC3F0614890724, 1338620701E772BE8712E99170403CFAE5B600BCF845BA4AA981F6DA2BCF33E8 ] pciide          C:\Windows\system32\drivers\pciide.sys
18:59:09.0290 0x1920  pciide - ok
18:59:09.0301 0x1920  [ 1FD051E1D86C1DB5291BD69D65077DA4, 5E7BCBA03331EE266963E3D5BC064DDF9FBAFD1CDE8211703DD97A5725A2E087 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:59:09.0333 0x1920  pcmcia - ok
18:59:09.0343 0x1920  [ D22AA1E0C19412A39E4B743BA5B43A78, F04ECD06C3123D07749AA4A04749EE920A8E15F5CF9C1FD17DC549D5CC146170 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:59:09.0372 0x1920  pcw - ok
18:59:09.0383 0x1920  [ 0D1809586AB5D1155364357EF69A45AE, A3BC593607926CC03EC0904AB406041173F3CD60D72443C929157EF59579F52A ] pdc             C:\Windows\system32\drivers\pdc.sys
18:59:09.0414 0x1920  pdc - ok
18:59:09.0447 0x1920  [ D02A4B0D37D81280B7C448B73435FDDD, 3130B35ED73DD534B1763E16673F6AAF4F9F59FE075C5360F4886481BB8E71E2 ] PEAuth          C:\Windows\system32\drivers\peauth.sys
18:59:09.0531 0x1920  PEAuth - ok
18:59:09.0598 0x1920  [ 0A0D6BF8E93ADA8F8B8BE0ADB9CD20C6, F06AEE4A9787461254488A9E9AA3B08FFF99FE3299BB33D5A4D5D356E051771C ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
18:59:09.0734 0x1920  PeerDistSvc - ok
18:59:09.0750 0x1920  [ C2DBE18F68AA0C9508587FFACB794D8F, 39B75BF33DC2BF339EB3288AE1DD68B7220E0B0A29370706D7ADDB1B7A2EBAD2 ] percsas2i       C:\Windows\system32\drivers\percsas2i.sys
18:59:09.0779 0x1920  percsas2i - ok
18:59:09.0792 0x1920  [ 21E6E1D427806D971D553CC0DAF9BCA5, 59AA1690B99805DDD806FC818FD16EB8FDCE986E70882A5F3D2D075321DADF6C ] percsas3i       C:\Windows\system32\drivers\percsas3i.sys
18:59:09.0821 0x1920  percsas3i - ok
18:59:09.0880 0x1920  [ 985FDF6931077D696A162BB38E1ED25F, 866EE5F34A3F498BF939AD1F3ECEC2C7C3623BFEEF40EFA96B29B6DB490C7AEE ] PhoneSvc        C:\Windows\System32\PhoneService.dll
18:59:09.0958 0x1920  PhoneSvc - ok
18:59:09.0976 0x1920  [ EE804160B61FACC25D11C3CCB273B10C, 898B9DA62FDC038E828758DE958F93F839F1CD4406BDB89DBB5C85A565B1B03E ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
18:59:10.0026 0x1920  PimIndexMaintenanceSvc - ok
18:59:10.0090 0x1920  [ 0FAA756716218E68D46F9E2FEE624242, B564D84CBB5BC83379DE99DD0A85082238562B539E9B0E775E424EA8CB5BF512 ] pla             C:\Windows\system32\pla.dll
18:59:10.0224 0x1920  pla - ok
18:59:10.0244 0x1920  [ 0DF131F7F00E34B6C9DA053E55A80AA4, B3CA50986884B00B67EF1BB3910CA60FFEB4EA3AB9D08CBD6E82E792B650128B ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:59:10.0297 0x1920  PlugPlay - ok
18:59:10.0308 0x1920  [ 98C7DF7455A5F844EEFE0C0310CFC2DB, 67543EB480F7D1AB24E93CC5ACE40DD6ABC3BE63047F4DA64D5D682B2832AB99 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:59:10.0349 0x1920  PNRPAutoReg - ok
18:59:10.0370 0x1920  [ 3E6C5C05831A79A0891D14697D96805C, 34848FB4D6ED1BDCDF8C9DD2730E633EA24B85720BDE0A9F7984F25AA66579E1 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:59:10.0422 0x1920  PNRPsvc - ok
18:59:10.0444 0x1920  [ 7AF808286EDF23A486F1D8203EAA04DE, 41B95BD98176A2485E929E79829C5ABB6BAC55C90C55F677B1E5B6429970581C ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:59:10.0500 0x1920  PolicyAgent - ok
18:59:10.0521 0x1920  [ EFD8B7C6843CB9D4EE3485AAD1EFBF51, 9E8819BD2EAC1A210B0C1A20A7A2A38674BA9EC716C18C860DC930CB6D61FE7B ] Power           C:\Windows\system32\umpo.dll
18:59:10.0573 0x1920  Power - ok
18:59:10.0584 0x1920  [ D688353B3F783BFA1A4BC0FAD178271F, 2E7AB5076A8AB13F6430CACEB1DA1D21E0BC75DBF36049D51E8636C5DE8139F6 ] PptpMiniport    C:\Windows\System32\drivers\raspptp.sys
18:59:10.0633 0x1920  PptpMiniport - ok
18:59:10.0744 0x1920  [ D0818657648366B03C7CB4AA2DCED253, 2AC0FB8B679F51C6EBF5346F75AC543797EA1617D1F69A2830F305823AB7B35D ] PrintNotify     C:\Windows\system32\spool\drivers\W32X86\3\PrintConfig.dll
18:59:10.0964 0x1920  PrintNotify - ok
18:59:10.0985 0x1920  [ 2ED95B75DB64C871A8C613144A0C3162, 9966B2E22BFAA94CFED092A0C929FF329C27156D2F746D225919406E15EF9CCE ] Processor       C:\Windows\System32\drivers\processr.sys
18:59:11.0025 0x1920  Processor - ok
18:59:11.0043 0x1920  [ CEF5388090C7BF568DC2F9F1EF3E0327, 8430198B92BCBB17620221039C202CE1C36EA4E597D17E401BD704AED8DAD5A5 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:59:11.0100 0x1920  ProfSvc - ok
18:59:11.0114 0x1920  [ B825DF8604FD4491E85B2BAC084680FC, 9336CD2658B169A0797C79B9CD8FD96FA1DBB44CEEA3F4E79547BADF5E2DBDED ] Psched          C:\Windows\system32\drivers\pacer.sys
18:59:11.0147 0x1920  Psched - ok
18:59:11.0163 0x1920  [ C0C426DB80A332672B9648C595BD5D1D, FE00DADA570CF5DC827FA8A13DAFDC17B05EA06F203F2F535866072692D47D60 ] QWAVE           C:\Windows\system32\qwave.dll
18:59:11.0216 0x1920  QWAVE - ok
18:59:11.0227 0x1920  [ E418B13CA54FD910B731E6740C2D9890, C9DE1E03391987BB05EE99D846E9E06BBAD8E2D65AC611EECD73353AD63D0760 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:59:11.0265 0x1920  QWAVEdrv - ok
18:59:11.0277 0x1920  [ 63C90667A3D22FE239164EDC12B5C763, C216E004CD815DB346FF0199AE733787D6B156EA9EB68A03AC68D5C8933B7C55 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:59:11.0314 0x1920  RasAcd - ok
18:59:11.0328 0x1920  [ DD661FB42A6BE5AD95F1B37AF215F01E, 7B6A6FC72EE38BF318FB0787F117BBBEC189A25DFCC39C969C905F9924B0290B ] RasAgileVpn     C:\Windows\System32\drivers\AgileVpn.sys
18:59:11.0371 0x1920  RasAgileVpn - ok
18:59:11.0387 0x1920  [ FBFB61A337B298D1A9CA811F6E9EF038, D4D631CADA79F65D97108377772EC54BB7A4DE24B501656EF34647B485B7568B ] RasAuto         C:\Windows\System32\rasauto.dll
18:59:11.0434 0x1920  RasAuto - ok
18:59:11.0448 0x1920  [ 26F09741A8FF5EE03C66B33EB5C2A7D2, 82586D05A798BC7FBCCF144F0C0ACE7E430025E9B1BE8C5EC04A30C720DB15DB ] Rasl2tp         C:\Windows\System32\drivers\rasl2tp.sys
18:59:11.0494 0x1920  Rasl2tp - ok
18:59:11.0522 0x1920  [ F7C88EF77BDFD6B287930C87ECDCC161, 7BD1F41BBB4CBF9EE144933A15821CA70B316896C2B8330C5D00ED9CF835253B ] RasMan          C:\Windows\System32\rasmans.dll
18:59:11.0595 0x1920  RasMan - ok
18:59:11.0609 0x1920  [ CF3C50512A5F98DF406BAC8BFB3CF3EB, 463455E808AEAC658511B6A9A80B79B2C9921CAFEA16C7AF2ABED1FCE2B33269 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:59:11.0648 0x1920  RasPppoe - ok
18:59:11.0660 0x1920  [ 57E6CD6C4CB8418955402682EB13CD8C, 6252E6FB4B5A6DCDF6B81975D5E8F5598C642A83A4C95286A48A9E76EF674965 ] RasSstp         C:\Windows\System32\drivers\rassstp.sys
18:59:11.0710 0x1920  RasSstp - ok
18:59:11.0732 0x1920  [ 6764CDF0BF3B63387255A29999471BA8, 9226E93958146BCAB3177D141752F579C2FC3AEB5E1DF9887A038A487EC0496B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:59:11.0774 0x1920  rdbss - ok
18:59:11.0791 0x1920  [ 3FF15051B75EA5D575690E6EAE00A484, D07ABD771418B287D760F5DFA8570100245AF2AEE79D47CC483BDA50D57F862F ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
18:59:11.0830 0x1920  rdpbus - ok
18:59:11.0844 0x1920  [ F064A9E33658E8A73280AE8AA5723C59, 7CA4992F2AC4470F9E08F2FA0A8F62211149AECDD6838885B97BD9DBF4702986 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
18:59:11.0888 0x1920  RDPDR - ok
18:59:11.0915 0x1920  [ AFB4D0A3BBD65FF57199C5FFBDC480B2, 152159102226F11EAA8BCDF1E19D76FE5B964F26ED2D35E7E210E61BFDD6BB22 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:59:11.0945 0x1920  RdpVideoMiniport - ok
18:59:11.0961 0x1920  [ 50BF0AB46CB3551294CBCF5798539785, 003C2552C5AAC0EC925E487572C484E2BCDC0EB951FD2A0B5D45230737CFB288 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:59:11.0997 0x1920  rdyboost - ok
18:59:12.0031 0x1920  [ 35BA17FF927B79EDDEE436ADEB98EF21, 7409F4FAA7641D6C7971027BDA848A50E273561C0F99ACC3DCD37DC51A779A82 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:59:12.0096 0x1920  RemoteAccess - ok
18:59:12.0109 0x1920  [ 0FBF0AA8506AF66C0EF191CB2D3F5BDA, 585C245D4263227972B7654EC5DB131E69D6D5967C005F3C07A73079B1F80D58 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:59:12.0175 0x1920  RemoteRegistry - ok
18:59:12.0202 0x1920  [ 120A37CB8639F0F89DD142826FB6E89D, 75688B8E706C71FB89EB743FC69904E1EAE2C1DB3A6AAA7ED64D12DE5DA66506 ] RetailDemo      C:\Windows\system32\RDXService.dll
18:59:12.0269 0x1920  RetailDemo - ok
18:59:12.0282 0x1920  [ AD8F8A14C13E35CF8C3150C61BF47492, 2AB8A19C58BC0D09A7CD88726C5512DAC6B7C62175928298841BE2164348FE33 ] RmSvc           C:\Windows\System32\RMapi.dll
18:59:12.0329 0x1920  RmSvc - ok
18:59:12.0340 0x1920  [ AF4D1F6CB8DF6C2146586951BAF49D04, A3DC9FC28CD54D5D920950268B3FD96F06F1FD5A4D121EE3D475B9BE3EA56996 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:59:12.0384 0x1920  RpcEptMapper - ok
18:59:12.0397 0x1920  [ B9B285FA98F1F2575FA6E4BDC2A80A06, 7193FB715B60AC83FA528316E5291477ABBC404996FE71133044A03D5ED14A88 ] RpcLocator      C:\Windows\system32\locator.exe
18:59:12.0443 0x1920  RpcLocator - ok
18:59:12.0476 0x1920  [ 16C4E1708C9574B5CC9A32324FCE51DE, A7D99F2A6B254B5E9532CE957BDDE339D6D2281290A4ABE6B8E497E9D4872D05 ] RpcSs           C:\Windows\system32\rpcss.dll
18:59:12.0551 0x1920  RpcSs - ok
18:59:12.0566 0x1920  [ F3D1D3148CE384C8143F05452A2FAC91, 15BB4412078B1BB428EF5864CDED360713709A540D1E1A5A2EE19F0D9307127F ] rspndr          C:\Windows\system32\drivers\rspndr.sys
18:59:12.0606 0x1920  rspndr - ok
18:59:12.0615 0x1920  [ 4C98A80A7C43B709376598F75D0AB704, 98E71FA3C71FEC6DBD253091DB4817500648A0E593D70E90576B855CB5E6365F ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
18:59:12.0658 0x1920  s3cap - ok
18:59:12.0668 0x1920  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] SamSs           C:\Windows\system32\lsass.exe
18:59:12.0702 0x1920  SamSs - ok
18:59:12.0714 0x1920  [ F97AE73A2A532FED0A018E437DB1B410, 2F4402357A83666245A9C66BA792C90D75A9CF272E366E3444933791628BE2FC ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:59:12.0744 0x1920  sbp2port - ok
18:59:12.0759 0x1920  [ 9C634680E53ECE17B61472EA2D680208, FE0F599AB1E42E38E105009141A7F0DF08E0B8B2ACBA50AE15841E3DD6ED32AB ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:59:12.0815 0x1920  SCardSvr - ok
18:59:12.0831 0x1920  [ 2B5CAE7ABF1B2916EDC22A9BAC5B031E, 91C27DE8DF833C102D042087786DA231596E14A62E5682F9C06DA9F0950C4AF5 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
18:59:12.0879 0x1920  ScDeviceEnum - ok
18:59:12.0891 0x1920  [ C49723BB449D63A1C0BAB91CE5482DBC, 2C96C10E6C9287DA6393F9F684DF701402337CDE06ABFC9E1FC5283A5AAF4777 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:59:12.0929 0x1920  scfilter - ok
18:59:12.0965 0x1920  [ 959E10CACAC2208310C6EF595248DCC0, 82B423F83B90282B4023AB39FC1D1C0BABECDAE49E5459475C0D8046A4525ADE ] Schedule        C:\Windows\system32\schedsvc.dll
18:59:13.0056 0x1920  Schedule - ok
18:59:13.0073 0x1920  [ 1D6A243ECD54F7CC294B28946F6B5B33, 7A7F19ABD4B6D73121466B4D8649BBF375034B293FBDFE02A8982D09AA9E6393 ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:59:13.0121 0x1920  SCPolicySvc - ok
18:59:13.0134 0x1920  [ 9790B97C403208C61198BB0C2A4DAABC, E2A3AC7FFF064B3849135E3771E7246845B84664147014A06265835D451DB07D ] SCR3XX2K        C:\Windows\system32\DRIVERS\SCR3XX2K.sys
18:59:13.0182 0x1920  SCR3XX2K - ok
18:59:13.0201 0x1920  [ 94AA0D516E1186B671FDB1F9A050309C, 01F2881DF3EC5C22469020E37875E1B37B96BCFCDDA9111DD756C52109F19A8D ] sdbus           C:\Windows\System32\drivers\sdbus.sys
18:59:13.0237 0x1920  sdbus - ok
18:59:13.0260 0x1920  [ 4607024D1E475A9E7E2E59FC7429C614, B014D41F88BE47FBBD2AF8EDA477E3630154F944F185C914B8934F1181CDF5C7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:59:13.0327 0x1920  SDRSVC - ok
18:59:13.0341 0x1920  [ 26C918084DA80A1E019FA54B57582289, 089D9D752492068FBCBD9DD27B4CEB9DDA082563BFE6B29ACC0484D7D9E12A57 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
18:59:13.0372 0x1920  sdstor - ok
18:59:13.0383 0x1920  [ EE331C415B3B184642A9FAA38954A93A, 211C25FFA407F1FF664C3CBE7C34F37A5FFE5E485ACD18985AE5512B7076C169 ] seclogon        C:\Windows\system32\seclogon.dll
18:59:13.0432 0x1920  seclogon - ok
18:59:13.0444 0x1920  [ EB32C35D4EB4D058C397A3EE92DB082C, 5BA376B64F202E1E82AE7386CCD1B81EE123780F6A75F17535EB9791C2DA82BB ] SENS            C:\Windows\System32\sens.dll
18:59:13.0490 0x1920  SENS - ok
18:59:13.0563 0x1920  [ FA3D960943CAD952FB2280E8BA183736, 32C2C086902139E4AF9793B75DDD061EC4BFFEFC04C75F08B806F1C79F1F3D00 ] Sense           C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe
18:59:13.0673 0x1920  Sense - ok
18:59:13.0720 0x1920  [ 19A4E4C9A4EF2904BCE49616DD50C03D, C14EE41A37DE3AEA3543D62D6F6234BB911D8958FEAB27C3E3BF38DDA2B20738 ] SensorDataService C:\Windows\System32\SensorDataService.exe
18:59:13.0813 0x1920  SensorDataService - ok
18:59:13.0836 0x1920  [ 238FEBCC332BED9E71ECDF2CD2A4FE70, 3A2220D2E08ADD98E201C0A6211B04D772C7747A1D4653EB1787DCF80B046142 ] SensorService   C:\Windows\system32\SensorService.dll
18:59:13.0894 0x1920  SensorService - ok
18:59:13.0911 0x1920  [ 24E024F7010DF54D232E5FEFD0E35076, 21A3BDA1C6F633611D508FFE2E3DB2190CCEAAC50FD3B70D4A08652BBC642AE5 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:59:13.0971 0x1920  SensrSvc - ok
18:59:13.0982 0x1920  [ 3AF853CC0C6690BEFD6645FBDB45CF39, 569706FA305BF3DFE70D341B46615802DE0EB117AF5CD278EEF5C94790BDE3A7 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
18:59:14.0011 0x1920  SerCx - ok
18:59:14.0025 0x1920  [ 4B7E7F5E4C4F585BB23BE0FE031DA2B4, DD5619C08A5792DA92F230052536E00B03249A12042DEC90700BD641CD82EB74 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
18:59:14.0057 0x1920  SerCx2 - ok
18:59:14.0066 0x1920  [ 87A300D27D76E281A0077020AA46B105, 906F0118D16F5A2997FBB5C95DBAA0382DF02F04DB033917E81CB9381C3E67CA ] Serenum         C:\Windows\System32\drivers\serenum.sys
18:59:14.0114 0x1920  Serenum - ok
18:59:14.0125 0x1920  [ F3635BECE1FA3BACAD12C93CDEE45A8B, 6F07C06FE5DC550BAD71175A354FC1E21D6A729DCF6BD3970A1D0D89597C64B2 ] Serial          C:\Windows\System32\drivers\serial.sys
18:59:14.0176 0x1920  Serial - ok
18:59:14.0194 0x1920  [ 3DD6073C72024027EDDDD41B7D1CDCAD, 3A5FD257774E78217195BC257DC29DEC25C20CE690928729554380722A9D52F9 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
18:59:14.0229 0x1920  sermouse - ok
18:59:14.0281 0x1920  [ EB4F3BDE38ABF0AEECDFEA76E2CB1EFF, 94A3DC0F7A9D33B1BFA5F61FB21883A97BAE4A013B1CCAD7DC7A1C450708BEEE ] SessionEnv      C:\Windows\system32\sessenv.dll
18:59:14.0340 0x1920  SessionEnv - ok
18:59:14.0353 0x1920  [ 1B4A5247D0F167F8361C16A59478D5C8, A662312F63C0DA78D67907DE56954BB3D2AC7E1B84619BF32F625C7A564AF677 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
18:59:14.0391 0x1920  sfloppy - ok
18:59:14.0417 0x1920  [ 01B428DA0C4EB6F97633B3E457B389B3, F5F8F237283A263AE3C08B81E000D5FA5A7D2274CAD3EAC736E07F3E76499E4D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:59:14.0483 0x1920  SharedAccess - ok
18:59:14.0519 0x1920  [ 25FD6DC3D4EC699E4EF5CFB91BFC6ECF, C396BD9E892146768AA6F63DFD28ECA57E3E5A16A5681595CCD08D7FB2F093D3 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:59:14.0602 0x1920  ShellHWDetection - ok
18:59:14.0617 0x1920  [ 48E8F5FAA0D397A555D39544B9471BAE, 3895678514051D11985107C70A6E57865C90BC5922AD36EDC28C37FDC7BCEFE2 ] shpamsvc        C:\Windows\system32\Windows.SharedPC.AccountManager.dll
18:59:14.0666 0x1920  shpamsvc - ok
18:59:14.0676 0x1920  [ E1A38396A6434446F265ECE72A375C5C, 2584661E9C784A07C14BCF0E1D79940C750E45480843DB949CE23467FA7480E6 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:59:14.0705 0x1920  SiSRaid2 - ok
18:59:14.0715 0x1920  [ 407A47319F097271CA1FF7ADFD13CD82, 7AFC9126AC85EBF6B17022AA95C62E09D9E033EFEB4AC1ACD63F72CA13443FF8 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:59:14.0746 0x1920  SiSRaid4 - ok
18:59:14.0757 0x1920  [ 71C635D7796D394138BFFBB8C2559CFB, 0A2D7B7720781C8A3A318C1E58B9F8D27BCA3E918E88C230F9F9EF5210B2344E ] smphost         C:\Windows\System32\smphost.dll
18:59:14.0798 0x1920  smphost - ok
18:59:14.0822 0x1920  [ 8512CFE5DDC918C31BADD397B8DCB703, 4810CA8155BECF1815963EC9C35BFF3029CB7CB1C28751123BEDF60F20A6AD1E ] SmsRouter       C:\Windows\system32\SmsRouterSvc.dll
18:59:14.0889 0x1920  SmsRouter - ok
18:59:14.0907 0x1920  [ 7D21A60C6BF71645B080B42C14FDF1B2, 0BF8EC8A347F1A12E91DE14489CFC2317612AD22CF234046A71E2C0E0AA83C1A ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:59:14.0958 0x1920  SNMPTRAP - ok
18:59:14.0984 0x1920  [ 8152DD698E377476C787B91F297A32BB, 1A7152C108BF465E2678F196B35D50BDF06C51C4040F2359642BEFA4749E672B ] spaceport       C:\Windows\system32\drivers\spaceport.sys
18:59:15.0030 0x1920  spaceport - ok
18:59:15.0041 0x1920  [ 0F36602CAE7758CD4086EEF6FF83D47D, 225BBCC3BF6B578EB395F2D28A21518CFB7FB4F687A43B8B1AECF5BCFB94E44A ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
18:59:15.0072 0x1920  SpbCx - ok
18:59:15.0101 0x1920  [ 3FA2E254BFBCE52B3C6F1BF23AAB6911, 1E94D4E6D903E98F60C240DC841DCACE5F9E8BBB0802E6648A49AB80C23318CB ] speedfan        C:\Windows\system32\speedfan.sys
18:59:15.0126 0x1920  speedfan - ok
18:59:15.0152 0x1920  [ 809A5855DD62DBA26E48C986B12B1860, 637D82140848CE6C7CB8AF216A8DEABB4D4B81F45229AE54FEB0D2179007B337 ] Spooler         C:\Windows\System32\spoolsv.exe
18:59:15.0232 0x1920  Spooler - ok
18:59:15.0408 0x1920  [ D3A29AF4ED4675630BE468D8AC1D1FC3, 1ACBF70E31D35FDA1B135EB091743A88464949C9B2AD6205C8251EA08CD31B53 ] sppsvc          C:\Windows\system32\sppsvc.exe
18:59:15.0675 0x1920  sppsvc - ok
18:59:15.0722 0x1920  [ 3091FC9281816A0AA9F4C0FBEA4449CB, EC0E87A4C52319C3FB643ADD525C5B478EFB35FC3069E68606D2F540987365F8 ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:59:15.0777 0x1920  srv - ok
18:59:15.0809 0x1920  [ 9D7897177101D7D3CC76FDF0772E3000, 137A7D5EBABB345A194EB5346183CA2277DA103DA730EDDCB1EA8341D67EC401 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:59:15.0879 0x1920  srv2 - ok
18:59:15.0896 0x1920  [ 43182E4DEC2794B7CB5B944F2F04C2AC, 1ADE7DBC17D2FDE5A7059F8104CE240CD60F8940280384CE2571318A072D2F0F ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:59:15.0941 0x1920  srvnet - ok
18:59:15.0960 0x1920  [ 1D2163A2238D7003A775ECB3C89BB996, 0EC3AEFAA19C27E4BDD966DDFDD96DBD0B2D232CF443B857618D7CA0A46FAF9B ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:59:16.0011 0x1920  SSDPSRV - ok
18:59:16.0027 0x1920  [ 234194CD4BA69FAC3C0F87550316E55D, 45881DF6E8B5ED032BFC89931DA526BAA828AB5C5DBCC05484C251FD8A95F1E1 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:59:16.0080 0x1920  SstpSvc - ok
18:59:16.0204 0x1920  [ FE68CCE3D2985526FB00C692E92E0FE2, 7C514F45398296A96C14B2C3EA77DA36970635BE7568D0FA24DB0D870B36379D ] StateRepository C:\Windows\system32\windows.staterepository.dll
18:59:16.0450 0x1920  StateRepository - ok
18:59:16.0470 0x1920  [ EB59E7B245151F65A44408EC6518D0B1, 771106419A24A684F8AD006597DFAA8D350C16C677E1F574467C8F9D666AA4E5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:59:16.0499 0x1920  stexstor - ok
18:59:16.0525 0x1920  [ 68312F861BFA5CE2E02F23DB5F2669AA, 2DBC40B18F576004F4828275808473AA224400B342EB2D33D48CCB7231F7FACA ] StiSvc          C:\Windows\System32\wiaservc.dll
