| |
| |||||||
Log-Analyse und Auswertung: PUP.Optional.Reimage mit MB gefundenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
12.01.2017, 00:21
| #1 |
 |  PUP.Optional.Reimage mit MB gefunden Hallo, aus einem mir unerfindlichen Grund wurden meine E-Mail Kontakte angeschreiben. Ich hab dann mal mit MB mein System durchsucht und PUP.Optional.Reimage gefunden. Ich vermute das gehört nicht zum System. FRST Teil 1 Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 11-01-2017 durchgeführt von ChAzubi (Administrator) auf CHAZUBI-PC (11-01-2017 23:58:41) Gestartet von C:\Users\ChAzubi\Desktop\DownloadS Geladene Profile: ChAzubi & (Verfügbare Profile: ChAzubi & DefaultAppPool) Platform: Windows 10 Home Version 1607 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Chrome) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe () C:\Windows\System32\PnkBstrA.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe () C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe (ROCCAT GmbH Co., Ltd.) C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitor.exe (ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitorW.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registry (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12445288 2012-01-16] (Realtek Semiconductor) HKLM\...\Run: [Cm108BSound] => C:\Program Files\AudioMX HS-11B Headset\CPL\FaceLift_x64.exe [2300416 2014-11-10] () HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [917576 2016-12-13] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [60136 2016-11-15] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565448 2015-11-12] (LogMeIn Inc.) HKLM-x32\...\Run: [RoccatTyon] => C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitor.EXE [557056 2015-05-12] (ROCCAT GmbH) HKLM-x32\...\Run: [RoccatTyonW] => C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitorW.EXE [557056 2015-05-22] (ROCCAT GmbH) HKU\S-1-5-21-1288866973-664468029-815801267-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd) HKU\S-1-5-21-1288866973-664468029-815801267-1000\...\Run: [Amazon Music] => C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [3464680 2016-11-21] () HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd) HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Amazon Music] => C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe [3464680 2016-11-21] () HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Roccat Talk.lnk [2016-11-03] ShortcutTarget: Roccat Talk.lnk -> C:\Program Files (x86)\ROCCAT\Roccat Talk\Roccat Talk.exe (ROCCAT GmbH Co., Ltd.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{e1e17544-6bd8-4a4e-9a29-3edecc43b75b}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKU\S-1-5-21-1288866973-664468029-815801267-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1288866973-664468029-815801267-1000 -> DefaultScope {D81D1C93-32A9-4EDB-A9F0-6911F3E3A718} URL = SearchScopes: HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0 -> DefaultScope {D81D1C93-32A9-4EDB-A9F0-6911F3E3A718} URL = BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-25] (Oracle Corporation) BHO-x32: AviraBrowserSafety.BrowserSafety -> {c3c77255-42c0-499f-b664-6e981a0b1647} -> C:\WINDOWS\system32\mscoree.dll [2016-07-16] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-25] (Oracle Corporation) Handler-x32: abs - {E00957BD-D0E1-4eb9-A025-7743FDC8B27B} - C:\WINDOWS\system32\mscoree.dll [2016-07-16] (Microsoft Corporation) FireFox: ======== FF DefaultProfile: d55lzlc1.default FF ProfilePath: C:\Users\ChAzubi\AppData\Roaming\Mozilla\Firefox\Profiles\d55lzlc1.default [2017-01-11] FF DefaultSearchEngine: Mozilla\Firefox\Profiles\d55lzlc1.default -> Yahoo! FF SelectedSearchEngine: Mozilla\Firefox\Profiles\d55lzlc1.default -> Yahoo! FF Homepage: Mozilla\Firefox\Profiles\d55lzlc1.default -> about:home FF Extension: (Avira Browser Safety) - C:\Users\ChAzubi\AppData\Roaming\Mozilla\Firefox\Profiles\d55lzlc1.default\Extensions\abs@avira.com.xpi [2016-11-23] FF Extension: (SaveFrom.net - helper) - C:\Users\ChAzubi\AppData\Roaming\Mozilla\Firefox\Profiles\d55lzlc1.default\Extensions\helper-sig@savefrom.net.xpi [2016-12-24] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-16] () FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [Keine Datei] FF Plugin: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelogx64.dll [Keine Datei] FF Plugin: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-16] () FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [Keine Datei] FF Plugin-x32: @esn/npbattlelog,version=2.7.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.0\npbattlelog.dll [Keine Datei] FF Plugin-x32: @esn/npbattlelog,version=2.7.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll [2015-04-30] (EA Digital Illusions CE AB) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-01] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-01] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-25] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-25] (Oracle Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-10-25] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-10-25] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxps://de.search.yahoo.com/?type=937811&fr=yo-yhp-ch CHR StartupUrls: Default -> "hxxp://web.de/","hxxp://www.diesiedleronline.de/de/startseite" CHR Profile: C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default [2017-01-11] CHR Extension: (Google Präsentationen) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-29] CHR Extension: (Google Docs) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-29] CHR Extension: (Google Drive) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23] CHR Extension: (YouTube) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27] CHR Extension: (Google-Suche) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28] CHR Extension: (Google Tabellen) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-29] CHR Extension: (Avira Browserschutz) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-09-25] CHR Extension: (Google Docs Offline) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (Avira SafeSearch Plus) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\khjilmcjipkeokomeekfnhkpbnhmgaje [2016-12-16] CHR Extension: (Skype) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-10-25] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02] CHR Extension: (Google Mail) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-29] CHR Extension: (Chrome Media Router) - C:\Users\ChAzubi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1089592 2016-12-13] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [476736 2016-12-13] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [476736 2016-12-13] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1490296 2016-12-13] (Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [350528 2016-11-24] (Avira Operations GmbH & Co. KG) S3 ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [160256 2011-08-30] (Intel Corporation) [Datei ist nicht signiert] S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-11-12] (LogMeIn, Inc.) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [456640 2016-10-25] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-10-25] (NVIDIA Corporation) R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-10-25] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119176 2017-01-10] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2181648 2017-01-10] (Electronic Arts) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-06-06] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-06-05] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [151352 2016-12-13] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [153904 2016-12-13] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [35488 2016-05-29] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [78208 2016-05-29] (Avira Operations GmbH & Co. KG) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2015-02-18] () R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-11-12] (LogMeIn Inc.) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2017-01-11] (Malwarebytes) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_848dea456d3c865e\nvlddmkm.sys [14159928 2016-10-26] (NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-10-25] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-10-25] (NVIDIA Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) R3 VHidXInput; C:\WINDOWS\System32\drivers\VXInput.sys [7424 2014-08-13] (Windows (R) Win 7 DDK provider) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) U3 idsvc; kein ImagePath ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-11 23:58 - 2017-01-11 23:58 - 00000000 ____D C:\FRST 2016-12-29 22:20 - 2016-12-29 22:20 - 00000222 _____ C:\Users\ChAzubi\Desktop\Company of Heroes (New Steam Version).url 2016-12-16 23:08 - 2016-12-16 23:08 - 00003284 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2016-12-16 22:18 - 2016-12-16 22:18 - 00000000 ____D C:\Users\ChAzubi\AppData\LocalLow\Unity 2016-12-16 22:18 - 2016-12-16 22:18 - 00000000 ____D C:\Users\ChAzubi\AppData\LocalLow\Hyper Hippo Productions Ltd_ 2016-12-16 22:17 - 2016-12-16 22:17 - 00000222 _____ C:\Users\ChAzubi\Desktop\AdVenture Capitalist.url 2016-12-13 23:06 - 2016-12-09 11:18 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2016-12-13 23:06 - 2016-12-09 11:18 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2016-12-13 23:06 - 2016-12-09 11:18 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2016-12-13 23:06 - 2016-12-09 11:18 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2016-12-13 23:06 - 2016-12-09 11:15 - 08168000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2016-12-13 23:06 - 2016-12-09 11:14 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-12-13 23:06 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2016-12-13 23:06 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2016-12-13 23:06 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll 2016-12-13 23:06 - 2016-12-09 10:38 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2016-12-13 23:06 - 2016-12-09 10:36 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2016-12-13 23:06 - 2016-12-09 10:36 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2016-12-13 23:06 - 2016-12-09 10:33 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2016-12-13 23:06 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2016-12-13 23:06 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-12-13 23:06 - 2016-12-09 10:28 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-12-13 23:06 - 2016-12-09 10:22 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-12-13 23:06 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2016-12-13 23:06 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2016-12-13 23:06 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2016-12-13 23:06 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll 2016-12-13 23:06 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll 2016-12-13 23:05 - 2016-12-09 11:42 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-12-13 23:05 - 2016-12-09 11:42 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-12-13 23:05 - 2016-12-09 11:34 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-12-13 23:05 - 2016-12-09 11:34 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-12-13 23:05 - 2016-12-09 11:33 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-12-13 23:05 - 2016-12-09 11:33 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-12-13 23:05 - 2016-12-09 11:32 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-12-13 23:05 - 2016-12-09 11:30 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2016-12-13 23:05 - 2016-12-09 11:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-12-13 23:05 - 2016-12-09 11:28 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-12-13 23:05 - 2016-12-09 11:27 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2016-12-13 23:05 - 2016-12-09 11:20 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2016-12-13 23:05 - 2016-12-09 11:20 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-12-13 23:05 - 2016-12-09 11:20 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-12-13 23:05 - 2016-12-09 11:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-12-13 23:05 - 2016-12-09 11:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-12-13 23:05 - 2016-12-09 11:19 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-12-13 23:05 - 2016-12-09 11:19 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll 2016-12-13 23:05 - 2016-12-09 11:18 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2016-12-13 23:05 - 2016-12-09 11:18 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2016-12-13 23:05 - 2016-12-09 11:18 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-12-13 23:05 - 2016-12-09 11:15 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2016-12-13 23:05 - 2016-12-09 11:14 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2016-12-13 23:05 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2016-12-13 23:05 - 2016-12-09 11:10 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2016-12-13 23:05 - 2016-12-09 11:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-12-13 23:05 - 2016-12-09 11:09 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2016-12-13 23:05 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-12-13 23:05 - 2016-12-09 11:01 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-12-13 23:05 - 2016-12-09 11:00 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll 2016-12-13 23:05 - 2016-12-09 10:59 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2016-12-13 23:05 - 2016-12-09 10:59 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2016-12-13 23:05 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2016-12-13 23:05 - 2016-12-09 10:56 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2016-12-13 23:05 - 2016-12-09 10:52 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-12-13 23:05 - 2016-12-09 10:52 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2016-12-13 23:05 - 2016-12-09 10:51 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll 2016-12-13 23:05 - 2016-12-09 10:47 - 22563328 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-12-13 23:05 - 2016-12-09 10:45 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-12-13 23:05 - 2016-12-09 10:45 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2016-12-13 23:05 - 2016-12-09 10:42 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2016-12-13 23:05 - 2016-12-09 10:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2016-12-13 23:05 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2016-12-13 23:05 - 2016-12-09 10:37 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll 2016-12-13 23:05 - 2016-12-09 10:37 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-12-13 23:05 - 2016-12-09 10:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-12-13 23:05 - 2016-12-09 10:36 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-12-13 23:05 - 2016-12-09 10:36 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2016-12-13 23:05 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2016-12-13 23:05 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2016-12-13 23:05 - 2016-12-09 10:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2016-12-13 23:05 - 2016-12-09 10:33 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-12-13 23:05 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2016-12-13 23:05 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2016-12-13 23:05 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-12-13 23:05 - 2016-12-09 10:30 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-12-13 23:05 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-12-13 23:05 - 2016-12-09 10:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-12-13 23:05 - 2016-12-09 10:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2016-12-13 23:05 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-12-13 23:05 - 2016-12-09 10:27 - 13084160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-12-13 23:05 - 2016-12-09 10:27 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2016-12-13 23:05 - 2016-12-09 10:27 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2016-12-13 23:05 - 2016-12-09 10:26 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-12-13 23:05 - 2016-12-09 10:26 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2016-12-13 23:05 - 2016-12-09 10:25 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll 2016-12-13 23:05 - 2016-12-09 10:24 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-12-13 23:05 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-12-13 23:05 - 2016-12-09 10:22 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2016-12-13 23:05 - 2016-12-09 10:22 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-12-13 23:05 - 2016-12-09 10:21 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-12-13 23:05 - 2016-12-09 10:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-12-13 23:05 - 2016-12-09 10:21 - 01512960 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-12-13 23:05 - 2016-12-09 10:21 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2016-12-13 23:05 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-12-13 23:05 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2016-12-13 23:05 - 2016-12-09 10:20 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2016-12-13 23:05 - 2016-12-09 10:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2016-12-13 23:05 - 2016-12-09 10:20 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2016-12-13 23:05 - 2016-12-09 10:19 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2016-12-13 23:05 - 2016-12-09 10:19 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2016-12-13 23:05 - 2016-12-09 10:19 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2016-12-13 23:05 - 2016-12-09 10:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2016-12-13 23:05 - 2016-12-09 10:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2016-12-13 23:05 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-12-13 23:05 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2016-12-13 23:05 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2016-12-13 23:05 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll 2016-12-13 23:05 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2016-12-13 23:05 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2016-12-13 23:05 - 2016-12-09 09:54 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2016-12-13 23:05 - 2016-11-02 11:28 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll 2016-12-13 23:05 - 2016-11-02 11:25 - 00956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2016-12-13 23:05 - 2016-09-15 17:36 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll 2016-12-13 11:26 - 2016-12-13 11:26 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\Chromium ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2017-01-11 23:54 - 2015-02-18 15:50 - 00000000 ____D C:\Users\ChAzubi\AppData\Roaming\Origin 2017-01-11 23:34 - 2015-02-18 17:27 - 00000000 ____D C:\Users\ChAzubi\AppData\Roaming\TS3Client 2017-01-11 23:29 - 2016-05-20 16:37 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-01-11 23:29 - 2016-03-12 14:58 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\LogMeIn Hamachi 2017-01-11 23:29 - 2015-02-18 16:34 - 00000000 ____D C:\Users\ChAzubi\AppData\Roaming\XnView 2017-01-11 23:28 - 2016-09-10 23:13 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\CrashDumps 2017-01-11 23:28 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF 2017-01-11 23:22 - 2016-10-11 20:12 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-01-11 23:10 - 2015-02-20 13:10 - 00000000 ____D C:\Program Files (x86)\Steam 2017-01-11 23:09 - 2016-09-29 08:47 - 00000000 ____D C:\Users\ChAzubi 2017-01-11 23:04 - 2015-02-18 15:49 - 00000000 ____D C:\ProgramData\Origin 2017-01-11 23:03 - 2016-09-29 08:46 - 00000000 ____D C:\ProgramData\NVIDIA 2017-01-11 11:15 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-01-11 10:59 - 2015-03-18 16:25 - 00000000 ____D C:\Users\ChAzubi\AppData\Roaming\vlc 2017-01-11 10:57 - 2015-02-18 17:02 - 00000000 ____D C:\Users\ChAzubi\AppData\Roaming\Skype 2017-01-11 10:31 - 2016-11-23 23:41 - 00000000 ____D C:\Users\ChAzubi\AppData\LocalLow\Mozilla 2017-01-10 23:11 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-01-10 22:08 - 2015-02-18 15:49 - 00000000 ____D C:\Program Files (x86)\Origin 2017-01-10 10:49 - 2016-09-29 08:45 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-01-10 10:00 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-01-06 18:18 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-01-06 15:07 - 2015-02-22 09:42 - 00000000 ____D C:\Users\ChAzubi\Documents\BVG 2017-01-06 10:48 - 2016-09-29 08:47 - 02342546 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-01-06 10:48 - 2016-07-16 23:51 - 00923414 _____ C:\WINDOWS\system32\perfh007.dat 2017-01-06 10:48 - 2016-07-16 23:51 - 00221806 _____ C:\WINDOWS\system32\perfc007.dat 2017-01-06 10:42 - 2016-09-29 08:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-01-05 22:42 - 2016-01-03 19:02 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\Ubisoft Game Launcher 2016-12-31 00:42 - 2015-02-18 15:20 - 00000000 ___RD C:\Users\ChAzubi\Desktop 2016-12-30 11:43 - 2016-05-29 08:23 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\Packages 2016-12-30 00:38 - 2016-09-29 08:47 - 00524288 ___SH C:\Users\ChAzubi\NTUSER.DAT{1161665e-8621-11e6-88d2-c7c533ef2d0e}.TMContainer00000000000000000002.regtrans-ms 2016-12-30 00:38 - 2016-09-29 08:47 - 00065536 ___SH C:\Users\ChAzubi\NTUSER.DAT{1161665e-8621-11e6-88d2-c7c533ef2d0e}.TM.blf 2016-12-29 22:48 - 2015-08-31 09:14 - 00000000 ____D C:\Users\ChAzubi\Documents\My Games 2016-12-29 22:20 - 2015-08-21 20:53 - 00000000 ____D C:\Users\ChAzubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-12-27 11:21 - 2016-07-16 07:04 - 84672512 _____ C:\WINDOWS\system32\config\SOFTWARE 2016-12-27 11:21 - 2016-07-16 07:04 - 17563648 _____ C:\WINDOWS\system32\config\SYSTEM 2016-12-27 11:21 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\DEFAULT 2016-12-27 11:21 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI 2016-12-27 11:21 - 2016-07-16 07:04 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY 2016-12-27 11:21 - 2015-02-18 15:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-12-22 17:17 - 2016-09-29 08:47 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\Microsoft 2016-12-20 18:22 - 2016-09-29 08:47 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{f8d8b5e2-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000001.regtrans-ms 2016-12-20 18:20 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache 2016-12-20 18:09 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\assembly 2016-12-20 16:59 - 2015-02-18 15:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-12-20 16:49 - 2016-06-13 19:08 - 00011250 _____ C:\Users\ChAzubi\Desktop\Ballbelohnung.ods 2016-12-17 22:51 - 2016-07-16 12:47 - 00000000 __SHD C:\WINDOWS\Installer 2016-12-17 22:51 - 2015-03-26 16:55 - 00000000 ____D C:\ProgramData\Package Cache 2016-12-17 10:22 - 2016-07-16 07:04 - 00262144 _____ C:\Users\Default\NTUSER.DAT 2016-12-17 10:21 - 2016-09-29 08:45 - 00224392 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-12-17 00:29 - 2016-09-29 08:45 - 00524288 ___SH C:\WINDOWS\system32\config\DRIVERS{f8d8b5e8-4ba6-11e6-80cd-0026b955b121}.TMContainer00000000000000000001.regtrans-ms 2016-12-17 00:29 - 2016-09-29 08:45 - 00065536 ___SH C:\WINDOWS\system32\config\DRIVERS{f8d8b5e8-4ba6-11e6-80cd-0026b955b121}.TM.blf 2016-12-17 00:29 - 2016-07-16 12:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs 2016-12-17 00:29 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\de-DE 2016-12-17 00:29 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\drivers 2016-12-17 00:29 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\de-DE 2016-12-17 00:29 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Boot 2016-12-17 00:29 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\ShellExperiences 2016-12-17 00:29 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppPatch 2016-12-17 00:29 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\SysWOW64 2016-12-17 00:29 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\DriverStore 2016-12-17 00:28 - 2016-07-16 12:47 - 00000796 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini 2016-12-16 23:08 - 2016-09-29 08:47 - 00000000 ___RD C:\Users\ChAzubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-12-16 23:08 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Tasks 2016-12-16 23:08 - 2016-05-29 08:25 - 00002429 _____ C:\Users\ChAzubi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-12-16 23:08 - 2016-05-29 08:25 - 00000000 ___RD C:\Users\ChAzubi\OneDrive 2016-12-16 22:55 - 2015-02-18 16:38 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-12-16 22:53 - 2015-02-18 16:38 - 135632432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-12-16 22:18 - 2015-02-18 15:20 - 00000000 ____D C:\Users\ChAzubi\AppData\LocalLow 2016-12-16 21:52 - 2015-02-21 13:00 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\Adobe 2016-12-16 21:51 - 2016-09-29 08:52 - 00003628 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-12-16 21:51 - 2016-09-29 08:52 - 00003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-12-16 21:51 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2016-12-16 21:51 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2016-12-16 21:51 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files (x86) 2016-12-16 21:51 - 2009-07-14 04:20 - 00000000 ____D C:\WINDOWS\Tasks 2016-12-14 18:03 - 2015-06-29 18:06 - 00002264 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-12-14 18:03 - 2015-06-29 18:06 - 00002252 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-12-13 19:57 - 2016-11-11 15:15 - 00000700 _____ C:\Users\Public\Desktop\Battlefield 1.lnk 2016-12-13 19:46 - 2015-06-29 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2016-12-13 19:45 - 2016-10-09 18:47 - 00028272 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys 2016-12-13 19:45 - 2015-06-29 18:08 - 00153904 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2016-12-13 19:45 - 2015-06-29 18:08 - 00151352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2016-12-13 11:26 - 2015-02-20 13:11 - 00000000 ____D C:\Users\ChAzubi\AppData\Local\Steam 2016-12-12 00:56 - 2016-07-16 12:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-12-12 00:56 - 2016-07-16 12:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2015-04-19 13:20 - 2015-04-19 13:20 - 0005872 _____ () C:\Users\ChAzubi\AppData\Roaming\ywwfc0UNO4FM81BX 2015-06-22 19:14 - 2015-06-22 19:14 - 0007597 _____ () C:\Users\ChAzubi\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ====================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert C:\WINDOWS\explorer.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert C:\WINDOWS\system32\services.exe => Datei ist digital signiert C:\WINDOWS\system32\User32.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2017-01-10 10:18 ==================== Ende von FRST.txt ============================ FRST Teil 2 Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 11-01-2017
durchgeführt von ChAzubi (11-01-2017 23:59:02)
Gestartet von C:\Users\ChAzubi\Desktop\DownloadS
Windows 10 Home Version 1607 (X64) (2016-09-29 07:53:02)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1288866973-664468029-815801267-500 - Administrator - Disabled)
ChAzubi (S-1-5-21-1288866973-664468029-815801267-1000 - Administrator - Enabled) => C:\Users\ChAzubi
DefaultAccount (S-1-5-21-1288866973-664468029-815801267-503 - Limited - Disabled)
Gast (S-1-5-21-1288866973-664468029-815801267-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1288866973-664468029-815801267-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.24 - GIGABYTE)
123D Design R1.6 (HKLM\...\123D Design) (Version: 1.6.41 - Autodesk, Inc.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM\...\Steam App 346900) (Version: - Hyper Hippo Games)
AlienFX For Tyon (HKLM-x32\...\InstallShield_{8FB6F9D4-D158-4D0B-B108-1839F6BE30BD}) (Version: 1.02.006 - Roccat GmbH)
AlienFX For Tyon (Version: 1.02.006 - Roccat GmbH) Hidden
Amazon Music (HKU\S-1-5-21-1288866973-664468029-815801267-1000\...\Amazon Amazon Music) (Version: 5.2.2.1608 - Amazon Services LLC)
Amazon Music (HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Amazon Amazon Music) (Version: 5.2.2.1608 - Amazon Services LLC)
Ansel (Version: 375.70 - NVIDIA Corporation) Hidden
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.4.4 - Atheros Communications Inc.)