18:59:16.0600 0x1920  StiSvc - ok
18:59:16.0613 0x1920  [ 3471008FDDA7CC58AAF8F28B246D0953, A6DB9787159EF230A42929F69121E3E4E5FDE13BFD97CBDD450C9ED4668C30AC ] storahci        C:\Windows\system32\drivers\storahci.sys
18:59:16.0646 0x1920  storahci - ok
18:59:16.0660 0x1920  [ 42DCF1819631593A957C1F04E8198641, 72FB0FF762D59277DECFC0AE01CA120741098BA84971BE3669EB2E41B765A5A4 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
18:59:16.0691 0x1920  storflt - ok
18:59:16.0704 0x1920  [ F6BF76CC2EA03262838F2DE6975BECD4, 1560FEF2E9AF1FDFD9C8CA5DFCCCEA516CCF11B3C2066A07A0AD7A00A4762D1D ] stornvme        C:\Windows\system32\drivers\stornvme.sys
18:59:16.0734 0x1920  stornvme - ok
18:59:16.0745 0x1920  [ E7ED6F07B04B5886370691B39BA7761E, 97FF2621A4FF043ADCEB7740CDC647293300C4431277346F207061546FA3A54A ] storqosflt      C:\Windows\system32\drivers\storqosflt.sys
18:59:16.0784 0x1920  storqosflt - ok
18:59:16.0805 0x1920  [ A02F1DC0A416FDE7D6F98896592669F2, D3A212CF08E015F6FAD90EEAA2A7E513960FEE979117267006416F5A8B13E755 ] StorSvc         C:\Windows\system32\storsvc.dll
18:59:16.0863 0x1920  StorSvc - ok
18:59:16.0872 0x1920  [ F8C3E2482BA5D34BA24FAC60DEAD9A2F, 911BBEF6B02B5E0905450E0DDA731CCBCB1D3CC9B77B960555D976384700F744 ] storufs         C:\Windows\system32\drivers\storufs.sys
18:59:16.0900 0x1920  storufs - ok
18:59:16.0911 0x1920  [ 926CF05CE1AA19C0979C617B7E04EDC9, 75B13969070710CA7D3F32745362656612238CC6A53A0F80D4175968CEE7A389 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
18:59:16.0939 0x1920  storvsc - ok
18:59:16.0948 0x1920  [ D71C4D8DEBCDC19B1ABAB63E39BAEECE, 7B211911FA5E6D9F115519647E03C49404A7614225505630F74EF81B52AB3434 ] svsvc           C:\Windows\system32\svsvc.dll
18:59:16.0994 0x1920  svsvc - ok
18:59:17.0006 0x1920  [ 179A21FDBF70D7BBD1461CC0EE4AC553, AC5EAF8E870F49595CA1F6AA6AB487757860DBFB3A8AF5B1B4B44D283ADCA08D ] swenum          C:\Windows\System32\drivers\swenum.sys
18:59:17.0032 0x1920  swenum - ok
18:59:17.0052 0x1920  [ AD9F34D0BC67A4643BB217E8B6C8DAA0, 014F1927F79EF491C00C247278A856CE4125A7B26F871F74FC56FB7FC32FE3AC ] swprv           C:\Windows\System32\swprv.dll
18:59:17.0116 0x1920  swprv - ok
18:59:17.0128 0x1920  [ E642BE03D50EA1F13935588123513598, 83B7A29AF398285A688F5655CF1440993FDC3DC41C47A7E711CC7019135D0D8D ] Synth3dVsc      C:\Windows\System32\drivers\Synth3dVsc.sys
18:59:17.0166 0x1920  Synth3dVsc - ok
18:59:17.0182 0x1920  [ 3D6316279C3540AA268BF025F4621EF3, 042C268DD1A98BC91721DAB31F20AEC06EF086EF8AED2BB05CF138106ED0C7DB ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
18:59:17.0208 0x1920  SynTP - ok
18:59:17.0247 0x1920  [ B1031B316803002E68DFD56C9A70C355, ED34170782EDA25C72BECC37CE16F4D9E3CD580B59067F268AAEC28575E25FBB ] SysMain         C:\Windows\system32\sysmain.dll
18:59:17.0340 0x1920  SysMain - ok
18:59:17.0360 0x1920  [ C3E7921B1BD1057E50B893C90FED240C, F60DC85276D7CA35D7710047ECFCC4490D1F01DDBBCD3355FB9E971B7AD2AA93 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
18:59:17.0417 0x1920  SystemEventsBroker - ok
18:59:17.0431 0x1920  [ 731C95317C6D74A9956875BF248B6BE6, FDBB0B793AEB06A508B862B2E5EEEF5DEC1FAFBC60BEAE5B7E1F76EAAE8C9CF0 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:59:17.0480 0x1920  TabletInputService - ok
18:59:17.0499 0x1920  [ 0CBA864DBB0E503101C746BEFC01BBDE, 33B61454E0EF068C903FCEB4D0682A394F6150B8ADB5C6568C29EDE8327B10BB ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:59:17.0557 0x1920  TapiSrv - ok
18:59:17.0632 0x1920  [ 36E88DE70C5D3C7C35531A1F775FCFC2, 4B8054B6231CBEE26FF8F60D9DC0C273B2ABA52F9FA6D29E76DF5DBFBFE6C9E0 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:59:17.0748 0x1920  Tcpip - ok
18:59:17.0830 0x1920  [ 36E88DE70C5D3C7C35531A1F775FCFC2, 4B8054B6231CBEE26FF8F60D9DC0C273B2ABA52F9FA6D29E76DF5DBFBFE6C9E0 ] Tcpip6          C:\Windows\system32\drivers\tcpip.sys
18:59:17.0930 0x1920  Tcpip6 - ok
18:59:17.0954 0x1920  [ 1B443D953FA0C54CAB8DD0AFF0B12DA1, 640F755C10EA563D50407FB814BA96ADED52A2943BA4019FCDFECC3D8D73D3EB ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:59:17.0996 0x1920  tcpipreg - ok
18:59:18.0013 0x1920  [ E8DC8115AE2C912694ACB51BD48D417D, 4931107529CD77F535E7BA574A2CDBE4543DE0E8A68FBCBB0ED072A0FD84299D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:59:18.0044 0x1920  tdx - ok
18:59:18.0054 0x1920  [ 2DC0F2A9C15BC327D6812A62F895B022, 8CB51EBA9D5355B26BA470BC1C2C42741126ABBBA593F353807A36A72EDE9887 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
18:59:18.0081 0x1920  terminpt - ok
18:59:18.0120 0x1920  [ 8938289B183BE6473D502D94586377DE, 6E1F32F59B366058CB174A0E6D809527A95EA09EE7B23A51FCB63B478F8EE9F9 ] TermService     C:\Windows\System32\termsrv.dll
18:59:18.0206 0x1920  TermService - ok
18:59:18.0220 0x1920  [ 5413CAA38F5E5496AFFBE6270A2F2A92, 78EE27DCDC611198CC9D4BC8582F0FF4D36AB957D9882CF3DB4B2DF40581F27B ] Themes          C:\Windows\system32\themeservice.dll
18:59:18.0273 0x1920  Themes - ok
18:59:18.0291 0x1920  [ 70147D6F6BA11781FEC5EEC2B2CD183C, E8869BD655FDB2B363E47E7579860CCF1EE3AA603FF967874070B40C262F1957 ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
18:59:18.0352 0x1920  TieringEngineService - ok
18:59:18.0372 0x1920  [ C424F991494E5674F2E9B3CF9F5F55D1, CC799C9154431763D052AB8B41EFAE71A039EDD6EAC5E6D892E22C8BEF1D2BB5 ] tifm21          C:\Windows\system32\drivers\tifm21.sys
18:59:18.0421 0x1920  tifm21 - ok
18:59:18.0451 0x1920  [ B623B8DFFEAF4178029966DAB1556596, 9B79725A1AD4C76D1C41B8242664450A58414B1401DDBCF62DA90DD1B83E9FB2 ] tiledatamodelsvc C:\Windows\system32\tileobjserver.dll
18:59:18.0520 0x1920  tiledatamodelsvc - ok
18:59:18.0534 0x1920  [ 91D9BB3E2B956A8EB8843A4F9EA4E901, B0572EB3CA14372905C586CF7F7A52650DC0503278A4DFBAE2256B74636FB55F ] TimeBrokerSvc   C:\Windows\System32\TimeBrokerServer.dll
18:59:18.0581 0x1920  TimeBrokerSvc - ok
18:59:18.0600 0x1920  [ ABB71F0B6B1939FDF2CB1E1131530E70, EA0FB91DA733B9B32641F4CAB9966589C0291369182984B65487938993BDD8FB ] TPM             C:\Windows\System32\drivers\tpm.sys
18:59:18.0635 0x1920  TPM - ok
18:59:18.0647 0x1920  [ E3B4514D9CA7F9151F49D6217F27AF37, A4FB4DF7E75DB7E222E91357DD584614439C08CF39B1EBBFBC2EE854A31613F6 ] TrkWks          C:\Windows\System32\trkwks.dll
18:59:18.0693 0x1920  TrkWks - ok
18:59:18.0706 0x1920  [ 17A95C725623DB689E6AABE46B82EAD5, 729E6A37C533763B4ED31D5F5F940A12234EE0C8E674C6AF5C19C0C70F72010E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:59:18.0754 0x1920  TrustedInstaller - ok
18:59:18.0773 0x1920  [ A3ECB86DB90D0F9A95ADB13686C7F680, D1A2F4841957EE45928E2178623982873A5E1C46F927F68F4F6660DAEB47127D ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:59:18.0812 0x1920  TsUsbFlt - ok
18:59:18.0821 0x1920  [ 38C939FB0B952054102B0E36FAF8B039, 339A39F90CAB5576EB7DD9F6673F1BBA0CC4BB5F5DE120BC61FEDBC7FD403981 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
18:59:18.0858 0x1920  TsUsbGD - ok
18:59:18.0872 0x1920  [ EE5E794D067A096C246567D0CBB7BF77, 81969C49F50B8EA62367C11872AFA67E5D65391778D337CA6146EE47C4FEC8D3 ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
18:59:18.0915 0x1920  tsusbhub - ok
18:59:18.0929 0x1920  [ 9DB33E16FF4D5868EEC877E46A91A8A8, F37FC4F3A9DD4C90DEFD8B2812AF88A212C315C5CA6B5C47B54CC8B8B4BEECB8 ] tunnel          C:\Windows\System32\drivers\tunnel.sys
18:59:18.0973 0x1920  tunnel - ok
18:59:18.0988 0x1920  [ B564A572014AE16153544B1104DF878E, 548B59C94DA03AF0034C6AC5A8EE7E4A5D9ACA5E60BBA321BA064BBFB4A3FB21 ] tzautoupdate    C:\Windows\system32\tzautoupdate.dll
18:59:19.0034 0x1920  tzautoupdate - ok
18:59:19.0045 0x1920  [ 59E4999207E82FDE73C2C084CB9BB942, 340AFF852A244E6C0CD3201130A0366FB7D5B151060814DD9CC3FBDE8B0321C0 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
18:59:19.0075 0x1920  UASPStor - ok
18:59:19.0088 0x1920  [ B77AA4582655163B5DB2D20CD8A339CD, 16B839C06091B447DD61EECBA93F79638DA26F21B6E6F9552ABC5EEE6C027E24 ] UcmCx0101       C:\Windows\system32\Drivers\UcmCx.sys
18:59:19.0127 0x1920  UcmCx0101 - ok
18:59:19.0142 0x1920  [ 32E88DC1104A3BC7CA4B0D9ABB59BAA8, D589DF17177C074B4CB92E1BC5A0561E7EDC2AAF8E5AD514A8C34D994E6B6DF8 ] UcmTcpciCx0101  C:\Windows\system32\Drivers\UcmTcpciCx.sys
18:59:19.0181 0x1920  UcmTcpciCx0101 - ok
18:59:19.0195 0x1920  [ 0887EED62FE7BCA5D5A004393127E250, A28C40B31E0121552389F3959E56CFFB4FF34F221457109BEAB6B4F0BC6A7AE8 ] UcmUcsi         C:\Windows\System32\drivers\UcmUcsi.sys
18:59:19.0234 0x1920  UcmUcsi - ok
18:59:19.0249 0x1920  [ 2063C0A85FF2EC5902F480B15EF91011, E7B28A45F0D3E2568872B9A38A46625A9F729DC250830E28CB45DC535FC293B6 ] Ucx01000        C:\Windows\system32\drivers\ucx01000.sys
18:59:19.0284 0x1920  Ucx01000 - ok
18:59:19.0297 0x1920  [ 5824FA518595A90F9215DBE1C51F91C8, CCAEA4B62BACECB5D09888F91C89A01CA89E552D4346437F850547809E84C341 ] UdeCx           C:\Windows\system32\drivers\udecx.sys
18:59:19.0334 0x1920  UdeCx - ok
18:59:19.0355 0x1920  [ 8947C71283391E0FE5527017A91D405B, E72441E0BF2FCF9BFC977EFD0755A812C02FA06CA4435A8AEAC23B5110164AE9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:59:19.0413 0x1920  udfs - ok
18:59:19.0426 0x1920  [ 06BA4A02C78D112E8CA886898B77EA68, 9351146962E02D85622B4178FA7FC1DDCD8E3724773F076496576BCF248E329A ] UEFI            C:\Windows\System32\drivers\UEFI.sys
18:59:19.0454 0x1920  UEFI - ok
18:59:19.0463 0x1920  [ 77491C8F08F6B3C2AE9ABA4DB3A6A1A0, 45046D7600E7CDFE177DC907CCEAE0FC0C048A95F16221866FD0A23B348E95A1 ] UevAgentDriver  C:\Windows\system32\drivers\UevAgentDriver.sys
18:59:19.0493 0x1920  UevAgentDriver - ok
18:59:19.0536 0x1920  [ 3FC5416FE141F45F9182994FFFEA8FFE, 73BE66EA7032CF41421A7E49E47CF4282EBB625B93E16DA903FB1183CCB434CB ] UevAgentService C:\Windows\system32\AgentService.exe
18:59:19.0621 0x1920  UevAgentService - ok
18:59:19.0639 0x1920  [ B164D49099D0243474718049B29D4546, A5318D2711E859F0D968FF613463A0ED503EEE1B8B9691553EC0E482D1566FAF ] Ufx01000        C:\Windows\system32\drivers\ufx01000.sys
18:59:19.0674 0x1920  Ufx01000 - ok
18:59:19.0686 0x1920  [ 34FBBDA1849B17F8E97772F8A58CDC22, 63A1ED6398F0FB34D8399403576A30DA2F87407BD692863CBB4831F55BE7C8F1 ] UfxChipidea     C:\Windows\System32\drivers\UfxChipidea.sys
18:59:19.0718 0x1920  UfxChipidea - ok
18:59:19.0733 0x1920  [ 8A7B7C41F7796220FE4B9D183403ABCA, 04D90D1858537125A9232F7312561A2F2F15532EAA3F6E027C8926E4F925A27B ] ufxsynopsys     C:\Windows\System32\drivers\ufxsynopsys.sys
18:59:19.0766 0x1920  ufxsynopsys - ok
18:59:19.0794 0x1920  [ D80204E8447B30550BC77C97565859E2, DB6BCBBDCDF203C726247EC06EC3E14D3C642222A1320341BC4E8319FE0B916A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:59:19.0841 0x1920  UI0Detect - ok
18:59:19.0853 0x1920  [ 632C1E517ED21AD5C044205D177F7082, C35B3E6E87E7F2D182A037DC7B4F15824FB7A7DCCC0AC90F681DB774060BFFAF ] umbus           C:\Windows\System32\drivers\umbus.sys
18:59:19.0897 0x1920  umbus - ok
18:59:19.0907 0x1920  [ 49C06B189A5714DFD38378FA4059521E, D834D2C4EB34471928F38C0BC74855DD7F1783862DFD0FC986B8ABE17596FE2A ] UmPass          C:\Windows\System32\drivers\umpass.sys
18:59:19.0942 0x1920  UmPass - ok
18:59:19.0960 0x1920  [ DE544A44D74FAD98579FF6C6DC7D1684, 5C38B94479039A8921C5854BECA140DCD498E65AD76ABCB93B8EFBCF64E9CC7F ] UmRdpService    C:\Windows\System32\umrdp.dll
18:59:20.0016 0x1920  UmRdpService - ok
18:59:20.0060 0x1920  [ 58A2C2CC89D528DE8FE8D3EADC8FBAE4, D682EA1AF11D49B391ABB7AB83A9DFB321534D7A892B5CFD50637AD1C1AEF3E4 ] UnistoreSvc     C:\Windows\System32\unistore.dll
18:59:20.0157 0x1920  UnistoreSvc - ok
18:59:20.0188 0x1920  [ AC79703EBF464C6EA2AE2CC65E6878A0, 3DD888BE1189B824455D0F8F5DC91026AE18E3BECB95F68827FA4E659E0AFC4B ] upnphost        C:\Windows\System32\upnphost.dll
18:59:20.0257 0x1920  upnphost - ok
18:59:20.0280 0x1920  [ 5B121FF570059764F34C9C3F9E2D8AB5, E386458BF7DACE6BA452260BB8B2E3AFA8A4D21CCCD9931F6D97694871E428EF ] UrsChipidea     C:\Windows\System32\drivers\urschipidea.sys
18:59:20.0309 0x1920  UrsChipidea - ok
18:59:20.0319 0x1920  [ D4DC4C2C309053BB93A44F40560F9EBD, A69D950533467F83233CC4A71105E15EEBFA444EFC3B13DF21952E22515215B2 ] UrsCx01000      C:\Windows\system32\drivers\urscx01000.sys
18:59:20.0348 0x1920  UrsCx01000 - ok
18:59:20.0357 0x1920  [ 6AC432C3C051AD5E99186E364F3A66B8, 9E48D06AF7061B329FE4E4D1F29D360F87ED3A661BA62CCF54C74CD3A358D1C2 ] UrsSynopsys     C:\Windows\System32\drivers\urssynopsys.sys
18:59:20.0385 0x1920  UrsSynopsys - ok
18:59:20.0399 0x1920  [ 10B85AC4C93EB71232A31C88E8EA3238, 73246DE85F7C098E34D6A8C607F796AED9D43A1DABD16437832E261259612CD8 ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
18:59:20.0431 0x1920  usbccgp - ok
18:59:20.0442 0x1920  [ C7E28A3297CB8C3BE938AFF4095F6EC5, AC0D5D860968ED96D9A24086F52018BC99463321942695D75C1D9712503CDB42 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
18:59:20.0481 0x1920  usbcir - ok
18:59:20.0493 0x1920  [ AF30D171BED850525E6A56581B43D260, 56487740DCBAAF87E043A414AF1F1CB45B842FF4B7A6E5E9E5C748B6F1D1D177 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
18:59:20.0524 0x1920  usbehci - ok
18:59:20.0548 0x1920  [ 5B15A1C6C27EA30E500E92C197410946, 9514D56B3AFB0B0973163AC06480E04E0AB4A1292EDE582D6CF34E4596A7E28F ] usbhub          C:\Windows\System32\drivers\usbhub.sys
18:59:20.0591 0x1920  usbhub - ok
18:59:20.0616 0x1920  [ AB7A95CCB00CBDC4CBB4E566DCCFDE97, 38F9CC1F2BD6BC049F50A85094FE9F36BC8EDB0FE939A1B6C590C86724D6C3DA ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
18:59:20.0661 0x1920  USBHUB3 - ok
18:59:20.0676 0x1920  [ B18BE03B2077BA681043BA628D43C55E, B8FF9A2ACEBE3D68D58B49873D4899B93705B1A44FBE146A01C9E4EF91959D80 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
18:59:20.0713 0x1920  usbohci - ok
18:59:20.0722 0x1920  [ D8A438D6683D398CF844BD8B0F548243, 4034A459272325138581CCEDC39230A6A2A891854EE2B20DA7CCA5073A804EFE ] usbprint        C:\Windows\System32\drivers\usbprint.sys
18:59:20.0760 0x1920  usbprint - ok
18:59:20.0773 0x1920  [ BBBC806581BF4181A874CAB3A7D5D3B7, 401B437A09B057EF967233D34AD8F40B759C860563B97ECCE2A855D947CF0E7A ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
18:59:20.0812 0x1920  usbscan - ok
18:59:20.0822 0x1920  [ 147D2178C690782CF4CD175137961739, E940B5385CF92F007CDBC972CF3FF0BC19E0746F0B63F12518A21EC780BBBB36 ] usbser          C:\Windows\System32\drivers\usbser.sys
18:59:20.0862 0x1920  usbser - ok
18:59:20.0873 0x1920  [ BAE8E7603769E3A5DC9D14A6EAEBF438, C9E89BA93A24A5EBA59948CD52240C2A124C308946557F7DD9FC3589A7EDB9A5 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
18:59:20.0906 0x1920  USBSTOR - ok
18:59:20.0916 0x1920  [ 011BBB3175DBBA3B2369B2FEBF76C596, 5161FDDF7D525F8E4F9AAE3BA42E618D7C9F1870C7CEF24F69303DE0A3D3AC7C ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
18:59:20.0951 0x1920  usbuhci - ok
18:59:20.0970 0x1920  [ 8A3035C326FFF5AF27B60D37218B8244, A07C975D8222891B1578A1279EB373A1CD8887B344324EE66306BEBE0BFBC6DB ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
18:59:21.0010 0x1920  USBXHCI - ok
18:59:21.0065 0x1920  [ 3CD3C6C375586AE73D7C5114D350A555, D7B9BB123E25628F7B34068DED16D460DD4B7398487FA6DCF4C48705CC8BB5C9 ] UserDataSvc     C:\Windows\System32\userdataservice.dll
18:59:21.0180 0x1920  UserDataSvc - ok
18:59:21.0233 0x1920  [ F4C4C45AB57A2DED6798A571C499BB67, 3B449245C96A7845C439276A371CBAA3FB0969DA579ED4F3A84B77E736A4F250 ] UserManager     C:\Windows\System32\usermgr.dll
18:59:21.0324 0x1920  UserManager - ok
18:59:21.0351 0x1920  [ 9AC80232F5A41903164FC69E2B505BFE, 73FB73F40F621382FA6B9C8CA19C10BA2D77CBCCEFE7C3573E8046400206FB03 ] UsoSvc          C:\Windows\system32\usocore.dll
18:59:21.0416 0x1920  UsoSvc - ok
18:59:21.0428 0x1920  [ 76C8CBC584D5BEDA0819F36F778DDA16, 825A1F9D384126E87DC31F198FFEC2AC484F7E6ECE213E7FE5C57BFB27B5A941 ] VaultSvc        C:\Windows\system32\lsass.exe
18:59:21.0459 0x1920  VaultSvc - ok
18:59:21.0469 0x1920  [ 054BAE75AC02A04A2D49EE2D251DCFE2, B4F8A7C2AB5DAF6A2EA8E1069DD5A81CB5FAC28984299D0A74C1F3533D902762 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:59:21.0501 0x1920  vdrvroot - ok
18:59:21.0529 0x1920  [ E0081D34E432AE616CD2B40B43EFA9C8, 1E3D7E367AE3B1DE24C499833583ED244A9425BB321107758FFA233BD1AA5DAA ] vds             C:\Windows\System32\vds.exe
18:59:21.0607 0x1920  vds - ok
18:59:21.0622 0x1920  [ FE2B69C1FFBE1A51AB1E82B169030D96, 41C3EF746CA14092E3B90572B5CBD19AE3D96406A3D25386CC20860C55069322 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
18:59:21.0658 0x1920  VerifierExt - ok
18:59:21.0688 0x1920  [ CDCD4AFBB61D4D6C2B263FC922B2D708, 977AF1E1B7A9EBAB677C1279A811F593B1844ADFCC2E6547F52A164F56845B82 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
18:59:21.0746 0x1920  vhdmp - ok
18:59:21.0760 0x1920  [ C2A8ABA5BFC09E32489B79E28B2011AF, 92876EEE6AF26237F62E149B2AD10BE5EC52425A79A5EC1898EA807509CAC3BC ] vhf             C:\Windows\System32\drivers\vhf.sys
18:59:21.0829 0x1920  vhf - ok
18:59:21.0845 0x1920  [ D4BFDCC6EDAB8BBFAF4208F73C95F2D5, 2D05CD3056DE57F4144A1F169FE3656071A99E0BF6395BEAC60FB25EF634B5AA ] ViaC7           C:\Windows\System32\drivers\viac7.sys
18:59:21.0886 0x1920  ViaC7 - ok
18:59:21.0898 0x1920  [ 66317468ED907DF1AF053BB82A71B79E, 28C68377D51CCCFDAB46AE3E0CE4FBF3C3F785E35B0CEBF605A1B29139953683 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
18:59:21.0928 0x1920  vmbus - ok
18:59:21.0937 0x1920  [ CAACA09A933CD00E0B5793BF86A8C27D, 173F6ECEC53FACDF047EB586A634F1E95914766067AFFAED4853DD7BF53E91A0 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
18:59:21.0973 0x1920  VMBusHID - ok
18:59:21.0988 0x1920  [ E3FEA0FEE08EEBD39CC175824CEBCDEC, 6396624D3F4D8A94A067FFD3D1A1EB63B7BEDA3F834B8C75A5E805E063FF6A6C ] vmgid           C:\Windows\System32\drivers\vmgid.sys
18:59:22.0024 0x1920  vmgid - ok
18:59:22.0042 0x1920  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicguestinterface C:\Windows\System32\icsvc.dll
18:59:22.0093 0x1920  vmicguestinterface - ok
18:59:22.0107 0x1920  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicheartbeat   C:\Windows\System32\icsvc.dll
18:59:22.0155 0x1920  vmicheartbeat - ok
18:59:22.0170 0x1920  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmickvpexchange C:\Windows\System32\icsvc.dll
18:59:22.0216 0x1920  vmickvpexchange - ok
18:59:22.0236 0x1920  [ 4CDFD55654E4A7D54555E569A1A83D53, 372DBF5E2CA3B3F96B40B0188086ED9AB713170643AE425B3034E635A5C0FACC ] vmicrdv         C:\Windows\System32\icsvcext.dll
18:59:22.0291 0x1920  vmicrdv - ok
18:59:22.0314 0x1920  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicshutdown    C:\Windows\System32\icsvc.dll
18:59:22.0361 0x1920  vmicshutdown - ok
18:59:22.0376 0x1920  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmictimesync    C:\Windows\System32\icsvc.dll
18:59:22.0422 0x1920  vmictimesync - ok