AudioMX HS-11B Headset (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006620}) (Version: 1.00.0015 - Claybox Limited)
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.24.146 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Connect (HKLM-x32\...\{707e8edf-9482-4417-ae39-c9b5fe605e87}) (Version: 1.2.76.27124 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.76.27124 - Avira Operations GmbH & Co. KG) Hidden
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.47.30570 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
BrettspielWelt (HKLM-x32\...\BrettspielWelt) (Version: 1.0 - BrettspielWelt GmbH)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
Command & Conquer™: Generals and Zero Hour (HKLM-x32\...\{609F6FD5-4B22-4D7A-AD30-8C9DD480D5BE}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Company of Heroes (New Steam Version) (HKLM\...\Steam App 228200) (Version: - Relic)
Cossacks 3 (HKLM\...\Steam App 333420) (Version: - GSC Game World)
Don't Starve (HKLM\...\Steam App 219740) (Version: - Klei Entertainment)
Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version: - Klei Entertainment)
Easy Tune 6 B12.0525.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B12.0525.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Exact Audio Copy 1.1 (HKLM-x32\...\Exact Audio Copy) (Version: 1.1 - Andre Wiethoff)
Factorio (HKLM-x32\...\Steam App 427520) (Version: - Wube Software LTD.)
Far Cry 4 (HKLM-x32\...\Steam App 298110) (Version: - Ubisoft Montreal, Red Storm, Shanghai, Toronto, Kiev)
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.225 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Metatogger 5.6 (HKLM-x32\...\{b9a6fe38-c0e4-462d-9c19-89748eddfb5a}) (Version: 5.6.4.0 - Luminescence Software)
Metatogger 5.6 (x32 Version: 5.6.4.0 - Luminescence Software) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1288866973-664468029-815801267-1000\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{E4A1FDA3-689D-44DA-9B39-86BD2270F522}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 de)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.70 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.1.0.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.0.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.70 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.3.5.6379 - Electronic Arts, Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6554 - Realtek Semiconductor Corp.)
Roccat Talk (HKLM-x32\...\{605D671E-1D1E-4840-84D9-BFACE17F160D}) (Version: 1.00.0022 - Roccat GmbH)
ROCCAT Tyon Mouse Driver (HKLM-x32\...\{27A9CD4B-AF7E-46FB-A7B5-AB549EB45C15}) (Version: - Roccat GmbH)
SHIELD Streaming (Version: 7.1.0330 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.0.52 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Settlers Online - Standalone Client (HKU\S-1-5-21-1288866973-664468029-815801267-1000\...\The Settlers Online) (Version: - )
The Settlers Online - Standalone Client (HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\The Settlers Online) (Version: - )
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.0 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Windows Phone app for desktop (HKLM-x32\...\{19773614-FC22-4ACC-AAA3-E6BDA81ACF92}) (Version: 1.1.2726.0 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Zombie Army Trilogy (HKLM\...\Steam App 301640) (Version: - Rebellion)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0B64EFEA-84E3-4C00-9DB9-7EF491237D83} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0F04B5B7-2248-4137-A224-AA3F43B4D7ED} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {1051E0C9-AEDE-49A0-82AA-665B06ECBA34} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1A873E97-B07D-4959-B92C-3EA57ADE102A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1B26BDA5-08AC-440E-BB0C-26DC019D30D8} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1EF5E44C-0B62-4CC2-BCA1-FD14A07683D2} - \Microsoft\Windows\Setup\gwx\rundetector -> Keine Datei <==== ACHTUNG
Task: {2148461F-290B-4EC6-9865-C34E77D5D7EC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {2191A7F8-3593-4298-8083-5E84854E0230} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {247CE964-06BD-43C8-8799-AF8BD7C70EBD} - System32\Tasks\{2D78B0DE-7EF0-4D55-A6A1-6048127C06BD} => pcalua.exe -a "C:\Program Files (x86)\FreeTime\FormatFactory\FFInst.exe" -d "C:\Program Files (x86)\FreeTime\FormatFactory" -c /Codec /AVISynth /MenuContext
Task: {254B6EA4-B404-43EF-B8E1-9E06A8B48FB5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {2E6CE8AB-E8E2-4458-A2C0-269ED50FA28A} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {3185F848-4E34-4673-9AA7-308093F07B8D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-29] (Google Inc.)
Task: {31CF0ACC-DF85-43BA-A436-4C263A21F2C1} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {330D5905-2A99-43E1-9906-C22C87547403} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {3B6AD63F-545D-4C30-9CA5-7E26F1741440} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-10-25] (NVIDIA Corporation)
Task: {3C9DED7C-7EC6-4279-9C52-85146F282188} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {403D58DA-4F8B-4630-AFD3-94AC4BF212E0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {44A096F2-4BE3-47F7-A773-ED41B199CED1} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-10-25] (NVIDIA Corporation)
Task: {457ED334-AAAB-4F3B-A7A2-6EF4AC73194C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-29] (Google Inc.)
Task: {55F90193-4A00-4333-A48B-E541608090C4} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Keine Datei <==== ACHTUNG
Task: {5DC3BC09-E4B9-4E46-92A7-9BB45971F4A9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {5E7FE03A-EC26-4DAA-906E-6F5BD592188A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {617113B7-88B2-4924-8BB8-92168FE31F5A} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-10-25] (NVIDIA Corporation)
Task: {6244D5CC-A992-4A75-ABDC-0F919C5CC64E} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {63186CD1-D49B-4CEC-AC6B-A53379E9A3B5} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6AA27EA4-EC3D-4D66-AEA5-CDDF1255597E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-10-25] (NVIDIA Corporation)
Task: {6CB16509-7465-47CD-A2E8-A6F0A67DBB4C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {6D36427A-F4C8-44D5-A1BD-977A6AA470BB} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6F8729F7-F2D6-46B4-9593-8206DDE0E8B2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7190E408-2574-4042-A3C1-95E0A88EDFFD} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {72CC1407-2B6F-4651-9AC1-1B2758647D4D} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {77B8C2FA-4FD3-4ACB-8EA7-DB367E3B5D40} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {77CCA5E0-130A-47A8-9FAE-9F43FDC0E058} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\ChAzubi\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {79FAF4AF-C5FC-4678-825E-B1DA554FDBE7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {809A0261-79A6-4A9B-9995-0CA6750B22E6} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {8A95CD1A-2C50-42EB-AB97-A95FA512BB84} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {92D01179-1183-4BD9-98BC-A81935E51676} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {98A8B90F-FCCA-4E14-8041-D9ABDBC8F9AD} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {98AFA9F0-ACDD-4E9A-AAEC-95DE2CD5308A} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9C06A5AB-D6EC-457D-BCF6-703373FD885F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {A8EBD94D-9B20-4522-B360-56F910BED30B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B33D542C-8F72-4C82-9763-84B6D2AB28E3} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B54C411D-4ED1-47EC-B7A7-2CE4BF4A4370} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {BC70C27F-6EF6-4E2A-8912-F1B9FCCAF444} - System32\Tasks\Avira Browser Safety Updater Task => C:\Program Files (x86)\Avira\Browser Safety\AviraBrowserSafetyUpdater.exe [2015-03-11] (Avira Operations GmbH & Co. KG)
Task: {BCE89551-BDB2-42FB-9315-45090B399E36} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {BF96CE01-B0B9-4594-8FD3-D147A5CF7530} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {C6242DE7-447D-4E07-A8AC-8438069A6E10} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D4608A62-800A-4EA9-AEDB-E69DAD8D4AA6} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E1F92EC4-5462-45E4-BECE-35FB3D8F21EB} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EB8C762C-E1C6-4A6F-907D-96E20CEF02F9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {FFA4952D-2086-4A45-AF02-95A699CBEA8C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\ywwfc0UNO4FM81BX.job => C:\Users\ChAzubi\AppData\Roaming\ywwfc0UNO4FM81BX.exe <==== ACHTUNG
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-11-11 15:57 - 2016-10-25 21:19 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-11 15:57 - 2016-10-25 21:19 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-11 15:57 - 2016-10-25 21:19 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2015-03-26 20:24 - 2015-06-06 13:17 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-13 23:05 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-29 08:46 - 2016-10-25 21:17 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-12-13 23:05 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-13 23:05 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-12-16 23:08 - 2016-12-16 23:08 - 01678560 _____ () C:\Users\ChAzubi\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2016-09-29 09:42 - 2016-09-29 09:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-13 23:05 - 2016-12-09 10:41 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-08 22:34 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-08 22:34 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-08 22:34 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-08 22:34 - 2016-11-02 11:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-08 22:34 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-08 22:34 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-03 19:08 - 2016-11-21 05:09 - 03464680 _____ () C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe
2014-02-28 10:14 - 2016-07-18 21:42 - 00174872 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-08-04 14:43 - 2016-07-18 21:42 - 00103192 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2014-08-04 14:43 - 2016-07-18 21:42 - 00107800 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-08-04 14:46 - 2016-07-18 21:42 - 00312088 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-08-04 14:46 - 2016-07-18 21:42 - 00485656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2016-09-08 17:12 - 2017-01-10 22:08 - 00022024 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2016-12-06 15:09 - 2016-12-06 15:09 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2016-12-14 18:02 - 2016-12-14 18:02 - 00055808 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11610.1001.23.0_x64__8wekyb3d8bbwe\WinStoreTasksWrapper.dll
2015-02-18 15:41 - 2011-12-16 10:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-09-08 17:12 - 2017-01-10 22:08 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-11-11 15:57 - 2016-10-25 21:19 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-11 15:57 - 2016-10-25 20:57 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-11 15:57 - 2016-10-25 20:57 - 00255936 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-11 15:57 - 2016-10-25 20:57 - 02808256 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-11 15:57 - 2016-10-25 21:19 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-11 15:57 - 2016-10-25 21:19 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-11 15:57 - 2016-10-25 20:57 - 00246840 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-11 15:57 - 2016-10-25 20:57 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-11 15:57 - 2016-10-25 20:57 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-11 15:57 - 2016-10-25 20:57 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-16 23:08 - 2016-12-16 23:08 - 01244376 _____ () C:\Users\ChAzubi\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\ClientTelemetry.dll
2016-11-03 19:13 - 2014-05-11 15:26 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Tyon Mouse\hiddriver.dll
2016-11-03 19:13 - 2014-05-31 22:08 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Tyon Mouse\hiddriverW.dll
2016-12-14 18:03 - 2016-12-08 08:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-14 18:03 - 2016-12-08 08:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
2016-09-08 17:12 - 2017-01-10 22:08 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2015-02-18 15:50 - 2016-06-24 11:12 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2015-02-20 13:11 - 2016-12-08 16:13 - 00656160 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-02-20 13:11 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-02-20 13:11 - 2016-12-20 03:25 - 02322720 _____ () C:\Program Files (x86)\Steam\video.dll
2015-02-20 13:11 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-02-20 13:11 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-02-20 13:11 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-02-20 13:11 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-02-20 13:11 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-02-20 13:11 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-02-20 13:11 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-02-20 13:11 - 2016-12-20 03:25 - 00838944 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 21:09 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-12-13 11:26 - 2016-12-05 17:21 - 67304736 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2015-02-20 13:11 - 2016-12-20 03:25 - 00388384 _____ () C:\Program Files (x86)\Steam\steam.dll
2015-02-20 13:11 - 2015-09-25 00:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-1288866973-664468029-815801267-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\startupreg: Amazon Music => "C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
HKLM\...\StartupApproved\Run: => "Cm108BSound"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-1288866973-664468029-815801267-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1288866973-664468029-815801267-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "CCleaner Monitoring"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [MSMQ-In-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => LPort=808
FirewallRules: [{94C6B48C-C316-4470-9861-9E46CBF2B8F1}] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals\generals.exe
FirewallRules: [{5A0EBD20-E75E-428F-8A94-4FC5E3364B9F}] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals\generals.exe
FirewallRules: [UDP Query User{DEA1F0A3-84A2-4D70-A618-DDB1AFCF1D7A}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals\generals.exe] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals\generals.exe
FirewallRules: [TCP Query User{D6CF3BF2-7339-447B-A4F3-5024368453C0}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals\generals.exe] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals\generals.exe
FirewallRules: [{9B6AA7CE-99B9-4D8C-B92E-F812BADD063B}] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [{592613CD-6D9B-4B78-8D4E-47EAA32E31E5}] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [UDP Query User{0D666B98-8B4C-4606-AD60-E6525B27BB11}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [TCP Query User{0116AC8C-74C1-4787-8726-351081A20C6A}C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe] => C:\program files (x86)\origin games\command and conquer generals zero hour\command and conquer generals zero hour\generals.exe
FirewallRules: [{FB2A6982-4C53-4A46-B689-252105F5141E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D9B52486-3582-4A8E-9E1B-FED09CB8E478}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{AA857F7A-D6BD-465C-A9F4-04C1EF09B57B}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FC5048CC-DAE9-4AE5-A0B9-2A2A3D8C4D6F}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{C878F7C7-B5B0-443A-9597-E086601A66F5}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B659AE0C-47BE-4EC5-8B62-7E9438EC4AAF}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3EB86297-9066-485B-99CC-DF470A2AAF83}] => C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{C23B917B-A7F5-4976-B483-A6DD73D36871}] => C:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{ACA5D26E-6C03-407C-9E6A-6D802FEE426A}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{55D713E7-89EF-47B9-840E-E0C08695D890}F:\tmunitedforever\tmforever.exe] => F:\tmunitedforever\tmforever.exe
FirewallRules: [UDP Query User{ABB020CB-5FFD-49D4-9B71-8F771C7FFC89}F:\tmunitedforever\tmforever.exe] => F:\tmunitedforever\tmforever.exe
FirewallRules: [{C6D815CA-35CB-4546-80B1-149738B7A904}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{88B95C85-D685-4FB5-95B2-18AC38C23313}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{71CCE330-487C-4FE4-88AA-F3F57125DFAD}] => E:\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{7BE0ACE7-D154-474A-9A51-8B247ABAB1B8}] => E:\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{5E1A0050-B92A-4E17-8D8C-9BD7149BB8A0}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E5E29ED8-30D9-4A53-8E4A-DF3CF994B158}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{C0CA1D9D-08DE-473F-908E-B66C653BEA53}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D8318471-3A54-4D7E-90AB-A3E66613B27A}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{7FDC980F-AEF0-46D7-9098-D4163733082D}] => C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{AE756020-24C2-46AF-B98D-DA4A3C7B0862}] => C:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{808628F2-3418-4B3C-9115-C7F4E0C0BD0C}] => C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{E4E67E1A-AD25-4236-839C-3FAA57FAABCF}] => C:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [TCP Query User{03B821B7-0BB1-4185-85A9-E59E6BB1220E}C:\program files (x86)\mediamonkey\mediamonkey.exe] => C:\program files (x86)\mediamonkey\mediamonkey.exe
FirewallRules: [UDP Query User{9E4CA81D-C993-4C42-B38B-FD5132284825}C:\program files (x86)\mediamonkey\mediamonkey.exe] => C:\program files (x86)\mediamonkey\mediamonkey.exe
FirewallRules: [{9D6FFE21-77B9-4094-B49E-F9E54272378F}] => C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{59D7F6D1-E0EB-464C-858C-1B42F391751A}] => C:\Program Files (x86)\Origin Games\Command and Conquer Generals Zero Hour\Generals.exe
FirewallRules: [{92F4F03A-B59F-4C2E-B96A-0E2B69225072}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D62624C1-1043-4D18-B09E-972F3E359928}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5B0049DB-0FF2-4FFB-9A3F-8B1BDA191474}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{5DCC8870-E48F-49DC-A328-0332B9436BD5}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe
FirewallRules: [{8148DD40-01A9-44D3-8582-23BBB686B624}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{DBE99A61-547D-4E01-93F1-B70FF1E9F2DD}] => C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe
FirewallRules: [{915152B0-F6A2-4A1B-9D29-10BF24735E84}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{9ED76022-1CD8-488D-9DD3-3F3E61F4DEE4}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe
FirewallRules: [{953D2DA8-8C95-4B1A-838C-7DAB4A9B8562}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{B63DC060-BB9E-4F38-9082-C929A4C357C8}] => C:\Program Files (x86)\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe
FirewallRules: [{346B1BB0-57EA-4726-BA32-D87FA5BBA8CC}] => E:\Steam\steamapps\common\Factorio\bin\x64\Factorio.exe
FirewallRules: [{4FA9E524-9F9D-410D-AB12-C8538963A4EF}] => E:\Steam\steamapps\common\Factorio\bin\x64\Factorio.exe
FirewallRules: [{B929E8EA-9F08-469B-8151-9BAAE2A6B6FE}] => E:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{0E3C82DD-34CB-41EA-90BD-BA9518E35DDA}] => E:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{D9635EC4-F35C-4DD3-9ADD-9579F8E5D032}] => E:\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{9BF00A18-B680-4CC8-B9CE-689E68A02C0F}] => E:\Steam\steamapps\common\Cossacks 3\cossacks.exe
FirewallRules: [{21C4306B-89E8-4196-A3CA-F813882737F5}] => E:\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{688CB623-2262-4EF9-BC7E-101F719D1368}] => E:\Steam\steamapps\common\Cossacks 3\config.exe
FirewallRules: [{229C5424-15B9-4F24-AC79-27C9B8764C9B}] => E:\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{8982235C-3AC4-49C9-99E3-FFBA57F972D7}] => E:\Steam\steamapps\common\Cossacks 3\editor.exe
FirewallRules: [{562F0625-BA23-4C9F-941F-E374C64B2014}] => E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{E2BD89F6-2AF4-4923-B739-B743EE1E9602}] => E:\Steam\steamapps\common\Zombie Army Trilogy\Launcher\ZATLauncher.exe
FirewallRules: [{6A1E7D9D-E29E-4866-849B-1AEA07EE1749}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{DAC5932B-D12D-490A-A75D-A7F58859DE73}] => E:\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{D3E2C39C-BB3B-4DDC-A494-C5397ECDBD9A}] => E:\Steam\steamapps\common\Cossacks 3\modman.exe
FirewallRules: [{F7DF5CC4-AA24-4A81-9C2C-DBB1777B3F5A}] => E:\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{35410D6F-A412-4392-AC98-DC352FAE46FA}] => E:\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{F9C4246A-7EED-4E4D-8099-8315CC26A2CE}] => E:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [{4A173BF7-E1CC-44B9-A962-86854CFCC019}] => E:\Steam\steamapps\common\Factorio\bin\x64\factorio.exe
FirewallRules: [TCP Query User{09ACECCF-4E61-493C-9581-77EC046039A9}C:\users\chazubi\appdata\local\amazon music\amazon music helper.exe] => C:\users\chazubi\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{E23FFB1F-0822-4A02-9B6D-B378F59CA37D}C:\users\chazubi\appdata\local\amazon music\amazon music helper.exe] => C:\users\chazubi\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{0F0DF87B-03A2-4E15-91B8-7D70134CA6DD}] => C:\users\chazubi\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{3C6ED7B7-21D7-4D1D-B44E-D94E2B4333E8}] => C:\users\chazubi\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{151B2B3D-1B7C-4492-95B4-8AE0D890FEB3}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F6C2B044-F6E1-49EC-B26B-89C44DFF1580}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{65D84813-77B5-4D28-9493-BD5D0F90A5A2}] => H:\Origin\Battlefield 1\bf1Trial.exe
FirewallRules: [{E44BF050-A882-4CE8-A9D7-0B0F265F9AA5}] => H:\Origin\Battlefield 1\bf1Trial.exe
FirewallRules: [{A6F7C11A-6D48-4C8A-9C6E-5052458FBCF8}] => H:\Origin\Battlefield 1\bf1.exe
FirewallRules: [{7693B945-E769-417D-9CFC-76C1E1936211}] => H:\Origin\Battlefield 1\bf1.exe
FirewallRules: [{8B489BB8-97D0-4928-BCBE-E24B7340D1EC}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{31372789-F1E0-4927-8860-A06DDEDB3E8A}] => E:\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{38FA786E-C5AE-4221-8016-A641A1C49452}] => E:\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{E9E46146-3280-4CF9-B2AB-BFE948655F02}] => H:\Tom Clancy's The Division\TheDivision.exe
FirewallRules: [{D6B2146A-8C4F-43D7-83E0-9804564B0225}] => H:\SteamLibrary\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{35F2BDFA-5149-411A-BEBB-A20A155D4C01}] => H:\SteamLibrary\steamapps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{C80A8F32-19CF-49DC-BD83-8E234953C14E}] => E:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
FirewallRules: [{DB1AA0F3-DA00-4A11-BCA7-B578041B006C}] => E:\Steam\steamapps\common\Don't Starve Together Beta\bin\dontstarve_steam.exe
==================== Wiederherstellungspunkte =========================
30-12-2016 14:30:20 Geplanter Prüfpunkt
07-01-2017 17:36:30 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Intel(R) USB 3.0 eXtensible-Hostcontroller – 1.0 (Microsoft)
Description: USB-xHCI-kompatibler Hostcontroller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Generischer USB-xHCI-Hostcontroller
Service: USBXHCI
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/11/2017 11:28:49 PM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhostw (8436) WebCacheLocal: Unerwarteter Fehler "-1032" bei der Datenbankwiederherstellung.
Error: (01/11/2017 11:28:49 PM) (Source: ESENT) (EventID: 490) (User: )
Description: taskhostw (8436) WebCacheLocal: Der Versuch, die Datei "C:\Users\ChAzubi\AppData\Local\Microsoft\Windows\WebCache\V01.log" für den Lese-/Schreibzugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (01/07/2017 05:36:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (01/05/2017 12:18:39 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ChAzubi-PC)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/02/2017 09:31:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: HxTsr.exe, Version: 16.0.7714.4203, Zeitstempel: 0x58522502
Name des fehlerhaften Moduls: RPCRT4.dll, Version: 10.0.14393.82, Zeitstempel: 0x57a558cf
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000b2b4
ID des fehlerhaften Prozesses: 0x7dc
Startzeit der fehlerhaften Anwendung: 0x01d2653741143582
Pfad der fehlerhaften Anwendung: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7714.42037.0_x64__8wekyb3d8bbwe\HxTsr.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\RPCRT4.dll
Berichtskennung: 0bbcbf91-7cc9-4240-97fa-83516aa608a4
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.7714.42037.0_x64__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (12/30/2016 02:30:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (12/22/2016 08:23:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: xnview.exe, Version: 2.25.0.0, Zeitstempel: 0x5458e922
Name des fehlerhaften Moduls: xnview.exe, Version: 2.25.0.0, Zeitstempel: 0x5458e922
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003296c
ID des fehlerhaften Prozesses: 0x1164
Startzeit der fehlerhaften Anwendung: 0x01d25c88ea30dd57
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\XnView\xnview.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\XnView\xnview.exe
Berichtskennung: dbb8dce6-a0fc-4e74-bace-c1bf02759a99
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (12/16/2016 10:55:15 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "BITS" in der DLL "C:\Windows\System32\bitsperf.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.
Error: (12/16/2016 10:53:12 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Error: (12/13/2016 07:57:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
System Error:
Zugriff verweigert
.
Systemfehler:
=============
Error: (01/11/2017 11:03:21 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/11/2017 09:32:18 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/10/2017 10:04:55 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/10/2017 11:03:08 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/10/2017 09:56:53 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/09/2017 10:15:56 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/09/2017 09:19:00 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/08/2017 10:41:24 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/08/2017 09:25:13 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/07/2017 02:43:53 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
und der APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-3550 CPU @ 3.30GHz
Prozentuale Nutzung des RAM: 33%
Installierter physikalischer RAM: 8154.3 MB
Verfügbarer physikalischer RAM: 5412.49 MB
Summe virtueller Speicher: 16346.3 MB
Verfügbarer virtueller Speicher: 12993.41 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:17.98 GB) NTFS
Drive e: () (Fixed) (Total:97.66 GB) (Free:66.62 GB) NTFS
Drive f: () (Fixed) (Total:244.14 GB) (Free:104.51 GB) NTFS
Drive g: (Mukke) (Fixed) (Total:254.37 GB) (Free:161.91 GB) NTFS
Drive h: (Volume) (Fixed) (Total:465.76 GB) (Free:365.23 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 965149B4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: E9539B71)
Partition 1: (Active) - (Size=97.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=498.5 GB) - (Type=OF Extended)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 45C17128)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 11.01.2017 Suchlaufzeit: 23:30 Protokolldatei: Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2017.01.11.08 Rootkit-Datenbank: v2016.11.20.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: ChAzubi Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 353938 Abgelaufene Zeit: 4 Min., 32 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 1 PUP.Optional.Reimage, C:\Windows\System32\Tasks\ReimageUpdater, , [5e46c7b37b2df93d8983193cbe42c937], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Danke schonmal. |
|
13.01.2017, 12:19
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | PUP.Optional.Reimage mit MB gefunden+++ WICHTIGER HINWEIS +++ Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache. Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung! Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben. Gelesen und verstanden? Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ |
|
13.01.2017, 22:27
| #3 |
| | PUP.Optional.Reimage mit MB gefunden Gelesen und Verstanden!
__________________Avira hab ich soweit deinstalliert. Nur der Avira Browser Safety lässt sich deinstallieren. (Fehlermeldung: OS version incompatibility) Windows hat zwischendurch ein Update gemacht. Kumulatives Update für Windows 10 Version 1607 für x64-basierte Systeme (KB3213986). |
|
13.01.2017, 22:36
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUP.Optional.Reimage mit MB gefunden 1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
13.01.2017, 23:24
| #5 |
| | PUP.Optional.Reimage mit MB gefunden Malware Anti-Rootkit hat nix gefunden und einen logfile hat das Programm auch nicht erstellt. Oder ich hab es nicht gefunden... Logfile von Kasperky Code:
ATTFilter 23:12:54.0911 0x1508 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
23:12:58.0302 0x1508 ============================================================
23:12:58.0302 0x1508 Current date / time: 2017/01/13 23:12:58.0302
23:12:58.0302 0x1508 SystemInfo:
23:12:58.0306 0x1508
23:12:58.0306 0x1508 OS Version: 10.0.14393 ServicePack: 0.0
23:12:58.0306 0x1508 Product type: Workstation
23:12:58.0306 0x1508 ComputerName: CHAZUBI-PC
23:12:58.0307 0x1508 UserName: ChAzubi
23:12:58.0307 0x1508 Windows directory: C:\WINDOWS
23:12:58.0307 0x1508 System windows directory: C:\WINDOWS
23:12:58.0307 0x1508 Running under WOW64
23:12:58.0307 0x1508 Processor architecture: Intel x64
23:12:58.0307 0x1508 Number of processors: 4
23:12:58.0307 0x1508 Page size: 0x1000
23:12:58.0307 0x1508 Boot type: Normal boot
23:12:58.0307 0x1508 CodeIntegrityOptions = 0x00000001
23:12:58.0307 0x1508 ============================================================
23:12:58.0379 0x1508 KLMD registered as C:\WINDOWS\system32\drivers\62497058.sys
23:12:58.0379 0x1508 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.693, osProperties = 0x19
23:12:58.0894 0x1508 System UUID: {7A4DF462-BC82-2094-0E8C-B72F3AE064D0}
23:12:59.0228 0x1508 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:12:59.0242 0x1508 Drive \Device\Harddisk1\DR1 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:12:59.0243 0x1508 Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:12:59.0270 0x1508 Drive \Device\Harddisk5\DR5 - Size: 0xEDEA00000 ( 59.48 Gb ), SectorSize: 0x200, Cylinders: 0x1E54, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:12:59.0274 0x1508 ============================================================
23:12:59.0274 0x1508 \Device\Harddisk0\DR0:
23:12:59.0275 0x1508 MBR partitions:
23:12:59.0275 0x1508 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:12:59.0275 0x1508 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D192800
23:12:59.0275 0x1508 \Device\Harddisk1\DR1:
23:12:59.0275 0x1508 MBR partitions:
23:12:59.0275 0x1508 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC34F800
23:12:59.0285 0x1508 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC3501CF, BlocksNum 0x1E846621
23:12:59.0297 0x1508 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2AB9682F, BlocksNum 0x1FCBC7D1
23:12:59.0297 0x1508 \Device\Harddisk2\DR2:
23:12:59.0298 0x1508 MBR partitions:
23:12:59.0298 0x1508 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800
23:12:59.0298 0x1508 \Device\Harddisk5\DR5:
23:12:59.0299 0x1508 MBR partitions:
23:12:59.0299 0x1508 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x8000, BlocksNum 0x76ED000
23:12:59.0299 0x1508 ============================================================
23:12:59.0299 0x1508 C: <-> \Device\Harddisk0\DR0\Partition2
23:12:59.0315 0x1508 E: <-> \Device\Harddisk1\DR1\Partition1
23:12:59.0333 0x1508 F: <-> \Device\Harddisk1\DR1\Partition2
23:12:59.0353 0x1508 G: <-> \Device\Harddisk1\DR1\Partition3
23:12:59.0353 0x1508 H: <-> \Device\Harddisk2\DR2\Partition1
23:12:59.0353 0x1508 ============================================================
23:12:59.0353 0x1508 Initialize success
23:12:59.0353 0x1508 ============================================================
23:13:00.0990 0x1748 ============================================================
23:13:00.0990 0x1748 Scan started
23:13:00.0990 0x1748 Mode: Manual;
23:13:00.0990 0x1748 ============================================================
23:13:00.0990 0x1748 KSN ping started
23:13:01.0059 0x1748 KSN ping finished: true
23:13:01.0597 0x1748 ================ Scan system memory ========================
23:13:01.0597 0x1748 System memory - ok
23:13:01.0597 0x1748 ================ Scan services =============================
23:13:01.0625 0x1748 [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
23:13:01.0629 0x1748 1394ohci - ok
23:13:01.0637 0x1748 [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
23:13:01.0639 0x1748 3ware - ok
23:13:01.0653 0x1748 [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
23:13:01.0664 0x1748 ACPI - ok
23:13:01.0668 0x1748 [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
23:13:01.0669 0x1748 AcpiDev - ok
23:13:01.0673 0x1748 [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
23:13:01.0676 0x1748 acpiex - ok
23:13:01.0678 0x1748 [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
23:13:01.0679 0x1748 acpipagr - ok
23:13:01.0682 0x1748 [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
23:13:01.0683 0x1748 AcpiPmi - ok
23:13:01.0685 0x1748 [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
23:13:01.0687 0x1748 acpitime - ok
23:13:01.0692 0x1748 [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:13:01.0693 0x1748 AdobeARMservice - ok
23:13:01.0714 0x1748 [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
23:13:01.0732 0x1748 ADP80XX - ok
23:13:01.0745 0x1748 [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD C:\WINDOWS\system32\drivers\afd.sys
23:13:01.0754 0x1748 AFD - ok
23:13:01.0762 0x1748 [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
23:13:01.0766 0x1748 ahcache - ok
23:13:01.0769 0x1748 [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter C:\WINDOWS\System32\AJRouter.dll
23:13:01.0770 0x1748 AJRouter - ok
23:13:01.0774 0x1748 [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG C:\WINDOWS\System32\alg.exe
23:13:01.0776 0x1748 ALG - ok
23:13:01.0780 0x1748 [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
23:13:01.0783 0x1748 AmdK8 - ok
23:13:01.0787 0x1748 [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
23:13:01.0789 0x1748 AmdPPM - ok
23:13:01.0795 0x1748 [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
23:13:01.0797 0x1748 amdsata - ok
23:13:01.0804 0x1748 [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
23:13:01.0808 0x1748 amdsbs - ok
23:13:01.0811 0x1748 [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
23:13:01.0812 0x1748 amdxata - ok
23:13:01.0816 0x1748 [ 5B0F4FB165256DE463A51E3A3127969E, 6751ADFFE95FA671C584427A9624EEB79518DE08132FD7A83148700B75487316 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
23:13:01.0818 0x1748 AppHostSvc - ok
23:13:01.0822 0x1748 [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID C:\WINDOWS\system32\drivers\appid.sys
23:13:01.0826 0x1748 AppID - ok
23:13:01.0830 0x1748 [ 74A24CF946279111D7F203B36569EC02, FD67D36804744B4FE3E20BA891852575E6C2DA6515643B2F4B4210118B0FCCDA ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
23:13:01.0832 0x1748 AppIDSvc - ok
23:13:01.0837 0x1748 [ 73FAA5517CCD1332F00192A303CF2026, 75636222BFF381A3EECA010752DF7DC1603A395B91FF7FBF92127B5CA8EFFEE5 ] Appinfo C:\WINDOWS\System32\appinfo.dll
23:13:01.0839 0x1748 Appinfo - ok
23:13:01.0842 0x1748 [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
23:13:01.0843 0x1748 applockerfltr - ok
23:13:01.0854 0x1748 [ A0746EF6C5AB7A17A67BC167167499C1, 1D2154D3AFC5219293EDD508C7726E7756FB72BF04F73861C575D1FE5C553411 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
23:13:01.0862 0x1748 AppReadiness - ok
23:13:01.0898 0x1748 [ D70B1453ADA82A92E76EAE72D936A0F6, 439DBC5818025887343D4B5B509C7D2C97ED0FFA4641A5178EA5719C50E5013F ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
23:13:01.0931 0x1748 AppXSvc - ok
23:13:01.0938 0x1748 [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
23:13:01.0940 0x1748 arcsas - ok
23:13:01.0955 0x1748 [ 5EE26734A882478AF6696092E2E0F352, 6CACFF521B3B839F73EBEB6EFBFDCCA8A8BC319DDB254BE3EFE29A39040B2C26 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:13:01.0956 0x1748 aspnet_state - ok
23:13:01.0961 0x1748 [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
23:13:01.0962 0x1748 AsyncMac - ok
23:13:01.0966 0x1748 [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
23:13:01.0966 0x1748 atapi - ok
23:13:01.0974 0x1748 [ 2DC3D53FFA0D10EB8C911AE2DB7BF4CF, 8E0A4B5D610D487A216E70396A99ACC1BEA12C46A6681B1A39CD0FD01EDD406A ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
23:13:01.0979 0x1748 AudioEndpointBuilder - ok
23:13:01.0996 0x1748 [ 7B993290E7691C446C16A56A431669BA, 004551934E27E9FC1A939C9BD1DEB850A216CBED9B18CB3317920F5656D9F6BF ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
23:13:02.0011 0x1748 Audiosrv - ok
23:13:02.0016 0x1748 [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
23:13:02.0018 0x1748 AxInstSV - ok
23:13:02.0029 0x1748 [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
23:13:02.0038 0x1748 b06bdrv - ok
23:13:02.0042 0x1748 [ 68F72B05EBC6D1779C0D60A147C7CA0B, AA1C857BEE34865C6B901157FC22570D4CF45D950708BAD7AA333F120F2B474C ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
23:13:02.0043 0x1748 BasicDisplay - ok
23:13:02.0047 0x1748 [ 23156E7EDAF613D839E2839746B168D3, CAEF8F9C7D3A338BD747AC9D5BFBE730D77B911E87BCF532EBB75E1F80916AFA ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
23:13:02.0048 0x1748 BasicRender - ok
23:13:02.0052 0x1748 [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn C:\WINDOWS\System32\drivers\bcmfn.sys
23:13:02.0052 0x1748 bcmfn - ok
23:13:02.0055 0x1748 [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
23:13:02.0056 0x1748 bcmfn2 - ok
23:13:02.0064 0x1748 [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
23:13:02.0070 0x1748 BDESVC - ok
23:13:02.0073 0x1748 [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep C:\WINDOWS\system32\drivers\Beep.sys
23:13:02.0074 0x1748 Beep - ok
23:13:02.0088 0x1748 [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE C:\WINDOWS\System32\bfe.dll
23:13:02.0101 0x1748 BFE - ok
23:13:02.0120 0x1748 [ D876C567AB767258036F05E4766189FD, DE8BA67325CB64495BD454B8F9DDCAE82636253844FC68B360C7E1CF5D51DD0E ] BITS C:\WINDOWS\System32\qmgr.dll
23:13:02.0137 0x1748 BITS - ok
23:13:02.0142 0x1748 [ 9CD2A4821DE379305CACB2E99AD8953A, 89D700DFC3C59ACBBADB48954A28C0EBF8D6A11A9E63837689DD891868E43188 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
23:13:02.0144 0x1748 bowser - ok
23:13:02.0158 0x1748 [ 2447BD15B41298622CC662249CD0F496, 013A326D2E3BF68D654BBABE2F1E5DF0FF0A153A4B95D570EE28F9BC0F5A78C3 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
23:13:02.0170 0x1748 BrokerInfrastructure - ok
23:13:02.0175 0x1748 [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser C:\WINDOWS\System32\browser.dll
23:13:02.0177 0x1748 Browser - ok
23:13:02.0181 0x1748 [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
23:13:02.0182 0x1748 BthAvrcpTg - ok
23:13:02.0186 0x1748 [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
23:13:02.0187 0x1748 BthHFEnum - ok
23:13:02.0190 0x1748 [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
23:13:02.0191 0x1748 bthhfhid - ok
23:13:02.0199 0x1748 [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
23:13:02.0204 0x1748 BthHFSrv - ok
23:13:02.0208 0x1748 [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
23:13:02.0210 0x1748 BTHMODEM - ok
23:13:02.0216 0x1748 [ 96932F631F5CB9F5D1C8F99A71568EF3, 5E4C8955A2EE9DC76B4EBC383653EB753D76D6B017E1A5DD553AC16094D7F12A ] bthserv C:\WINDOWS\system32\bthserv.dll
23:13:02.0219 0x1748 bthserv - ok
23:13:02.0223 0x1748 [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
23:13:02.0224 0x1748 buttonconverter - ok
23:13:02.0228 0x1748 [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
23:13:02.0239 0x1748 CapImg - ok
23:13:02.0243 0x1748 [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
23:13:02.0245 0x1748 cdfs - ok
23:13:02.0254 0x1748 [ 2E6612376D257F74781F2EF1F869D8C3, 908B0DECB9F098F7F11B029A03C06C67FB52E5E8BEA42033A2B579D3B3686AB8 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
23:13:02.0261 0x1748 CDPSvc - ok
23:13:02.0269 0x1748 [ A93C9B9EBE2FDE5A536000D72CC17F7F, 9793CFAE8BE8C6B5B39A1D276577965FBB2CE131325A410B7C68BD23492ADAAF ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
23:13:02.0274 0x1748 CDPUserSvc - ok
23:13:02.0282 0x1748 [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
23:13:02.0285 0x1748 cdrom - ok
23:13:02.0290 0x1748 [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
23:13:02.0294 0x1748 CertPropSvc - ok
23:13:02.0302 0x1748 [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
23:13:02.0307 0x1748 cht4iscsi - ok
23:13:02.0341 0x1748 [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
23:13:02.0372 0x1748 cht4vbd - ok
23:13:02.0377 0x1748 [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
23:13:02.0378 0x1748 circlass - ok
23:13:02.0387 0x1748 [ B72D26074E72A757D788FB1BEF8B2F2E, 36847C5315AFB9A5EC66AD3EF2A09C24C0FAF669FDF0831F78600F4609352CB4 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
23:13:02.0393 0x1748 CLFS - ok
23:13:02.0407 0x1748 [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
23:13:02.0419 0x1748 ClipSVC - ok
23:13:02.0424 0x1748 [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg C:\WINDOWS\System32\drivers\registry.sys
23:13:02.0425 0x1748 clreg - ok
23:13:02.0433 0x1748 [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
23:13:02.0434 0x1748 CmBatt - ok
23:13:02.0446 0x1748 [ 90C07EB909C42316982E753BDAA7860D, 438581FD3468FAF01D35529672201A920E8821EC80E30E59A43645DA57738F21 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
23:13:02.0456 0x1748 CNG - ok
23:13:02.0460 0x1748 [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
23:13:02.0461 0x1748 cnghwassist - ok
23:13:02.0469 0x1748 [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
23:13:02.0470 0x1748 CompositeBus - ok
23:13:02.0473 0x1748 COMSysApp - ok
23:13:02.0476 0x1748 [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
23:13:02.0478 0x1748 condrv - ok
23:13:02.0491 0x1748 [ 5DE2049D5F57C1D142F36FA9CE443693, E6C2807C0B1EF90C11EB39634693B76EACE6CC675777776112835212A334F328 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
23:13:02.0503 0x1748 CoreMessagingRegistrar - ok
23:13:02.0510 0x1748 [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
23:13:02.0512 0x1748 CryptSvc - ok
23:13:02.0515 0x1748 [ 039B5A8CBD5C75D1C46DF15F7C74D136, A5C8A41F2D406D37E147939F2058373ED091BFCC00CA7E829F887638CD3A2F64 ] dam C:\WINDOWS\system32\drivers\dam.sys
23:13:02.0517 0x1748 dam - ok
23:13:02.0534 0x1748 [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
23:13:02.0548 0x1748 DcomLaunch - ok
23:13:02.0554 0x1748 [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc C:\WINDOWS\system32\dcpsvc.dll
23:13:02.0558 0x1748 DcpSvc - ok
23:13:02.0569 0x1748 [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
23:13:02.0577 0x1748 defragsvc - ok
23:13:02.0587 0x1748 [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
23:13:02.0594 0x1748 DeviceAssociationService - ok
23:13:02.0599 0x1748 [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
23:13:02.0603 0x1748 DeviceInstall - ok