18:59:22.0436 0x1920  [ B4B231917D474D29A64C546879131135, AB034E972EE9D71EC1AB414F2F7961ABDCCD4AECBE172C12B82F5E6ACE959FF1 ] vmicvmsession   C:\Windows\System32\icsvc.dll
18:59:22.0483 0x1920  vmicvmsession - ok
18:59:22.0503 0x1920  [ 4CDFD55654E4A7D54555E569A1A83D53, 372DBF5E2CA3B3F96B40B0188086ED9AB713170643AE425B3034E635A5C0FACC ] vmicvss         C:\Windows\System32\icsvcext.dll
18:59:22.0557 0x1920  vmicvss - ok
18:59:22.0570 0x1920  [ BE964AE62A6D50974A55316DEF69024B, EA6AF0CDD8A5D8539430BA606B6E1715D2EB8260C468E9AE796B317E46FD166C ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:59:22.0599 0x1920  volmgr - ok
18:59:22.0623 0x1920  [ F298FFA396D2D080C037192B53EA50FD, 2ACE3483654B6B30016A61580AF2AB26AFA1E78D8ADE441A9B6DBAE16FFBC192 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:59:22.0663 0x1920  volmgrx - ok
18:59:22.0685 0x1920  [ 8FC38A2B3D7A58A69065F43479E848FA, 34799558BD16BCB69798C4F3B16E27B67F0FF42109592057620581AE2DFE4FD1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:59:22.0729 0x1920  volsnap - ok
18:59:22.0739 0x1920  [ C70060C3A0A7F743A4B19BA15C547F3F, 713DFEB429AB2D581DE2BE8A296DB84BB8DCF3462400FC5C68A3378A3E3230A6 ] volume          C:\Windows\system32\drivers\volume.sys
18:59:22.0766 0x1920  volume - ok
18:59:22.0780 0x1920  [ 8DE15757A11F8EDD9F610C12C5F537CB, 85BDE61EC558D2E7BC7FC524D6CF69BC280DF4E332A9E0467DE83B2B084AF4A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:59:22.0816 0x1920  vsmraid - ok
18:59:22.0860 0x1920  [ 1E2A8C962D8A1FE95F04C94C1BEC0D85, ED8EE2575721D21501F3B00C2E5BD5F9997ED718376122217BEC720FC6349BC1 ] VSS             C:\Windows\system32\vssvc.exe
18:59:22.0968 0x1920  VSS - ok
18:59:22.0990 0x1920  [ 0EE3E25278FAEA3E90FE8CA6AE74F315, 89D596E9E8BED9039976E27D38E3DE3B9AF3D88F319312BA737C72A1E5E02459 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
18:59:23.0029 0x1920  VSTXRAID - ok
18:59:23.0040 0x1920  [ 2FF242A6A60A905A67DFB2506C492265, 6A530C168B19AB1B611C9FD821BAA43A20D67B7E88B9BAB968DDA15C6857B05D ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
18:59:23.0079 0x1920  vwifibus - ok
18:59:23.0090 0x1920  [ A6A334EE3B97813B92EA9C5E284CF6F7, 30FC86DDDA57F605D87E20A9DD6B8AF13EA2E67B14F6D97B09C61F47640EDB6F ] vwififlt        C:\Windows\system32\drivers\vwififlt.sys
18:59:23.0130 0x1920  vwififlt - ok
18:59:23.0155 0x1920  [ 1843F07FD89975B3837F270E2E24D349, DF6BABF77C84DD49D193A23745DF5AF1117AEF29B373FFB2CBB3A8B6817659A0 ] W32Time         C:\Windows\system32\w32time.dll
18:59:23.0222 0x1920  W32Time - ok
18:59:23.0235 0x1920  [ 7C69152B72D7DD0739AE8A1341E0F4CD, 83F8FBB8440D815E60D8CE31539E831034ADFD2FD17BFB5E5307CE7D95EC92D8 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
18:59:23.0272 0x1920  WacomPen - ok
18:59:23.0296 0x1920  [ 8F0CD0DBD02B69E572F8C25EB29E4F7D, 6F5C146A006D27E2D332AC432B4E204C8AF77C308946803CF1124760FFBB5969 ] WalletService   C:\Windows\system32\WalletService.dll
18:59:23.0359 0x1920  WalletService - ok
18:59:23.0372 0x1920  [ 14F0C0485643A73866C29CAE6139F453, F3D408B2BC841505B480CE2C232815203D2D5985F49BC3F0C22695B5ECCFBEAA ] wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
18:59:23.0419 0x1920  wanarp - ok
18:59:23.0428 0x1920  [ 14F0C0485643A73866C29CAE6139F453, F3D408B2BC841505B480CE2C232815203D2D5985F49BC3F0C22695B5ECCFBEAA ] wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:59:23.0472 0x1920  wanarpv6 - ok
18:59:23.0524 0x1920  [ 9BF5B67B8747DDD380BEC84915E6F4D5, 610BBB0AF28B5C93EBE34512EC35D45989C6F9EB33FD3BDCF0CD014174A1BFFF ] wbengine        C:\Windows\system32\wbengine.exe
18:59:23.0644 0x1920  wbengine - ok
18:59:23.0675 0x1920  [ DD073EA5AE9D9ACD88A3AC864C7CC611, 087E3768E7BDDC554568FFC8F8449440B8666CD3A373FCDAF1EB0E1FA337B27F ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:59:23.0745 0x1920  WbioSrvc - ok
18:59:23.0760 0x1920  [ 73A7F5CFAA063059A2CA99D3C0BBAC53, 34554A0CEEE46BAE124C60726B0C8F747357F2A7B5F69AB322860034312FC12E ] wcifs           C:\Windows\system32\drivers\wcifs.sys
18:59:23.0793 0x1920  wcifs - ok
18:59:23.0824 0x1920  [ ACEE8C0CD4F41A85E5506BAC810B5280, AAFC5137AD4E9337C6C6E2EDFAA2FC544E656A0239EBDC1BF4F3A68A443AFB43 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
18:59:23.0906 0x1920  Wcmsvc - ok
18:59:23.0930 0x1920  [ A9C5CDFB96F7E773BD08F98F6F67B178, 86447ED1A244702312316CA52BA646068F5864CDE3B627095104EB390B67729F ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:59:23.0994 0x1920  wcncsvc - ok
18:59:24.0007 0x1920  [ E135FE0A35B9ABF096DC359A8ACACF1F, 0180650A7664365FD2B5D3C0654DCF4ED612687E199585BCF7A6C6B89B739E75 ] wcnfs           C:\Windows\system32\drivers\wcnfs.sys
18:59:24.0048 0x1920  wcnfs - ok
18:59:24.0062 0x1920  [ 425B817D6F6F436F5C1F7A70A71CAC5F, 55583BE180F82F28B5C57B0F921F20DAAF126FCFC7271E96DBAF29F58FA8D89A ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
18:59:24.0094 0x1920  WdBoot - ok
18:59:24.0125 0x1920  [ B3ECCD6A9477D36AC7B2047BDE6E5B68, C894AEA1EDB76AD5C6B5E46EC493EC0BDC8D1D754CB0288D3D2A6F0604073C1B ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:59:24.0174 0x1920  Wdf01000 - ok
18:59:24.0196 0x1920  [ 827C5B8D98046934469E97F3E7E1839B, BC82D44C76B98E317116198AB5A758FB3B89D094BAB85FB243DE61CF93452FFA ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
18:59:24.0233 0x1920  WdFilter - ok
18:59:24.0246 0x1920  [ 2E63CA57869CFA25CB072BEFE64A2640, 7569BF5BF1A7783BC46F7157CA808CD91F9345B79A76EC408872F0380D1F08A9 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:59:24.0300 0x1920  WdiServiceHost - ok
18:59:24.0313 0x1920  [ 2E63CA57869CFA25CB072BEFE64A2640, 7569BF5BF1A7783BC46F7157CA808CD91F9345B79A76EC408872F0380D1F08A9 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:59:24.0371 0x1920  WdiSystemHost - ok
18:59:24.0401 0x1920  [ DF180E0BBC3D22E9B7E05C31265E5869, E287C1E2E122A6D6776AB7B57D9025BED9CDD15146EA10166091882866BEDDA9 ] wdiwifi         C:\Windows\system32\DRIVERS\wdiwifi.sys
18:59:24.0464 0x1920  wdiwifi - ok
18:59:24.0480 0x1920  [ DE385F0605E3B6E46EDC98253FFAD452, 8F62657541E2CEFBA7E2C4053B39C3B29E6D7FBCD96EEB571DE3F830B4933328 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
18:59:24.0510 0x1920  WdNisDrv - ok
18:59:24.0528 0x1920  [ 1DE903C9D0E9567F951212604462539B, 364D9A067F526C969177A4BD86C7C581D6494D1F509E0EF7B80A5A2931D92624 ] WdNisSvc        C:\Program Files\Windows Defender\NisSrv.exe
18:59:24.0565 0x1920  WdNisSvc - ok
18:59:24.0590 0x1920  [ DC496ECFC465280A610188C9B316DA21, C27274788811EDC28EEFBC391114A6930FC8FF81A806A7D8331E707493A7DFF8 ] WebClient       C:\Windows\System32\webclnt.dll
18:59:24.0648 0x1920  WebClient - ok
18:59:24.0663 0x1920  [ DCB16389E07EE11A4561641F19AE74BF, 2C97B8736A79C4435635EDA7808D05F90E59E17A53CBD62732109E4B3EC6294B ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:59:24.0717 0x1920  Wecsvc - ok
18:59:24.0728 0x1920  [ 4E43223E27023C8D5585F494DB595513, ED5A28DB9325AE3A0E556F2B8BE1B28376EC263DEF0D5938E718107819C08A08 ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
18:59:24.0772 0x1920  WEPHOSTSVC - ok
18:59:24.0785 0x1920  [ 83D0F9807F16369DCE733B9F8474B146, 01E23E477D4B14FA517FDCEC72E281D9BD7A32833FA6C874AADDE08A1F9F3052 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:59:24.0851 0x1920  wercplsupport - ok
18:59:24.0865 0x1920  [ 9D466F2FAFE95EDA8A5A3B36FA66F1A1, 8D69E15F14508A232551A5AC6DA3B90A5F4258DFBD1E44C89FC1BAD4B0529667 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:59:24.0916 0x1920  WerSvc - ok
18:59:24.0933 0x1920  [ 40C04E51FD65150677CB830A53DCB0FC, 82CDDA7ED826995C546FE89B550E81058F300DB7DC6D15DE51A87EBEFB396F98 ] WFPLWFS         C:\Windows\system32\drivers\wfplwfs.sys
18:59:24.0964 0x1920  WFPLWFS - ok
18:59:24.0979 0x1920  [ CDC1769844D191B0F655E6A5DC2F2F5E, 05B3C3F47C0D5F910973650CB3ED8C95849E4DB5C25831584716B130EBC04EE5 ] WiaRpc          C:\Windows\System32\wiarpc.dll
18:59:25.0028 0x1920  WiaRpc - ok
18:59:25.0041 0x1920  [ 9E321217D4D584FE9BF725F20C4CC294, 8852801F088F3C83D742B80F19D06A74CA4EAC496F0D1C45FDA51E3D1B423FA6 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:59:25.0069 0x1920  WIMMount - ok
18:59:25.0080 0x1920  [ 7D1F24D54137D7486005A5FB4A6F9F9A, 2379D517874A502C163DA09050E3BEE7ACB00EFF9E6DA91784DB0BA824A01EB8 ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe
18:59:25.0108 0x1920  WinDefend - ok
18:59:25.0134 0x1920  [ 8DEBCBA33D27E86E66217346F84EA393, 78EA417276D13352E4CE42F23DFF125AA31616D073CCA044AB691EBE635F214B ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
18:59:25.0171 0x1920  WindowsTrustedRT - ok
18:59:25.0189 0x1920  [ 764A9285DFA402C04D11EA3BEE9FB851, E9DC8A75AF08727C699091526EED3D90803C00B428834B09B45495B54A4DAE2D ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
18:59:25.0218 0x1920  WindowsTrustedRTProxy - ok
18:59:25.0249 0x1920  [ DF51C1442A3DB8ADE2B78DCDEC2419FD, 3DB1ECADCEFAA924256022689B8D7B775C0961B2A22E39207229A98B63F32F27 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
18:59:25.0330 0x1920  WinHttpAutoProxySvc - ok
18:59:25.0364 0x1920  [ 85B8515170C41F40153CF428C45918B4, E566E4BF7E2E5FFE596A987F3362C65066E2EFB83C0CBB53E6BBB2D5F333E577 ] winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:59:25.0412 0x1920  winmgmt - ok
18:59:25.0509 0x1920  [ B124B6D66EE6FAB7B59FD114A633A1D1, 4192DFB5FF29A0B9F49FE8EFFBBF956B5460B0FD29FD4C420DBD436938FC96B4 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:59:25.0702 0x1920  WinRM - ok
18:59:25.0738 0x1920  [ D45B4DDEAF7B8B753E35D3A7EF1ABBB5, F9ED1D758A437F37DFFF8009A499581D15F538336EC4E25B7D71452C182F8193 ] WINUSB          C:\Windows\System32\drivers\WinUSB.SYS
18:59:25.0777 0x1920  WINUSB - ok
18:59:25.0805 0x1920  [ 0542FEBA39BA33E01F129B4E039A4D0E, 035C4CB919CEF55561F455E456F65843DA886AB9164292C5803EF4F65A4ABD6F ] wisvc           C:\Windows\system32\flightsettings.dll
18:59:25.0873 0x1920  wisvc - ok
18:59:25.0952 0x1920  [ 85E6D93EEFAAEC8B73338A1246304AEF, 54B4D393820F25CE33BA13DCD7A666AD937D07DC2697424410BB80D6F1193249 ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:59:26.0115 0x1920  Wlansvc - ok
18:59:26.0186 0x1920  [ 90A67E90454B62CC1177F4C8AA2A6539, A4F1CA1C587CE5A030669B5880107FCD0774AF30EEC8DCA58B4B26FD44812D85 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
18:59:26.0324 0x1920  wlidsvc - ok
18:59:26.0343 0x1920  [ E50F32F363CFE38CAF704DBF88D6DA0F, 99224A21D01498DA92BF39690A2B6A3E37910A701C7DD1D1280A5007DA0CAA33 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
18:59:26.0382 0x1920  WmiAcpi - ok
18:59:26.0402 0x1920  [ A6676784CCFCB5DA356919A536EA270B, 2C1867A359A6D284D8E4B37E3D92F39A2F2ED22BEB93C749CE86FBD5DDC32C50 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:59:26.0446 0x1920  wmiApSrv - ok
18:59:26.0486 0x1920  [ CA3A3E61D5F44D8FD276135A6D68C3B8, 2E94B8AB72E92E69A3BEA3DA00690229947F65C504FE8F0160A19E7BB61B1924 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
18:59:26.0579 0x1920  WMPNetworkSvc - ok
18:59:26.0602 0x1920  [ BBAA859E8B0F5FB93E3437C4001B80B1, 5300E165917DE761F97C6FDAC854979CF48BD6FCDD06968F2A0C3F0B843AB6BE ] Wof             C:\Windows\system32\drivers\Wof.sys
18:59:26.0635 0x1920  Wof - ok
18:59:26.0700 0x1920  [ F2B8A725EFBC4C8200E246FABFFE33AF, 408D1549C20D32F29986D58240B3CBD45B9F1601764509AF8CD5C341FAA8ACB5 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
18:59:26.0831 0x1920  workfolderssvc - ok
18:59:26.0848 0x1920  [ 6F9118D0EFC0C409D3846517BFA9D898, 1B76926C8072DA37BB060E716A570425D169AD0D843E34DAB897A30D18AF0CBC ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:59:26.0896 0x1920  WPDBusEnum - ok
18:59:26.0907 0x1920  [ 35A1CD286CD4B9E0CD35FC21BFEC7C32, EB4BCC9797E56914DB773CAC7775DF852AC62362866F1AB3F1A4DBF67AFC92A7 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
18:59:26.0935 0x1920  WpdUpFltr - ok
18:59:26.0964 0x1920  [ 8B80FC74A784038DA57CDA49E7D2449F, 198B524F214632B648240BC270550F81498121B7E9B13B77227BBE41E046BB08 ] WpnService      C:\Windows\system32\WpnService.dll
18:59:27.0018 0x1920  WpnService - ok
18:59:27.0030 0x1920  [ 347865964017A38FAE32A03B671A77F8, 937184DB1EE1E9CE9ACA40BA4A80DFCF6A9EDA29BB106803FC4AAA3824C7CB17 ] WpnUserService  C:\Windows\System32\WpnUserService.dll
18:59:27.0075 0x1920  WpnUserService - ok
18:59:27.0100 0x1920  [ 3FC8AFC8059B341003BDCECC8BA93488, 6FBF64E439307D4E2E89EDA7E8FE5026462F72C9C96D0C300F0D186D4C418263 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:59:27.0138 0x1920  ws2ifsl - ok
18:59:27.0153 0x1920  [ A2B922E063D99F47906B4E9D3CEC4F74, 6E74D852ADFB9AED5EE601749D4D62B005F3FA9A9407421126E3944561AF5521 ] wscsvc          C:\Windows\System32\wscsvc.dll
18:59:27.0208 0x1920  wscsvc - ok
18:59:27.0222 0x1920  [ C5A42AA31E4859C33D168DC870898D38, 45FDE8D16D54FB0A8DD955352D3C5F2391339C6B0B3D74B77D1D1CA3DBBCD296 ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
18:59:27.0260 0x1920  WSDPrintDevice - ok
18:59:27.0269 0x1920  WSearch - ok
18:59:27.0356 0x1920  [ C1D0D50D405652C965D73DE67AA6528C, F2D34C56CE82CCA39215FF9F495C6287E6BD9BCBFD531F40F99CD9DABF9B0CAD ] wuauserv        C:\Windows\system32\wuaueng.dll
18:59:27.0512 0x1920  wuauserv - ok
18:59:27.0530 0x1920  [ A69B4FEC9A2FD5E700B145BEDCC953EC, 2B2DD7088C8991B9B05DCDCC25FC4C981FA82A159A548B94CAD6F0842307B5CF ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:59:27.0570 0x1920  WudfPf - ok
18:59:27.0586 0x1920  [ F3EA9F77B4D4017395600660E6E91B76, 051A3846D94AC7A522DB2E9DFCA1DAAD1CA726221627F2224E583B08831F82C6 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:59:27.0638 0x1920  WUDFRd - ok
18:59:27.0654 0x1920  [ FB483547CFB8349D199E7945F8910AE0, 41E27B60E9358B0237E609DDCE46AE2AFBBC1FBA83A79F0509B7829259F3C3D3 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:59:27.0703 0x1920  wudfsvc - ok
18:59:27.0722 0x1920  [ F3EA9F77B4D4017395600660E6E91B76, 051A3846D94AC7A522DB2E9DFCA1DAAD1CA726221627F2224E583B08831F82C6 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
18:59:27.0765 0x1920  WUDFWpdFs - ok
18:59:27.0781 0x1920  [ F3EA9F77B4D4017395600660E6E91B76, 051A3846D94AC7A522DB2E9DFCA1DAAD1CA726221627F2224E583B08831F82C6 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
18:59:27.0826 0x1920  WUDFWpdMtp - ok
18:59:27.0877 0x1920  [ CFB4DCA521797379DE850BC2E96B8154, 31EC580BF90E370307DD05BFC8A95046A349214F58BA36CDE5919C9F41BF9B1D ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:59:27.0979 0x1920  WwanSvc - ok
18:59:28.0013 0x1920  [ 2BA581012300FA37E286F2A8A0025315, ACF784790F2C113A174ECF944CDD906CC806FF74D951E329853DF556E133D69E ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
18:59:28.0090 0x1920  XblAuthManager - ok
18:59:28.0131 0x1920  [ 2ADCF6881D83E44505D92629A5DE8400, 17A1579E7950060B0B18991A9CB2ED5997BE4466529053DA661D5DB17A33E8FF ] XblGameSave     C:\Windows\System32\XblGameSave.dll
18:59:28.0219 0x1920  XblGameSave - ok
18:59:28.0238 0x1920  [ EA4937052D0B96DBA4467689D17A8D8A, E13515C9C317C401345765E87D5B39AC63943007EDDD7497A0ED57DEDD4E41A8 ] xboxgip         C:\Windows\System32\drivers\xboxgip.sys
18:59:28.0288 0x1920  xboxgip - ok
18:59:28.0325 0x1920  [ BBB5285C89E9ACFC4966396F8BECDED9, 8F5CA758541901415C44E00F0E472342BCCFEFC00372A02636E5EB21D067DFD2 ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
18:59:28.0425 0x1920  XboxNetApiSvc - ok
18:59:28.0440 0x1920  [ 6EC0B4104D1CC029F527572E34C13111, F58030F4E53F893964D781DA707A0A9ED1360CAAD9C8299C4DB777072341D8DE ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
18:59:28.0476 0x1920  xinputhid - ok
18:59:28.0482 0x1920  ================ Scan global ===============================
18:59:28.0493 0x1920  [ ED4E568A6E265034DF3C439F944AD42B, E95A6A756F1667F16617BF937BB25EE9798A2CF544D8ADF56DAA3FBCB13E59DB ] C:\Windows\system32\basesrv.dll
18:59:28.0508 0x1920  [ FA428F4051AD21836F3B0F052C2FED22, 132AF940560E0B8E4239BE004CC70995485347E0E217DF06E72CBA51611EE9ED ] C:\Windows\system32\winsrv.dll
18:59:28.0533 0x1920  [ D485674D247F8827EFEB92F8F4F111CC, 038D7963DD4D2605E3A1141BE8A858650F608C5763C389FC31906CB771E64DE1 ] C:\Windows\system32\sxssrv.dll
18:59:28.0564 0x1920  [ F430DD178E518BF1C5D6199F473AE2AD, DD70653D5C68D2E8A1D46E33BD5FF026A6A253F31B1DADB63A2D801DF2E305D7 ] C:\Windows\system32\services.exe
18:59:28.0585 0x1920  [ Global ] - ok
18:59:28.0586 0x1920  ================ Scan MBR ==================================
18:59:28.0600 0x1920  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:59:28.0731 0x1920  \Device\Harddisk0\DR0 - ok
18:59:28.0732 0x1920  ================ Scan VBR ==================================
18:59:28.0736 0x1920  [ B5AC3DED7BECAB9867BFDF3E4427EA04 ] \Device\Harddisk0\DR0\Partition1
18:59:28.0738 0x1920  \Device\Harddisk0\DR0\Partition1 - ok
18:59:28.0744 0x1920  [ 58377A2B790A468AC173DD930DE5B163 ] \Device\Harddisk0\DR0\Partition2
18:59:28.0746 0x1920  \Device\Harddisk0\DR0\Partition2 - ok
18:59:28.0748 0x1920  ================ Scan generic autorun ======================
18:59:28.0757 0x1920  [ A3418E4D4A5EE636D44922DC2567FA18, 21F89584534A6A02284A6E1BD502A3530E372E6FCF1285BFD68DB074CCE655EA ] C:\Program Files\Synaptics\SynTP\SynTPStart.exe
18:59:28.0800 0x1920  SynTPStart - ok
18:59:28.0817 0x1920  [ FE7CE849DB8C3986B2E721C6A3184FAA, 9879821AF51D13DB22EE2A8B351C5C8BB338408D325D9ACEC95237F3DE502069 ] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
18:59:28.0846 0x1920  QlbCtrl.exe - ok
18:59:29.0166 0x1920  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\System32\OneDriveSetup.exe
18:59:29.0551 0x1920  OneDriveSetup - ok
18:59:29.0890 0x1920  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\System32\OneDriveSetup.exe
18:59:30.0205 0x1920  OneDriveSetup - ok
18:59:30.0539 0x1920  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\System32\OneDriveSetup.exe
18:59:30.0849 0x1920  OneDriveSetup - ok
18:59:30.0900 0x1920  [ FD9A7F99A09DB266D0C1361B0ACCBD7E, 579160BDACDFE39AE5DDD7B5C2964453E89BA8D933F3FB16C6E3897EA3BDED29 ] C:\Users\ms\AppData\Local\Microsoft\OneDrive\OneDrive.exe
18:59:30.0945 0x1920  OneDrive - ok
18:59:31.0189 0x1920  [ C2C9E42D6C51E99C1BAB44F108E8851C, F513A2FCE15AD1F7C4A8A4E67CA2C9613EE305FAAE8D674BC3019A96DEEDFF61 ] C:\Program Files\CCleaner\CCleaner.exe
18:59:31.0486 0x1920  CCleaner Monitoring - ok
18:59:31.0508 0x1920  VoipConnect - ok
18:59:31.0513 0x1920  Waiting for KSN requests completion. In queue: 217
18:59:32.0565 0x1920  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
18:59:32.0565 0x1920  AV detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 12.3.3154.0 ), 0x42000 ( disabled : updated )
18:59:32.0580 0x1920  Win FW state via NFP2: enabled ( trusted )
18:59:32.0698 0x1920  ============================================================
18:59:32.0698 0x1920  Scan finished
18:59:32.0698 0x1920  ============================================================
18:59:32.0698 0x19b8  Detected object count: 0
18:59:32.0698 0x19b8  Actual detected object count: 0