23:13:02.0606 0x1748 [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
23:13:02.0607 0x1748 DevQueryBroker - ok
23:13:02.0612 0x1748 [ 0D1D392ED2597F295956D058D33BD7C3, 2F7FE5A06D880F9E2A46C9803DD249DC40C2898C04E946D14E7EECCCC9F2B24F ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
23:13:02.0615 0x1748 Dfsc - ok
23:13:02.0619 0x1748 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
23:13:02.0622 0x1748 dg_ssudbus - ok
23:13:02.0631 0x1748 [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
23:13:02.0637 0x1748 Dhcp - ok
23:13:02.0642 0x1748 [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
23:13:02.0644 0x1748 diagnosticshub.standardcollector.service - ok
23:13:02.0675 0x1748 [ CAD14E0AD1F03397E9B1C8733D76BEF4, 0035EF35F6520B1DF0E599C8A06D4163C52576BCE0976BF729B44DECDC506627 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
23:13:02.0704 0x1748 DiagTrack - ok
23:13:02.0710 0x1748 [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk C:\WINDOWS\system32\drivers\disk.sys
23:13:02.0712 0x1748 disk - ok
23:13:02.0721 0x1748 [ 09CF47A74BFB480B8262FCEE222004B6, F5CD0ACA04BCB95984595CC2E17BC9E92865091A0A3BCAD4B06438A1570E7696 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
23:13:02.0729 0x1748 DmEnrollmentSvc - ok
23:13:02.0732 0x1748 [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
23:13:02.0733 0x1748 dmvsc - ok
23:13:02.0737 0x1748 [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
23:13:02.0738 0x1748 dmwappushservice - ok
23:13:02.0745 0x1748 [ 7F8A3ABF7750326E18CE953CCE262670, 5DBD159E8A455A42764FC73CF7DCAC849B5896848C5589B00BD36697804C0A3B ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
23:13:02.0750 0x1748 Dnscache - ok
23:13:02.0757 0x1748 [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc C:\WINDOWS\System32\dot3svc.dll
23:13:02.0762 0x1748 dot3svc - ok
23:13:02.0767 0x1748 [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS C:\WINDOWS\system32\dps.dll
23:13:02.0770 0x1748 DPS - ok
23:13:02.0773 0x1748 [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud C:\WINDOWS\system32\DRIVERS\drmkaud.sys
23:13:02.0773 0x1748 drmkaud - ok
23:13:02.0778 0x1748 [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
23:13:02.0782 0x1748 DsmSvc - ok
23:13:02.0786 0x1748 [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc C:\WINDOWS\System32\DsSvc.dll
23:13:02.0790 0x1748 DsSvc - ok
23:13:02.0824 0x1748 [ 19F2B54EE8861D90579BD0E3AE5182F9, FDD4F091C61C8C20550C8F68375ABD7ED718A733F680F0F0367D4796C302BA14 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
23:13:02.0855 0x1748 DXGKrnl - ok
23:13:02.0860 0x1748 [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
23:13:02.0862 0x1748 EapHost - ok
23:13:02.0915 0x1748 [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
23:13:02.0967 0x1748 ebdrv - ok
23:13:02.0973 0x1748 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] EFS C:\WINDOWS\System32\lsass.exe
23:13:02.0975 0x1748 EFS - ok
23:13:02.0978 0x1748 [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
23:13:02.0980 0x1748 EhStorClass - ok
23:13:02.0984 0x1748 [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
23:13:02.0987 0x1748 EhStorTcgDrv - ok
23:13:02.0992 0x1748 [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
23:13:02.0995 0x1748 embeddedmode - ok
23:13:03.0002 0x1748 [ 3CE2B6AECB9AF8BC159299EEC46A35CA, E933B28BB6E4D01FCCDF8FBBB134C244B28DA3ECBDFA13333F0D4C24B2551780 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
23:13:03.0007 0x1748 EntAppSvc - ok
23:13:03.0011 0x1748 [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
23:13:03.0012 0x1748 ErrDev - ok
23:13:03.0023 0x1748 [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem C:\WINDOWS\system32\es.dll
23:13:03.0029 0x1748 EventSystem - ok
23:13:03.0038 0x1748 [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat C:\WINDOWS\system32\drivers\exfat.sys
23:13:03.0042 0x1748 exfat - ok
23:13:03.0050 0x1748 [ FA918EC296EB410FF02867D008D02421, 23D164A24CB0D212778FA9592A046B6BA1F3628003E04181744A1F891B5B3E5A ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
23:13:03.0054 0x1748 fastfat - ok
23:13:03.0067 0x1748 [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax C:\WINDOWS\system32\fxssvc.exe
23:13:03.0078 0x1748 Fax - ok
23:13:03.0082 0x1748 [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
23:13:03.0083 0x1748 fdc - ok
23:13:03.0086 0x1748 [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
23:13:03.0087 0x1748 fdPHost - ok
23:13:03.0090 0x1748 [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub C:\WINDOWS\system32\fdrespub.dll
23:13:03.0092 0x1748 FDResPub - ok
23:13:03.0096 0x1748 [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
23:13:03.0099 0x1748 fhsvc - ok
23:13:03.0103 0x1748 [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
23:13:03.0105 0x1748 FileCrypt - ok
23:13:03.0109 0x1748 [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
23:13:03.0111 0x1748 FileInfo - ok
23:13:03.0115 0x1748 [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
23:13:03.0116 0x1748 Filetrace - ok
23:13:03.0119 0x1748 [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
23:13:03.0119 0x1748 flpydisk - ok
23:13:03.0128 0x1748 [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
23:13:03.0134 0x1748 FltMgr - ok
23:13:03.0164 0x1748 [ 49BF5C8182C3D2D6CD9F7EEDF1CFDB66, 0977EBE86B57FC370D27CA69D58122397D5D5369AF0C8DBCC492AE7AD55CBA2B ] FontCache C:\WINDOWS\system32\FntCache.dll
23:13:03.0192 0x1748 FontCache - ok
23:13:03.0198 0x1748 [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:13:03.0199 0x1748 FontCache3.0.0.0 - ok
23:13:03.0214 0x1748 [ 8B52024D3A5C3A12F1C4D75D30A976C5, 982F1C783966C9A6D255AA7DBAB6D225EBE0050A36176B8DE85E8ADBFE17FDF1 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
23:13:03.0227 0x1748 FrameServer - ok
23:13:03.0232 0x1748 [ D152CCBFC8251670BF0AAFE00D6BC782, 9DE82D8FC4E1DAF8FF23EE08C0B7CB5051A9224E64544D262CFA4996A41B04E1 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
23:13:03.0233 0x1748 FsDepends - ok
23:13:03.0236 0x1748 [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:13:03.0237 0x1748 Fs_Rec - ok
23:13:03.0250 0x1748 [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
23:13:03.0260 0x1748 fvevol - ok
23:13:03.0263 0x1748 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
23:13:03.0264 0x1748 gdrv - ok
23:13:03.0267 0x1748 [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
23:13:03.0268 0x1748 gencounter - ok
23:13:03.0270 0x1748 [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
23:13:03.0271 0x1748 genericusbfn - ok
23:13:03.0276 0x1748 [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
23:13:03.0279 0x1748 GPIOClx0101 - ok
23:13:03.0300 0x1748 [ 713A176494CEC107E663CAD6C2B27F77, 76871D8CFBA8FCD8CFF96208AE84C658EBEC60270D978898B90EE9451AA1BCE1 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
23:13:03.0319 0x1748 gpsvc - ok
23:13:03.0323 0x1748 [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
23:13:03.0323 0x1748 GpuEnergyDrv - ok
23:13:03.0329 0x1748 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:13:03.0331 0x1748 gupdate - ok
23:13:03.0335 0x1748 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:13:03.0337 0x1748 gupdatem - ok
23:13:03.0339 0x1748 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
23:13:03.0352 0x1748 GVTDrv64 - ok
23:13:03.0356 0x1748 [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] Hamachi C:\WINDOWS\System32\drivers\Hamdrv.sys
23:13:03.0357 0x1748 Hamachi - ok
23:13:03.0399 0x1748 [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
23:13:03.0429 0x1748 Hamachi2Svc - ok
23:13:03.0435 0x1748 [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
23:13:03.0437 0x1748 HDAudBus - ok
23:13:03.0440 0x1748 [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
23:13:03.0441 0x1748 HidBatt - ok
23:13:03.0445 0x1748 [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
23:13:03.0447 0x1748 HidBth - ok
23:13:03.0451 0x1748 [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
23:13:03.0452 0x1748 hidi2c - ok
23:13:03.0455 0x1748 [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
23:13:03.0456 0x1748 hidinterrupt - ok
23:13:03.0459 0x1748 [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
23:13:03.0461 0x1748 HidIr - ok
23:13:03.0464 0x1748 [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv C:\WINDOWS\system32\hidserv.dll
23:13:03.0465 0x1748 hidserv - ok
23:13:03.0468 0x1748 [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
23:13:03.0469 0x1748 HidUsb - ok
23:13:03.0475 0x1748 [ 0AC1BD5A28FAA371EF34859FE703E515, 1DD1C33AF8D6EBE7C36FCD051F066E4039D2B47ABAECF7C68BC3933D567930B2 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
23:13:03.0481 0x1748 HomeGroupListener - ok
23:13:03.0490 0x1748 [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
23:13:03.0497 0x1748 HomeGroupProvider - ok
23:13:03.0501 0x1748 [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
23:13:03.0503 0x1748 HpSAMD - ok
23:13:03.0521 0x1748 [ A10C7C1E69FC90620C7BF2E51302A01F, D725AEAE38255CED73F4922A10F226215528706580B06D01C228488F93AC0397 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
23:13:03.0537 0x1748 HTTP - ok
23:13:03.0542 0x1748 [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
23:13:03.0544 0x1748 HvHost - ok
23:13:03.0547 0x1748 [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
23:13:03.0549 0x1748 hvservice - ok
23:13:03.0552 0x1748 [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
23:13:03.0553 0x1748 hwpolicy - ok
23:13:03.0556 0x1748 [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
23:13:03.0556 0x1748 hyperkbd - ok
23:13:03.0560 0x1748 [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
23:13:03.0562 0x1748 i8042prt - ok
23:13:03.0566 0x1748 [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
23:13:03.0567 0x1748 iagpio - ok
23:13:03.0570 0x1748 [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
23:13:03.0572 0x1748 iai2c - ok
23:13:03.0575 0x1748 [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
23:13:03.0577 0x1748 iaLPSS2i_GPIO2 - ok
23:13:03.0582 0x1748 [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
23:13:03.0585 0x1748 iaLPSS2i_I2C - ok
23:13:03.0588 0x1748 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
23:13:03.0589 0x1748 iaLPSSi_GPIO - ok
23:13:03.0593 0x1748 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
23:13:03.0595 0x1748 iaLPSSi_I2C - ok
23:13:03.0607 0x1748 [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
23:13:03.0618 0x1748 iaStorAV - ok
23:13:03.0627 0x1748 [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
23:13:03.0634 0x1748 iaStorV - ok
23:13:03.0645 0x1748 [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
23:13:03.0653 0x1748 ibbus - ok
23:13:03.0658 0x1748 [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
23:13:03.0691 0x1748 ICCS - ok
23:13:03.0697 0x1748 [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc C:\WINDOWS\System32\tetheringservice.dll
23:13:03.0702 0x1748 icssvc - ok
23:13:03.0705 0x1748 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:13:03.0724 0x1748 IDriverT - ok
23:13:03.0742 0x1748 [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT C:\WINDOWS\System32\ikeext.dll
23:13:03.0756 0x1748 IKEEXT - ok
23:13:03.0760 0x1748 [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
23:13:03.0762 0x1748 IndirectKmd - ok
23:13:03.0834 0x1748 [ ACACD1B925D448558C1C9D0258749451, 896ECC9CD5EBE658B3A4211700029C8855DD7F38312F15716A6AC1FD0302CF6E ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
23:13:03.0902 0x1748 IntcAzAudAddService - ok
23:13:03.0919 0x1748 [ 2D66067C7A8A0112156BCD1C0BAA7042, 89F77EEE59FF3AD2E777DA15187F1447F6E112E8831417A0DE656ACB82E7B22E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
23:13:03.0926 0x1748 Intel(R) Capability Licensing Service Interface - ok
23:13:03.0930 0x1748 [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide C:\WINDOWS\system32\drivers\intelide.sys
23:13:03.0931 0x1748 intelide - ok
23:13:03.0934 0x1748 [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
23:13:03.0935 0x1748 intelpep - ok
23:13:03.0940 0x1748 [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
23:13:03.0942 0x1748 intelppm - ok
23:13:03.0946 0x1748 [ DB32758F3A7F6CCE81A5430080A2EA65, 36A26BAA884E96804F8EA0B12BB3E81BBE6D4EE704809904091445F36CAB5A29 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
23:13:03.0947 0x1748 iorate - ok
23:13:03.0951 0x1748 [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:13:03.0952 0x1748 IpFilterDriver - ok
23:13:03.0969 0x1748 [ EF1BB0EF8A12C32DD88C409706B8145E, 7AEDE717C258C29592CC8AEC40F61617E5382646E5141E1C0941882ACE5C5758 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
23:13:03.0984 0x1748 iphlpsvc - ok
23:13:03.0988 0x1748 [ 450DBDD716C7911F83E05F78EE18BFA2, 43C0DA172F632131898F315A53DEDD1AE99FB0620AB32B3A5B99FEC498C9AAE5 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
23:13:03.0990 0x1748 IPMIDRV - ok
23:13:03.0996 0x1748 [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
23:13:04.0000 0x1748 IPNAT - ok
23:13:04.0004 0x1748 [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda C:\WINDOWS\system32\drivers\irda.sys
23:13:04.0007 0x1748 irda - ok
23:13:04.0009 0x1748 [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
23:13:04.0010 0x1748 IRENUM - ok
23:13:04.0014 0x1748 [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon C:\WINDOWS\System32\irmon.dll
23:13:04.0015 0x1748 irmon - ok
23:13:04.0018 0x1748 [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
23:13:04.0019 0x1748 isapnp - ok
23:13:04.0026 0x1748 [ C9FD02D62E09337B67B0C61EC8CA38CC, DC77E935ECC8474BE9018F0937CB11C137073582B20A0EE107CE247FD9E1F9C1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
23:13:04.0030 0x1748 iScsiPrt - ok
23:13:04.0034 0x1748 [ B2381712638B0B714D0EEAB9A1F7C640, 113BCA8868057156EFDC7C079171308C1EBA4F979C85EB1265F42F95A499B086 ] iusb3hcs C:\WINDOWS\system32\drivers\iusb3hcs.sys
23:13:04.0035 0x1748 iusb3hcs - ok
23:13:04.0039 0x1748 [ 166FC0B36842135BC2D3C32DF70ED0D6, 83319957ECEFFF372C683C56DC6ECD34CD4B16A98F3F602E48108B124D07D975 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
23:13:04.0042 0x1748 jhi_service - ok
23:13:04.0045 0x1748 [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
23:13:04.0047 0x1748 kbdclass - ok
23:13:04.0050 0x1748 [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
23:13:04.0051 0x1748 kbdhid - ok
23:13:04.0054 0x1748 [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
23:13:04.0055 0x1748 kdnic - ok
23:13:04.0059 0x1748 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] KeyIso C:\WINDOWS\system32\lsass.exe
23:13:04.0060 0x1748 KeyIso - ok
23:13:04.0065 0x1748 [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
23:13:04.0067 0x1748 KSecDD - ok
23:13:04.0073 0x1748 [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
23:13:04.0076 0x1748 KSecPkg - ok
23:13:04.0079 0x1748 [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
23:13:04.0080 0x1748 ksthunk - ok
23:13:04.0089 0x1748 [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
23:13:04.0095 0x1748 KtmRm - ok
23:13:04.0100 0x1748 [ 4E444F41E69BBE2E0BAE34D5DFCB5732, ACAEFB839CF7A3113D026B9A715994C3DFF8797D73B991253959EF606C4FBC00 ] L1C C:\WINDOWS\System32\drivers\L1C63x64.sys
23:13:04.0102 0x1748 L1C - ok
23:13:04.0109 0x1748 [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
23:13:04.0115 0x1748 LanmanServer - ok
23:13:04.0122 0x1748 [ 33DBBCF71F68EA97D9FD34E4C9AB5AC6, 104F04A1560E75EB224A3825707CE51E8798ABD764F5CC3B854FFFC93A39AF60 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
23:13:04.0128 0x1748 LanmanWorkstation - ok
23:13:04.0132 0x1748 [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc C:\WINDOWS\System32\lfsvc.dll
23:13:04.0134 0x1748 lfsvc - ok
23:13:04.0137 0x1748 [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
23:13:04.0138 0x1748 LicenseManager - ok
23:13:04.0142 0x1748 [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
23:13:04.0143 0x1748 lltdio - ok
23:13:04.0150 0x1748 [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
23:13:04.0156 0x1748 lltdsvc - ok
23:13:04.0159 0x1748 [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
23:13:04.0161 0x1748 lmhosts - ok
23:13:04.0169 0x1748 [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
23:13:04.0174 0x1748 LMIGuardianSvc - ok
23:13:04.0181 0x1748 [ C56E64BA70DC822B84D100A6F8D690D3, 1F511FBDDDD6E8CC83C8D0BD152BBE8C4C9E103D2DDED93564DC0FB9962DD040 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:13:04.0184 0x1748 LMS - ok
23:13:04.0190 0x1748 [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
23:13:04.0192 0x1748 LSI_SAS - ok
23:13:04.0196 0x1748 [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
23:13:04.0198 0x1748 LSI_SAS2i - ok
23:13:04.0203 0x1748 [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
23:13:04.0205 0x1748 LSI_SAS3i - ok
23:13:04.0208 0x1748 [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
23:13:04.0210 0x1748 LSI_SSS - ok
23:13:04.0223 0x1748 [ D5EFC0BAEC21EDE6FE03D377D403B421, 41BE71AF7C896FD4C51EF7E3871AAB769164DFB8050DA43E48C7A100711414B4 ] LSM C:\WINDOWS\System32\lsm.dll
23:13:04.0233 0x1748 LSM - ok
23:13:04.0238 0x1748 [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
23:13:04.0240 0x1748 luafv - ok
23:13:04.0244 0x1748 [ CAAF0CD70FEE7C5110B1E62804E41B17, 48482A6C8D2296C4DC613304637C8DBB7DD1DB39326F27650EBCA6FD2793BCFD ] MapsBroker C:\WINDOWS\System32\moshost.dll
23:13:04.0246 0x1748 MapsBroker - ok
23:13:04.0250 0x1748 [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas C:\WINDOWS\system32\drivers\megasas.sys
23:13:04.0251 0x1748 megasas - ok
23:13:04.0255 0x1748 [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
23:13:04.0256 0x1748 megasas2i - ok
23:13:04.0267 0x1748 [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr C:\WINDOWS\system32\drivers\megasr.sys
23:13:04.0276 0x1748 megasr - ok
23:13:04.0280 0x1748 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
23:13:04.0281 0x1748 MEIx64 - ok
23:13:04.0284 0x1748 [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
23:13:04.0286 0x1748 MessagingService - ok
23:13:04.0303 0x1748 [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
23:13:04.0316 0x1748 mlx4_bus - ok
23:13:04.0320 0x1748 [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
23:13:04.0321 0x1748 MMCSS - ok
23:13:04.0325 0x1748 [ 0D50B3F3AB32D416786B58D4553859CE, 9DA4D7A30982E8B31C45BDB721AEF5240EAD9DA6839CF34FDDBCF123BF104F2C ] Modem C:\WINDOWS\system32\drivers\modem.sys
23:13:04.0325 0x1748 Modem - ok
23:13:04.0328 0x1748 [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor C:\WINDOWS\System32\drivers\monitor.sys
23:13:04.0329 0x1748 monitor - ok
23:13:04.0334 0x1748 [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
23:13:04.0336 0x1748 mouclass - ok
23:13:04.0338 0x1748 [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
23:13:04.0339 0x1748 mouhid - ok
23:13:04.0343 0x1748 [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
23:13:04.0345 0x1748 mountmgr - ok
23:13:04.0350 0x1748 [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:13:04.0353 0x1748 MozillaMaintenance - ok
23:13:04.0357 0x1748 [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
23:13:04.0359 0x1748 mpsdrv - ok
23:13:04.0375 0x1748 [ 779CFDB17EA07A6D26FEBBAC95B65772, 74D9542E8DCCD07396A45A45D2F500AA6F9DCC1DB785A6153EB3067E42F576A4 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
23:13:04.0389 0x1748 MpsSvc - ok
23:13:04.0395 0x1748 [ 4FC62380457DE25B69011D3542E954AC, D212DDD2446618A6215CF9FC370FA2634F027BC92D1D4999E019BEF8A86AA6EB ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
23:13:04.0398 0x1748 MQAC - ok
23:13:04.0403 0x1748 [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
23:13:04.0415 0x1748 MRxDAV - ok
23:13:04.0424 0x1748 [ E671EDAB0726E05ECEF4058B4CD73C4D, 9F4C50E635CE2204E3291C8D3D7F658A969E80722B8B6F0304228D9B434C20EA ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:13:04.0431 0x1748 mrxsmb - ok
23:13:04.0438 0x1748 [ D4D12BC29DE0F09280868FDCA65B3474, A6FE89ABD52087FEE52FDF31DDF4CB627ED400E94FDA86BEBF1D4763F1E42518 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
23:13:04.0443 0x1748 mrxsmb10 - ok
23:13:04.0449 0x1748 [ 93A77008A8932FC84A173C4E97E52874, B7510CF7998C538D68BD2ECDC512A0BFC7CB7362F598EE4110F728427AFF0F5A ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
23:13:04.0453 0x1748 mrxsmb20 - ok
23:13:04.0457 0x1748 [ 74C9D21523DAE0C18F413C196DF0058A, 3DB4B8CA368D9DD82FAE2C2BC828A21142C8D29780A7C8667188C447519FF702 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
23:13:04.0459 0x1748 MsBridge - ok
23:13:04.0464 0x1748 [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC C:\WINDOWS\System32\msdtc.exe
23:13:04.0467 0x1748 MSDTC - ok
23:13:04.0472 0x1748 [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
23:13:04.0473 0x1748 Msfs - ok
23:13:04.0476 0x1748 [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
23:13:04.0477 0x1748 msgpiowin32 - ok
23:13:04.0480 0x1748 [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
23:13:04.0481 0x1748 mshidkmdf - ok
23:13:04.0483 0x1748 [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
23:13:04.0484 0x1748 mshidumdf - ok
23:13:04.0487 0x1748 [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
23:13:04.0488 0x1748 msisadrv - ok
23:13:04.0492 0x1748 [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
23:13:04.0495 0x1748 MSiSCSI - ok
23:13:04.0498 0x1748 msiserver - ok
23:13:04.0501 0x1748 [ 13D614E6B51ECF36746C48CE829FA7F6, CAD63C0A4F7110093F84C58252C5803F14E3FC46584B79DA17EC86D49FEAEA64 ] MSKSSRV C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
23:13:04.0502 0x1748 MSKSSRV - ok
23:13:04.0505 0x1748 [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
23:13:04.0507 0x1748 MsLldp - ok
23:13:04.0510 0x1748 [ F3EF38D07A4ADCDF922EEEAF0FED7D4D, B9D436BFA29AA0A7B00889D96C4F8BC33C1809E19B7A71A69AB2E534E9794BF0 ] MSMQ C:\WINDOWS\system32\mqsvc.exe
23:13:04.0511 0x1748 MSMQ - ok
23:13:04.0514 0x1748 [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
23:13:04.0515 0x1748 MSPCLOCK - ok
23:13:04.0517 0x1748 [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM C:\WINDOWS\system32\DRIVERS\MSPQM.sys
23:13:04.0518 0x1748 MSPQM - ok
23:13:04.0526 0x1748 [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
23:13:04.0530 0x1748 MsRPC - ok
23:13:04.0535 0x1748 [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
23:13:04.0536 0x1748 mssmbios - ok
23:13:04.0539 0x1748 [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE C:\WINDOWS\system32\DRIVERS\MSTEE.sys
23:13:04.0539 0x1748 MSTEE - ok
23:13:04.0543 0x1748 [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
23:13:04.0544 0x1748 MTConfig - ok
23:13:04.0548 0x1748 [ 15D987C8F6CCD4AC94E070C5986762CB, 452FB0C48B86C7F8F53794CC2DDBF2B900B03A0383B2DE8F6A830F8CB0AFBAD8 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
23:13:04.0550 0x1748 Mup - ok
23:13:04.0555 0x1748 [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
23:13:04.0556 0x1748 mvumis - ok
23:13:04.0568 0x1748 [ DB31EBB04C871F422C36A0962DA7D38B, B1BC2344744F537FB2C7D07B415F860195B7795E185253F05C0817A3764FEC10 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
23:13:04.0576 0x1748 NativeWifiP - ok
23:13:04.0583 0x1748 [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
23:13:04.0586 0x1748 NcaSvc - ok
23:13:04.0594 0x1748 [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService C:\WINDOWS\System32\ncbservice.dll
23:13:04.0600 0x1748 NcbService - ok
23:13:04.0604 0x1748 [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
23:13:04.0606 0x1748 NcdAutoSetup - ok
23:13:04.0610 0x1748 [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
23:13:04.0612 0x1748 ndfltr - ok
23:13:04.0632 0x1748 [ D5564FC81350458ED570528C4E3B1CCF, DD3C5012492EF9BCE3BE635BBB3AA40B3C5F5FDBD795A76B327D9C994102AC2B ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
23:13:04.0650 0x1748 NDIS - ok
23:13:04.0654 0x1748 [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
23:13:04.0655 0x1748 NdisCap - ok
23:13:04.0660 0x1748 [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
23:13:04.0663 0x1748 NdisImPlatform - ok
23:13:04.0666 0x1748 [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:13:04.0668 0x1748 NdisTapi - ok
23:13:04.0671 0x1748 [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
23:13:04.0672 0x1748 Ndisuio - ok
23:13:04.0675 0x1748 [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
23:13:04.0676 0x1748 NdisVirtualBus - ok
23:13:04.0681 0x1748 [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
23:13:04.0685 0x1748 NdisWan - ok
23:13:04.0690 0x1748 [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:13:04.0693 0x1748 ndiswanlegacy - ok
23:13:04.0696 0x1748 [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
23:13:04.0698 0x1748 ndproxy - ok
23:13:04.0702 0x1748 [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
23:13:04.0704 0x1748 Ndu - ok
23:13:04.0708 0x1748 [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
23:13:04.0710 0x1748 NetAdapterCx - ok
23:13:04.0715 0x1748 [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
23:13:04.0716 0x1748 NetBIOS - ok
23:13:04.0724 0x1748 [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
23:13:04.0729 0x1748 NetBT - ok
23:13:04.0732 0x1748 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] Netlogon C:\WINDOWS\system32\lsass.exe
23:13:04.0734 0x1748 Netlogon - ok
23:13:04.0740 0x1748 [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman C:\WINDOWS\System32\netman.dll
23:13:04.0745 0x1748 Netman - ok
23:13:04.0751 0x1748 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:13:04.0754 0x1748 NetMsmqActivator - ok
23:13:04.0758 0x1748 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:13:04.0760 0x1748 NetPipeActivator - ok
23:13:04.0770 0x1748 [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
23:13:04.0779 0x1748 netprofm - ok
23:13:04.0785 0x1748 [ D65F295A049473E6A39EA9A0EA76CA32, 274FC0BA044EB2D14093AB0E561F7FACEE06A3F433C81343C8B926FA2F9BD251 ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
23:13:04.0791 0x1748 NetSetupSvc - ok
23:13:04.0795 0x1748 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:13:04.0796 0x1748 NetTcpActivator - ok
23:13:04.0800 0x1748 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:13:04.0802 0x1748 NetTcpPortSharing - ok
23:13:04.0811 0x1748 [ B996DE26A2E16053C9485F5905B05320, 30EB2CEB466A4F05A44F7CBFCDFD8CC3C27B5FCF1269C1B9410C48AB362D2A75 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
23:13:04.0817 0x1748 NgcCtnrSvc - ok
23:13:04.0833 0x1748 [ 54C31C2B815E2E26BB8158022F837C9C, CED660D1A58F635C6452F82FCB2EF8ACEEB7785E31617B2ADFD9EE69A2BDF2B8 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
23:13:04.0848 0x1748 NgcSvc - ok
23:13:04.0857 0x1748 [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
23:13:04.0864 0x1748 NlaSvc - ok
23:13:04.0867 0x1748 [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
23:13:04.0868 0x1748 Npfs - ok
23:13:04.0871 0x1748 [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
23:13:04.0872 0x1748 npsvctrig - ok
23:13:04.0875 0x1748 [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi C:\WINDOWS\system32\nsisvc.dll
23:13:04.0877 0x1748 nsi - ok
23:13:04.0880 0x1748 [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
23:13:04.0881 0x1748 nsiproxy - ok
23:13:04.0917 0x1748 [ DB69C6DA8B3DDFDC547D455CA23A8250, AE495CEB18924C8B21F7F150FF17CD00880F2E222D7B5155661798E0535D63C4 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
23:13:04.0943 0x1748 NTFS - ok
23:13:04.0949 0x1748 [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null C:\WINDOWS\system32\drivers\Null.sys
23:13:04.0949 0x1748 Null - ok
23:13:04.0958 0x1748 [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
23:13:04.0964 0x1748 NvContainerLocalSystem - ok
23:13:04.0972 0x1748 [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
23:13:04.0978 0x1748 NvContainerNetworkService - ok
23:13:04.0989 0x1748 [ 64DA1993B1973F049C1347DA1B05185E, 2A04E263DB13751D033E2F9B9518820CF4942EEAFA5A32488570EEB699EE2A96 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
23:13:04.0992 0x1748 NVHDA - ok
23:13:05.0011 0x1748 [ 5409D41DFB0EAB63511FE7889B2A687E, 32E8D8622798B8F16002EE617200F0172A98D984A925F6550A1E352ACFA0BDDF ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
23:13:05.0025 0x1748 NVIDIA Wireless Controller Service - ok
23:13:05.0231 0x1748 [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_848dea456d3c865e\nvlddmkm.sys
23:13:05.0426 0x1748 nvlddmkm - ok
23:13:05.0443 0x1748 [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
23:13:05.0445 0x1748 nvraid - ok
23:13:05.0451 0x1748 [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
23:13:05.0454 0x1748 nvstor - ok
23:13:05.0457 0x1748 [ 37527CCD2AAF5192D825084339CA964E, B1BE990411BA80D1F9E9F86F82F2B2762F87A5C028FB79A60DB325FAFE89D059 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
23:13:05.0458 0x1748 NvStreamKms - ok
23:13:05.0462 0x1748 [ 66B4D2AA9C733A40B1C673402E99A7D0, DD4297CCB3527C95E52132271C296D277FC4C5FB59731AF25FCC19A523A8D20C ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
23:13:05.0463 0x1748 nvvad_WaveExtensible - ok
23:13:05.0471 0x1748 [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
23:13:05.0477 0x1748 OneSyncSvc - ok
23:13:05.0510 0x1748 [ 3E498CE04DD40C60769854DF2CE8D21D, 28B9331787FE598A79E40DA839B022D353280BE0E8F0D20CE4AAB6284866DE48 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
23:13:05.0541 0x1748 Origin Client Service - ok
23:13:05.0576 0x1748 [ B66980E730FEF1E31BE39B09F55514A1, 756F7695AB112FB2FEBA905F5F9E7C9435823195DE164AF60071457BC047535E ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
23:13:05.0601 0x1748 Origin Web Helper Service - ok
23:13:05.0611 0x1748 [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
23:13:05.0617 0x1748 p2pimsvc - ok
23:13:05.0626 0x1748 [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc C:\WINDOWS\system32\p2psvc.dll
23:13:05.0634 0x1748 p2psvc - ok
23:13:05.0638 0x1748 [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport C:\WINDOWS\System32\drivers\parport.sys
23:13:05.0640 0x1748 Parport - ok
23:13:05.0645 0x1748 [ CDBD029BAEC8D09F6FBD404632D9AF28, 71F4401150CD4C9C6BBF2DA854CF07EA2F8C9BBE900833858F49134DDAF14414 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
23:13:05.0647 0x1748 partmgr - ok
23:13:05.0657 0x1748 [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
23:13:05.0666 0x1748 PcaSvc - ok
23:13:05.0673 0x1748 [ 29AF16726F4DD84376ECA85AB6AFF2C6, BEF9EA10637065365ED343C4EBA51191B9BEADD8F1F3362D3EFE75F40BE9A027 ] pci C:\WINDOWS\system32\drivers\pci.sys
23:13:05.0679 0x1748 pci - ok
23:13:05.0682 0x1748 [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide C:\WINDOWS\system32\drivers\pciide.sys
23:13:05.0683 0x1748 pciide - ok
23:13:05.0687 0x1748 [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
23:13:05.0690 0x1748 pcmcia - ok
23:13:05.0692 0x1748 [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
23:13:05.0694 0x1748 pcw - ok
23:13:05.0698 0x1748 [ 9EA203A07EFA6D74F07F32EF0DAB5CA6, D851F1CC748B4CD0E263931668FFF2FE20D5778267F4FF2237D565CFC171B5AF ] pdc C:\WINDOWS\system32\drivers\pdc.sys
23:13:05.0700 0x1748 pdc - ok
23:13:05.0713 0x1748 [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
23:13:05.0724 0x1748 PEAUTH - ok
23:13:05.0728 0x1748 [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
23:13:05.0730 0x1748 percsas2i - ok
23:13:05.0734 0x1748 [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
23:13:05.0736 0x1748 percsas3i - ok
23:13:05.0748 0x1748 [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
23:13:05.0749 0x1748 PerfHost - ok
23:13:05.0767 0x1748 [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
23:13:05.0790 0x1748 PhoneSvc - ok
23:13:05.0797 0x1748 [ B4AB2C0177715FFAED88A1223212043A, 1920792ADC78DD51EF98B6A9634D686EAED0848FB7EF74A0DCD3AEBA5AF41EC6 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
23:13:05.0802 0x1748 PimIndexMaintenanceSvc - ok
23:13:05.0827 0x1748 [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla C:\WINDOWS\system32\pla.dll
23:13:05.0849 0x1748 pla - ok
23:13:05.0855 0x1748 [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
23:13:05.0857 0x1748 PlugPlay - ok
23:13:05.0861 0x1748 [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
23:13:05.0863 0x1748 PnkBstrA - ok
23:13:05.0866 0x1748 [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
23:13:05.0867 0x1748 PNRPAutoReg - ok
23:13:05.0875 0x1748 [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
23:13:05.0880 0x1748 PNRPsvc - ok
23:13:05.0889 0x1748 [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
23:13:05.0896 0x1748 PolicyAgent - ok
23:13:05.0902 0x1748 [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power C:\WINDOWS\system32\umpo.dll
23:13:05.0905 0x1748 Power - ok
23:13:05.0909 0x1748 [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
23:13:05.0911 0x1748 PptpMiniport - ok
23:13:05.0963 0x1748 [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
23:13:06.0029 0x1748 PrintNotify - ok
23:13:06.0036 0x1748 [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor C:\WINDOWS\System32\drivers\processr.sys
23:13:06.0038 0x1748 Processor - ok
23:13:06.0046 0x1748 [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
23:13:06.0053 0x1748 ProfSvc - ok
23:13:06.0058 0x1748 [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
23:13:06.0061 0x1748 Psched - ok
23:13:06.0068 0x1748 [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE C:\WINDOWS\system32\qwave.dll
23:13:06.0074 0x1748 QWAVE - ok
23:13:06.0078 0x1748 [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
23:13:06.0079 0x1748 QWAVEdrv - ok
23:13:06.0082 0x1748 [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:13:06.0083 0x1748 RasAcd - ok
23:13:06.0087 0x1748 [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
23:13:06.0089 0x1748 RasAgileVpn - ok
23:13:06.0094 0x1748 [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto C:\WINDOWS\System32\rasauto.dll
23:13:06.0096 0x1748 RasAuto - ok
23:13:06.0100 0x1748 [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
23:13:06.0102 0x1748 Rasl2tp - ok
23:13:06.0115 0x1748 [ F79BFB5588B777C71734C1D1EC129D07, 9B9D70EC8978AAC19B2B94694EE1B9957C13DFDDFCBE8AA82C5F0D0EA04CDBDF ] RasMan C:\WINDOWS\System32\rasmans.dll
23:13:06.0126 0x1748 RasMan - ok
23:13:06.0130 0x1748 [ 9387DF155233D45D4E010F4F2FB52A57, CABC25DA4E512809AED0085767BDD94BF3C1DA792BFF8A009B5465D9110E7060 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:13:06.0131 0x1748 RasPppoe - ok
23:13:06.0135 0x1748 [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
23:13:06.0137 0x1748 RasSstp - ok
23:13:06.0145 0x1748 [ AF6963414B820B7C45578ED3300438A7, C00F60FD72608E6983D32642768AECE891DD816FADFA7B872BA88091C16B95D7 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:13:06.0152 0x1748 rdbss - ok
23:13:06.0156 0x1748 [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
23:13:06.0157 0x1748 rdpbus - ok
23:13:06.0162 0x1748 [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
23:13:06.0165 0x1748 RDPDR - ok
23:13:06.0170 0x1748 [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
23:13:06.0171 0x1748 RdpVideoMiniport - ok
23:13:06.0178 0x1748 [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
23:13:06.0182 0x1748 rdyboost - ok
23:13:06.0200 0x1748 [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
23:13:06.0211 0x1748 ReFSv1 - ok
23:13:06.0221 0x1748 [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
23:13:06.0230 0x1748 RemoteAccess - ok
23:13:06.0235 0x1748 [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
23:13:06.0238 0x1748 RemoteRegistry - ok
23:13:06.0250 0x1748 [ 0660F4A14F9D2A2F59B26B1D74F1A6D0, A9443B6B7ED1ECA22AC960A2C6A2BE18C0BA58CD7BCF60E7AA617CD3662D122D ] RetailDemo C:\WINDOWS\system32\RDXService.dll
23:13:06.0261 0x1748 RetailDemo - ok
23:13:06.0267 0x1748 [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc C:\WINDOWS\System32\RMapi.dll
23:13:06.0270 0x1748 RmSvc - ok
23:13:06.0274 0x1748 [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
23:13:06.0277 0x1748 RpcEptMapper - ok
23:13:06.0279 0x1748 [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator C:\WINDOWS\system32\locator.exe
23:13:06.0281 0x1748 RpcLocator - ok
23:13:06.0296 0x1748 [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] RpcSs C:\WINDOWS\system32\rpcss.dll
23:13:06.0307 0x1748 RpcSs - ok
23:13:06.0316 0x1748 [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
23:13:06.0319 0x1748 rspndr - ok
23:13:06.0326 0x1748 [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
23:13:06.0328 0x1748 s3cap - ok
23:13:06.0335 0x1748 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] SamSs C:\WINDOWS\system32\lsass.exe
23:13:06.0336 0x1748 SamSs - ok
23:13:06.0341 0x1748 [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
23:13:06.0343 0x1748 sbp2port - ok
23:13:06.0349 0x1748 [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
23:13:06.0354 0x1748 SCardSvr - ok
23:13:06.0360 0x1748 [ 5E8ECCE130A72107B6DFDBE26185A7FB, 811E2CE485BC14161FF629069BCCF53B2B8C6F8B1E1A6B3A3C86DBE4F85A5577 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
23:13:06.0365 0x1748 ScDeviceEnum - ok
23:13:06.0368 0x1748 [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
23:13:06.0369 0x1748 scfilter - ok
23:13:06.0385 0x1748 [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule C:\WINDOWS\system32\schedsvc.dll
23:13:06.0400 0x1748 Schedule - ok
23:13:06.0405 0x1748 [ 9055ADDFBA4C8B914C914CE693B55C0A, DB213AC36E14D856B81D2AFE46815402537A2ABEEA15032A9FF436F953129441 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
23:13:06.0406 0x1748 scmbus - ok
23:13:06.0411 0x1748 [ B6F2363584E62960846F7C3F00124A4F, 252189FF9D623CF69BF415FF7C7FE74B0BBF756B632420578BFAFF6595616CF7 ] scmdisk0101 C:\WINDOWS\System32\drivers\scmdisk0101.sys
23:13:06.0413 0x1748 scmdisk0101 - ok
23:13:06.0419 0x1748 [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
23:13:06.0421 0x1748 SCPolicySvc - ok
23:13:06.0428 0x1748 [ 7C3D10BEC8B0DBA00A78C78EB10B3AE2, A671C9CB97977613576D70607E106C7A29B9EA9E875C7C5AF293EE5903D7AD0A ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
23:13:06.0433 0x1748 sdbus - ok
23:13:06.0438 0x1748 [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
23:13:06.0442 0x1748 SDRSVC - ok
23:13:06.0445 0x1748 [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
23:13:06.0448 0x1748 sdstor - ok
23:13:06.0451 0x1748 [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon C:\WINDOWS\system32\seclogon.dll
23:13:06.0453 0x1748 seclogon - ok
23:13:06.0456 0x1748 [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS C:\WINDOWS\System32\sens.dll
23:13:06.0459 0x1748 SENS - ok
23:13:06.0481 0x1748 [ 2B4E090D06C60853C5C00CF255F9E02A, 4D4DBA7B04519622612BD4A4F28318CA2F5646C84CAFF8C5ACC9BF4C6031894E ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
23:13:06.0516 0x1748 SensorDataService - ok
23:13:06.0525 0x1748 [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService C:\WINDOWS\system32\SensorService.dll
23:13:06.0533 0x1748 SensorService - ok
23:13:06.0539 0x1748 [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
23:13:06.0542 0x1748 SensrSvc - ok
23:13:06.0546 0x1748 [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
23:13:06.0548 0x1748 SerCx - ok
23:13:06.0553 0x1748 [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
23:13:06.0556 0x1748 SerCx2 - ok
23:13:06.0558 0x1748 [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
23:13:06.0559 0x1748 Serenum - ok
23:13:06.0563 0x1748 [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial C:\WINDOWS\System32\drivers\serial.sys
23:13:06.0564 0x1748 Serial - ok
23:13:06.0567 0x1748 [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
23:13:06.0568 0x1748 sermouse - ok
23:13:06.0580 0x1748 [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ] SessionEnv C:\WINDOWS\system32\sessenv.dll
23:13:06.0588 0x1748 SessionEnv - ok
23:13:06.0593 0x1748 [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
23:13:06.0594 0x1748 sfloppy - ok
23:13:06.0604 0x1748 [ 832E933AA8DB9FD4733B96D8B6484D3F, 3A8E3D7ECA192EEE154CB568073B7211FDA06078EFC3BC7E961563A1BFDD0CAA ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
23:13:06.0613 0x1748 SharedAccess - ok
23:13:06.0625 0x1748 [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:13:06.0636 0x1748 ShellHWDetection - ok
23:13:06.0641 0x1748 [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
23:13:06.0645 0x1748 shpamsvc - ok
23:13:06.0648 0x1748 [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
23:13:06.0650 0x1748 SiSRaid2 - ok
23:13:06.0653 0x1748 [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
23:13:06.0655 0x1748 SiSRaid4 - ok