hallo. ich habe alles noch einmal nach anleitung gemacht... jetzt wurde nichts mehr gefunden ...

cosinus · 07.01.2017, 15:08

Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken

pingodoce · 07.01.2017, 18:14

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version: 07-01-2017
durchgeführt von ms (07-01-2017 18:10:30)
Gestartet von C:\Users\ms\Downloads
Microsoft Windows 10 Pro Version 1607 (X86) (2016-12-10 04:57:52)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1255615618-1242680333-4154777488-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1255615618-1242680333-4154777488-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1255615618-1242680333-4154777488-1000 - Limited - Disabled) => C:\Users\defaultuser0
Gast (S-1-5-21-1255615618-1242680333-4154777488-501 - Limited - Disabled)
ms (S-1-5-21-1255615618-1242680333-4154777488-1001 - Administrator - Enabled) => C:\Users\ms

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM\...\Adobe Flash Player NPA

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 07-01-2017
durchgeführt von ms (Administrator) auf DESKTOP-TGSB6RT (07-01-2017 18:09:18)
Gestartet von C:\Users\ms\Downloads
Geladene Profile: ms (Verfügbare Profile: defaultuser0 & ms)
Platform: Microsoft Windows 10 Pro Version 1607 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Program Files\Hardcopy\hcdll2_ex_Win32.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPStart.exe
(Oberthur Technologies) C:\Program Files\Oberthur Technologies\AWP\OcsCertSynchronizer.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(VoipConnect) C:\Program Files\VoipConnect.com\VoipConnect\VoipConnect.exe
(sw4you) C:\Program Files\Hardcopy\hardcopy.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPStart] => C:\Program Files\Synaptics\SynTP\SynTPStart.exe [102400 2007-09-15] (Synaptics, Inc.)
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2009-11-11] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Certificate Synchronizer] => C:\Program Files\Oberthur Technologies\AWP\OcsCertSynchronizer.exe [86528 2013-12-11] (Oberthur Technologies)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1183744 2007-02-21] (Analog Devices, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES/MALWAREBYTES/ANTI-MALWARE\mbamtray.exe [2776528 2016-12-14] (Malwarebytes)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2017-01-05] (AVAST Software)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-1255615618-1242680333-4154777488-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-1255615618-1242680333-4154777488-1001\...\Run: [VoipConnect] => C:\Program Files\VoipConnect.com\VoipConnect\VoipConnect.exe [38429792 2016-12-05] (VoipConnect)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-01-05] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hardcopy.LNK [2016-12-12]
ShortcutTarget: Hardcopy.LNK -> C:\Program Files\Hardcopy\hardcopy.exe (sw4you)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{41473946-22be-44ae-b33f-b20026900a39}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{bbbf93ff-9366-4c55-9a2b-55f0e0be0617}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1255615618-1242680333-4154777488-1001\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.de
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1255615618-1242680333-4154777488-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-12-18] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-18] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: 05qspcpa.default
FF ProfilePath: C:\Users\ms\AppData\Roaming\Mozilla\Firefox\Profiles\05qspcpa.default [2017-01-07]
FF NewTab: Mozilla\Firefox\Profiles\05qspcpa.default -> www.google.de
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\05qspcpa.default -> hxxps://search.avast.com/AV772/search/web?q={searchTerms}
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\05qspcpa.default -> Avast Search
FF Homepage: Mozilla\Firefox\Profiles\05qspcpa.default -> www.google.de
FF Keyword.URL: Mozilla\Firefox\Profiles\05qspcpa.default -> hxxps://search.avast.com/AV772/search/web?q={searchTerms}
FF Extension: (Firebug) - C:\Users\ms\AppData\Roaming\Mozilla\Firefox\Profiles\05qspcpa.default\Extensions\firebug@software.joehewitt.com.xpi [2016-10-11]
FF Extension: (FirePHP) - C:\Users\ms\AppData\Roaming\Mozilla\Firefox\Profiles\05qspcpa.default\Extensions\FirePHPExtension-Build@firephp.org.xpi [2016-04-27]
FF Extension: (Button Snip Dies! für eBay) - C:\Users\ms\AppData\Roaming\Mozilla\Firefox\Profiles\05qspcpa.default\Extensions\{aab35b56-0206-4472-9993-9cb5c09bb722} [2016-12-11]
FF Extension: (Bitdefender QuickScan) - C:\Users\ms\AppData\Roaming\Mozilla\Firefox\Profiles\05qspcpa.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2016-12-11]
FF HKLM\...\Firefox\Extensions: [PKCS11_Firefox@oberthur.com] - C:\Program Files\Oberthur Technologies\AWP\Firefox\Extension\PKCS11_Firefox@oberthur.com.xpi
FF Extension: (Oberthur Technologies PKCS#11 Module Loader) - C:\Program Files\Oberthur Technologies\AWP\Firefox\Extension\PKCS11_Firefox@oberthur.com.xpi [2013-11-28] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2017-01-05]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2017-01-05]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2017-01-01] ()
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-18] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2017-01-05] (AVAST Software)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3381200 2016-12-14] (Malwarebytes)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34008 2017-01-05] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [35096 2017-01-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [92256 2017-01-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [91232 2017-01-05] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [60424 2017-01-05] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [735488 2017-01-05] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [433768 2017-01-05] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [118664 2017-01-05] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [224752 2017-01-05] (AVAST Software)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59968 2016-12-14] ()
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [Datei ist nicht signiert]
R3 GTIPCI21; C:\Windows\system32\DRIVERS\gtipci21.sys [97280 2007-05-09] (Texas Instruments)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [153024 2017-01-04] (Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [39360 2017-01-06] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [219072 2017-01-07] (Malwarebytes)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 netwlv32; C:\Windows\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation)
S3 SCR3XX2K; C:\Windows\system32\DRIVERS\SCR3XX2K.sys [63104 2015-02-17] (Identiv)
R0 speedfan; C:\Windows\System32\speedfan.sys [25240 2011-03-18] (Almico Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
S0 ElbyVCD; system32\DRIVERS\ElbyVCD.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-07 18:09 - 2017-01-07 18:09 - 00011451 _____ C:\Users\ms\Downloads\FRST.txt
2017-01-07 18:08 - 2017-01-07 18:08 - 01760768 _____ (Farbar) C:\Users\ms\Downloads\FRST.exe
2017-01-06 18:57 - 2017-01-06 19:02 - 00251192 _____ C:\TDSSKiller.3.1.0.12_06.01.2017_18.57.43_log.txt
2017-01-06 15:11 - 2017-01-06 15:11 - 01663040 _____ (Malwarebytes) C:\Users\ms\Downloads\JRT.exe
2017-01-06 14:45 - 2017-01-06 18:30 - 00000000 ____D C:\AdwCleaner
2017-01-06 14:45 - 2017-01-06 14:45 - 03977168 _____ C:\Users\ms\Downloads\AdwCleaner_6.041.exe
2017-01-06 13:48 - 2017-01-06 13:58 - 00251190 _____ C:\TDSSKiller.3.1.0.12_06.01.2017_13.48.13_log.txt
2017-01-06 13:42 - 2017-01-06 13:47 - 00497118 _____ C:\TDSSKiller.3.1.0.12_06.01.2017_13.42.48_log.txt
2017-01-06 13:21 - 2017-01-06 18:52 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2017-01-06 13:20 - 2017-01-06 18:52 - 00000000 ____D C:\Users\ms\Desktop\mbar
2017-01-06 13:20 - 2017-01-06 13:42 - 04747704 _____ (AO Kaspersky Lab) C:\Users\ms\Downloads\tdsskiller.exe
2017-01-06 13:19 - 2017-01-06 13:20 - 16563352 _____ (Malwarebytes Corp.) C:\Users\ms\Downloads\mbar-1.09.3.1001.exe
2017-01-06 10:35 - 2017-01-06 18:37 - 00000543 _____ C:\Users\ms\Desktop\JRT.txt
2017-01-06 10:34 - 2017-01-07 18:09 - 00000000 ____D C:\FRST
2017-01-06 10:33 - 2017-01-06 10:34 - 00000000 ___HD C:\$WINDOWS.~BT
2017-01-06 09:18 - 2017-01-06 09:19 - 00000000 _____ C:\Recovery.txt
2017-01-06 02:22 - 2017-01-06 02:22 - 00005962 _____ C:\Users\ms\Desktop\tttt.txt
2017-01-06 01:33 - 2016-12-31 06:24 - 01229808 __RSH (GlavSoft LLC.) C:\Users\ms\AppData\Roaming\assembliesbckp.Vexe
2017-01-06 01:32 - 2017-01-06 01:32 - 00001414 _____ C:\Users\ms\Desktop\eset.txt
2017-01-06 01:26 - 2017-01-06 01:26 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2017-01-06 01:25 - 2017-01-06 01:25 - 00001552 _____ C:\Users\ms\Desktop\mbam2.txt
2017-01-06 00:42 - 2017-01-06 00:42 - 00003272 _____ C:\Users\ms\Desktop\mbam.txt
2017-01-06 00:30 - 2017-01-06 07:32 - 00000000 ____D C:\ProgramData\RogueKiller
2017-01-06 00:30 - 2017-01-06 00:30 - 00001074 _____ C:\Users\Public\Desktop\RogueKiller.lnk
2017-01-06 00:30 - 2017-01-06 00:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-01-06 00:30 - 2017-01-06 00:30 - 00000000 ____D C:\Program Files\RogueKiller
2017-01-06 00:28 - 2017-01-06 00:30 - 34631352 _____ (Adlice Software ) C:\Users\ms\Downloads\setup.exe
2017-01-06 00:16 - 2016-12-31 06:24 - 01229808 __RSH (GlavSoft LLC.) C:\Users\ms\AppData\Roaming\assembliesbckp.exe
2017-01-06 00:13 - 2017-01-06 00:13 - 00000000 ____D C:\Users\ms\AppData\Local\ESET
2017-01-06 00:12 - 2017-01-06 00:13 - 06771840 _____ (ESET spol. s r.o.) C:\Users\ms\Downloads\esetonlinescanner_enu.exe
2017-01-06 00:09 - 2017-01-06 00:10 - 00005534 _____ C:\Users\ms\Desktop\Rkill.txt
2017-01-06 00:08 - 2017-01-06 00:09 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\ms\Downloads\rkill.com
2017-01-05 19:41 - 2017-01-06 12:05 - 00001197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-01-05 19:41 - 2017-01-05 19:41 - 00001197 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2017-01-05 19:38 - 2017-01-05 19:38 - 00035096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-01-05 19:34 - 2017-01-05 19:34 - 00000000 ____D C:\Users\ms\AppData\Roaming\AVAST Software
2017-01-05 19:31 - 2017-01-05 19:31 - 00002164 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2017-01-05 19:31 - 2017-01-05 19:31 - 00002152 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2017-01-05 19:29 - 2017-01-05 19:30 - 00735488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2017-01-05 19:29 - 2017-01-05 19:30 - 00433768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2017-01-05 19:29 - 2017-01-05 19:30 - 00224752 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-01-05 19:29 - 2017-01-05 19:29 - 00118664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-01-05 19:29 - 2017-01-05 19:29 - 00092256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-01-05 19:29 - 2017-01-05 19:29 - 00091232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-01-05 19:29 - 2017-01-05 19:29 - 00060424 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-01-05 19:29 - 2017-01-05 19:29 - 00034008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-01-05 19:29 - 2017-01-05 19:28 - 00921280 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2017-01-05 19:29 - 2017-01-05 19:28 - 00319760 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-01-05 19:28 - 2017-01-05 19:28 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2017-01-05 19:25 - 2017-01-05 19:38 - 00000000 ____D C:\Program Files\AVAST Software
2017-01-05 19:22 - 2017-01-05 19:38 - 00000000 ____D C:\ProgramData\AVAST Software
2017-01-05 19:19 - 2017-01-05 19:22 - 06253640 _____ (AVAST Software) C:\Users\ms\Downloads\avast_free_antivirus_setup_online.exe
2017-01-05 19:08 - 2017-01-06 11:30 - 00000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2017-01-05 19:08 - 2017-01-06 08:43 - 00000000 _RSHD C:\Program Files\Assemblies
2017-01-05 19:07 - 2017-01-06 11:58 - 00000000 ____D C:\Windows\pss
2017-01-04 22:58 - 2017-01-04 22:58 - 00150238 _____ C:\Users\ms\Documents\RNSDG170104072487 1 (2).pdf
2017-01-04 22:38 - 2017-01-04 22:38 - 00153024 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-01-04 22:37 - 2017-01-07 12:26 - 00219072 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-01-04 22:37 - 2017-01-06 13:21 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-01-04 22:37 - 2017-01-06 09:20 - 00087496 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-01-04 22:37 - 2017-01-06 09:19 - 00039360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-01-04 22:37 - 2017-01-06 08:15 - 00073152 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-01-04 22:37 - 2017-01-04 22:37 - 00002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-01-04 22:37 - 2017-01-04 22:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-01-04 22:37 - 2017-01-04 22:37 - 00000000 ____D C:\Program Files\Malwarebytes
2017-01-04 22:37 - 2016-12-14 12:55 - 00059968 _____ C:\Windows\system32\Drivers\mbae.sys
2017-01-04 22:34 - 2017-01-04 22:36 - 54199488 _____ (Malwarebytes ) C:\Users\ms\Downloads\mb3-setup-consumer-3.0.5.1299.exe
2017-01-04 18:44 - 2017-01-04 18:45 - 00116612 _____ C:\Users\ms\Downloads\boarding-pass.pdf
2017-01-04 18:37 - 2017-01-04 18:37 - 00000000 ____D C:\Users\ms\AppData\Local\ElevatedDiagnostics
2017-01-02 16:27 - 2017-01-02 16:27 - 00000000 ____D C:\ProgramData\Canneverbe Limited
2017-01-02 16:26 - 2017-01-02 16:26 - 00000000 ____D C:\Users\ms\AppData\Roaming\Canneverbe Limited
2017-01-02 16:10 - 2017-01-02 16:33 - 00000000 ____D C:\Users\ms\AppData\Local\AvgSetupLog
2017-01-02 16:10 - 2017-01-02 16:33 - 00000000 ____D C:\ProgramData\Avg
2017-01-02 16:10 - 2017-01-02 16:33 - 00000000 ____D C:\Program Files\AVG
2017-01-02 16:10 - 2017-01-02 16:13 - 00000000 ____D C:\Users\ms\AppData\Local\Avg
2017-01-02 15:53 - 2017-01-02 15:53 - 00000000 ____D C:\Users\ms\Downloads\amok27
2017-01-02 14:46 - 2017-01-02 14:46 - 00000000 ____D C:\Users\ms\Documents\AnyDVDHD
2017-01-02 14:36 - 2017-01-02 17:58 - 00000000 ____D C:\ProgramData\RedFox
2017-01-02 14:36 - 2017-01-02 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RedFox
2017-01-02 14:36 - 2017-01-02 14:36 - 00000000 ____D C:\Program Files\RedFox
2017-01-02 14:35 - 2017-01-02 14:35 - 00000000 ____D C:\Users\ms\Downloads\A996
2017-01-02 13:32 - 2017-01-02 16:33 - 00000043 ___SH C:\ProgramData\.zreglib
2017-01-02 13:32 - 2017-01-02 13:33 - 00000000 ____D C:\ProgramData\Elaborate Bytes
2017-01-02 13:31 - 2017-01-06 01:33 - 00000000 _RSHD C:\ProgramData\Assemblies
2017-01-02 13:31 - 2017-01-02 13:31 - 00000000 _RSHD C:\Users\ms\AppData\Roaming\Assemblies
2017-01-02 13:29 - 2017-01-02 13:29 - 01110564 _____ (Igor Pavlov) C:\Users\ms\Downloads\7z1604.exe
2017-01-02 13:29 - 2017-01-02 13:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-01-02 13:29 - 2017-01-02 13:29 - 00000000 ____D C:\Program Files\7-Zip
2017-01-02 13:06 - 2017-01-02 13:06 - 00001180 _____ C:\Users\ms\Desktop\Die Installation von Java fortsetzen.lnk
2017-01-02 12:48 - 2017-01-02 17:59 - 00000000 ____D C:\Program Files\Elaborate Bytes
2016-12-31 16:36 - 2016-12-31 16:36 - 00085590 _____ C:\Users\ms\Desktop\s-l1601.jpg
2016-12-31 16:35 - 2016-12-31 16:35 - 00264105 _____ C:\Users\ms\Desktop\s-l1600.jpg
2016-12-30 16:21 - 2016-12-30 16:21 - 00394682 _____ C:\Users\ms\Documents\Rudolf stoehr rp tavanic 2016.oxps
2016-12-29 18:47 - 2016-12-29 18:47 - 00010777 _____ C:\Users\ms\Documents\Maria Luiza da Silva Kündigung MOVE.docx
2016-12-25 16:57 - 2017-01-06 10:34 - 00001908 _____ C:\Windows\diagwrn.xml
2016-12-25 16:57 - 2017-01-06 10:34 - 00001908 _____ C:\Windows\diagerr.xml
2016-12-24 13:36 - 2016-12-24 13:36 - 02496120 _____ C:\Users\ms\Documents\kleiner lovenox.oxps
2016-12-24 11:19 - 2016-12-24 11:19 - 02558985 _____ C:\Users\ms\Documents\Kleiner Targin u Nolotil 2.oxps
2016-12-24 11:18 - 2016-12-24 11:18 - 02495274 _____ C:\Users\ms\Documents\Kleiner Targin u. Nolotil.oxps
2016-12-22 16:14 - 2017-01-05 20:28 - 00000000 ____D C:\Users\ms\AppData\Local\CrashDumps
2016-12-21 14:32 - 2017-01-07 18:03 - 00953020 _____ C:\Windows\system32\prfh0816.dat
2016-12-21 14:32 - 2017-01-07 18:03 - 00303336 _____ C:\Windows\system32\prfc0816.dat
2016-12-21 14:32 - 2016-12-24 11:31 - 00000000 ____D C:\Windows\system32\Drivers\pt-PT
2016-12-21 14:32 - 2016-12-21 14:32 - 00341016 _____ C:\Windows\system32\prfi0816.dat
2016-12-21 14:32 - 2016-12-21 14:32 - 00042642 _____ C:\Windows\system32\prfd0816.dat
2016-12-21 14:32 - 2016-12-21 14:32 - 00000000 ____D C:\Windows\system32\pt
2016-12-21 14:32 - 2016-12-21 14:32 - 00000000 ____D C:\Windows\pt-PT
2016-12-20 22:43 - 2016-07-15 18:45 - 05032448 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0816.dll
2016-12-20 22:43 - 2016-07-15 18:42 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\NlsData0816.dll
2016-12-20 22:43 - 2016-07-15 18:38 - 04384256 _____ (Microsoft Corporation) C:\Windows\system32\MLS6.dll
2016-12-20 22:25 - 2016-12-20 22:25 - 00001051 _____ C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optionale Features.lnk
2016-12-19 10:59 - 2016-12-19 11:05 - 200982907 _____ C:\Users\ms\Downloads\SteuerSparErklaerung_21.37.107.zip
2016-12-19 10:49 - 2016-12-19 10:49 - 00000000 ____D C:\Windows\tiinst
2016-12-19 10:11 - 2016-12-19 10:17 - 07086792 _____ (Hewlett Packard Company ) C:\Users\ms\Downloads\sp33439.exe
2016-12-18 22:13 - 2016-12-18 22:23 - 06711232 _____ (Hewlett-Packard Company ) C:\Users\ms\Downloads\sp43509.exe
2016-12-18 21:51 - 2016-12-18 21:51 - 00000386 _____ C:\Users\ms\Documents\dr scheuber carvoeiro.xml
2016-12-18 21:33 - 2016-12-18 21:33 - 00000000 ____D C:\Program Files\Common Files\Java
2016-12-18 21:32 - 2016-12-18 21:32 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-12-18 21:32 - 2016-12-18 21:32 - 00000000 ____D C:\Users\ms\AppData\Roaming\Sun
2016-12-18 21:32 - 2016-12-18 21:32 - 00000000 ____D C:\Users\ms\AppData\LocalLow\Sun
2016-12-18 21:32 - 2016-12-18 21:32 - 00000000 ____D C:\ProgramData\Oracle
2016-12-18 21:32 - 2016-12-18 21:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-12-18 21:32 - 2016-12-18 21:32 - 00000000 ____D C:\Program Files\Java
2016-12-18 19:39 - 2016-12-18 19:39 - 00737344 _____ (Oracle Corporation) C:\Users\ms\Downloads\JavaSetup8u111.exe
2016-12-18 19:38 - 2016-12-18 19:38 - 00000000 ____D C:\Users\ms\Downloads\gnucrawlandmap
2016-12-18 19:37 - 2016-12-18 19:37 - 00045304 _____ C:\Users\ms\Downloads\gnucrawlandmap.zip
2016-12-18 19:23 - 2016-12-18 19:23 - 00000000 ____D C:\Users\ms\AppData\Roaming\FileZilla Server
2016-12-18 19:22 - 2016-12-18 19:22 - 02238848 _____ (FileZilla Project) C:\Users\ms\Downloads\FileZilla_Server-0_9_59.exe
2016-12-17 23:48 - 2016-12-17 23:48 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-12-16 12:26 - 2016-12-16 12:26 - 00011487 _____ C:\Users\ms\Documents\Certificate of good standing Schleswig.docx
2016-12-16 12:19 - 2016-12-16 12:20 - 00192368 _____ C:\Users\ms\Downloads\DHL-Marke-VW27MH7RND.pdf
2016-12-16 11:46 - 2016-12-16 11:46 - 00000000 ___HD C:\ProgramData\CanonIJScan
2016-12-16 10:39 - 2012-04-16 05:00 - 00314880 _____ (CANON INC.) C:\Windows\system32\CNMLMBA.DLL
2016-12-16 09:38 - 2016-12-18 21:53 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-12-15 19:39 - 2016-12-15 19:39 - 01960776 _____ (SCM Microsystems ) C:\Users\ms\Downloads\SCR3_DriversOnly_V8.41.exe
2016-12-15 19:39 - 2016-12-15 19:39 - 00000880 _____ C:\Windows\HBCIKRNL.INI
2016-12-15 19:39 - 2016-12-15 19:39 - 00000000 ____D C:\Program Files\SCM Microsystems
2016-12-15 19:32 - 2016-12-15 19:33 - 26220284 _____ C:\Users\ms\Downloads\AWP_v4_6_SR12_SIBS(1).msi
2016-12-15 19:29 - 2016-12-15 19:29 - 07645416 _____ (Hewlett-Packard Company ) C:\Users\ms\Downloads\sp47728.exe
2016-12-15 19:25 - 2016-12-15 19:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_11_00.Wdf
2016-12-15 19:18 - 2016-12-15 19:18 - 00000107 _____ C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2016-12-15 19:18 - 2016-12-15 19:18 - 00000000 ____D C:\Users\ms\AppData\Roaming\MedicineOne
2016-12-14 00:40 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-12-14 00:40 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-12-14 00:40 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-12-14 00:40 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-12-14 00:40 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2016-12-14 00:40 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2016-12-14 00:40 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-12-14 00:40 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-12-14 00:40 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2016-12-14 00:40 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-12-14 00:40 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-12-14 00:40 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-12-14 00:40 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-12-14 00:40 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-12-14 00:40 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-12-14 00:40 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-12-14 00:40 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll
2016-12-14 00:40 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-12-14 00:40 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2016-12-14 00:40 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-12-14 00:40 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-12-14 00:40 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-12-14 00:40 - 2016-09-15 17:53 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-12-14 00:39 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-12-14 00:39 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-12-14 00:39 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-12-14 00:39 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-12-14 00:39 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2016-12-14 00:39 - 2016-12-09 11:11 - 02048496 _____ C:\Windows\system32\CoreUIComponents.dll
2016-12-14 00:39 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2016-12-14 00:39 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2016-12-14 00:39 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-12-14 00:39 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-12-14 00:39 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-12-14 00:39 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2016-12-14 00:39 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHost.dll
2016-12-14 00:39 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2016-12-14 00:39 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2016-12-14 00:39 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-12-14 00:39 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-14 00:39 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2016-12-14 00:39 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-12-14 00:39 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-12-14 00:39 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\indexeddbserver.dll
2016-12-14 00:39 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-12-14 00:39 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2016-12-14 00:39 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-12-14 00:39 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-12-14 00:39 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2016-12-14 00:39 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2016-12-14 00:39 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll
2016-12-14 00:39 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2016-12-14 00:39 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2016-12-14 00:39 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2016-12-14 00:39 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2016-12-13 22:36 - 2016-12-13 22:36 - 00001052 _____ C:\Users\Public\Desktop\ISO to USB.lnk
2016-12-13 22:36 - 2016-12-13 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO to USB
2016-12-13 22:36 - 2016-12-13 22:36 - 00000000 ____D C:\Program Files\ISO to USB
2016-12-13 22:35 - 2016-12-13 22:36 - 01733751 _____ (isotousb.com ) C:\Users\ms\Downloads\isotousb_setup.exe
2016-12-13 22:22 - 2016-12-13 22:26 - 00000000 ____D C:\Users\ms\Downloads\windows 10 usb
2016-12-13 20:20 - 2016-12-13 20:20 - 00000000 __SHD C:\RECYCLER
2016-12-13 15:36 - 2016-12-16 11:46 - 00000000 ____D C:\Users\ms\AppData\Roaming\Canon
2016-12-13 15:35 - 2012-03-14 05:00 - 00311296 _____ (CANON INC.) C:\Windows\system32\CNMXLMAD.DLL
2016-12-13 15:33 - 2016-12-13 15:33 - 00000000 ___HD C:\ProgramData\CanonBJ
2016-12-13 15:32 - 2016-12-13 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5100 series
2016-12-13 15:32 - 2016-12-13 15:32 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2016-12-13 15:32 - 2016-12-13 15:32 - 00000000 ___HD C:\Program Files\CanonBJ
2016-12-13 15:32 - 2012-03-14 05:00 - 00311296 _____ (CANON INC.) C:\Windows\system32\CNMLMAD.DLL
2016-12-13 15:32 - 2010-03-11 08:56 - 00180224 _____ (CANON INC.) C:\Windows\system32\CNMIUAD.DLL
2016-12-13 15:31 - 2016-12-13 15:32 - 23940240 _____ C:\Users\ms\Downloads\mp68-win-mg5100-1_02-ea24.exe
2016-12-13 15:30 - 2016-12-13 15:30 - 23719064 _____ C:\Users\ms\Downloads\xp68-win-mg5100-5_56-ea24.exe
2016-12-13 15:17 - 2016-12-13 15:17 - 00002118 _____ C:\Users\Public\Desktop\Canon MP Navigator EX 4.0.lnk
2016-12-13 15:17 - 2016-12-13 15:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2016-12-13 15:17 - 2016-12-13 15:17 - 00000000 ____D C:\Program Files\Canon
2016-12-13 15:02 - 2016-12-13 15:16 - 49819216 _____ C:\Users\ms\Downloads\mpnx_4_0-win-4_03-ea23_2.exe
2016-12-13 10:22 - 2016-12-13 10:22 - 00001665 _____ C:\Users\ms\Desktop\MED7 Neuer Patient.lnk
2016-12-13 10:20 - 2016-12-13 10:23 - 00000000 ____D C:\Users\ms\Downloads\runasdate
2016-12-13 10:20 - 2016-12-13 10:20 - 00035563 _____ C:\Users\ms\Downloads\runasdate.zip
2016-12-12 18:09 - 2016-12-12 18:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\File Scavenger 3.2
2016-12-12 18:09 - 2016-12-12 18:09 - 00000000 ____D C:\Program Files\File Scavenger 3.2
2016-12-12 18:08 - 2016-12-12 18:09 - 01632488 _____ (QueTek Consulting Corporation) C:\Users\ms\Downloads\32fsg32.exe