23:13:06.0662 0x1748 [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
23:13:06.0668 0x1748 SkypeUpdate - ok
23:13:06.0671 0x1748 [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost C:\WINDOWS\System32\smphost.dll
23:13:06.0673 0x1748 smphost - ok
23:13:06.0684 0x1748 [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
23:13:06.0694 0x1748 SmsRouter - ok
23:13:06.0701 0x1748 [ 6F4CE07D420FB657B5936F71101ABD41, CEC52984C56E578E0FFE12BE1B8148335F788B7D1751F2D0E79B944A41113C20 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
23:13:06.0702 0x1748 SNMPTRAP - ok
23:13:06.0713 0x1748 [ C994DF90427103CCB80F893FFD2B1CE8, 7E4B08095C77E68D337A3425EEA38F8FEC4D103CA7661E34FD96BF518DFB4BCB ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
23:13:06.0722 0x1748 spaceport - ok
23:13:06.0726 0x1748 [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
23:13:06.0728 0x1748 SpbCx - ok
23:13:06.0742 0x1748 [ 79DCE27E8C4CF6701BFE49EC2446BBF6, F51CBB7A45C3C878F41653FD5FBDC93CC302712B7725DAAB4D3475A1F4771E3D ] Spooler C:\WINDOWS\System32\spoolsv.exe
23:13:06.0755 0x1748 Spooler - ok
23:13:06.0836 0x1748 [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
23:13:06.0916 0x1748 sppsvc - ok
23:13:06.0925 0x1748 [ 53B623AD190024EADD9F04317CBBCC13, 0699BC79A7C55AF1830EED581319C5855C9E9E77BC11A2E542844F29007D59D3 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
23:13:06.0927 0x1748 SQLWriter - ok
23:13:06.0935 0x1748 [ E83830BB74AE8CBECEA0ECD94DE436F9, 4A34569A34260324EBD629039E1BF45A3527FC75B22D9A3DB6360A6EB365483A ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
23:13:06.0942 0x1748 srv - ok
23:13:06.0955 0x1748 [ 55CA5329D1ADEB8F8034045930147AE4, D4F31BC82700D166564C7F9CDCEA3ABAB4A37B55137C34572768DF46FDA9320A ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
23:13:06.0966 0x1748 srv2 - ok
23:13:06.0973 0x1748 [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
23:13:06.0977 0x1748 srvnet - ok
23:13:06.0984 0x1748 [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
23:13:06.0989 0x1748 SSDPSRV - ok
23:13:06.0995 0x1748 [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
23:13:07.0000 0x1748 SstpSvc - ok
23:13:07.0005 0x1748 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
23:13:07.0008 0x1748 ssudmdm - ok
23:13:07.0069 0x1748 [ 4E330AD1EED4A5D582EE415FD55953A2, 2C02E1F45F74D250110BA5117AA942495CB2EBAC7F2CCECC284B4FB8F47B13E1 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
23:13:07.0128 0x1748 StateRepository - ok
23:13:07.0155 0x1748 [ 9867A86327E8AE3806305F1BCF01211A, CCDDB2560B30D27CE662F1B02710E1FAA9331E6A27D9A6629EEDED2CBA822062 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:13:07.0177 0x1748 Steam Client Service - ok
23:13:07.0181 0x1748 [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
23:13:07.0182 0x1748 stexstor - ok
23:13:07.0194 0x1748 [ 91CB95B35481155BFE29C217CD237F27, CA66957DF1441D991453BEF02D768D44E5D9A484BC23C8874E8A7AC20904CB06 ] stisvc C:\WINDOWS\System32\wiaservc.dll
23:13:07.0205 0x1748 stisvc - ok
23:13:07.0210 0x1748 [ 53EB8CE34B55A1EE63424C8DB7388BFC, 5AB59117BA8A2844EB8693CCC19B217AE039B28C87519F96E1C845FE9BF456C2 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
23:13:07.0212 0x1748 storahci - ok
23:13:07.0216 0x1748 [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
23:13:07.0217 0x1748 storflt - ok
23:13:07.0221 0x1748 [ B66D8C75C9BC59D637177AB3B1C569A6, 76252A631F03EEBF5FDC7693F6B0A5E73838CDBE3157114CC96B8BBE88B476BF ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
23:13:07.0223 0x1748 stornvme - ok
23:13:07.0226 0x1748 [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
23:13:07.0228 0x1748 storqosflt - ok
23:13:07.0236 0x1748 [ B91FBE7CB4633FEB32AFBD0B48576396, 9EFDD92E8096CE5555F8DC3C870864E5515469603C2373B99B3607234633CA66 ] StorSvc C:\WINDOWS\system32\storsvc.dll
23:13:07.0244 0x1748 StorSvc - ok
23:13:07.0247 0x1748 [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
23:13:07.0248 0x1748 storufs - ok
23:13:07.0252 0x1748 [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
23:13:07.0253 0x1748 storvsc - ok
23:13:07.0256 0x1748 [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc C:\WINDOWS\system32\svsvc.dll
23:13:07.0258 0x1748 svsvc - ok
23:13:07.0260 0x1748 [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum C:\WINDOWS\System32\drivers\swenum.sys
23:13:07.0261 0x1748 swenum - ok
23:13:07.0271 0x1748 [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv C:\WINDOWS\System32\swprv.dll
23:13:07.0279 0x1748 swprv - ok
23:13:07.0283 0x1748 [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
23:13:07.0284 0x1748 Synth3dVsc - ok
23:13:07.0302 0x1748 [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain C:\WINDOWS\system32\sysmain.dll
23:13:07.0317 0x1748 SysMain - ok
23:13:07.0327 0x1748 [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
23:13:07.0335 0x1748 SystemEventsBroker - ok
23:13:07.0340 0x1748 [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
23:13:07.0344 0x1748 TabletInputService - ok
23:13:07.0351 0x1748 [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
23:13:07.0357 0x1748 TapiSrv - ok
23:13:07.0397 0x1748 [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
23:13:07.0433 0x1748 Tcpip - ok
23:13:07.0473 0x1748 [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
23:13:07.0503 0x1748 Tcpip6 - ok
23:13:07.0509 0x1748 [ 8DBB1BE20C36E6D19BCC89EEA00B953C, 8B97A7E53E1D77363AFF6A5AAEAD89EBAE28DCB8D82753C804FD7CD5646500AF ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
23:13:07.0511 0x1748 tcpipreg - ok
23:13:07.0516 0x1748 [ 9D2DD64A0B51C56285512DC9454340F6, ABB90CE6A55269F71AFB08E04969CF9A4EFD93F7A7189AF920EEE3E005214DDD ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
23:13:07.0518 0x1748 tdx - ok
23:13:07.0522 0x1748 [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
23:13:07.0523 0x1748 terminpt - ok
23:13:07.0541 0x1748 [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService C:\WINDOWS\System32\termsrv.dll
23:13:07.0554 0x1748 TermService - ok
23:13:07.0559 0x1748 [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes C:\WINDOWS\system32\themeservice.dll
23:13:07.0561 0x1748 Themes - ok
23:13:07.0568 0x1748 [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
23:13:07.0574 0x1748 TieringEngineService - ok
23:13:07.0585 0x1748 [ 3B3C607C3C62DFBEF61938DA2CAB94DF, E5EEA7F45A7BBFDF6F0003CD77E39958C451DD1B4B401876B5619A3C20F5C370 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
23:13:07.0595 0x1748 tiledatamodelsvc - ok
23:13:07.0600 0x1748 [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
23:13:07.0605 0x1748 TimeBrokerSvc - ok
23:13:07.0611 0x1748 [ 46171262D0E806779DEEDFCAB2F830CC, 7F4A4658B8BA217D99E5B5C0E01600C20DC96ECBCA32A5BA7FBE17D2A7B8BFD8 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
23:13:07.0615 0x1748 TPM - ok
23:13:07.0620 0x1748 [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks C:\WINDOWS\System32\trkwks.dll
23:13:07.0623 0x1748 TrkWks - ok
23:13:07.0627 0x1748 [ 09440FA30C020B4443391FAFCF4876E3, 208C7725F70C75D8C96CCAF5B22F83B8B1C66D8C9FFF48465B1C9F4A77425569 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
23:13:07.0630 0x1748 TrustedInstaller - ok
23:13:07.0634 0x1748 [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt C:\WINDOWS\system32\drivers\TsUsbFlt.sys
23:13:07.0635 0x1748 tsusbflt - ok
23:13:07.0638 0x1748 [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
23:13:07.0640 0x1748 TsUsbGD - ok
23:13:07.0644 0x1748 [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
23:13:07.0647 0x1748 tunnel - ok
23:13:07.0652 0x1748 [ F723552F65D44FE693DB1A383825B3A8, EF8C343C4EB5EEA4EC830378EF576CCD6CD4EEDEDD486C0F29697044E8C71F45 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
23:13:07.0664 0x1748 tzautoupdate - ok
23:13:07.0668 0x1748 [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
23:13:07.0670 0x1748 UASPStor - ok
23:13:07.0674 0x1748 [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
23:13:07.0675 0x1748 UcmCx0101 - ok
23:13:07.0679 0x1748 [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
23:13:07.0681 0x1748 UcmTcpciCx0101 - ok
23:13:07.0685 0x1748 [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
23:13:07.0686 0x1748 UcmUcsi - ok
23:13:07.0692 0x1748 [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
23:13:07.0695 0x1748 Ucx01000 - ok
23:13:07.0699 0x1748 [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
23:13:07.0700 0x1748 UdeCx - ok
23:13:07.0707 0x1748 [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
23:13:07.0712 0x1748 udfs - ok
23:13:07.0715 0x1748 [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
23:13:07.0717 0x1748 UEFI - ok
23:13:07.0723 0x1748 [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
23:13:07.0727 0x1748 Ufx01000 - ok
23:13:07.0731 0x1748 [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
23:13:07.0733 0x1748 UfxChipidea - ok
23:13:07.0738 0x1748 [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
23:13:07.0741 0x1748 ufxsynopsys - ok
23:13:07.0747 0x1748 [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
23:13:07.0749 0x1748 UI0Detect - ok
23:13:07.0753 0x1748 [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus C:\WINDOWS\System32\drivers\umbus.sys
23:13:07.0754 0x1748 umbus - ok
23:13:07.0757 0x1748 [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
23:13:07.0758 0x1748 UmPass - ok
23:13:07.0765 0x1748 [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
23:13:07.0771 0x1748 UmRdpService - ok
23:13:07.0792 0x1748 [ B8272BB8D4982C496FDC704809C38E02, F93855D932FB1DBBCC86E82C0FE0DC9ECF93BBD629D2CA9D0BE7E075E114B7FF ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
23:13:07.0811 0x1748 UnistoreSvc - ok
23:13:07.0822 0x1748 [ 0F9E1BC7E2BEA1A4108EC9736CF0C2D9, 0D256DC2A6B867E7077DD3A5C18FF0345D2FEEC7A2245B037530761248BC9FB1 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
23:13:07.0827 0x1748 UNS - ok
23:13:07.0837 0x1748 [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost C:\WINDOWS\System32\upnphost.dll
23:13:07.0845 0x1748 upnphost - ok
23:13:07.0848 0x1748 [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
23:13:07.0849 0x1748 UrsChipidea - ok
23:13:07.0853 0x1748 [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
23:13:07.0854 0x1748 UrsCx01000 - ok
23:13:07.0857 0x1748 [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
23:13:07.0858 0x1748 UrsSynopsys - ok
23:13:07.0863 0x1748 [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
23:13:07.0866 0x1748 usbccgp - ok
23:13:07.0870 0x1748 [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
23:13:07.0872 0x1748 usbcir - ok
23:13:07.0876 0x1748 [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
23:13:07.0878 0x1748 usbehci - ok
23:13:07.0887 0x1748 [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
23:13:07.0895 0x1748 usbhub - ok
23:13:07.0906 0x1748 [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
23:13:07.0914 0x1748 USBHUB3 - ok
23:13:07.0918 0x1748 [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
23:13:07.0919 0x1748 usbohci - ok
23:13:07.0922 0x1748 [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
23:13:07.0922 0x1748 usbprint - ok
23:13:07.0926 0x1748 [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
23:13:07.0927 0x1748 usbser - ok
23:13:07.0932 0x1748 [ 0CC16F7B91C57AE9A4E44425A295FDAA, 7CEE11955E5742DA390601F565412C14A7481B8747C495CCD246696C56B426DC ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
23:13:07.0934 0x1748 USBSTOR - ok
23:13:07.0937 0x1748 [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
23:13:07.0938 0x1748 usbuhci - ok
23:13:07.0946 0x1748 [ 95BCCEFBC40D06484CF16144FE79B8A5, 8ABA73C5FFEDD319FB96B807AD08716698E557522478DF1A2C5D662675636AE0 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
23:13:07.0952 0x1748 USBXHCI - ok
23:13:07.0979 0x1748 [ 4CC81AB9D380A6264FF4C0C1512CF965, 76C33053D1C9155B0F3F8392FF982AD4EABEE2BBBEE89EA41DBFE8E436973EB0 ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
23:13:08.0003 0x1748 UserDataSvc - ok
23:13:08.0023 0x1748 [ AA24C61D88E36BA1144072227922173D, 2EBBC827E740F72EA2E75745E585378189BC0DEE91CACD7FA31BDBC5EFCF8733 ] UserManager C:\WINDOWS\System32\usermgr.dll
23:13:08.0040 0x1748 UserManager - ok
23:13:08.0052 0x1748 [ EBF9E40845362DBE2AD0DB3077269488, A6363006350D097F95B03A2F44E1D3FBD3BC40048BE57C715CD7CBC22D1EE70B ] UsoSvc C:\WINDOWS\system32\usocore.dll
23:13:08.0062 0x1748 UsoSvc - ok
23:13:08.0066 0x1748 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] VaultSvc C:\WINDOWS\system32\lsass.exe
23:13:08.0067 0x1748 VaultSvc - ok
23:13:08.0070 0x1748 [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
23:13:08.0072 0x1748 vdrvroot - ok
23:13:08.0084 0x1748 [ 0783EDE1FA94649ED7F3CEF6A734041A, 1A13A613EF6B67459031C7994FFC6F32F73E02E0F123A171618E4F011C635684 ] vds C:\WINDOWS\System32\vds.exe
23:13:08.0096 0x1748 vds - ok
23:13:08.0102 0x1748 [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
23:13:08.0106 0x1748 VerifierExt - ok
23:13:08.0119 0x1748 [ 3BB8D153A9A514EC9FFCB586251A1925, 5E4B46511F9791699826DC63B35528544347166BDE9981FB93F1F7F2A09599C7 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
23:13:08.0130 0x1748 vhdmp - ok
23:13:08.0134 0x1748 [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
23:13:08.0135 0x1748 vhf - ok
23:13:08.0138 0x1748 [ C67A307C9B53D1C7EFF098EC63DDDAF3, FEDFA1F46706E75FC102D945F355AAB65C5CC9C2941BFB27F3EA8438ED55B47B ] VHidXInput C:\WINDOWS\System32\drivers\VXInput.sys
23:13:08.0139 0x1748 VHidXInput - ok
23:13:08.0143 0x1748 [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
23:13:08.0145 0x1748 vmbus - ok
23:13:08.0148 0x1748 [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
23:13:08.0149 0x1748 VMBusHID - ok
23:13:08.0153 0x1748 [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
23:13:08.0153 0x1748 vmgid - ok
|
|
13.01.2017, 23:25
| #6 |
| | PUP.Optional.Reimage mit MB gefunden Teil 2 von Kaspersky Code:
ATTFilter 23:13:08.0161 0x1748 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
23:13:08.0167 0x1748 vmicguestinterface - ok
23:13:08.0174 0x1748 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
23:13:08.0178 0x1748 vmicheartbeat - ok
23:13:08.0185 0x1748 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
23:13:08.0189 0x1748 vmickvpexchange - ok
23:13:08.0197 0x1748 [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
23:13:08.0203 0x1748 vmicrdv - ok
23:13:08.0211 0x1748 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
23:13:08.0215 0x1748 vmicshutdown - ok
23:13:08.0222 0x1748 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
23:13:08.0226 0x1748 vmictimesync - ok
23:13:08.0233 0x1748 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
23:13:08.0237 0x1748 vmicvmsession - ok
23:13:08.0245 0x1748 [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
23:13:08.0250 0x1748 vmicvss - ok
23:13:08.0255 0x1748 [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
23:13:08.0256 0x1748 volmgr - ok
23:13:08.0264 0x1748 [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
23:13:08.0270 0x1748 volmgrx - ok
23:13:08.0279 0x1748 [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
23:13:08.0285 0x1748 volsnap - ok
23:13:08.0288 0x1748 [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume C:\WINDOWS\system32\drivers\volume.sys
23:13:08.0289 0x1748 volume - ok
23:13:08.0292 0x1748 [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
23:13:08.0294 0x1748 vpci - ok
23:13:08.0300 0x1748 [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
23:13:08.0303 0x1748 vsmraid - ok
23:13:08.0328 0x1748 [ 01FFD5AF533F2CFDF26DDDC9313731C1, BFF0F2E57CD2358AC8F519F6F5692A46D97EC4E9B763D47101CEF31712FD4738 ] VSS C:\WINDOWS\system32\vssvc.exe
23:13:08.0350 0x1748 VSS - ok
23:13:08.0359 0x1748 [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
23:13:08.0364 0x1748 VSTXRAID - ok
23:13:08.0367 0x1748 [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
23:13:08.0368 0x1748 vwifibus - ok
23:13:08.0372 0x1748 [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
23:13:08.0373 0x1748 vwififlt - ok
23:13:08.0384 0x1748 [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time C:\WINDOWS\system32\w32time.dll
23:13:08.0404 0x1748 W32Time - ok
23:13:08.0409 0x1748 [ 4053FB949F48647A327BC18DFEEA4374, 52511C35854A673ADCD9084FEF9BC6A339BCA0290374B81140A371D67B13A8FB ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
23:13:08.0427 0x1748 w3logsvc - ok
23:13:08.0439 0x1748 [ 85461F6AD65CCE84A7BC6D9F2A5861B3, 0C9A662F1BADF429B1DF62E91F4626DE996F84945D3A42D26A0FA09EC15CC9D7 ] W3SVC C:\WINDOWS\system32\inetsrv\iisw3adm.dll
23:13:08.0447 0x1748 W3SVC - ok
23:13:08.0451 0x1748 [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
23:13:08.0453 0x1748 WacomPen - ok
23:13:08.0462 0x1748 [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService C:\WINDOWS\system32\WalletService.dll
23:13:08.0470 0x1748 WalletService - ok
23:13:08.0474 0x1748 [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:13:08.0476 0x1748 wanarp - ok
23:13:08.0479 0x1748 [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:13:08.0480 0x1748 wanarpv6 - ok
23:13:08.0491 0x1748 [ 85461F6AD65CCE84A7BC6D9F2A5861B3, 0C9A662F1BADF429B1DF62E91F4626DE996F84945D3A42D26A0FA09EC15CC9D7 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
23:13:08.0498 0x1748 WAS - ok
23:13:08.0524 0x1748 [ 30B8286F8FE1AE90A583100D45E02247, 3C86A4A5E21F9A1267EA231B20914E0A162BA4C25FE8917AD3AB6D504DA5BE0C ] wbengine C:\WINDOWS\system32\wbengine.exe
23:13:08.0548 0x1748 wbengine - ok
23:13:08.0564 0x1748 [ 8C521D161445C3E1F38A494E7649E70D, F00990B2FE1FB52C74A2057E6480C5EBF2BDBC32955CC03C6B63360F20A49A18 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
23:13:08.0578 0x1748 WbioSrvc - ok
23:13:08.0583 0x1748 [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
23:13:08.0586 0x1748 wcifs - ok
23:13:08.0598 0x1748 [ 32960EA9CF836D7DD77767DCB68CE230, 679446A4FAB0331C181D2716CAEA225267C6164BB9867E360C5B3D6AB1083195 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
23:13:08.0611 0x1748 Wcmsvc - ok
23:13:08.0621 0x1748 [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
23:13:08.0630 0x1748 wcncsvc - ok
23:13:08.0634 0x1748 [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
23:13:08.0635 0x1748 wcnfs - ok
23:13:08.0639 0x1748 [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
23:13:08.0640 0x1748 WdBoot - ok
23:13:08.0656 0x1748 [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
23:13:08.0669 0x1748 Wdf01000 - ok
23:13:08.0677 0x1748 [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
23:13:08.0682 0x1748 WdFilter - ok
23:13:08.0686 0x1748 [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
23:13:08.0689 0x1748 WdiServiceHost - ok
23:13:08.0693 0x1748 [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
23:13:08.0695 0x1748 WdiSystemHost - ok
23:13:08.0709 0x1748 [ 8CB606A3057355FD5A9DBDD1A0AC94EF, 6DD0B4A2270633086EBB569A00B87430EE6EF173525E341404B15845B57BE86D ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
23:13:08.0731 0x1748 wdiwifi - ok
23:13:08.0736 0x1748 [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
23:13:08.0738 0x1748 WdNisDrv - ok
23:13:08.0740 0x1748 WdNisSvc - ok
23:13:08.0747 0x1748 [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient C:\WINDOWS\System32\webclnt.dll
23:13:08.0753 0x1748 WebClient - ok
23:13:08.0759 0x1748 [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
23:13:08.0764 0x1748 Wecsvc - ok
23:13:08.0768 0x1748 [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
23:13:08.0770 0x1748 WEPHOSTSVC - ok
23:13:08.0775 0x1748 [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
23:13:08.0778 0x1748 wercplsupport - ok
23:13:08.0783 0x1748 [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
23:13:08.0787 0x1748 WerSvc - ok
23:13:08.0792 0x1748 [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
23:13:08.0795 0x1748 WFPLWFS - ok
23:13:08.0799 0x1748 [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
23:13:08.0802 0x1748 WiaRpc - ok
23:13:08.0806 0x1748 [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
23:13:08.0807 0x1748 WIMMount - ok
23:13:08.0809 0x1748 WinDefend - ok
23:13:08.0816 0x1748 [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
23:13:08.0818 0x1748 WindowsTrustedRT - ok
23:13:08.0822 0x1748 [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
23:13:08.0822 0x1748 WindowsTrustedRTProxy - ok
23:13:08.0838 0x1748 [ C2A3B07F0118D61086C99BDCBAB6A6A3, 04D646BEF1C6F427503C594F0ECBB33140C3991A3A7AFB66B2C9581E358F9FD2 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
23:13:08.0851 0x1748 WinHttpAutoProxySvc - ok
23:13:08.0855 0x1748 [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
23:13:08.0856 0x1748 WinMad - ok
23:13:08.0864 0x1748 [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
23:13:08.0868 0x1748 Winmgmt - ok
23:13:08.0910 0x1748 [ B8C0D620219ECAA23A2AC841EAF454D1, FB527C4D36929D7FAE2A837727C557B7823A72069EBCAB7D16C49E8B21E8D952 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
23:13:08.0952 0x1748 WinRM - ok
23:13:08.0961 0x1748 [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
23:13:08.0963 0x1748 WINUSB - ok
23:13:08.0967 0x1748 [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
23:13:08.0969 0x1748 WinVerbs - ok
23:13:08.0981 0x1748 [ ECD999D8412A3473C26B118F89DB9908, 5FB9B93E4B5482CCFF01D805DFA386FD8D3441BC81E7BD5DF89EE3078FD724F3 ] wisvc C:\WINDOWS\system32\flightsettings.dll
23:13:08.0991 0x1748 wisvc - ok
23:13:09.0030 0x1748 [ 7671078AEF4C0203B053A9642C401FF7, BBFADA89CD31F20ADDBFAFAD2E492C72D82BF2F8B823BB6773F04D229B62534C ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
23:13:09.0081 0x1748 WlanSvc - ok
23:13:09.0117 0x1748 [ E15711970C5BE05E8D70B294D0AFF621, 30670CFC4DA57B4A3E0E895E4111100D847BB8041A258A303524CD96DC566482 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
23:13:09.0149 0x1748 wlidsvc - ok
23:13:09.0153 0x1748 [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
23:13:09.0154 0x1748 WmiAcpi - ok
23:13:09.0161 0x1748 [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
23:13:09.0165 0x1748 wmiApSrv - ok
23:13:09.0168 0x1748 WMPNetworkSvc - ok
23:13:09.0174 0x1748 [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
23:13:09.0176 0x1748 Wof - ok
23:13:09.0207 0x1748 [ 909CB4BBF7B08E78C363000E09E79A6F, 217205D1B5EE03274AFF9405AED6D2A5665CBA4C3876E84B53DA44920CDF9CB1 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
23:13:09.0235 0x1748 workfolderssvc - ok
23:13:09.0241 0x1748 [ F02930EB91596042F2221397D60AFCE5, 10E2AB0993B67CBAA9E11C68280608965064EC9F7E0C570F5B453FACADB8AB5D ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
23:13:09.0244 0x1748 WPDBusEnum - ok
23:13:09.0247 0x1748 [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
23:13:09.0248 0x1748 WpdUpFltr - ok
23:13:09.0254 0x1748 [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService C:\WINDOWS\system32\WpnService.dll
23:13:09.0260 0x1748 WpnService - ok
23:13:09.0264 0x1748 [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
23:13:09.0267 0x1748 WpnUserService - ok
23:13:09.0271 0x1748 [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
23:13:09.0272 0x1748 ws2ifsl - ok
23:13:09.0278 0x1748 [ 9A0E0B836413EB0BC885532D2A5389D6, AFEE4A0578D5581E4D72999A33C0DEA6253BD891F611AFF9AFDE4160A60105F3 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
23:13:09.0282 0x1748 wscsvc - ok
23:13:09.0285 0x1748 WSearch - ok
23:13:09.0322 0x1748 [ DDB7E452A99E0E5244105C6D2CF4BC9E, 1364B03AFFD20D339A2EBA303575BCCBC2D122D89810B1E3593CC55F93F9B79A ] wuauserv C:\WINDOWS\system32\wuaueng.dll
23:13:09.0357 0x1748 wuauserv - ok
23:13:09.0363 0x1748 [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
23:13:09.0365 0x1748 WudfPf - ok
23:13:09.0371 0x1748 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd C:\WINDOWS\system32\drivers\WudfRd.sys
23:13:09.0374 0x1748 WUDFRd - ok
23:13:09.0379 0x1748 [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
23:13:09.0382 0x1748 wudfsvc - ok
23:13:09.0388 0x1748 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:13:09.0390 0x1748 WUDFWpdFs - ok
23:13:09.0395 0x1748 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:13:09.0398 0x1748 WUDFWpdMtp - ok
23:13:09.0420 0x1748 [ E231728BC515A4B85543AF74A1FEDFCB, 5D250D7D789B5BB56BFA2E7A109BCEB3686B7636C54D89F4E9804101D145C955 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
23:13:09.0440 0x1748 WwanSvc - ok
23:13:09.0460 0x1748 [ F39D6915451D9226AC9A5E7AE70E2ABA, E05D678DC0423A4D0EB8B3BB5A942721BB4F3B0BED22748252DBD6053FE956F1 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
23:13:09.0476 0x1748 XblAuthManager - ok
23:13:09.0498 0x1748 [ 765FF96467A26C4C03281ECA426EC2D9, 2526B03C518D72F429C29BA4D4F11707AF277BF71520A1A92238A932950AE161 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
23:13:09.0516 0x1748 XblGameSave - ok
23:13:09.0523 0x1748 [ 9627BBAA50878F6833A6A7843EE3B1D9, 637566BB56501C4D11E3B6E6AC1C602D880C9D357CCE3DF1DF74EE672744F2B7 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
23:13:09.0540 0x1748 xboxgip - ok
23:13:09.0558 0x1748 [ 335E6F2BE58523B295945C840C185B00, 94ED7E2CB212A3D55B8A2CB90CD1D02A6AF92DC0DDD487CB5B7CAC9883343460 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
23:13:09.0575 0x1748 XboxNetApiSvc - ok
23:13:09.0579 0x1748 [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
23:13:09.0589 0x1748 xinputhid - ok
23:13:09.0590 0x1748 ================ Scan global ===============================
23:13:09.0593 0x1748 [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\WINDOWS\system32\basesrv.dll
23:13:09.0599 0x1748 [ 4C08BF958476A137C78B62B22B5F90A4, 11DDD033896C96F8F7F1A1EDD0F4E0F07AFBB3202DC8A2E5E3ADB51C4D0700D4 ] C:\WINDOWS\system32\winsrv.dll
23:13:09.0605 0x1748 [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\WINDOWS\system32\sxssrv.dll
23:13:09.0615 0x1748 [ 3C69CC28665854F1AAB4B4005005FA31, 2750F5ECCD448C07E3402AA64EA625D27C6BC1D000A3FFE57C03D62428BB46C4 ] C:\WINDOWS\system32\services.exe
23:13:09.0621 0x1748 [ Global ] - ok
23:13:09.0621 0x1748 ================ Scan MBR ==================================
23:13:09.0623 0x1748 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:13:09.0669 0x1748 \Device\Harddisk0\DR0 - ok
23:13:09.0683 0x1748 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
23:13:09.0763 0x1748 \Device\Harddisk1\DR1 - ok
23:13:09.0767 0x1748 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
23:13:09.0771 0x1748 \Device\Harddisk2\DR2 - ok
23:13:09.0777 0x1748 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR5
23:13:09.0781 0x1748 \Device\Harddisk5\DR5 - ok
23:13:09.0781 0x1748 ================ Scan VBR ==================================
23:13:09.0783 0x1748 [ 408C3C85845A7B0FDB07BD6B15043C2E ] \Device\Harddisk0\DR0\Partition1
23:13:09.0784 0x1748 \Device\Harddisk0\DR0\Partition1 - ok
23:13:09.0786 0x1748 [ 2172AD6282536670FA9CF28F2B1411A3 ] \Device\Harddisk0\DR0\Partition2
23:13:09.0787 0x1748 \Device\Harddisk0\DR0\Partition2 - ok
23:13:09.0789 0x1748 [ 34757113D870A44A4BBFADBE960383A1 ] \Device\Harddisk1\DR1\Partition1
23:13:09.0790 0x1748 \Device\Harddisk1\DR1\Partition1 - ok
23:13:09.0792 0x1748 [ D75C534AB789774D260AA13FD4DFC06C ] \Device\Harddisk1\DR1\Partition2
23:13:09.0793 0x1748 \Device\Harddisk1\DR1\Partition2 - ok
23:13:09.0806 0x1748 [ CBBD98436E7C3560FC16C6F7DE1A3339 ] \Device\Harddisk1\DR1\Partition3
23:13:09.0807 0x1748 \Device\Harddisk1\DR1\Partition3 - ok
23:13:09.0809 0x1748 [ FE6DE43A53F209624EC6CF0239621713 ] \Device\Harddisk2\DR2\Partition1
23:13:09.0810 0x1748 \Device\Harddisk2\DR2\Partition1 - ok
23:13:09.0813 0x1748 [ FB38D778921383BC9057E0EF579D00E9 ] \Device\Harddisk5\DR5\Partition1
23:13:09.0815 0x1748 \Device\Harddisk5\DR5\Partition1 - ok
23:13:09.0815 0x1748 ================ Scan generic autorun ======================
23:13:09.0996 0x1748 [ 1F590BA022251AF63ED0CD0DAFD49052, 397C28F9C27A851F5893B4271EB5DB38520ED7146DEACDAC82BD5B82D1C2447B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:13:10.0137 0x1748 RtHDVCpl - ok
23:13:10.0181 0x1748 [ 08D7625AD933D37E347ABF4448A6E962, 86451216775842E8F1B7714E3083CD4A1CA007EA74A2FE4FB8DA2FAD41D6D1CA ] C:\Program Files\AudioMX HS-11B Headset\CPL\FaceLift_x64.exe
23:13:10.0334 0x1748 Cm108BSound - ok
23:13:10.0338 0x1748 [ C7645D43451C6D94D87F4D07BDE59C89, 495BBA47FC43EE23054FCD419F2F00457162D1C04296900C6AEA551102A810F3 ] C:\WINDOWS\system32\rundll32.exe
23:13:10.0340 0x1748 ShadowPlay - ok
23:13:10.0341 0x1748 WindowsDefender - ok
23:13:10.0348 0x1748 [ 6BA8D86746935498D64CB5CF6286F2EB, E47D1DEE39451428344233DB15412BCB486C4F6FE1D0426F20AA4C6245387926 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
23:13:10.0351 0x1748 USB3MON - ok
23:13:10.0436 0x1748 [ E5255D63DD01AA9F1CC4355FE366E2D3, 2E28C14DC1FEAE10626D37FF4C1DAE27F3801A40EA973E02E42B48185CBBC89B ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
23:13:10.0517 0x1748 LogMeIn Hamachi Ui - ok
23:13:10.0532 0x1748 [ F9D9B0E9BB2181C88DD252E8119DF37D, CAC0E9DB747B1AF004904D29FF502D7F993BA7BD030D92242EA172486F5E4329 ] C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitor.EXE
23:13:10.0541 0x1748 RoccatTyon - ok
23:13:10.0551 0x1748 [ E9FA6BDC0D89E7743A111ED8438BBD06, 3A98B6188614625B07541A0199BB37C80D04C845FCF4EDB99EC12ED419822F7D ] C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitorW.EXE
23:13:10.0559 0x1748 RoccatTyonW - ok
23:13:10.0698 0x1748 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:10.0822 0x1748 OneDriveSetup - ok
23:13:10.0972 0x1748 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:11.0072 0x1748 OneDriveSetup - ok
23:13:11.0103 0x1748 [ 44348495F9D6ED21F4EFB3FF80677D99, 05B76248764B2BF7F9229626D7EFAFF96B724D38A82969EBE376CBE879E30450 ] C:\Users\ChAzubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
23:13:11.0120 0x1748 OneDrive - ok
23:13:11.0264 0x1748 [ 2269768074F6A93E454BA384ED9652E2, 3BB698018941471327A3031CC0F4011D69EBA03B00E9E6F2D99922639DCCDA59 ] C:\Program Files\CCleaner\CCleaner64.exe
23:13:11.0402 0x1748 CCleaner Monitoring - ok
23:13:11.0461 0x1748 [ 0B31486D156CFC9C7BB5E6B2FBF19C6F, 0444F8CF7298A23AFA95F1EEEC034D76A171391C6F42FCB3FBBB21D6317A0006 ] C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe
23:13:11.0499 0x1748 Amazon Music - ok
23:13:11.0631 0x1748 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:11.0731 0x1748 OneDriveSetup - ok
23:13:11.0747 0x1748 [ 2781E6EF593909A8B73FE1AD397F778A, E892D6C57F8903E20129E75A9B877690229280FD8106B5C7F96173175EA1AC4E ] C:\Program Files (x86)\Windows Mail\wab.exe
23:13:11.0768 0x1748 WAB Migrate - ok
23:13:11.0769 0x1748 Waiting for KSN requests completion. In queue: 223
23:13:12.0780 0x1748 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
23:13:12.0783 0x1748 Win FW state via NFP2: enabled ( trusted )
23:13:12.0885 0x1748 ============================================================
23:13:12.0885 0x1748 Scan finished
23:13:12.0885 0x1748 ============================================================
23:13:12.0892 0x121c Detected object count: 0
23:13:12.0892 0x121c Actual detected object count: 0
23:13:41.0325 0x0630 ============================================================
23:13:41.0325 0x0630 Scan started
23:13:41.0325 0x0630 Mode: Manual; SigCheck; TDLFS;
23:13:41.0325 0x0630 ============================================================
23:13:41.0325 0x0630 KSN ping started
23:13:41.0356 0x0630 KSN ping finished: true
23:13:41.0799 0x0630 ================ Scan system memory ========================
23:13:41.0799 0x0630 System memory - ok
23:13:41.0800 0x0630 ================ Scan services =============================
23:13:41.0828 0x0630 [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
23:13:41.0871 0x0630 1394ohci - ok
23:13:41.0875 0x0630 [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
23:13:41.0886 0x0630 3ware - ok
23:13:41.0899 0x0630 [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
23:13:41.0921 0x0630 ACPI - ok
23:13:41.0924 0x0630 [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
23:13:41.0937 0x0630 AcpiDev - ok
23:13:41.0942 0x0630 [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
23:13:41.0952 0x0630 acpiex - ok
23:13:41.0955 0x0630 [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
23:13:41.0967 0x0630 acpipagr - ok
23:13:41.0970 0x0630 [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
23:13:41.0984 0x0630 AcpiPmi - ok
23:13:41.0987 0x0630 [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
23:13:41.0996 0x0630 acpitime - ok
23:13:42.0001 0x0630 [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:13:42.0008 0x0630 AdobeARMservice - ok
23:13:42.0030 0x0630 [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
23:13:42.0058 0x0630 ADP80XX - ok
23:13:42.0072 0x0630 [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD C:\WINDOWS\system32\drivers\afd.sys
23:13:42.0090 0x0630 AFD - ok
23:13:42.0098 0x0630 [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
23:13:42.0118 0x0630 ahcache - ok
23:13:42.0122 0x0630 [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter C:\WINDOWS\System32\AJRouter.dll
23:13:42.0137 0x0630 AJRouter - ok
23:13:42.0141 0x0630 [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG C:\WINDOWS\System32\alg.exe
23:13:42.0156 0x0630 ALG - ok
23:13:42.0161 0x0630 [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
23:13:42.0176 0x0630 AmdK8 - ok
23:13:42.0181 0x0630 [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
23:13:42.0193 0x0630 AmdPPM - ok
23:13:42.0197 0x0630 [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
23:13:42.0205 0x0630 amdsata - ok
23:13:42.0212 0x0630 [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
23:13:42.0225 0x0630 amdsbs - ok
23:13:42.0228 0x0630 [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
23:13:42.0236 0x0630 amdxata - ok
23:13:42.0240 0x0630 [ 5B0F4FB165256DE463A51E3A3127969E, 6751ADFFE95FA671C584427A9624EEB79518DE08132FD7A83148700B75487316 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
23:13:42.0257 0x0630 AppHostSvc - ok
23:13:42.0262 0x0630 [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID C:\WINDOWS\system32\drivers\appid.sys
23:13:42.0272 0x0630 AppID - ok
23:13:42.0277 0x0630 [ 74A24CF946279111D7F203B36569EC02, FD67D36804744B4FE3E20BA891852575E6C2DA6515643B2F4B4210118B0FCCDA ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
23:13:42.0296 0x0630 AppIDSvc - ok
23:13:42.0301 0x0630 [ 73FAA5517CCD1332F00192A303CF2026, 75636222BFF381A3EECA010752DF7DC1603A395B91FF7FBF92127B5CA8EFFEE5 ] Appinfo C:\WINDOWS\System32\appinfo.dll
23:13:42.0317 0x0630 Appinfo - ok
23:13:42.0320 0x0630 [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
23:13:42.0341 0x0630 applockerfltr - ok
23:13:42.0352 0x0630 [ A0746EF6C5AB7A17A67BC167167499C1, 1D2154D3AFC5219293EDD508C7726E7756FB72BF04F73861C575D1FE5C553411 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
23:13:42.0379 0x0630 AppReadiness - ok
23:13:42.0415 0x0630 [ D70B1453ADA82A92E76EAE72D936A0F6, 439DBC5818025887343D4B5B509C7D2C97ED0FFA4641A5178EA5719C50E5013F ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
23:13:42.0480 0x0630 AppXSvc - ok
23:13:42.0487 0x0630 [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
23:13:42.0497 0x0630 arcsas - ok
23:13:42.0506 0x0630 [ 5EE26734A882478AF6696092E2E0F352, 6CACFF521B3B839F73EBEB6EFBFDCCA8A8BC319DDB254BE3EFE29A39040B2C26 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:13:42.0515 0x0630 aspnet_state - ok
23:13:42.0518 0x0630 [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
23:13:42.0534 0x0630 AsyncMac - ok
23:13:42.0537 0x0630 [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
23:13:42.0545 0x0630 atapi - ok
23:13:42.0553 0x0630 [ 2DC3D53FFA0D10EB8C911AE2DB7BF4CF, 8E0A4B5D610D487A216E70396A99ACC1BEA12C46A6681B1A39CD0FD01EDD406A ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
23:13:42.0576 0x0630 AudioEndpointBuilder - ok
23:13:42.0593 0x0630 [ 7B993290E7691C446C16A56A431669BA, 004551934E27E9FC1A939C9BD1DEB850A216CBED9B18CB3317920F5656D9F6BF ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
23:13:42.0626 0x0630 Audiosrv - ok
23:13:42.0632 0x0630 [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
23:13:42.0645 0x0630 AxInstSV - ok
23:13:42.0656 0x0630 [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
23:13:42.0673 0x0630 b06bdrv - ok
23:13:42.0677 0x0630 [ 68F72B05EBC6D1779C0D60A147C7CA0B, AA1C857BEE34865C6B901157FC22570D4CF45D950708BAD7AA333F120F2B474C ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
23:13:42.0692 0x0630 BasicDisplay - ok
23:13:42.0695 0x0630 [ 23156E7EDAF613D839E2839746B168D3, CAEF8F9C7D3A338BD747AC9D5BFBE730D77B911E87BCF532EBB75E1F80916AFA ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
23:13:42.0706 0x0630 BasicRender - ok
23:13:42.0710 0x0630 [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn C:\WINDOWS\System32\drivers\bcmfn.sys
23:13:42.0719 0x0630 bcmfn - ok
23:13:42.0722 0x0630 [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
23:13:42.0731 0x0630 bcmfn2 - ok
23:13:42.0739 0x0630 [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
23:13:42.0762 0x0630 BDESVC - ok
23:13:42.0765 0x0630 [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep C:\WINDOWS\system32\drivers\Beep.sys
23:13:42.0778 0x0630 Beep - ok
23:13:42.0792 0x0630 [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE C:\WINDOWS\System32\bfe.dll
23:13:42.0825 0x0630 BFE - ok
23:13:42.0844 0x0630 [ D876C567AB767258036F05E4766189FD, DE8BA67325CB64495BD454B8F9DDCAE82636253844FC68B360C7E1CF5D51DD0E ] BITS C:\WINDOWS\System32\qmgr.dll
23:13:42.0883 0x0630 BITS - ok
23:13:42.0888 0x0630 [ 9CD2A4821DE379305CACB2E99AD8953A, 89D700DFC3C59ACBBADB48954A28C0EBF8D6A11A9E63837689DD891868E43188 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
23:13:42.0904 0x0630 bowser - ok
23:13:42.0918 0x0630 [ 2447BD15B41298622CC662249CD0F496, 013A326D2E3BF68D654BBABE2F1E5DF0FF0A153A4B95D570EE28F9BC0F5A78C3 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
23:13:42.0950 0x0630 BrokerInfrastructure - ok
23:13:42.0955 0x0630 [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser C:\WINDOWS\System32\browser.dll
23:13:42.0971 0x0630 Browser - ok
23:13:42.0975 0x0630 [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
23:13:42.0988 0x0630 BthAvrcpTg - ok
23:13:42.0992 0x0630 [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
23:13:43.0002 0x0630 BthHFEnum - ok
23:13:43.0006 0x0630 [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
23:13:43.0015 0x0630 bthhfhid - ok
23:13:43.0023 0x0630 [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
23:13:43.0039 0x0630 BthHFSrv - ok
23:13:43.0043 0x0630 [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
23:13:43.0054 0x0630 BTHMODEM - ok
23:13:43.0059 0x0630 [ 96932F631F5CB9F5D1C8F99A71568EF3, 5E4C8955A2EE9DC76B4EBC383653EB753D76D6B017E1A5DD553AC16094D7F12A ] bthserv C:\WINDOWS\system32\bthserv.dll
23:13:43.0076 0x0630 bthserv - ok
23:13:43.0079 0x0630 [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
23:13:43.0094 0x0630 buttonconverter - ok
23:13:43.0098 0x0630 [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
23:13:43.0115 0x0630 CapImg - ok
23:13:43.0119 0x0630 [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
23:13:43.0135 0x0630 cdfs - ok
23:13:43.0144 0x0630 [ 2E6612376D257F74781F2EF1F869D8C3, 908B0DECB9F098F7F11B029A03C06C67FB52E5E8BEA42033A2B579D3B3686AB8 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
23:13:43.0166 0x0630 CDPSvc - ok
23:13:43.0175 0x0630 [ A93C9B9EBE2FDE5A536000D72CC17F7F, 9793CFAE8BE8C6B5B39A1D276577965FBB2CE131325A410B7C68BD23492ADAAF ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
23:13:43.0192 0x0630 CDPUserSvc - ok
23:13:43.0199 0x0630 [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
23:13:43.0212 0x0630 cdrom - ok
23:13:43.0217 0x0630 [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
23:13:43.0235 0x0630 CertPropSvc - ok
23:13:43.0243 0x0630 [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
23:13:43.0256 0x0630 cht4iscsi - ok
23:13:43.0290 0x0630 [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
23:13:43.0335 0x0630 cht4vbd - ok
23:13:43.0340 0x0630 [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
23:13:43.0350 0x0630 circlass - ok
23:13:43.0359 0x0630 [ B72D26074E72A757D788FB1BEF8B2F2E, 36847C5315AFB9A5EC66AD3EF2A09C24C0FAF669FDF0831F78600F4609352CB4 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
23:13:43.0372 0x0630 CLFS - ok
23:13:43.0386 0x0630 [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
23:13:43.0407 0x0630 ClipSVC - ok
23:13:43.0411 0x0630 [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg C:\WINDOWS\System32\drivers\registry.sys
23:13:43.0426 0x0630 clreg - ok
23:13:43.0433 0x0630 [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