2016-12-12 15:06 - 2016-12-12 15:07 - 00000000 ____D C:\Program Files\Hardcopy
2016-12-12 15:06 - 2016-12-12 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hardcopy - Bildschirmausdruck
2016-12-12 15:06 - 2016-01-28 06:19 - 01720088 _____ (www.sw4you.de Siegfried Weckmann) C:\Windows\SwSetupu.exe
2016-12-12 14:58 - 2016-12-12 15:05 - 07108168 _____ C:\Users\ms\Downloads\hc.exe
2016-12-12 14:21 - 2016-12-12 14:21 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-12-12 11:21 - 2016-12-12 11:21 - 00000000 ____D C:\Users\ms\AppData\Local\PeerDistRepub
2016-12-12 09:54 - 2016-12-12 09:54 - 00000000 ____D C:\ProgramData\ODIR
2016-12-11 23:47 - 2016-12-11 23:47 - 00000000 ____D C:\temp
2016-12-11 23:46 - 2016-12-11 23:47 - 00000000 ____D C:\Users\ms\AppData\Roaming\VoipConnect
2016-12-11 23:46 - 2016-12-11 23:46 - 00001262 _____ C:\Users\ms\Desktop\VoipConnect.lnk
2016-12-11 23:46 - 2016-12-11 23:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VoipConnect
2016-12-11 23:46 - 2016-12-11 23:46 - 00000000 ____D C:\Program Files\VoipConnect.com
2016-12-11 23:45 - 2016-12-11 23:46 - 07289336 _____ (Finarea S.A. Switzerland ) C:\Users\ms\Downloads\SetupVoipConnect-voipbuster.exe
2016-12-11 23:28 - 2017-01-02 14:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-11 23:17 - 2016-12-11 23:17 - 00000000 ____D C:\Users\ms\AppData\LocalLow\Adobe
2016-12-11 23:17 - 2016-12-11 23:17 - 00000000 ____D C:\Users\ms\AppData\Local\CEF
2016-12-11 23:12 - 2016-12-15 09:36 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-12-11 23:12 - 2016-12-11 23:12 - 00002094 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-12-11 23:12 - 2016-12-11 23:12 - 00000000 ____D C:\Program Files\Common Files\Adobe
2016-12-11 23:12 - 2016-12-11 23:12 - 00000000 ____D C:\Program Files\Adobe
2016-12-11 23:11 - 2016-12-11 23:17 - 00000000 ____D C:\ProgramData\Adobe
2016-12-11 23:10 - 2016-12-11 23:30 - 00000000 ____D C:\Users\ms\AppData\Local\Adobe
2016-12-11 23:07 - 2016-12-11 22:46 - 02219540 _____ (Vaita ) C:\Users\ms\Downloads\ODIR.exe
2016-12-11 23:07 - 2016-11-20 20:10 - 00042050 _____ C:\Users\ms\Downloads\Kuendigungsschreiben_1411-3956-1650-75.pdf
2016-12-11 23:07 - 2016-10-05 21:51 - 08244656 _____ (Piriform Ltd) C:\Users\ms\Downloads\ccsetup522.exe
2016-12-11 23:07 - 2016-09-16 21:33 - 02907822 _____ C:\Users\ms\Downloads\skriptum-wolfgang-aufermann.pdf
2016-12-11 23:07 - 2016-09-12 23:38 - 02254413 _____ (Dr. Olaf Jacobsen ) C:\Users\ms\Downloads\cmsetup.exe
2016-12-11 23:07 - 2016-09-12 23:23 - 00000920 _____ C:\Users\ms\Downloads\datev07.cer
2016-12-11 23:07 - 2016-09-02 16:34 - 02536914 _____ C:\Users\ms\Downloads\ebook.pdf
2016-12-11 23:07 - 2016-08-30 15:40 - 00094057 _____ C:\Users\ms\Downloads\faturaRecibo_41.pdf
2016-12-11 23:07 - 2016-08-27 21:44 - 00347648 _____ C:\Users\ms\Downloads\document.pdf
2016-12-11 23:07 - 2016-08-04 23:44 - 00853491 _____ C:\Users\ms\Downloads\PBBooking 3.x Docs.pdf
2016-12-11 23:07 - 2016-07-05 13:35 - 224073588 _____ C:\Users\ms\Downloads\Med7v806.exe
2016-12-11 23:07 - 2016-05-04 08:17 - 01098961 _____ (Igor Pavlov) C:\Users\ms\Downloads\7z1514.exe
2016-12-11 23:07 - 2016-03-26 21:46 - 00030723 _____ C:\Users\ms\Downloads\mysql.tar.gz
2016-12-11 23:07 - 2016-03-26 21:46 - 00000120 _____ C:\Users\ms\Downloads\files.tar.gz
2016-12-11 23:07 - 2016-03-14 22:00 - 00000053 _____ C:\Users\ms\Downloads\googlef3d513425c3c6eb5.html
2016-12-11 23:07 - 2016-01-14 23:39 - 02122336 _____ (Irfan Skiljan) C:\Users\ms\Downloads\iview441_setup.exe
2016-12-11 23:07 - 2015-11-04 23:53 - 00001257 _____ C:\Users\ms\Downloads\index.php
2016-12-11 23:07 - 2015-07-23 11:17 - 00036562 _____ C:\Users\ms\Downloads\Herz.jpg
2016-12-11 23:07 - 2015-02-10 22:10 - 167180781 _____ C:\Users\ms\Downloads\Med7voll.exe
2016-12-11 23:07 - 1997-11-28 21:08 - 00018944 _____ (Corel Corporation) C:\Users\ms\Downloads\Install.exe
2016-12-11 22:47 - 2016-12-11 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ODIR
2016-12-11 22:47 - 2016-12-11 22:47 - 00000000 ____D C:\Program Files\ODIR
2016-12-11 22:47 - 2000-12-05 23:00 - 00209608 _____ (Microsoft Corporation) C:\Windows\system32\Tabctl32.ocx
2016-12-11 22:47 - 1999-03-26 00:00 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\VB6STKIT.DLL
2016-12-11 22:19 - 2016-12-15 19:39 - 00000000 ____D C:\Windows\Downloaded Installations
2016-12-11 21:33 - 2016-12-11 21:33 - 00000000 ____D C:\Users\ms\AppData\Local\Dropbox
2016-12-11 21:32 - 2016-12-11 21:33 - 00688536 _____ (Dropbox, Inc.) C:\Users\ms\Downloads\DropboxInstaller.exe
2016-12-11 21:24 - 2016-12-11 21:24 - 00001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-12-11 21:24 - 2016-12-11 21:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-12-11 21:23 - 2016-12-11 21:24 - 00000000 ____D C:\Program Files\CCleaner
2016-12-11 21:14 - 2016-12-11 21:33 - 00000000 ____D C:\Program Files\Google
2016-12-11 21:14 - 2016-12-11 21:14 - 00000000 ____D C:\Users\ms\AppData\Local\Google
2016-12-11 21:14 - 2016-12-11 21:14 - 00000000 ____D C:\Program Files\GUM5B71.tmp
2016-12-11 20:52 - 2016-12-11 20:52 - 00000000 ____D C:\Users\ms\AppData\Roaming\hpqLog
2016-12-11 20:37 - 2016-12-19 10:18 - 00000000 ____D C:\SWSETUP
2016-12-11 19:50 - 2016-12-11 20:10 - 00000000 ____D C:\Users\ms\AppData\Local\Diagnostics
2016-12-11 19:35 - 2016-12-11 19:35 - 00000017 _____ C:\Users\ms\AppData\Local\resmon.resmoncfg
2016-12-11 18:41 - 2016-12-11 18:41 - 00066496 _____ C:\Users\ms\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-11 18:16 - 2016-11-11 09:39 - 00484584 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-12-11 18:16 - 2016-11-11 09:07 - 00448864 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2016-12-11 18:16 - 2016-11-11 09:07 - 00081760 _____ (Microsoft Corporation) C:\Windows\system32\DeviceReactivation.dll
2016-12-11 18:16 - 2016-11-11 09:01 - 02206496 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2016-12-11 18:16 - 2016-11-11 09:01 - 01969912 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll
2016-12-11 18:16 - 2016-11-11 09:01 - 00167848 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2016-12-11 18:16 - 2016-11-11 09:00 - 01725136 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-12-11 18:16 - 2016-11-11 08:59 - 01586736 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-12-11 18:16 - 2016-11-11 08:59 - 00292192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2016-12-11 18:16 - 2016-11-11 08:59 - 00106336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2016-12-11 18:16 - 2016-11-11 08:54 - 00122208 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll
2016-12-11 18:16 - 2016-11-11 08:49 - 00869848 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2016-12-11 18:16 - 2016-11-11 08:49 - 00263472 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2016-12-11 18:16 - 2016-11-11 08:49 - 00248480 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2016-12-11 18:16 - 2016-11-11 08:48 - 02277248 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-12-11 18:16 - 2016-11-11 08:47 - 05722832 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-12-11 18:16 - 2016-11-11 08:47 - 01430720 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2016-12-11 18:16 - 2016-11-11 08:47 - 00861024 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-12-11 18:16 - 2016-11-11 08:47 - 00527880 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2016-12-11 18:16 - 2016-11-11 08:46 - 00186720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-12-11 18:16 - 2016-11-11 08:45 - 02166752 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-12-11 18:16 - 2016-11-11 08:45 - 00846560 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-12-11 18:16 - 2016-11-11 08:45 - 00355680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-12-11 18:16 - 2016-11-11 08:42 - 20969928 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-12-11 18:16 - 2016-11-11 08:42 - 03892864 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-12-11 18:16 - 2016-11-11 08:42 - 01123912 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-12-11 18:16 - 2016-11-11 08:42 - 00959112 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-12-11 18:16 - 2016-11-11 08:42 - 00952416 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-12-11 18:16 - 2016-11-11 08:42 - 00382784 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-12-11 18:16 - 2016-11-11 08:42 - 00313088 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-12-11 18:16 - 2016-11-11 08:42 - 00152416 _____ (Microsoft Corporation) C:\Windows\system32\RTWorkQ.dll
2016-12-11 18:16 - 2016-11-11 08:42 - 00091936 _____ (Microsoft Corporation) C:\Windows\system32\mfaudiocnv.dll
2016-12-11 18:16 - 2016-11-11 08:41 - 04311736 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-12-11 18:16 - 2016-11-11 08:41 - 01384704 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-12-11 18:16 - 2016-11-11 08:41 - 00802608 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2016-12-11 18:16 - 2016-11-11 08:41 - 00675568 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-12-11 18:16 - 2016-11-11 08:38 - 01263856 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-12-11 18:16 - 2016-11-11 08:37 - 00381720 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-12-11 18:16 - 2016-11-11 08:30 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll
2016-12-11 18:16 - 2016-11-11 08:29 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\CbtBackgroundManagerPolicy.dll
2016-12-11 18:16 - 2016-11-11 08:28 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2016-12-11 18:16 - 2016-11-11 08:27 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\VPNv2CSP.dll
2016-12-11 18:16 - 2016-11-11 08:27 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\ReportingCSP.dll
2016-12-11 18:16 - 2016-11-11 08:27 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\NetCfgNotifyObjectHost.exe
2016-12-11 18:16 - 2016-11-11 08:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2016-12-11 18:16 - 2016-11-11 08:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2016-12-11 18:16 - 2016-11-11 08:25 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll
2016-12-11 18:16 - 2016-11-11 08:25 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-12-11 18:16 - 2016-11-11 08:25 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll
2016-12-11 18:16 - 2016-11-11 08:25 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys
2016-12-11 18:16 - 2016-11-11 08:24 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2016-12-11 18:16 - 2016-11-11 08:24 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2016-12-11 18:16 - 2016-11-11 08:24 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2016-12-11 18:16 - 2016-11-11 08:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEStoreEventHandlers.dll
2016-12-11 18:16 - 2016-11-11 08:24 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2016-12-11 18:16 - 2016-11-11 08:23 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2016-12-11 18:16 - 2016-11-11 08:23 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\ACPBackgroundManagerPolicy.dll
2016-12-11 18:16 - 2016-11-11 08:23 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-12-11 18:16 - 2016-11-11 08:22 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2016-12-11 18:16 - 2016-11-11 08:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2016-12-11 18:16 - 2016-11-11 08:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2016-12-11 18:16 - 2016-11-11 08:22 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\HttpsDataSource.dll
2016-12-11 18:16 - 2016-11-11 08:22 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe
2016-12-11 18:16 - 2016-11-11 08:22 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\EAMProgressHandler.dll
2016-12-11 18:16 - 2016-11-11 08:21 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-12-11 18:16 - 2016-11-11 08:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll
2016-12-11 18:16 - 2016-11-11 08:21 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2016-12-11 18:16 - 2016-11-11 08:21 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-12-11 18:16 - 2016-11-11 08:21 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2016-12-11 18:16 - 2016-11-11 08:21 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-11 18:16 - 2016-11-11 08:20 - 00557568 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-12-11 18:16 - 2016-11-11 08:20 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2016-12-11 18:16 - 2016-11-11 08:20 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2016-12-11 18:16 - 2016-11-11 08:20 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgentUserBroker.exe
2016-12-11 18:16 - 2016-11-11 08:19 - 13868544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 01755136 _____ (Microsoft Corporation) C:\Windows\system32\DeviceFlows.DataModel.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00384512 _____ (Microsoft Corporation) C:\Windows\system32\DataSenseHandlers.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2016-12-11 18:16 - 2016-11-11 08:19 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe
2016-12-11 18:16 - 2016-11-11 08:18 - 02333184 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 01336320 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 01196544 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2016-12-11 18:16 - 2016-11-11 08:18 - 00790528 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 00431616 _____ (Microsoft Corporation) C:\Windows\system32\efswrt.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 00294400 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\RjvMDMConfig.dll
2016-12-11 18:16 - 2016-11-11 08:18 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\ProvSysprep.dll
2016-12-11 18:16 - 2016-11-11 08:17 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2016-12-11 18:16 - 2016-11-11 08:17 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2016-12-11 18:16 - 2016-11-11 08:17 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2016-12-11 18:16 - 2016-11-11 08:17 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-12-11 18:16 - 2016-11-11 08:16 - 01377792 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2016-12-11 18:16 - 2016-11-11 08:16 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-11 18:16 - 2016-11-11 08:15 - 07626752 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-12-11 18:16 - 2016-11-11 08:15 - 01722368 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-12-11 18:16 - 2016-11-11 08:15 - 01357824 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-12-11 18:16 - 2016-11-11 08:15 - 00838144 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-12-11 18:16 - 2016-11-11 08:15 - 00561152 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2016-12-11 18:16 - 2016-11-11 08:15 - 00348672 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2016-12-11 18:16 - 2016-11-11 08:15 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2016-12-11 18:16 - 2016-11-11 08:14 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2016-12-11 18:16 - 2016-11-11 08:14 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-12-11 18:16 - 2016-11-11 08:14 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeHelper.dll
2016-12-11 18:16 - 2016-11-11 08:13 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-12-11 18:16 - 2016-11-11 08:13 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-12-11 18:16 - 2016-11-11 08:13 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-12-11 18:16 - 2016-11-11 08:13 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2016-12-11 18:16 - 2016-11-11 08:12 - 01584128 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-12-11 18:16 - 2016-11-11 08:12 - 00529408 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2016-12-11 18:16 - 2016-11-11 08:12 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msdtcuiu.dll
2016-12-11 18:16 - 2016-11-11 08:12 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2016-12-11 18:16 - 2016-11-11 08:11 - 03306496 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-12-11 18:16 - 2016-11-11 08:11 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2016-12-11 18:16 - 2016-11-11 08:10 - 06109184 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-12-11 18:16 - 2016-11-11 08:10 - 00746496 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2016-12-11 18:16 - 2016-11-11 08:10 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\umpoext.dll
2016-12-11 18:16 - 2016-11-11 08:09 - 05380608 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-12-11 18:16 - 2016-11-11 08:09 - 00786432 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-12-11 18:16 - 2016-11-11 08:09 - 00545280 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2016-12-11 18:16 - 2016-11-11 08:08 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\xolehlp.dll
2016-12-11 18:16 - 2016-11-11 08:07 - 01948160 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-12-11 18:16 - 2016-11-11 08:07 - 01136128 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2016-12-11 18:16 - 2016-11-11 08:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll
2016-12-11 18:16 - 2016-11-11 08:06 - 06474752 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2016-12-11 18:16 - 2016-11-11 08:06 - 02362880 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2016-12-11 18:16 - 2016-11-11 08:06 - 02109952 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2016-12-11 18:16 - 2016-11-11 08:06 - 01228288 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2016-12-11 18:16 - 2016-11-11 08:06 - 00400384 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2016-12-11 18:16 - 2016-11-11 08:06 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2016-12-11 18:16 - 2016-11-11 08:05 - 04423680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-12-11 18:16 - 2016-11-11 08:05 - 03370496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-12-11 18:16 - 2016-11-11 08:05 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-12-11 18:16 - 2016-11-11 08:04 - 02682880 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 01992704 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 01595392 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 00920576 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 00818176 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 00715264 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 00706048 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-12-11 18:16 - 2016-11-11 08:04 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2016-12-11 18:16 - 2016-11-11 08:03 - 02484736 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2016-12-11 18:16 - 2016-11-11 08:03 - 02256384 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-12-11 18:16 - 2016-11-11 08:03 - 01556480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2016-12-11 18:16 - 2016-11-11 08:03 - 00772608 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2016-12-11 18:16 - 2016-11-11 08:03 - 00760832 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2016-12-11 18:16 - 2016-11-11 08:03 - 00565248 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2016-12-11 18:16 - 2016-11-11 08:02 - 00612352 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2016-12-11 18:16 - 2016-11-02 13:01 - 00315744 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-12-11 18:16 - 2016-11-02 12:23 - 01073816 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-12-11 18:16 - 2016-11-02 12:23 - 00945760 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-12-11 18:16 - 2016-11-02 12:22 - 00601712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-12-11 18:16 - 2016-11-02 12:21 - 01957216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-12-11 18:16 - 2016-11-02 12:12 - 00341344 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-12-11 18:16 - 2016-11-02 12:09 - 02257104 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-12-11 18:16 - 2016-11-02 12:08 - 00602464 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-12-11 18:16 - 2016-11-02 12:08 - 00111968 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-12-11 18:16 - 2016-11-02 12:06 - 00080224 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-12-11 18:16 - 2016-11-02 12:04 - 00596832 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2016-12-11 18:16 - 2016-11-02 12:01 - 01425000 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2016-12-11 18:16 - 2016-11-02 12:01 - 00545936 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-12-11 18:16 - 2016-11-02 12:01 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-12-11 18:16 - 2016-11-02 12:00 - 00042336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\iorate.sys
2016-12-11 18:16 - 2016-11-02 11:54 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\rdpinit.exe
2016-12-11 18:16 - 2016-11-02 11:53 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\rdpshell.exe
2016-12-11 18:16 - 2016-11-02 11:51 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-12-11 18:16 - 2016-11-02 11:49 - 00037376 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-12-11 18:16 - 2016-11-02 11:48 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-12-11 18:16 - 2016-11-02 11:47 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2016-12-11 18:16 - 2016-11-02 11:47 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll
2016-12-11 18:16 - 2016-11-02 11:46 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2016-12-11 18:16 - 2016-11-02 11:46 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\wininetlui.dll
2016-12-11 18:16 - 2016-11-02 11:45 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2016-12-11 18:16 - 2016-11-02 11:45 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\mfsensorgroup.dll
2016-12-11 18:16 - 2016-11-02 11:45 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2016-12-11 18:16 - 2016-11-02 11:45 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\dab.dll
2016-12-11 18:16 - 2016-11-02 11:44 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\NetworkBindingEngineMigPlugin.dll
2016-12-11 18:16 - 2016-11-02 11:44 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\AuthExt.dll
2016-12-11 18:16 - 2016-11-02 11:43 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\d3d8.dll
2016-12-11 18:16 - 2016-11-02 11:43 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2016-12-11 18:16 - 2016-11-02 11:43 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-12-11 18:16 - 2016-11-02 11:43 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2016-12-11 18:16 - 2016-11-02 11:43 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-12-11 18:16 - 2016-11-02 11:42 - 00866816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2016-12-11 18:16 - 2016-11-02 11:42 - 00549376 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2016-12-11 18:16 - 2016-11-02 11:42 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2016-12-11 18:16 - 2016-11-02 11:42 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-12-11 18:16 - 2016-11-02 11:42 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.dll
2016-12-11 18:16 - 2016-11-02 11:41 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2016-12-11 18:16 - 2016-11-02 11:41 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2016-12-11 18:16 - 2016-11-02 11:40 - 00896512 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2016-12-11 18:16 - 2016-11-02 11:40 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\ddraw.dll
2016-12-11 18:16 - 2016-11-02 11:40 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll
2016-12-11 18:16 - 2016-11-02 11:40 - 00387072 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll
2016-12-11 18:16 - 2016-11-02 11:39 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2016-12-11 18:16 - 2016-11-02 11:39 - 00482304 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2016-12-11 18:16 - 2016-11-02 11:39 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll
2016-12-11 18:16 - 2016-11-02 11:39 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-12-11 18:16 - 2016-11-02 11:38 - 01013248 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-12-11 18:16 - 2016-11-02 11:38 - 00760832 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2016-12-11 18:16 - 2016-11-02 11:38 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2016-12-11 18:16 - 2016-11-02 11:36 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-12-11 18:16 - 2016-11-02 11:33 - 12349952 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-12-11 18:16 - 2016-11-02 11:33 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2016-12-11 18:16 - 2016-11-02 11:31 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-12-11 18:16 - 2016-11-02 11:29 - 07469056 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-12-11 18:16 - 2016-11-02 11:29 - 01247232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-12-11 18:16 - 2016-11-02 11:29 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2016-12-11 18:16 - 2016-11-02 11:29 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\NPSM.dll
2016-12-11 18:16 - 2016-11-02 11:28 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-12-11 18:16 - 2016-11-02 11:27 - 02458112 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2016-12-11 18:16 - 2016-11-02 11:27 - 01056768 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-12-11 18:16 - 2016-11-02 11:27 - 00580608 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2016-12-11 18:16 - 2016-11-02 11:27 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2016-12-11 18:16 - 2016-11-02 11:26 - 03595776 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-12-11 18:16 - 2016-11-02 11:26 - 02747392 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-12-11 18:16 - 2016-11-02 11:26 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-12-11 18:16 - 2016-11-02 11:26 - 00912896 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2016-12-11 18:16 - 2016-11-02 11:26 - 00712192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2016-12-11 18:16 - 2016-11-02 11:26 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-12-11 18:16 - 2016-11-02 11:23 - 03106304 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2016-12-11 18:16 - 2016-11-02 11:23 - 02356736 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-12-11 18:16 - 2016-11-02 11:23 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2016-12-11 18:16 - 2016-11-02 10:11 - 00788624 _____ C:\Windows\system32\locale.nls

pingodoce · 07.01.2017, 18:15

Code:

ATTFilter

2016-12-11 18:16 - 2016-10-28 04:11 - 00446896 _____ C:\Windows\system32\ApnDatabase.xml
2016-12-11 18:16 - 2016-10-15 06:11 - 00486752 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-12-11 18:16 - 2016-10-15 06:11 - 00224608 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2016-12-11 18:16 - 2016-10-15 06:11 - 00069472 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-12-11 18:16 - 2016-10-15 05:36 - 04970224 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2016-12-11 18:16 - 2016-10-15 05:33 - 00455040 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2016-12-11 18:16 - 2016-10-15 05:26 - 00055136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2016-12-11 18:16 - 2016-10-15 05:19 - 00272720 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-12-11 18:16 - 2016-10-15 05:18 - 01556712 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-12-11 18:16 - 2016-10-15 05:18 - 00749920 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2016-12-11 18:16 - 2016-10-15 05:18 - 00576400 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2016-12-11 18:16 - 2016-10-15 05:18 - 00454496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-12-11 18:16 - 2016-10-15 05:18 - 00186424 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2016-12-11 18:16 - 2016-10-15 05:18 - 00067424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2016-12-11 18:16 - 2016-10-15 05:15 - 01557808 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2016-12-11 18:16 - 2016-10-15 05:15 - 00687936 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2016-12-11 18:16 - 2016-10-15 05:10 - 01968992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-12-11 18:16 - 2016-10-15 05:10 - 00781664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-12-11 18:16 - 2016-10-15 05:10 - 00482656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-12-11 18:16 - 2016-10-15 05:10 - 00254656 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2016-12-11 18:16 - 2016-10-15 05:06 - 05685760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-12-11 18:16 - 2016-10-15 05:00 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2016-12-11 18:16 - 2016-10-15 05:00 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\stdole2.tlb
2016-12-11 18:16 - 2016-10-15 04:59 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\mfksproxy.dll
2016-12-11 18:16 - 2016-10-15 04:58 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-12-11 18:16 - 2016-10-15 04:58 - 00114688 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2016-12-11 18:16 - 2016-10-15 04:58 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\efsext.dll
2016-12-11 18:16 - 2016-10-15 04:57 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2016-12-11 18:16 - 2016-10-15 04:57 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-12-11 18:16 - 2016-10-15 04:56 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\esentutl.exe
2016-12-11 18:16 - 2016-10-15 04:56 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\wc_storage.dll
2016-12-11 18:16 - 2016-10-15 04:55 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFi.dll
2016-12-11 18:16 - 2016-10-15 04:55 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-12-11 18:16 - 2016-10-15 04:54 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2016-12-11 18:16 - 2016-10-15 04:54 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-12-11 18:16 - 2016-10-15 04:54 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Flights.dll
2016-12-11 18:16 - 2016-10-15 04:54 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2016-12-11 18:16 - 2016-10-15 04:54 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2016-12-11 18:16 - 2016-10-15 04:54 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\BthRadioMedia.dll
2016-12-11 18:16 - 2016-10-15 04:53 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2016-12-11 18:16 - 2016-10-15 04:52 - 00632832 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2016-12-11 18:16 - 2016-10-15 04:52 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2016-12-11 18:16 - 2016-10-15 04:51 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2016-12-11 18:16 - 2016-10-15 04:51 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-12-11 18:16 - 2016-10-15 04:50 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-12-11 18:16 - 2016-10-15 04:50 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Bluetooth.dll
2016-12-11 18:16 - 2016-10-15 04:50 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2016-12-11 18:16 - 2016-10-15 04:48 - 01323008 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2016-12-11 18:16 - 2016-10-15 04:48 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-12-11 18:16 - 2016-10-15 04:48 - 00797696 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2016-12-11 18:16 - 2016-10-15 04:48 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2016-12-11 18:16 - 2016-10-15 04:47 - 01113600 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2016-12-11 18:16 - 2016-10-15 04:46 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-12-11 18:16 - 2016-10-15 04:46 - 00336896 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2016-12-11 18:16 - 2016-10-15 04:44 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\RemoteNaturalLanguage.dll
2016-12-11 18:16 - 2016-10-15 04:44 - 00636928 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-12-11 18:16 - 2016-10-15 04:44 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-12-11 18:16 - 2016-10-15 04:43 - 02748928 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2016-12-11 18:16 - 2016-10-15 04:43 - 01406976 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2016-12-11 18:16 - 2016-10-15 04:42 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Playback.MediaPlayer.dll
2016-12-11 18:16 - 2016-10-15 04:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.exe
2016-12-11 18:16 - 2016-10-15 04:41 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\energy.dll
2016-12-11 18:16 - 2016-10-15 04:41 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\iscsiwmi.dll
2016-12-11 18:16 - 2016-10-15 04:39 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\D3D12.dll
2016-12-11 18:16 - 2016-10-15 04:39 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\Geolocation.dll
2016-12-11 18:16 - 2016-10-15 04:39 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\chartv.dll
2016-12-11 18:16 - 2016-10-15 04:38 - 00675840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2016-12-11 18:16 - 2016-10-15 04:37 - 03733504 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2016-12-11 18:16 - 2016-10-15 04:37 - 01485312 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-12-11 18:16 - 2016-10-15 04:37 - 00884224 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-12-11 18:16 - 2016-10-15 04:37 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-12-11 18:16 - 2016-10-15 04:36 - 01523712 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-12-11 18:16 - 2016-10-15 04:36 - 01170944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll
2016-12-11 18:16 - 2016-10-15 04:36 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2016-12-11 18:16 - 2016-10-15 04:36 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2016-12-11 18:16 - 2016-10-15 04:36 - 00358912 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2016-12-11 18:16 - 2016-10-15 04:36 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\cmifw.dll
2016-12-11 18:16 - 2016-10-15 04:35 - 02708992 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2016-12-11 18:16 - 2016-10-15 04:35 - 02005504 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-12-11 18:16 - 2016-10-15 04:33 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2016-12-11 18:16 - 2016-10-05 11:05 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tm.sys
2016-12-11 18:16 - 2016-10-05 10:59 - 00949600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-12-11 18:16 - 2016-10-05 10:54 - 01097568 _____ (Microsoft Corporation) C:\Windows\system32\wpx.dll
2016-12-11 18:16 - 2016-10-05 10:49 - 01980768 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-12-11 18:16 - 2016-10-05 10:48 - 01022304 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll
2016-12-11 18:16 - 2016-10-05 10:46 - 01360456 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-12-11 18:16 - 2016-10-05 10:46 - 00980824 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-12-11 18:16 - 2016-10-05 10:31 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\ConfigureExpandedStorage.dll
2016-12-11 18:16 - 2016-10-05 10:28 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2016-12-11 18:16 - 2016-10-05 10:28 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.dll
2016-12-11 18:16 - 2016-10-05 10:28 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.HostName.dll
2016-12-11 18:16 - 2016-10-05 10:27 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-12-11 18:16 - 2016-10-05 10:26 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\credprovs.dll
2016-12-11 18:16 - 2016-10-05 10:26 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\UserDeviceRegistration.Ngc.dll
2016-12-11 18:16 - 2016-10-05 10:25 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\dsreg.dll
2016-12-11 18:16 - 2016-10-05 10:25 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccountApis.dll
2016-12-11 18:16 - 2016-10-05 10:25 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2016-12-11 18:16 - 2016-10-05 10:25 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-12-11 18:16 - 2016-10-05 10:25 - 00117760 _____ (Microsoft Corporation) C:\Windows\system32\AuthBroker.dll
2016-12-11 18:16 - 2016-10-05 10:24 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.AllJoyn.dll
2016-12-11 18:16 - 2016-10-05 10:24 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-12-11 18:16 - 2016-10-05 10:23 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Wallet.dll
2016-12-11 18:16 - 2016-10-05 10:23 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe
2016-12-11 18:16 - 2016-10-05 10:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll
2016-12-11 18:16 - 2016-10-05 10:22 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2016-12-11 18:16 - 2016-10-05 10:21 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\ChatApis.dll
2016-12-11 18:16 - 2016-10-05 10:21 - 00498176 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2016-12-11 18:16 - 2016-10-05 10:20 - 00661504 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2016-12-11 18:16 - 2016-10-05 10:20 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2016-12-11 18:16 - 2016-10-05 10:18 - 00858112 _____ (Microsoft Corporation) C:\Windows\system32\EmailApis.dll
2016-12-11 18:16 - 2016-10-05 10:16 - 00508416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-12-11 18:16 - 2016-10-05 10:15 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\dialclient.dll
2016-12-11 18:16 - 2016-10-05 10:14 - 01456640 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-12-11 18:16 - 2016-10-05 10:14 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2016-12-11 18:16 - 2016-10-05 10:13 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\offreg.dll
2016-12-11 18:16 - 2016-10-05 10:11 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-12-11 18:16 - 2016-10-05 10:10 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2016-12-11 18:16 - 2016-10-05 10:09 - 01700864 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2016-12-11 18:16 - 2016-10-05 10:09 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentApis.dll
2016-12-11 18:16 - 2016-10-05 10:09 - 00691712 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-12-11 18:16 - 2016-10-05 10:09 - 00608256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-12-11 18:16 - 2016-10-05 10:08 - 00598528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.dll
2016-12-11 18:16 - 2016-10-05 10:07 - 02646016 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2016-12-11 18:16 - 2016-10-05 10:07 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2016-12-11 18:16 - 2016-10-05 10:06 - 01013248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2016-12-11 18:16 - 2016-10-05 10:06 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\ContactApis.dll
2016-12-11 18:16 - 2016-10-05 10:05 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-12-11 18:16 - 2016-09-15 18:40 - 00965472 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2016-12-11 18:16 - 2016-09-15 18:37 - 00496872 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-12-11 18:16 - 2016-09-15 18:37 - 00402352 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-12-11 18:16 - 2016-09-15 18:37 - 00320152 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2016-12-11 18:16 - 2016-09-15 18:36 - 00021344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cmimcext.sys
2016-12-11 18:16 - 2016-09-15 18:35 - 00356704 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2016-12-11 18:16 - 2016-09-15 18:35 - 00356704 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2016-12-11 18:16 - 2016-09-15 18:33 - 00083120 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-12-11 18:16 - 2016-09-15 18:32 - 00279416 _____ (Microsoft Corporation) C:\Windows\system32\bdeunlock.exe
2016-12-11 18:16 - 2016-09-15 18:27 - 00868704 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2016-12-11 18:16 - 2016-09-15 18:26 - 00581672 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2016-12-11 18:16 - 2016-09-15 18:23 - 00170448 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-12-11 18:16 - 2016-09-15 18:22 - 00975744 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2016-12-11 18:16 - 2016-09-15 18:22 - 00433832 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-12-11 18:16 - 2016-09-15 18:22 - 00111968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2016-12-11 18:16 - 2016-09-15 18:21 - 00557920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2016-12-11 18:16 - 2016-09-15 18:20 - 00095072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2016-12-11 18:16 - 2016-09-15 18:19 - 00361104 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2016-12-11 18:16 - 2016-09-15 18:18 - 01201872 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2016-12-11 18:16 - 2016-09-15 18:18 - 00856872 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2016-12-11 18:16 - 2016-09-15 18:17 - 00125792 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostBroker.dll
2016-12-11 18:16 - 2016-09-15 18:16 - 00093984 _____ (Microsoft Corporation) C:\Windows\system32\phoneactivate.exe
2016-12-11 18:16 - 2016-09-15 18:13 - 00113504 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2016-12-11 18:16 - 2016-09-15 18:06 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\ffbroker.dll
2016-12-11 18:16 - 2016-09-15 18:03 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2016-12-11 18:16 - 2016-09-15 18:03 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2016-12-11 18:16 - 2016-09-15 18:01 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Radios.dll
2016-12-11 18:16 - 2016-09-15 18:01 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2016-12-11 18:16 - 2016-09-15 18:01 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\cmintegrator.dll
2016-12-11 18:16 - 2016-09-15 18:00 - 00554496 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2016-12-11 18:16 - 2016-09-15 18:00 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe
2016-12-11 18:16 - 2016-09-15 18:00 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Family.Client.dll
2016-12-11 18:16 - 2016-09-15 18:00 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\NfcRadioMedia.dll
2016-12-11 18:16 - 2016-09-15 17:59 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2016-12-11 18:16 - 2016-09-15 17:59 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\credprovslegacy.dll
2016-12-11 18:16 - 2016-09-15 17:59 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\WinRtTracing.dll
2016-12-11 18:16 - 2016-09-15 17:58 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2016-12-11 18:16 - 2016-09-15 17:58 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\wlancfg.dll
2016-12-11 18:16 - 2016-09-15 17:58 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\credprovhost.dll
2016-12-11 18:16 - 2016-09-15 17:58 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\Family.SyncEngine.dll
2016-12-11 18:16 - 2016-09-15 17:58 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-12-11 18:16 - 2016-09-15 17:58 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2016-12-11 18:16 - 2016-09-15 17:58 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.UserDeviceAssociation.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 03716096 _____ (Microsoft Corporation) C:\Windows\system32\bootux.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.Input.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.LowLevel.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00315904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Gaming.XboxLive.Storage.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00271872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.Phone.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\SyncSettings.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ClipboardServer.dll
2016-12-11 18:16 - 2016-09-15 17:57 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 01300480 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00823808 _____ (Microsoft Corporation) C:\Windows\system32\nettrace.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.PointOfService.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00265728 _____ C:\Windows\system32\Windows.Perception.Stub.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00257536 _____ (Microsoft Corporation) C:\Windows\system32\DataExchange.dll
2016-12-11 18:16 - 2016-09-15 17:56 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\RMapi.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00562176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00518144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdiWiFi.sys
2016-12-11 18:16 - 2016-09-15 17:55 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\NetworkCollectionAgent.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00386048 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.WiFiDirect.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnrGidsHandler.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.CredDialogController.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Identity.Provider.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Scanners.dll
2016-12-11 18:16 - 2016-09-15 17:55 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00747520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Ocr.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00493568 _____ (Microsoft Corporation) C:\Windows\system32\dsregcmd.exe
2016-12-11 18:16 - 2016-09-15 17:54 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DevicesFlowBroker.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Picker.dll
2016-12-11 18:16 - 2016-09-15 17:54 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\ConsoleLogon.dll
2016-12-11 18:16 - 2016-09-15 17:53 - 01344000 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2016-12-11 18:16 - 2016-09-15 17:53 - 00819200 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll
2016-12-11 18:16 - 2016-09-15 17:53 - 00466432 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2016-12-11 18:16 - 2016-09-15 17:53 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Usb.dll
2016-12-11 18:16 - 2016-09-15 17:53 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Vpn.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 00525824 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 00297472 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2016-12-11 18:16 - 2016-09-15 17:52 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2016-12-11 18:16 - 2016-09-15 17:52 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\AboveLockAppHost.dll
2016-12-11 18:16 - 2016-09-15 17:51 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2016-12-11 18:16 - 2016-09-15 17:51 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\CryptoWinRT.dll
2016-12-11 18:16 - 2016-09-15 17:50 - 01534464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll
2016-12-11 18:16 - 2016-09-15 17:50 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2016-12-11 18:16 - 2016-09-15 17:49 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2016-12-11 18:16 - 2016-09-15 17:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2016-12-11 18:16 - 2016-09-15 17:48 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2016-12-11 18:16 - 2016-09-15 17:48 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-12-11 18:16 - 2016-09-15 17:47 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-12-11 18:16 - 2016-09-15 17:47 - 01077760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll
2016-12-11 18:16 - 2016-09-15 17:47 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2016-12-11 18:16 - 2016-09-15 17:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\RelPost.exe
2016-12-11 18:16 - 2016-09-15 17:47 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Energy.dll
2016-12-11 18:16 - 2016-09-15 17:47 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\baaupdate.exe
2016-12-11 18:16 - 2016-09-15 17:46 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-12-11 18:16 - 2016-09-15 17:46 - 00795648 _____ (Microsoft Corporation) C:\Windows\system32\MiracastReceiver.dll
2016-12-11 18:16 - 2016-09-15 17:46 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2016-12-11 18:16 - 2016-09-15 17:46 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2016-12-11 18:16 - 2016-09-15 17:46 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-12-11 18:16 - 2016-09-15 17:46 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll
2016-12-11 18:16 - 2016-09-15 17:45 - 02642944 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-12-11 18:16 - 2016-09-15 17:45 - 00671744 _____ (Microsoft Corporation) C:\Windows\system32\pwcreator.exe
2016-12-11 18:16 - 2016-09-15 17:45 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2016-12-11 18:16 - 2016-09-15 17:45 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2016-12-11 18:16 - 2016-09-15 17:44 - 02153984 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2016-12-11 18:16 - 2016-09-15 17:44 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-12-11 18:16 - 2016-09-15 17:44 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\SpaceControl.dll
2016-12-11 18:16 - 2016-09-15 17:44 - 00494592 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2016-12-11 18:16 - 2016-09-15 17:44 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2016-12-11 18:16 - 2016-09-15 17:44 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2016-12-11 18:16 - 2016-09-15 17:44 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL
2016-12-11 18:16 - 2016-09-15 17:44 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\fvenotify.exe
2016-12-11 18:16 - 2016-09-15 17:44 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\fveprompt.exe
2016-12-11 18:16 - 2016-09-15 17:44 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Sens.dll
2016-12-11 18:16 - 2016-09-15 17:43 - 03520512 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2016-12-11 18:16 - 2016-09-15 17:43 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2016-12-11 18:16 - 2016-09-15 17:43 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2016-12-11 18:16 - 2016-09-15 17:43 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\bdechangepin.exe
2016-12-11 18:16 - 2016-09-15 17:43 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll
2016-12-11 18:16 - 2016-09-15 17:43 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2016-12-11 18:16 - 2016-09-15 17:43 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\bdeui.dll
2016-12-11 18:16 - 2016-09-15 17:42 - 01220608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2016-12-11 18:16 - 2016-09-15 17:42 - 00719872 _____ (Microsoft Corporation) C:\Windows\system32\wsp_sr.dll
2016-12-11 18:16 - 2016-09-15 17:42 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\SpaceAgent.exe
2016-12-11 18:16 - 2016-09-15 17:42 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2016-12-11 18:16 - 2016-09-15 17:42 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\BackgroundMediaPolicy.dll
2016-12-11 18:16 - 2016-09-15 17:40 - 02026496 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-12-11 18:16 - 2016-09-15 17:40 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-12-11 18:16 - 2016-09-15 17:40 - 01656320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Perception.dll
2016-12-11 18:16 - 2016-09-15 17:40 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Midi.dll
2016-12-11 18:16 - 2016-09-15 17:39 - 02740224 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2016-12-11 18:16 - 2016-09-15 17:39 - 01232384 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2016-12-11 18:16 - 2016-09-15 17:39 - 01170944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2016-12-11 18:16 - 2016-09-15 17:39 - 01004544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2016-12-11 18:16 - 2016-09-15 17:39 - 00941568 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-12-11 18:16 - 2016-09-15 17:39 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-12-11 18:16 - 2016-09-15 17:38 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2016-12-11 18:16 - 2016-09-15 17:38 - 00691200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2016-12-11 18:16 - 2016-09-15 17:38 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2016-12-11 18:16 - 2016-09-15 17:38 - 00620544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-12-11 18:16 - 2016-09-15 17:36 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2016-12-11 18:16 - 2016-09-15 17:36 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\FontProvider.dll
2016-12-11 18:16 - 2016-09-15 17:35 - 01438720 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2016-12-11 18:16 - 2016-09-15 17:35 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2016-12-11 18:16 - 2016-09-15 17:35 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2016-12-11 18:16 - 2016-09-15 17:35 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\spaceman.exe
2016-12-11 18:16 - 2016-09-07 06:35 - 00315736 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2016-12-11 18:16 - 2016-09-07 06:33 - 00102752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-12-11 18:16 - 2016-09-07 06:29 - 00341344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2016-12-11 18:16 - 2016-09-07 06:27 - 01362504 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2016-12-11 18:16 - 2016-09-07 06:18 - 00290264 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-12-11 18:16 - 2016-09-07 06:17 - 00782176 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-12-11 18:16 - 2016-09-07 06:17 - 00509792 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-12-11 18:16 - 2016-09-07 06:16 - 00589144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ClipSp.sys
2016-12-11 18:16 - 2016-09-07 06:16 - 00399712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-12-11 18:16 - 2016-09-07 06:13 - 00529928 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-12-11 18:16 - 2016-09-07 06:13 - 00432328 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll
2016-12-11 18:16 - 2016-09-07 06:12 - 00321792 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-12-11 18:16 - 2016-09-07 06:07 - 00043944 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-12-11 18:16 - 2016-09-07 06:00 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosTrace.dll
2016-12-11 18:16 - 2016-09-07 06:00 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosHost.dll
2016-12-11 18:16 - 2016-09-07 05:59 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\MosResource.dll
2016-12-11 18:16 - 2016-09-07 05:59 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MapControls.dll
2016-12-11 18:16 - 2016-09-07 05:59 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\ExtrasXmlParser.dll
2016-12-11 18:16 - 2016-09-07 05:59 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\MapControlStringsRes.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\POSyncServices.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\AddressParser.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTypeHelperUtil.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\UserDataLanguageUtil.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\nativemap.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvcProxy.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\UserDataAccessRes.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneutilRes.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\PhoneServiceRes.dll
2016-12-11 18:16 - 2016-09-07 05:58 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2016-12-11 18:16 - 2016-09-07 05:57 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2016-12-11 18:16 - 2016-09-07 05:57 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-12-11 18:16 - 2016-09-07 05:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-12-11 18:16 - 2016-09-07 05:56 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-12-11 18:16 - 2016-09-07 05:56 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\ContactActivation.dll
2016-12-11 18:16 - 2016-09-07 05:55 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\VCardParser.dll
2016-12-11 18:16 - 2016-09-07 05:55 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll
2016-12-11 18:16 - 2016-09-07 05:55 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll
2016-12-11 18:16 - 2016-09-07 05:54 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataPlatformHelperUtil.dll
2016-12-11 18:16 - 2016-09-07 05:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\mapstoasttask.dll
2016-12-11 18:16 - 2016-09-07 05:53 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\AppointmentActivation.dll
2016-12-11 18:16 - 2016-09-07 05:52 - 00536576 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
2016-12-11 18:16 - 2016-09-07 05:52 - 00392704 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-12-11 18:16 - 2016-09-07 05:52 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\NmaDirect.dll
2016-12-11 18:16 - 2016-09-07 05:52 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.UI.Logon.ProxyStub.dll
2016-12-11 18:16 - 2016-09-07 05:51 - 06534656 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-12-11 18:16 - 2016-09-07 05:50 - 00636928 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2016-12-11 18:16 - 2016-09-07 05:50 - 00582144 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll
2016-12-11 18:16 - 2016-09-07 05:50 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-12-11 18:16 - 2016-09-07 05:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\Phoneutil.dll
2016-12-11 18:16 - 2016-09-07 05:47 - 02318336 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-12-11 18:16 - 2016-09-07 05:47 - 00340480 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-12-11 18:16 - 2016-09-07 05:46 - 01774080 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-12-11 18:16 - 2016-09-07 05:46 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2016-12-11 18:16 - 2016-09-07 05:46 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-12-11 18:16 - 2016-09-07 05:46 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-12-11 18:16 - 2016-09-07 05:45 - 05398016 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2016-12-11 18:16 - 2016-09-07 05:44 - 01842688 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-12-11 18:16 - 2016-09-07 05:44 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\SensorDataService.exe
2016-12-11 18:16 - 2016-09-07 05:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-12-11 18:16 - 2016-09-07 05:40 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2016-12-11 18:16 - 2016-09-07 05:39 - 00895488 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2016-12-11 18:16 - 2016-09-07 05:39 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-12-11 18:16 - 2016-09-07 05:37 - 00640000 _____ (Microsoft Corporation) C:\Windows\system32\MCRecvSrc.dll
2016-12-11 18:16 - 2016-09-07 05:36 - 02423296 _____ (Microsoft Corporation) C:\Windows\system32\MSAJApi.dll
2016-12-11 18:16 - 2016-09-07 05:34 - 04557824 _____ (Microsoft) C:\Windows\system32\dbgeng.dll
2016-12-11 18:16 - 2016-09-07 05:34 - 00860672 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2016-12-11 18:16 - 2016-09-07 05:34 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-12-11 18:16 - 2016-09-07 05:31 - 01293312 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2016-12-11 18:16 - 2016-09-07 05:31 - 00461312 _____ (Microsoft) C:\Windows\system32\DbgModel.dll
2016-12-11 18:16 - 2016-09-07 05:30 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-12-11 18:16 - 2016-08-27 05:58 - 00121368 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-12-11 18:16 - 2016-08-27 05:43 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\encapi.dll
2016-12-11 18:16 - 2016-08-20 06:49 - 00092000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-12-11 18:16 - 2016-08-20 06:15 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-12-11 18:16 - 2016-08-20 06:14 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\C_G18030.DLL
2016-12-11 18:16 - 2016-08-20 06:14 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2016-12-11 18:16 - 2016-08-20 06:14 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-12-11 18:16 - 2016-08-20 06:14 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2016-12-11 18:16 - 2016-08-20 06:14 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2016-12-11 18:16 - 2016-08-20 06:14 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\C_IS2022.DLL
2016-12-11 18:16 - 2016-08-20 06:14 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\c_GSM7.DLL
2016-12-11 18:16 - 2016-08-20 06:12 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2016-12-11 18:16 - 2016-08-20 06:12 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2016-12-11 18:16 - 2016-08-20 06:12 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2016-12-11 18:16 - 2016-08-20 06:11 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2016-12-11 18:16 - 2016-08-20 06:11 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-12-11 18:16 - 2016-08-20 06:11 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManagerSvc.dll
2016-12-11 18:16 - 2016-08-20 06:09 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-12-11 18:16 - 2016-08-20 06:09 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2016-12-11 18:16 - 2016-08-20 06:09 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2016-12-11 18:16 - 2016-08-20 06:06 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-12-11 18:16 - 2016-08-20 06:04 - 00592384 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2016-12-11 18:16 - 2016-08-20 06:00 - 00141824 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\DscCoreConfProv.dll
2016-12-11 18:16 - 2016-08-20 05:59 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\CastLaunch.dll
2016-12-11 18:16 - 2016-08-20 05:58 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi_passthru.dll
2016-12-11 18:16 - 2016-08-20 05:56 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\delegatorprovider.dll
2016-12-11 18:16 - 2016-08-09 03:13 - 00162850 _____ C:\Windows\system32\C_932.NLS
2016-12-11 18:16 - 2016-08-06 05:26 - 00036704 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2016-12-11 18:16 - 2016-08-06 05:22 - 00173408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wof.sys
2016-12-11 18:16 - 2016-08-06 05:16 - 00798504 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-12-11 18:16 - 2016-08-06 05:15 - 00292184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2016-12-11 18:16 - 2016-08-06 05:14 - 00145248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-12-11 18:16 - 2016-08-06 05:08 - 00313560 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2016-12-11 18:16 - 2016-08-06 05:06 - 00023776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-12-11 18:16 - 2016-08-06 05:03 - 01343928 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2016-12-11 18:16 - 2016-08-06 05:03 - 00036168 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-12-11 18:16 - 2016-08-06 04:50 - 02755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-12-11 18:16 - 2016-08-06 04:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
2016-12-11 18:16 - 2016-08-06 04:48 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\WiFiConfigSP.dll
2016-12-11 18:16 - 2016-08-06 04:48 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-12-11 18:16 - 2016-08-06 04:48 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2016-12-11 18:16 - 2016-08-06 04:48 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-12-11 18:16 - 2016-08-06 04:48 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-12-11 18:16 - 2016-08-06 04:48 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-12-11 18:16 - 2016-08-06 04:47 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\dasHost.exe
2016-12-11 18:16 - 2016-08-06 04:47 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModelOOBE.exe
2016-12-11 18:16 - 2016-08-06 04:47 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll
2016-12-11 18:16 - 2016-08-06 04:46 - 09260032 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-12-11 18:16 - 2016-08-06 04:46 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\dafpos.dll
2016-12-11 18:16 - 2016-08-06 04:45 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\container.dll
2016-12-11 18:16 - 2016-08-06 04:45 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_WorkAccess.dll
2016-12-11 18:16 - 2016-08-06 04:45 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2016-12-11 18:16 - 2016-08-06 04:45 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-12-11 18:16 - 2016-08-06 04:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\netiougc.exe
2016-12-11 18:16 - 2016-08-06 04:45 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\wlansvcpal.dll
2016-12-11 18:16 - 2016-08-06 04:44 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-12-11 18:16 - 2016-08-06 04:44 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\deviceassociation.dll
2016-12-11 18:16 - 2016-08-06 04:43 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2016-12-11 18:16 - 2016-08-06 04:43 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2016-12-11 18:16 - 2016-08-06 04:43 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\wifiprofilessettinghandler.dll
2016-12-11 18:16 - 2016-08-06 04:41 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\CloudBackupSettings.dll
2016-12-11 18:16 - 2016-08-06 04:40 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\WinBioDataModel.dll
2016-12-11 18:16 - 2016-08-06 04:40 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll
2016-12-11 18:16 - 2016-08-06 04:39 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2016-12-11 18:16 - 2016-08-06 04:39 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-12-11 18:16 - 2016-08-06 04:39 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2016-12-11 18:16 - 2016-08-06 04:37 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\das.dll
2016-12-11 18:16 - 2016-08-06 04:33 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll
2016-12-11 18:16 - 2016-08-06 04:30 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\wpninprc.dll
2016-12-11 18:16 - 2016-08-06 04:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-12-11 18:16 - 2016-08-06 04:25 - 01997824 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2016-12-11 18:16 - 2016-08-06 04:23 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2016-12-11 18:16 - 2016-08-06 04:21 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2016-12-11 18:16 - 2016-08-05 10:10 - 00939872 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2016-12-11 18:16 - 2016-08-05 09:54 - 00564488 _____ (Microsoft Corporation) C:\Windows\system32\GenValObj.exe
2016-12-11 18:16 - 2016-08-05 09:29 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\slcext.dll
2016-12-11 18:16 - 2016-08-05 09:23 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2016-12-11 18:16 - 2016-08-05 09:18 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\slc.dll
2016-12-11 18:16 - 2016-08-02 05:47 - 00094528 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2016-12-11 18:16 - 2016-08-02 05:37 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\Chakrathunk.dll
2016-12-11 18:16 - 2016-07-22 02:18 - 00297552 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2016-12-11 18:15 - 2016-11-11 08:45 - 00261984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-12-11 18:15 - 2016-11-11 08:45 - 00175968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2016-12-11 18:15 - 2016-11-11 08:26 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xboxgip.sys
2016-12-11 18:15 - 2016-11-11 08:25 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-11 18:15 - 2016-11-11 08:24 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\BcastDVRHelper.dll
2016-12-11 18:15 - 2016-11-11 08:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll
2016-12-11 18:15 - 2016-11-11 08:22 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2016-12-11 18:15 - 2016-11-11 08:20 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\EDPCleanup.exe
2016-12-11 18:15 - 2016-11-11 08:15 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2016-12-11 18:15 - 2016-11-11 08:06 - 01602048 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-12-11 18:15 - 2016-11-02 12:21 - 00570720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2016-12-11 18:15 - 2016-11-02 12:09 - 00544088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2016-12-11 18:15 - 2016-11-02 11:41 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContent.dll
2016-12-11 18:15 - 2016-11-02 11:36 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetailsUpdate.dll
2016-12-11 18:15 - 2016-11-02 11:30 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\ErrorDetails.dll
2016-12-11 18:15 - 2016-11-02 11:26 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-12-11 18:15 - 2016-10-15 06:11 - 01026400 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-12-11 18:15 - 2016-10-15 06:11 - 00496992 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-12-11 18:15 - 2016-10-15 06:11 - 00277344 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-12-11 18:15 - 2016-10-15 06:11 - 00192864 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-12-11 18:15 - 2016-10-15 05:40 - 01126496 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2016-12-11 18:15 - 2016-10-15 05:27 - 00421216 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-12-11 18:15 - 2016-10-15 05:18 - 00458592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-12-11 18:15 - 2016-10-15 04:56 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2016-12-11 18:15 - 2016-10-15 04:56 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-12-11 18:15 - 2016-10-15 04:55 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-12-11 18:15 - 2016-10-15 04:54 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSrvPolicyManager.dll
2016-12-11 18:15 - 2016-10-15 04:46 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\capimg.sys
2016-12-11 18:15 - 2016-10-15 04:43 - 00500736 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2016-12-11 18:15 - 2016-10-05 11:10 - 00231776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2016-12-11 18:15 - 2016-10-05 10:53 - 00154976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2016-12-11 18:15 - 2016-10-05 10:50 - 00116576 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2016-12-11 18:15 - 2016-10-05 10:46 - 00056672 _____ (Avago Technologies) C:\Windows\system32\Drivers\MegaSas2i.sys
2016-12-11 18:15 - 2016-10-05 10:26 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-12-11 18:15 - 2016-10-05 10:17 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-12-11 18:15 - 2016-09-15 18:42 - 00614752 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2016-12-11 18:15 - 2016-09-15 18:42 - 00498016 _____ (Microsoft Corporation) C:\Windows\system32\AppVEntVirtualization.dll
2016-12-11 18:15 - 2016-09-15 18:42 - 00094560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppVStrm.sys
2016-12-11 18:15 - 2016-09-15 18:00 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2016-12-11 18:15 - 2016-09-15 17:58 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\vmrdvcore.dll
2016-12-11 18:15 - 2016-09-15 17:55 - 00277504 _____ (Microsoft Corporation) C:\Windows\system32\icsvcext.dll
2016-12-11 18:15 - 2016-09-15 17:54 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\icsvc.dll
2016-12-11 18:15 - 2016-09-15 17:52 - 00822272 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-12-11 18:15 - 2016-09-15 17:49 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll
2016-12-11 18:15 - 2016-09-15 17:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll
2016-12-11 18:15 - 2016-09-07 06:13 - 00101216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\EhStorTcgDrv.sys
2016-12-11 18:15 - 2016-09-07 05:54 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2016-12-11 18:15 - 2016-08-20 06:15 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xinputhid.sys
2016-12-11 18:15 - 2016-08-06 04:47 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2016-12-11 18:15 - 2016-08-06 04:47 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2016-12-11 18:14 - 2010-03-18 19:25 - 00307200 _____ (CANON INC.) C:\Windows\system32\CNC5100L.dll
2016-12-11 18:14 - 2010-03-18 17:12 - 01335296 _____ (CANON INC.) C:\Windows\system32\CNC5100C.dll
2016-12-11 18:14 - 2010-03-18 17:12 - 00114688 _____ (CANON INC.) C:\Windows\system32\CNC5100I.dll
2016-12-11 18:14 - 2010-03-18 17:11 - 00106496 _____ (CANON INC.) C:\Windows\system32\CNC5100U.dll
2016-12-11 18:14 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\Windows\system32\CNHMCA.dll
2016-12-11 15:28 - 2016-12-11 15:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2016-12-11 15:28 - 2016-12-11 15:28 - 00000000 ____D C:\Program Files\Microsoft
2016-12-11 15:24 - 2016-12-11 15:24 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2016-12-11 15:24 - 2016-12-11 15:24 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2016-12-11 15:11 - 2016-12-20 17:01 - 00000000 ____D C:\Program Files\Kingston_SSD_Manager
2016-12-11 15:11 - 2016-12-11 15:11 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-11 15:02 - 2016-12-11 15:10 - 63327456 _____ (Kingston Digital, Inc ) C:\Users\ms\Downloads\KSM_setup_1.0.1.3.exe
2016-12-11 13:35 - 2016-12-11 13:35 - 00000000 ____D C:\Users\ms\AppData\Roaming\Identities
2016-12-11 03:23 - 2016-12-11 03:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AWP
2016-12-11 03:23 - 2016-12-11 03:23 - 00000000 ____D C:\Program Files\Oberthur Technologies
2016-12-11 03:20 - 2016-12-11 03:20 - 00000000 __HDC C:\ProgramData\{F9068F7D-ADD2-4370-8E57-E5C54FAD3F79}
2016-12-11 03:20 - 2016-12-11 03:20 - 00000000 ____D C:\Users\ms\AppData\Local\MedicineOne
2016-12-11 03:19 - 2016-12-21 14:32 - 00000000 ____D C:\Windows\system32\XPSViewer
2016-12-11 03:19 - 2016-12-11 03:19 - 00001280 _____ C:\Users\Public\Desktop\My MedicineOne.lnk
2016-12-11 03:19 - 2016-12-11 03:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MedicineOne
2016-12-11 03:19 - 2016-12-11 03:19 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-12-11 03:19 - 2016-12-11 03:19 - 00000000 ____D C:\Program Files\MSBuild
2016-12-11 03:19 - 2016-12-11 03:19 - 00000000 ____D C:\Program Files\MedicineOne
2016-12-11 03:19 - 2016-12-01 13:45 - 26220284 _____ C:\Users\ms\Downloads\AWP_v4_6_SR12_SIBS.msi
2016-12-11 03:18 - 2016-05-25 11:03 - 00778936 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2016-12-11 03:18 - 2016-05-25 11:03 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-12-11 03:18 - 2016-05-25 11:03 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-12-11 02:58 - 2017-01-06 14:55 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-12-11 02:42 - 2016-12-11 02:42 - 00000000 ____D C:\Windows\system32\appmgmt
2016-12-10 18:23 - 2016-12-10 18:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-12-10 18:22 - 2016-12-10 18:25 - 00000000 ____D C:\Program Files\Microsoft Works
2016-12-10 18:22 - 2016-12-10 18:22 - 00000000 ____D C:\Windows\PCHEALTH
2016-12-10 18:22 - 2016-12-10 18:22 - 00000000 ____D C:\Program Files\Microsoft Visual Studio
2016-12-10 13:29 - 2016-12-10 18:20 - 00000000 ____D C:\Windows\SHELLNEW
2016-12-10 13:20 - 2016-12-10 13:20 - 00000000 ____D C:\Users\ms\AppData\Local\Microsoft Help
2016-12-10 13:16 - 2016-12-25 18:09 - 00000000 ____D C:\Program Files\Microsoft Office
2016-12-10 13:15 - 2016-12-13 22:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-12-10 13:06 - 2016-12-10 13:06 - 00000000 __RHD C:\MSOCache
2016-12-10 11:40 - 2016-12-13 22:34 - 00000000 ____D C:\Windows\system32\MRT
2016-12-10 11:38 - 2016-12-13 22:32 - 133430776 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-12-10 11:34 - 2016-12-10 11:34 - 00000000 ____D C:\Users\ms\AppData\Local\Programs
2016-12-10 11:22 - 2016-12-10 11:34 - 00000220 _____ C:\Users\ms\Downloads\results.txt
2016-12-10 11:22 - 2016-12-10 11:27 - 00002503 _____ C:\HCT.Log
2016-12-10 11:21 - 2016-12-16 16:34 - 00000000 ____D C:\Program Files\SpeedFan
2016-12-10 11:21 - 2016-12-10 11:21 - 00001038 _____ C:\Users\ms\Desktop\SpeedFan.lnk
2016-12-10 11:21 - 2016-12-10 11:21 - 00000045 _____ C:\Windows\system32\initdebug.nfo
2016-12-10 11:21 - 2016-12-10 11:21 - 00000000 ____D C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2016-12-10 11:14 - 2016-12-10 11:15 - 00000158 _____ C:\Users\ms\Downloads\prime.txt
2016-12-10 11:14 - 2016-12-10 11:14 - 00000100 _____ C:\Users\ms\Downloads\local.txt
2016-12-10 11:13 - 2016-12-10 11:13 - 00000000 ____D C:\Users\ms\AppData\Local\Downloaded Installations
2016-12-10 10:59 - 2016-12-10 10:59 - 00000000 _____ C:\Users\ms\AppData\Local\QSwitch.txt
2016-12-10 10:59 - 2016-12-10 10:59 - 00000000 _____ C:\Users\ms\AppData\Local\DSwitch.txt
2016-12-10 10:59 - 2016-12-10 10:59 - 00000000 _____ C:\Users\ms\AppData\Local\AtStart.txt
2016-12-10 10:19 - 2017-01-07 18:05 - 00000000 ____D C:\Users\ms\AppData\LocalLow\Mozilla
2016-12-10 10:19 - 2016-12-11 23:13 - 00000000 ____D C:\Users\ms\Downloads\joomla
2016-12-10 10:19 - 2016-12-11 23:13 - 00000000 ____D C:\Users\ms\Downloads\homepage Datenbank backup
2016-12-10 10:19 - 2016-12-10 10:34 - 00000000 ____D C:\Users\ms\AppData\Local\Mozilla
2016-12-10 10:19 - 2016-12-10 10:19 - 00000000 ____D C:\Users\ms\Downloads\homepage AKEEBA
2016-12-10 10:19 - 2016-12-10 10:19 - 00000000 ____D C:\Users\ms\Downloads\FOBI BERLIN
2016-12-10 10:19 - 2016-12-10 10:19 - 00000000 ____D C:\Users\ms\AppData\Roaming\Mozilla
2016-12-10 10:18 - 2016-12-18 21:53 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-12-10 10:18 - 2016-12-10 10:19 - 00000000 ____D C:\Users\ms\Downloads\DJI_WIN_Driver_Installer
2016-12-10 10:18 - 2016-12-10 10:18 - 00001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-12-10 10:18 - 2016-12-10 10:18 - 00001178 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-12-10 10:14 - 2016-12-10 10:18 - 00000000 ____D C:\Users\ms\Downloads\Ant Videos
2016-12-10 10:10 - 2017-01-06 01:33 - 00000000 ____D C:\Users\ms\Downloads\android apk
2016-12-10 10:09 - 2016-10-18 20:58 - 00007113 _____ C:\Users\ms\Downloads\sitemap.xml
2016-12-10 10:09 - 2016-10-05 09:25 - 00004574 _____ C:\Users\ms\Downloads\subscribers_list_0_2016.30.09.csv
2016-12-10 10:09 - 2016-08-10 18:07 - 54811422 _____ C:\Users\ms\Downloads\site-www.dr-scheuber-carvoeiro.com-20160810-185738.jpa
2016-12-10 09:56 - 2017-01-03 15:42 - 00000000 ____D C:\Users\ms\Documents\Dokumente Privat
2016-12-10 09:54 - 2017-01-02 21:39 - 00000000 ____D C:\Users\ms\Documents\Dokumente Praxis
2016-12-10 09:54 - 2016-12-10 09:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
2016-12-10 09:54 - 2016-12-10 09:54 - 00000000 ____D C:\Users\ms\Documents\dokumente knie
2016-12-10 09:54 - 2016-12-10 09:54 - 00000000 ____D C:\Users\ms\AppData\LocalLow\Temp
2016-12-10 09:54 - 2016-12-10 09:54 - 00000000 ____D C:\Program Files\AuthenTec
2016-12-10 09:53 - 2016-12-19 10:49 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2016-12-10 09:53 - 2016-12-11 20:52 - 00000000 ____D C:\Program Files\Hewlett-Packard
2016-12-10 09:53 - 2016-12-10 09:53 - 00000000 ____D C:\Windows\QLB
2016-12-10 09:53 - 2016-12-10 09:53 - 00000000 ____D C:\Users\ms\Downloads\Neuer Ordner
2016-12-10 09:53 - 2016-12-10 09:53 - 00000000 ____D C:\Users\Default\AppData\Roaming\hpqLog
2016-12-10 09:53 - 2016-12-10 09:53 - 00000000 ____D C:\Users\Default User\AppData\Roaming\hpqLog
2016-12-10 09:53 - 2016-10-25 12:26 - 00288059 _____ C:\Users\ms\Desktop\Diploma I.pdf
2016-12-10 09:53 - 2016-10-25 12:23 - 00465616 _____ C:\Users\ms\Desktop\certificado Bahrain.pdf
2016-12-10 09:53 - 2016-10-25 12:23 - 00397695 _____ C:\Users\ms\Desktop\certificado Roland Klinik.pdf
2016-12-10 09:53 - 2016-10-25 12:23 - 00362311 _____ C:\Users\ms\Desktop\Diploma.pdf
2016-12-10 09:53 - 2016-08-15 09:21 - 00128468 _____ C:\Users\ms\Desktop\elke2.png
2016-12-10 09:53 - 2016-08-13 20:10 - 00019777 _____ C:\Users\ms\Desktop\elke2.eld
2016-12-10 09:53 - 2016-05-03 01:10 - 00621681 _____ C:\Users\ms\Desktop\adresse jpg.jpg
2016-12-10 09:53 - 2016-05-02 14:48 - 00725526 _____ C:\Users\ms\Desktop\briefkopf neu.bmp
2016-12-10 09:53 - 2016-05-02 14:44 - 00028857 _____ C:\Users\ms\Desktop\briefkopf neu.jpg
2016-12-10 09:53 - 2009-04-29 07:46 - 00015872 _____ (Hewlett-Packard Development Company, L.P.) C:\Windows\system32\Drivers\HpqKbFiltr.sys
2016-12-10 09:53 - 2008-09-08 13:31 - 01885488 ____R (Hewlett-Packard Company) C:\Windows\system32\BttnCmn.dll
2016-12-10 09:53 - 2008-09-08 13:31 - 01885488 _____ (Hewlett-Packard Company) C:\Windows\system32\BttnCmns.dll
2016-12-10 09:53 - 2006-11-02 06:09 - 01419232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wdfcoinstaller01005.dll
2016-12-10 09:52 - 2016-12-10 09:52 - 00000000 ____D C:\Users\ms\Downloads\med7
2016-12-10 09:52 - 2016-12-10 09:52 - 00000000 ____D C:\Users\ms\Downloads\med wh
2016-12-10 09:52 - 2016-12-10 09:52 - 00000000 ____D C:\Users\ms\Downloads\JP_HealthCare
2016-12-10 09:52 - 2016-12-10 09:52 - 00000000 ____D C:\Users\ms\Downloads\Fotos Praxis
2016-12-10 09:52 - 2016-12-10 09:52 - 00000000 ____D C:\Users\ms\Downloads\EBAY
2016-12-10 09:52 - 2016-08-15 11:12 - 00460009 _____ C:\Users\ms\Desktop\npl zum teil ausgefuellt.pdf
2016-12-10 09:52 - 2016-08-13 18:10 - 00107041 _____ C:\Users\ms\Desktop\elke3.png
2016-12-10 09:52 - 2016-05-12 16:12 - 00003407 _____ C:\Users\ms\Desktop\IRS2015
2016-12-10 09:52 - 2015-12-26 03:08 - 00001154 _____ C:\Users\ms\Desktop\IsoBuster.lnk
2016-12-10 09:52 - 2015-11-05 22:57 - 00004781 _____ C:\Users\ms\Desktop\farmaciaservico.png
2016-12-10 09:52 - 2015-09-27 15:07 - 00040814 _____ C:\Users\ms\Desktop\map.pdf
2016-12-10 09:52 - 2014-05-15 18:47 - 00582144 _____ C:\Users\ms\Desktop\Kopie von Scheuber.xls
2016-12-10 09:52 - 2014-03-07 21:48 - 03582301 _____ (Adobe Systems, Inc.) C:\Users\ms\Desktop\lantus_dosisfinder_05_080422_KO.exe
2016-12-10 09:52 - 2011-09-21 21:16 - 01676610 _____ C:\Users\ms\Desktop\PDF-Datei Hilfe.pdf
2016-12-10 09:51 - 2016-12-11 20:43 - 00000000 ____D C:\Program Files\Analog Devices
2016-12-10 09:50 - 2016-12-10 09:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01000.Wdf
2016-12-10 09:49 - 2016-12-10 09:49 - 00000000 ____D C:\Program Files\Synaptics
2016-12-10 09:48 - 2016-12-10 09:29 - 00407720 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-12-10 09:28 - 2016-12-10 10:11 - 00000000 ____D C:\Users\ms\AppData\Local\MicrosoftEdge
2016-12-10 09:27 - 2016-12-10 09:27 - 00000000 ____D C:\Users\ms\AppData\Local\NetworkTiles
2016-12-10 09:26 - 2016-12-10 09:26 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2016-12-10 09:25 - 2016-12-18 23:38 - 00000000 ___SD C:\Users\ms\AppData\LocalLow\Microsoft
2016-12-10 09:23 - 2017-01-07 18:03 - 04364964 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-10 07:06 - 2016-12-10 07:06 - 00000000 ____D C:\Users\ms\AppData\Local\Comms
2016-12-10 07:00 - 2016-12-10 07:00 - 00002378 _____ C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-10 07:00 - 2016-12-10 07:00 - 00000000 ___RD C:\Users\ms\OneDrive
2016-12-10 06:33 - 2016-12-10 06:33 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-12-10 06:25 - 2016-12-10 06:25 - 00000000 ____D C:\Users\ms\AppData\Local\Publishers
2016-12-10 06:12 - 2017-01-07 18:09 - 00000000 ___RD C:\Users\ms\Downloads
2016-12-10 06:12 - 2017-01-07 18:09 - 00000000 ____D C:\Users\ms\AppData\Local\Temp
2016-12-10 06:12 - 2017-01-07 12:26 - 02883584 ____H C:\Users\ms\NTUSER.DAT
2016-12-10 06:12 - 2017-01-06 19:04 - 00000000 ____D C:\Users\ms\AppData\Roaming
2016-12-10 06:12 - 2017-01-06 18:31 - 00000000 ____D C:\Users\ms
2016-12-10 06:12 - 2017-01-06 18:30 - 00524288 ___SH C:\Users\ms\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000002.regtrans-ms
2016-12-10 06:12 - 2017-01-06 18:30 - 00524288 ___SH C:\Users\ms\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000001.regtrans-ms
2016-12-10 06:12 - 2017-01-06 18:30 - 00065536 ___SH C:\Users\ms\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TM.blf
2016-12-10 06:12 - 2017-01-06 13:39 - 00000000 ____D C:\Users\ms\AppData\Local
2016-12-10 06:12 - 2017-01-06 13:20 - 00000000 ___RD C:\Users\ms\Desktop
2016-12-10 06:12 - 2017-01-04 22:58 - 00000000 ___RD C:\Users\ms\Documents
2016-12-10 06:12 - 2017-01-02 16:58 - 00000000 ____D C:\Users\ms\AppData\Local\Microsoft
2016-12-10 06:12 - 2017-01-02 16:09 - 00000000 ___SD C:\Users\ms\AppData\Roaming\Microsoft
2016-12-10 06:12 - 2017-01-02 12:49 - 00000000 ____D C:\Users\ms\AppData\Local\VirtualStore
2016-12-10 06:12 - 2016-12-22 18:36 - 00000000 ____D C:\Users\ms\AppData\Local\Packages
2016-12-10 06:12 - 2016-12-22 16:27 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-10 06:12 - 2016-12-20 22:25 - 00000000 ___RD C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-10 06:12 - 2016-12-18 21:41 - 00000000 ____D C:\Users\ms\AppData\LocalLow
2016-12-10 06:12 - 2016-12-13 22:30 - 00000000 ___RD C:\Users\ms\Pictures
2016-12-10 06:12 - 2016-12-11 23:17 - 00000000 ____D C:\Users\ms\AppData\Roaming\Adobe
2016-12-10 06:12 - 2016-12-11 22:14 - 00000402 ___SH C:\Users\ms\Documents\desktop.ini
2016-12-10 06:12 - 2016-12-11 22:14 - 00000174 ___SH C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-10 06:12 - 2016-12-11 22:14 - 00000174 ___SH C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\Videos
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\Searches
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\Saved Games
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\Music
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\Links
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\Favorites
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\Contacts
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-10 06:12 - 2016-12-11 22:14 - 00000000 ___RD C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-10 06:12 - 2016-12-10 09:19 - 00000000 ____D C:\Users\ms\AppData\Local\ConnectedDevicesPlatform
2016-12-10 06:12 - 2016-12-10 06:12 - 00782336 ___SH C:\Users\ms\ntuser.dat.LOG1
2016-12-10 06:12 - 2016-12-10 06:12 - 00491520 ___SH C:\Users\ms\ntuser.dat.LOG2
2016-12-10 06:12 - 2016-12-10 06:12 - 00003340 ____H C:\Users\defaultuser0\AppData\Local\IconCache.db
2016-12-10 06:12 - 2016-12-10 06:12 - 00000020 ___SH C:\Users\ms\ntuser.ini
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Vorlagen
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Startmenü
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\SendTo
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Recent
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Netzwerkumgebung
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Lokale Einstellungen
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Eigene Dateien
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Druckumgebung
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Documents\Eigene Videos
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Documents\Eigene Musik
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Documents\Eigene Bilder
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Cookies
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\AppData\Local\Verlauf
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\AppData\Local\Temporary Internet Files
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\AppData\Local\Anwendungsdaten
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 _SHDL C:\Users\ms\Anwendungsdaten
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 ___RD C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 ___HD C:\Users\ms\AppData
2016-12-10 06:12 - 2016-12-10 06:12 - 00000000 ____D C:\Users\ms\AppData\Local\TileDataLayer
2016-12-10 06:12 - 2016-12-09 14:01 - 00000084 ___SH C:\Users\ms\Downloads\desktop.ini
2016-12-10 06:12 - 2016-07-16 09:30 - 00000000 ___RD C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-12-10 06:12 - 2016-07-16 09:30 - 00000000 ___RD C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-12-10 06:12 - 2016-07-16 09:30 - 00000000 ___RD C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-12-10 06:12 - 2016-07-16 09:30 - 00000000 ____D C:\Users\ms\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-10 06:06 - 2017-01-05 20:45 - 00000000 ____D C:\Windows\SoftwareDistribution
2016-12-10 06:03 - 2016-12-10 06:05 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\packages
2016-12-10 06:02 - 2016-12-10 06:02 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\TileDataLayer
2016-12-10 05:59 - 2016-12-10 05:59 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\VirtualStore
2016-12-10 05:59 - 2016-12-10 05:59 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\ConnectedDevicesPlatform
2016-12-10 01:14 - 2016-12-10 01:14 - 00000000 ____D C:\Windows\CSC
2016-12-10 01:01 - 2016-12-10 01:01 - 00000020 ___SH C:\Users\defaultuser0\ntuser.ini
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Vorlagen
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Startmenü
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\SendTo
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Recent
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Netzwerkumgebung
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Lokale Einstellungen
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Eigene Dateien
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Druckumgebung
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Videos
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Musik
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Eigene Bilder
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Cookies
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Verlauf
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Temporary Internet Files
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Anwendungsdaten
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 _SHDL C:\Users\defaultuser0\Anwendungsdaten
2016-12-10 01:01 - 2016-12-10 01:01 - 00000000 ____D C:\Users\defaultuser0\AppData\LocalLow
2016-12-10 01:00 - 2017-01-06 02:18 - 00262144 ____H C:\Users\defaultuser0\NTUSER.DAT
2016-12-10 01:00 - 2016-12-10 06:12 - 00000000 ____D C:\Users\defaultuser0\AppData\Local
2016-12-10 01:00 - 2016-12-10 06:11 - 00000000 ___SD C:\Users\defaultuser0\AppData\Roaming\Microsoft
2016-12-10 01:00 - 2016-12-10 06:11 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Microsoft
2016-12-10 01:00 - 2016-12-10 01:14 - 00524288 ___SH C:\Users\defaultuser0\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000002.regtrans-ms
2016-12-10 01:00 - 2016-12-10 01:14 - 00524288 ___SH C:\Users\defaultuser0\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000001.regtrans-ms
2016-12-10 01:00 - 2016-12-10 01:14 - 00065536 ___SH C:\Users\defaultuser0\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TM.blf
2016-12-10 01:00 - 2016-12-10 01:01 - 00000000 ___RD C:\Users\defaultuser0\Documents
2016-12-10 01:00 - 2016-12-10 01:01 - 00000000 ___HD C:\Users\defaultuser0\AppData
2016-12-10 01:00 - 2016-12-10 01:01 - 00000000 ____D C:\Users\defaultuser0
2016-12-10 01:00 - 2016-12-10 01:00 - 00049152 ___SH C:\Users\defaultuser0\ntuser.dat.LOG1
2016-12-10 01:00 - 2016-12-10 01:00 - 00012288 ___SH C:\Users\defaultuser0\ntuser.dat.LOG2
2016-12-10 01:00 - 2016-07-16 09:30 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2016-12-10 01:00 - 2016-07-16 09:30 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2016-12-10 01:00 - 2016-07-16 09:30 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-10 01:00 - 2016-07-16 09:30 - 00000000 ___RD C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2016-12-10 01:00 - 2016-07-16 09:30 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\defaultuser0\Videos
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\defaultuser0\Pictures
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\defaultuser0\Music
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\defaultuser0\Links
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\defaultuser0\Favorites
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\defaultuser0\Downloads
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\defaultuser0\Desktop
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ____D C:\Users\defaultuser0\Saved Games
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ____D C:\Users\defaultuser0\AppData\Roaming
2016-12-10 01:00 - 2016-07-16 09:29 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Temp
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Vorlagen
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Startmenü
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\SendTo
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Recent
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Cookies
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Temporary Internet Files
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Temporary Internet Files
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Programme
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\ProgramData\Vorlagen
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\ProgramData\Startmenü
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\ProgramData\Dokumente
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\ProgramData\Desktop
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2016-12-10 00:59 - 2016-12-10 00:59 - 00000000 _SHDL C:\Dokumente und Einstellungen
2016-12-10 00:55 - 2017-01-07 12:26 - 1445953536 ___SH C:\hiberfil.sys
2016-12-10 00:53 - 2016-12-30 11:48 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{04047a1a-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000002.regtrans-ms
2016-12-10 00:53 - 2016-12-30 11:48 - 00524288 ___SH C:\Windows\system32\config\COMPONENTS{04047a1a-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000001.regtrans-ms
2016-12-10 00:53 - 2016-12-30 11:48 - 00065536 ___SH C:\Windows\system32\config\COMPONENTS{04047a1a-4b7a-11e6-80cc-a4badb2bd75b}.TM.blf
2016-12-10 00:53 - 2016-12-10 00:53 - 00047425 _____ C:\Windows\system32\license.rtf
2016-12-09 23:39 - 2016-12-09 23:39 - 00000000 ___HD C:\Program Files\Uninstall Information
2016-12-09 23:37 - 2016-12-09 23:37 - 00000000 ____D C:\ProgramData\USOShared
2016-12-09 23:36 - 2016-12-09 23:36 - 00524288 ___SH C:\Windows\system32\config\ELAM{1517b32c-4afc-11e6-80cd-e41d2d18dd40}.TMContainer00000000000000000002.regtrans-ms
2016-12-09 23:36 - 2016-12-09 23:36 - 00524288 ___SH C:\Windows\system32\config\ELAM{1517b32c-4afc-11e6-80cd-e41d2d18dd40}.TMContainer00000000000000000001.regtrans-ms
2016-12-09 23:36 - 2016-12-09 23:36 - 00065536 ___SH C:\Windows\system32\config\ELAM{1517b32c-4afc-11e6-80cd-e41d2d18dd40}.TM.blf
2016-12-09 23:24 - 2017-01-06 09:18 - 00000000 __SHD C:\Recovery
2016-12-09 23:15 - 2017-01-07 18:03 - 00067584 ____S C:\Windows\bootstat.dat
2016-12-09 23:15 - 2016-12-09 23:15 - 00524288 ___SH C:\Users\Default\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000002.regtrans-ms
2016-12-09 23:15 - 2016-12-09 23:15 - 00524288 ___SH C:\Users\Default\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000001.regtrans-ms
2016-12-09 23:15 - 2016-12-09 23:15 - 00065536 ___SH C:\Users\Default\NTUSER.DAT{04047a29-4b7a-11e6-80cc-a4badb2bd75b}.TM.blf
2016-12-09 23:14 - 2017-01-07 18:09 - 00000000 ____D C:\Windows\Prefetch
2016-12-09 23:13 - 2017-01-07 12:26 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-09 23:10 - 2017-01-07 18:03 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-12-09 23:10 - 2016-12-15 09:23 - 00267360 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-09 23:10 - 2016-12-09 23:11 - 00000000 ____D C:\Windows\ServiceProfiles
2016-12-09 23:10 - 2016-12-09 23:10 - 00000000 ___SD C:\Windows\system32\Microsoft
2016-12-09 23:09 - 2017-01-07 12:26 - 603979776 ___SH C:\pagefile.sys
2016-12-09 23:09 - 2017-01-07 12:26 - 16777216 ___SH C:\swapfile.sys
2016-12-09 23:09 - 2016-12-15 09:22 - 00524288 ___SH C:\Windows\system32\config\DRIVERS{04047a20-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000001.regtrans-ms
2016-12-09 23:09 - 2016-12-15 09:22 - 00065536 ___SH C:\Windows\system32\config\DRIVERS{04047a20-4b7a-11e6-80cc-a4badb2bd75b}.TM.blf
2016-12-09 23:09 - 2016-12-09 23:12 - 00524288 ___SH C:\Windows\system32\config\DRIVERS{04047a20-4b7a-11e6-80cc-a4badb2bd75b}.TMContainer00000000000000000002.regtrans-ms
2016-12-09 23:05 - 2016-12-13 17:51 - 00000000 __SHD C:\System Volume Information
2016-12-09 23:04 - 2017-01-06 10:34 - 00000000 ____D C:\Windows\Panther

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-01-07 18:03 - 2016-07-16 18:27 - 01382876 _____ C:\Windows\system32\perfh007.dat
2017-01-07 18:03 - 2016-07-16 18:27 - 00335154 _____ C:\Windows\system32\perfc007.dat
2017-01-07 15:32 - 2015-12-11 22:34 - 00000000 ____D C:\med7net
2017-01-07 15:32 - 2015-12-11 22:32 - 00000000 ____D C:\Med7
2017-01-07 12:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\AppReadiness
2017-01-07 12:26 - 2016-07-16 03:22 - 00524288 _____ C:\Windows\system32\config\BBI
2017-01-06 16:05 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\NDF
2017-01-06 13:39 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\TAPI
2017-01-05 22:42 - 2016-07-16 09:28 - 00000000 ____D C:\Windows\INF
2017-01-01 01:29 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-31 12:59 - 2016-07-16 03:22 - 00000000 ____D C:\Windows\system32\config
2016-12-29 16:50 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\rescache
2016-12-25 16:57 - 2016-07-16 03:22 - 00000000 ____D C:\Windows\Logs
2016-12-24 11:31 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\pt-PT
2016-12-24 11:31 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\en-US
2016-12-24 11:31 - 2016-07-16 09:19 - 00000000 ____D C:\Windows\CbsTemp
2016-12-24 11:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\catroot2
2016-12-22 18:36 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-21 14:32 - 2016-07-16 18:32 - 00000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2016-12-21 14:32 - 2016-07-16 18:27 - 00000000 ____D C:\Windows\system32\winrm
2016-12-21 14:32 - 2016-07-16 18:27 - 00000000 ____D C:\Windows\system32\WCN
2016-12-21 14:32 - 2016-07-16 18:27 - 00000000 ____D C:\Windows\system32\slmgr
2016-12-21 14:32 - 2016-07-16 18:27 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2016-12-21 14:32 - 2016-07-16 18:27 - 00000000 ____D C:\Windows\system32\en
2016-12-21 14:32 - 2016-07-16 18:27 - 00000000 ____D C:\Windows\system32\Drivers\en-US
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ___SD C:\Windows\system32\F12
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ___SD C:\Windows\system32\dsc
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ___SD C:\Windows\system32\DiagSvcs
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ___RD C:\Windows\MiracastView
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ___RD C:\Program Files\Windows Defender
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\wbem
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\oobe
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\MUI
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\migwiz
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\migration
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\Drivers\UMDF
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\Com
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\Boot
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\IME
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\Help
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\apppatch
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Windows Media Player
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-21 14:32 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Common Files\System
2016-12-21 14:32 - 2016-07-16 03:22 - 00000000 ____D C:\Windows\system32\Sysprep
2016-12-21 14:32 - 2016-07-16 03:22 - 00000000 ____D C:\Windows\system32\DriverStore
2016-12-21 14:32 - 2016-07-16 03:22 - 00000000 ____D C:\Windows\system32\Dism
2016-12-21 14:32 - 2016-07-16 03:22 - 00000000 ____D C:\Windows\servicing
2016-12-20 22:43 - 2016-07-16 18:28 - 00000000 ____D C:\Windows\OCR
2016-12-19 10:50 - 2016-07-16 03:22 - 00000000 ____D C:\Windows\system32\CatRoot
2016-12-18 21:33 - 2016-07-16 03:22 - 00000000 ____D C:\Program Files\Common Files
2016-12-15 19:09 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\LogFiles
2016-12-15 09:22 - 2016-07-16 09:30 - 00000666 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-15 09:22 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\de-DE
2016-12-15 09:22 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\ShellExperiences
2016-12-13 15:21 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\twain_32
2016-12-13 15:21 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\Media
2016-12-12 15:06 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2016-12-12 00:56 - 2016-07-16 09:31 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-12-12 00:56 - 2016-07-16 09:31 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-12-11 22:11 - 2016-07-16 18:27 - 00000000 ____D C:\Windows\system32\Drivers\de-DE
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 __RSD C:\Windows\Fonts
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\zh-TW
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\zh-HK
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\zh-CN
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\uk-UA
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\tr-TR
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\th-TH
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\sv-SE
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\sl-SI
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\sk-SK
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\setup
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\ru-RU
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\ro-RO
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\pt-BR
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\pl-PL
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\nl-NL
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\nb-NO
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\lv-LV
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\lt-LT
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\ko-KR
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\ja-JP
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\it-IT
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\hu-HU
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\hr-HR
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\he-IL
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\fr-FR
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\fr-CA
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\fi-FI
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\et-EE
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\es-MX
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\es-ES
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\en-GB
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\el-GR
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\da-DK
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\cs-CZ
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\config\TxR
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\bg-BG
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\ar-SA
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\appraiser
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\Provisioning
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\bcastdvr
2016-12-11 22:11 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Windows Mail
2016-12-11 22:10 - 2016-07-16 09:30 - 00015425 _____ C:\Windows\system32\OEMDefaultAssociations.xml
2016-12-11 21:55 - 2016-07-16 09:30 - 00000167 _____ C:\Windows\win.ini
2016-12-11 15:24 - 2016-07-16 09:29 - 00000000 ____D C:\Users\Default\AppData\Local
2016-12-11 15:24 - 2016-07-16 09:29 - 00000000 ____D C:\Users\Default User\AppData\Local
2016-12-11 12:44 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-12-11 12:31 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\appcompat
2016-12-11 03:19 - 2016-07-16 03:22 - 00262144 _____ C:\Users\Default\NTUSER.DAT
2016-12-10 17:09 - 2016-07-16 09:29 - 00000000 __SHD C:\$Recycle.Bin
2016-12-10 11:46 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\LiveKernelReports
2016-12-10 11:37 - 2016-07-16 09:25 - 00006656 _____ C:\Windows\system32\lpcio.dll
2016-12-10 09:53 - 2016-07-16 09:29 - 00000000 ____D C:\Users\Default\AppData\Roaming
2016-12-10 09:53 - 2016-07-16 09:29 - 00000000 ____D C:\Users\Default User\AppData\Roaming
2016-12-10 06:12 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\Public
2016-12-10 06:12 - 2016-07-16 03:22 - 00000000 ___RD C:\Users
2016-12-10 01:16 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\spool
2016-12-10 01:15 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-12-10 01:06 - 2016-07-16 09:29 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-12-10 00:59 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\Public\Documents
2016-12-10 00:59 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\Default\Documents
2016-12-10 00:59 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Windows NT
2016-12-10 00:59 - 2016-07-16 03:22 - 00000000 __RHD C:\Users\Default
2016-12-10 00:38 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\Recovery
2016-12-09 23:37 - 2016-07-16 09:29 - 00000000 ____D C:\ProgramData\USOPrivate
2016-12-09 23:36 - 2016-07-16 03:22 - 00032768 _____ C:\Windows\system32\config\ELAM
2016-12-09 23:34 - 2016-07-16 09:29 - 00000000 ___RD C:\Windows\PrintDialog
2016-12-09 23:19 - 2016-07-16 09:29 - 00000000 ____D C:\Windows\system32\CodeIntegrity
2016-12-09 23:04 - 2016-07-16 09:30 - 00028672 _____ C:\Windows\system32\config\BCD-Template

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-01-06 00:16 - 2016-12-31 06:24 - 1229808 __RSH (GlavSoft LLC.) C:\Users\ms\AppData\Roaming\assembliesbckp.exe
2017-01-06 01:33 - 2016-12-31 06:24 - 1229808 __RSH (GlavSoft LLC.) C:\Users\ms\AppData\Roaming\assembliesbckp.Vexe
2016-12-10 10:59 - 2016-12-10 10:59 - 0000000 _____ () C:\Users\ms\AppData\Local\AtStart.txt
2016-12-10 10:59 - 2016-12-10 10:59 - 0000000 _____ () C:\Users\ms\AppData\Local\DSwitch.txt
2016-12-10 10:59 - 2016-12-10 10:59 - 0000000 _____ () C:\Users\ms\AppData\Local\QSwitch.txt
2016-12-11 19:35 - 2016-12-11 19:35 - 0000017 _____ () C:\Users\ms\AppData\Local\resmon.resmoncfg
2017-01-02 13:32 - 2017-01-02 16:33 - 0000043 ___SH () C:\ProgramData\.zreglib
2016-12-15 19:18 - 2016-12-15 19:18 - 0000107 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

Einige Dateien in TEMP:
====================
C:\Users\ms\AppData\Local\Temp\dllnt_dump.dll
C:\Users\ms\AppData\Local\Temp\libeay32.dll
C:\Users\ms\AppData\Local\Temp\msvcr120.dll
C:\Users\ms\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert

cosinus · 07.01.2017, 18:52

Bitte Avast deinstallieren. Das Teil können wir einfach nicht mehr guten Gewissens empfehlen. => Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Auch andere Freewareanbieter wie Avira, AVG oder Panda springen auf diesen oder ähnlichen Zügen rauf, basteln Junkware in die Setups, arbeiten mit ASK zusammen etc; so was ist bei Sicherheitssoftware einfach inakzeptabel.

Gib Bescheid wenn Avast weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!

06.01.2017, 15:30	#22
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Kegen.exe nach Treiber-update adwcleaner Logfile ist unvollständig __________________ Logfiles bitte immer in CODE-Tags posten

06.01.2017, 16:21	#24
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Kegen.exe nach Treiber-update Und wieder unvollständig. Und es wurde lt. dem letzten Log nichts gelöscht. Wie wärs mal mit Anleitung richtig lesen??? __________________ Logfiles bitte immer in CODE-Tags posten

07.01.2017, 15:08	#27
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Kegen.exe nach Treiber-update Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken __________________ Logfiles bitte immer in CODE-Tags posten

Kegen.exe nach Treiber-update

Plagegeister aller Art und deren Bekämpfung: Kegen.exe nach Treiber-update