23:13:43.0442 0x0630 CmBatt - ok
23:13:43.0454 0x0630 [ 90C07EB909C42316982E753BDAA7860D, 438581FD3468FAF01D35529672201A920E8821EC80E30E59A43645DA57738F21 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
23:13:43.0472 0x0630 CNG - ok
23:13:43.0476 0x0630 [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
23:13:43.0484 0x0630 cnghwassist - ok
23:13:43.0494 0x0630 [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
23:13:43.0503 0x0630 CompositeBus - ok
23:13:43.0506 0x0630 COMSysApp - ok
23:13:43.0510 0x0630 [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
23:13:43.0518 0x0630 condrv - ok
23:13:43.0532 0x0630 [ 5DE2049D5F57C1D142F36FA9CE443693, E6C2807C0B1EF90C11EB39634693B76EACE6CC675777776112835212A334F328 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
23:13:43.0553 0x0630 CoreMessagingRegistrar - ok
23:13:43.0559 0x0630 [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
23:13:43.0576 0x0630 CryptSvc - ok
23:13:43.0580 0x0630 [ 039B5A8CBD5C75D1C46DF15F7C74D136, A5C8A41F2D406D37E147939F2058373ED091BFCC00CA7E829F887638CD3A2F64 ] dam C:\WINDOWS\system32\drivers\dam.sys
23:13:43.0589 0x0630 dam - ok
23:13:43.0606 0x0630 [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
23:13:43.0637 0x0630 DcomLaunch - ok
23:13:43.0644 0x0630 [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc C:\WINDOWS\system32\dcpsvc.dll
23:13:43.0660 0x0630 DcpSvc - ok
23:13:43.0671 0x0630 [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
23:13:43.0695 0x0630 defragsvc - ok
23:13:43.0705 0x0630 [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
23:13:43.0729 0x0630 DeviceAssociationService - ok
23:13:43.0735 0x0630 [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
23:13:43.0750 0x0630 DeviceInstall - ok
23:13:43.0753 0x0630 [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
23:13:43.0768 0x0630 DevQueryBroker - ok
23:13:43.0772 0x0630 [ 0D1D392ED2597F295956D058D33BD7C3, 2F7FE5A06D880F9E2A46C9803DD249DC40C2898C04E946D14E7EECCCC9F2B24F ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
23:13:43.0790 0x0630 Dfsc - ok
23:13:43.0795 0x0630 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
23:13:43.0807 0x0630 dg_ssudbus - ok
23:13:43.0815 0x0630 [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
23:13:43.0840 0x0630 Dhcp - ok
23:13:43.0845 0x0630 [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
23:13:43.0860 0x0630 diagnosticshub.standardcollector.service - ok
23:13:43.0892 0x0630 [ CAD14E0AD1F03397E9B1C8733D76BEF4, 0035EF35F6520B1DF0E599C8A06D4163C52576BCE0976BF729B44DECDC506627 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
23:13:43.0952 0x0630 DiagTrack - ok
23:13:43.0958 0x0630 [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk C:\WINDOWS\system32\drivers\disk.sys
23:13:43.0967 0x0630 disk - ok
23:13:43.0977 0x0630 [ 09CF47A74BFB480B8262FCEE222004B6, F5CD0ACA04BCB95984595CC2E17BC9E92865091A0A3BCAD4B06438A1570E7696 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
23:13:44.0002 0x0630 DmEnrollmentSvc - ok
23:13:44.0006 0x0630 [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
23:13:44.0019 0x0630 dmvsc - ok
23:13:44.0023 0x0630 [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
23:13:44.0046 0x0630 dmwappushservice - ok
23:13:44.0053 0x0630 [ 7F8A3ABF7750326E18CE953CCE262670, 5DBD159E8A455A42764FC73CF7DCAC849B5896848C5589B00BD36697804C0A3B ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
23:13:44.0072 0x0630 Dnscache - ok
23:13:44.0080 0x0630 [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc C:\WINDOWS\System32\dot3svc.dll
23:13:44.0100 0x0630 dot3svc - ok
23:13:44.0106 0x0630 [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS C:\WINDOWS\system32\dps.dll
23:13:44.0123 0x0630 DPS - ok
23:13:44.0126 0x0630 [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud C:\WINDOWS\system32\DRIVERS\drmkaud.sys
23:13:44.0134 0x0630 drmkaud - ok
23:13:44.0140 0x0630 [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
23:13:44.0161 0x0630 DsmSvc - ok
23:13:44.0166 0x0630 [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc C:\WINDOWS\System32\DsSvc.dll
23:13:44.0181 0x0630 DsSvc - ok
23:13:44.0214 0x0630 [ 19F2B54EE8861D90579BD0E3AE5182F9, FDD4F091C61C8C20550C8F68375ABD7ED718A733F680F0F0367D4796C302BA14 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
23:13:44.0260 0x0630 DXGKrnl - ok
23:13:44.0266 0x0630 [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
23:13:44.0282 0x0630 EapHost - ok
23:13:44.0335 0x0630 [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
23:13:44.0401 0x0630 ebdrv - ok
23:13:44.0408 0x0630 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] EFS C:\WINDOWS\System32\lsass.exe
23:13:44.0417 0x0630 EFS - ok
23:13:44.0422 0x0630 [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
23:13:44.0430 0x0630 EhStorClass - ok
23:13:44.0435 0x0630 [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
23:13:44.0444 0x0630 EhStorTcgDrv - ok
23:13:44.0449 0x0630 [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
23:13:44.0463 0x0630 embeddedmode - ok
23:13:44.0470 0x0630 [ 3CE2B6AECB9AF8BC159299EEC46A35CA, E933B28BB6E4D01FCCDF8FBBB134C244B28DA3ECBDFA13333F0D4C24B2551780 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
23:13:44.0486 0x0630 EntAppSvc - ok
23:13:44.0489 0x0630 [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
23:13:44.0503 0x0630 ErrDev - ok
23:13:44.0514 0x0630 [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem C:\WINDOWS\system32\es.dll
23:13:44.0538 0x0630 EventSystem - ok
23:13:44.0547 0x0630 [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat C:\WINDOWS\system32\drivers\exfat.sys
23:13:44.0564 0x0630 exfat - ok
23:13:44.0572 0x0630 [ FA918EC296EB410FF02867D008D02421, 23D164A24CB0D212778FA9592A046B6BA1F3628003E04181744A1F891B5B3E5A ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
23:13:44.0585 0x0630 fastfat - ok
23:13:44.0599 0x0630 [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax C:\WINDOWS\system32\fxssvc.exe
23:13:44.0627 0x0630 Fax - ok
23:13:44.0631 0x0630 [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
23:13:44.0640 0x0630 fdc - ok
23:13:44.0643 0x0630 [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
23:13:44.0661 0x0630 fdPHost - ok
23:13:44.0664 0x0630 [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub C:\WINDOWS\system32\fdrespub.dll
23:13:44.0676 0x0630 FDResPub - ok
23:13:44.0681 0x0630 [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
23:13:44.0697 0x0630 fhsvc - ok
23:13:44.0702 0x0630 [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
23:13:44.0716 0x0630 FileCrypt - ok
23:13:44.0720 0x0630 [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
23:13:44.0728 0x0630 FileInfo - ok
23:13:44.0732 0x0630 [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
23:13:44.0743 0x0630 Filetrace - ok
23:13:44.0747 0x0630 [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
23:13:44.0756 0x0630 flpydisk - ok
23:13:44.0764 0x0630 [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
23:13:44.0778 0x0630 FltMgr - ok
23:13:44.0808 0x0630 [ 49BF5C8182C3D2D6CD9F7EEDF1CFDB66, 0977EBE86B57FC370D27CA69D58122397D5D5369AF0C8DBCC492AE7AD55CBA2B ] FontCache C:\WINDOWS\system32\FntCache.dll
23:13:44.0865 0x0630 FontCache - ok
23:13:44.0870 0x0630 [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:13:44.0877 0x0630 FontCache3.0.0.0 - ok
23:13:44.0892 0x0630 [ 8B52024D3A5C3A12F1C4D75D30A976C5, 982F1C783966C9A6D255AA7DBAB6D225EBE0050A36176B8DE85E8ADBFE17FDF1 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
23:13:44.0924 0x0630 FrameServer - ok
23:13:44.0928 0x0630 [ D152CCBFC8251670BF0AAFE00D6BC782, 9DE82D8FC4E1DAF8FF23EE08C0B7CB5051A9224E64544D262CFA4996A41B04E1 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
23:13:44.0936 0x0630 FsDepends - ok
23:13:44.0940 0x0630 [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:13:44.0947 0x0630 Fs_Rec - ok
23:13:44.0960 0x0630 [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
23:13:44.0979 0x0630 fvevol - ok
23:13:44.0982 0x0630 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
23:13:44.0987 0x0630 gdrv - ok
23:13:44.0990 0x0630 [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
23:13:45.0004 0x0630 gencounter - ok
23:13:45.0007 0x0630 [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
23:13:45.0019 0x0630 genericusbfn - ok
23:13:45.0025 0x0630 [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
23:13:45.0035 0x0630 GPIOClx0101 - ok
23:13:45.0057 0x0630 [ 713A176494CEC107E663CAD6C2B27F77, 76871D8CFBA8FCD8CFF96208AE84C658EBEC60270D978898B90EE9451AA1BCE1 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
23:13:45.0099 0x0630 gpsvc - ok
23:13:45.0103 0x0630 [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
23:13:45.0115 0x0630 GpuEnergyDrv - ok
23:13:45.0121 0x0630 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:13:45.0128 0x0630 gupdate - ok
23:13:45.0132 0x0630 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:13:45.0138 0x0630 gupdatem - ok
23:13:45.0141 0x0630 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
23:13:45.0146 0x0630 GVTDrv64 - ok
23:13:45.0150 0x0630 [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] Hamachi C:\WINDOWS\System32\drivers\Hamdrv.sys
23:13:45.0159 0x0630 Hamachi - ok
23:13:45.0201 0x0630 [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
23:13:45.0244 0x0630 Hamachi2Svc - ok
23:13:45.0250 0x0630 [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
23:13:45.0265 0x0630 HDAudBus - ok
23:13:45.0269 0x0630 [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
23:13:45.0277 0x0630 HidBatt - ok
23:13:45.0281 0x0630 [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
23:13:45.0292 0x0630 HidBth - ok
23:13:45.0295 0x0630 [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
23:13:45.0305 0x0630 hidi2c - ok
23:13:45.0309 0x0630 [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
23:13:45.0316 0x0630 hidinterrupt - ok
23:13:45.0320 0x0630 [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
23:13:45.0330 0x0630 HidIr - ok
23:13:45.0333 0x0630 [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv C:\WINDOWS\system32\hidserv.dll
23:13:45.0346 0x0630 hidserv - ok
23:13:45.0350 0x0630 [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
23:13:45.0364 0x0630 HidUsb - ok
23:13:45.0371 0x0630 [ 0AC1BD5A28FAA371EF34859FE703E515, 1DD1C33AF8D6EBE7C36FCD051F066E4039D2B47ABAECF7C68BC3933D567930B2 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
23:13:45.0390 0x0630 HomeGroupListener - ok
23:13:45.0399 0x0630 [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
23:13:45.0423 0x0630 HomeGroupProvider - ok
23:13:45.0428 0x0630 [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
23:13:45.0436 0x0630 HpSAMD - ok
23:13:45.0455 0x0630 [ A10C7C1E69FC90620C7BF2E51302A01F, D725AEAE38255CED73F4922A10F226215528706580B06D01C228488F93AC0397 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
23:13:45.0481 0x0630 HTTP - ok
23:13:45.0486 0x0630 [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
23:13:45.0500 0x0630 HvHost - ok
23:13:45.0504 0x0630 [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
23:13:45.0512 0x0630 hvservice - ok
23:13:45.0515 0x0630 [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
23:13:45.0523 0x0630 hwpolicy - ok
23:13:45.0526 0x0630 [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
23:13:45.0535 0x0630 hyperkbd - ok
23:13:45.0539 0x0630 [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
23:13:45.0555 0x0630 i8042prt - ok
23:13:45.0558 0x0630 [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
23:13:45.0571 0x0630 iagpio - ok
23:13:45.0575 0x0630 [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
23:13:45.0586 0x0630 iai2c - ok
23:13:45.0589 0x0630 [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
23:13:45.0599 0x0630 iaLPSS2i_GPIO2 - ok
23:13:45.0604 0x0630 [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
23:13:45.0614 0x0630 iaLPSS2i_I2C - ok
23:13:45.0617 0x0630 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
23:13:45.0622 0x0630 iaLPSSi_GPIO - ok
23:13:45.0627 0x0630 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
23:13:45.0638 0x0630 iaLPSSi_I2C - ok
23:13:45.0651 0x0630 [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
23:13:45.0670 0x0630 iaStorAV - ok
23:13:45.0680 0x0630 [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
23:13:45.0694 0x0630 iaStorV - ok
23:13:45.0704 0x0630 [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
23:13:45.0721 0x0630 ibbus - ok
23:13:45.0726 0x0630 [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
23:13:45.0734 0x0630 ICCS - detected UnsignedFile.Multi.Generic ( 1 )
23:13:45.0734 0x0630 Detect skipped due to KSN trusted
23:13:45.0734 0x0630 ICCS - ok
23:13:45.0740 0x0630 [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc C:\WINDOWS\System32\tetheringservice.dll
23:13:45.0758 0x0630 icssvc - ok
23:13:45.0763 0x0630 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:13:45.0768 0x0630 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
23:13:45.0768 0x0630 Detect skipped due to KSN trusted
23:13:45.0768 0x0630 IDriverT - ok
23:13:45.0787 0x0630 [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT C:\WINDOWS\System32\ikeext.dll
23:13:45.0817 0x0630 IKEEXT - ok
23:13:45.0821 0x0630 [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
23:13:45.0834 0x0630 IndirectKmd - ok
23:13:45.0908 0x0630 [ ACACD1B925D448558C1C9D0258749451, 896ECC9CD5EBE658B3A4211700029C8855DD7F38312F15716A6AC1FD0302CF6E ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
23:13:45.0984 0x0630 IntcAzAudAddService - ok
23:13:46.0002 0x0630 [ 2D66067C7A8A0112156BCD1C0BAA7042, 89F77EEE59FF3AD2E777DA15187F1447F6E112E8831417A0DE656ACB82E7B22E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
23:13:46.0016 0x0630 Intel(R) Capability Licensing Service Interface - ok
23:13:46.0020 0x0630 [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide C:\WINDOWS\system32\drivers\intelide.sys
23:13:46.0028 0x0630 intelide - ok
23:13:46.0031 0x0630 [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
23:13:46.0040 0x0630 intelpep - ok
23:13:46.0045 0x0630 [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
23:13:46.0056 0x0630 intelppm - ok
23:13:46.0060 0x0630 [ DB32758F3A7F6CCE81A5430080A2EA65, 36A26BAA884E96804F8EA0B12BB3E81BBE6D4EE704809904091445F36CAB5A29 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
23:13:46.0068 0x0630 iorate - ok
23:13:46.0072 0x0630 [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:13:46.0087 0x0630 IpFilterDriver - ok
23:13:46.0104 0x0630 [ EF1BB0EF8A12C32DD88C409706B8145E, 7AEDE717C258C29592CC8AEC40F61617E5382646E5141E1C0941882ACE5C5758 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
23:13:46.0140 0x0630 iphlpsvc - ok
23:13:46.0144 0x0630 [ 450DBDD716C7911F83E05F78EE18BFA2, 43C0DA172F632131898F315A53DEDD1AE99FB0620AB32B3A5B99FEC498C9AAE5 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
23:13:46.0153 0x0630 IPMIDRV - ok
23:13:46.0159 0x0630 [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
23:13:46.0172 0x0630 IPNAT - ok
23:13:46.0177 0x0630 [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda C:\WINDOWS\system32\drivers\irda.sys
23:13:46.0189 0x0630 irda - ok
23:13:46.0192 0x0630 [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
23:13:46.0202 0x0630 IRENUM - ok
23:13:46.0205 0x0630 [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon C:\WINDOWS\System32\irmon.dll
23:13:46.0216 0x0630 irmon - ok
23:13:46.0219 0x0630 [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
23:13:46.0227 0x0630 isapnp - ok
23:13:46.0234 0x0630 [ C9FD02D62E09337B67B0C61EC8CA38CC, DC77E935ECC8474BE9018F0937CB11C137073582B20A0EE107CE247FD9E1F9C1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
23:13:46.0246 0x0630 iScsiPrt - ok
23:13:46.0249 0x0630 [ B2381712638B0B714D0EEAB9A1F7C640, 113BCA8868057156EFDC7C079171308C1EBA4F979C85EB1265F42F95A499B086 ] iusb3hcs C:\WINDOWS\system32\drivers\iusb3hcs.sys
23:13:46.0254 0x0630 iusb3hcs - ok
23:13:46.0259 0x0630 [ 166FC0B36842135BC2D3C32DF70ED0D6, 83319957ECEFFF372C683C56DC6ECD34CD4B16A98F3F602E48108B124D07D975 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
23:13:46.0266 0x0630 jhi_service - ok
23:13:46.0270 0x0630 [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
23:13:46.0278 0x0630 kbdclass - ok
23:13:46.0281 0x0630 [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
23:13:46.0295 0x0630 kbdhid - ok
23:13:46.0298 0x0630 [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
23:13:46.0308 0x0630 kdnic - ok
23:13:46.0311 0x0630 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] KeyIso C:\WINDOWS\system32\lsass.exe
23:13:46.0320 0x0630 KeyIso - ok
23:13:46.0325 0x0630 [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
23:13:46.0334 0x0630 KSecDD - ok
23:13:46.0340 0x0630 [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
23:13:46.0350 0x0630 KSecPkg - ok
23:13:46.0353 0x0630 [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
23:13:46.0367 0x0630 ksthunk - ok
23:13:46.0375 0x0630 [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
23:13:46.0396 0x0630 KtmRm - ok
23:13:46.0401 0x0630 [ 4E444F41E69BBE2E0BAE34D5DFCB5732, ACAEFB839CF7A3113D026B9A715994C3DFF8797D73B991253959EF606C4FBC00 ] L1C C:\WINDOWS\System32\drivers\L1C63x64.sys
23:13:46.0413 0x0630 L1C - ok
23:13:46.0420 0x0630 [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
23:13:46.0438 0x0630 LanmanServer - ok
23:13:46.0445 0x0630 [ 33DBBCF71F68EA97D9FD34E4C9AB5AC6, 104F04A1560E75EB224A3825707CE51E8798ABD764F5CC3B854FFFC93A39AF60 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
23:13:46.0465 0x0630 LanmanWorkstation - ok
23:13:46.0470 0x0630 [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc C:\WINDOWS\System32\lfsvc.dll
23:13:46.0484 0x0630 lfsvc - ok
23:13:46.0486 0x0630 [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
23:13:46.0500 0x0630 LicenseManager - ok
23:13:46.0504 0x0630 [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
23:13:46.0518 0x0630 lltdio - ok
23:13:46.0525 0x0630 [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
23:13:46.0541 0x0630 lltdsvc - ok
23:13:46.0544 0x0630 [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
23:13:46.0555 0x0630 lmhosts - ok
23:13:46.0564 0x0630 [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
23:13:46.0574 0x0630 LMIGuardianSvc - ok
23:13:46.0581 0x0630 [ C56E64BA70DC822B84D100A6F8D690D3, 1F511FBDDDD6E8CC83C8D0BD152BBE8C4C9E103D2DDED93564DC0FB9962DD040 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
23:13:46.0589 0x0630 LMS - ok
23:13:46.0595 0x0630 [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
23:13:46.0604 0x0630 LSI_SAS - ok
23:13:46.0609 0x0630 [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
23:13:46.0617 0x0630 LSI_SAS2i - ok
23:13:46.0622 0x0630 [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
23:13:46.0631 0x0630 LSI_SAS3i - ok
23:13:46.0635 0x0630 [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
23:13:46.0643 0x0630 LSI_SSS - ok
23:13:46.0656 0x0630 [ D5EFC0BAEC21EDE6FE03D377D403B421, 41BE71AF7C896FD4C51EF7E3871AAB769164DFB8050DA43E48C7A100711414B4 ] LSM C:\WINDOWS\System32\lsm.dll
23:13:46.0686 0x0630 LSM - ok
23:13:46.0691 0x0630 [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
23:13:46.0704 0x0630 luafv - ok
23:13:46.0709 0x0630 [ CAAF0CD70FEE7C5110B1E62804E41B17, 48482A6C8D2296C4DC613304637C8DBB7DD1DB39326F27650EBCA6FD2793BCFD ] MapsBroker C:\WINDOWS\System32\moshost.dll
23:13:46.0724 0x0630 MapsBroker - ok
23:13:46.0728 0x0630 [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas C:\WINDOWS\system32\drivers\megasas.sys
23:13:46.0736 0x0630 megasas - ok
23:13:46.0740 0x0630 [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
23:13:46.0748 0x0630 megasas2i - ok
23:13:46.0759 0x0630 [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr C:\WINDOWS\system32\drivers\megasr.sys
23:13:46.0776 0x0630 megasr - ok
23:13:46.0780 0x0630 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
23:13:46.0785 0x0630 MEIx64 - ok
23:13:46.0789 0x0630 [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
23:13:46.0800 0x0630 MessagingService - ok
23:13:46.0817 0x0630 [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
23:13:46.0839 0x0630 mlx4_bus - ok
23:13:46.0843 0x0630 [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
23:13:46.0856 0x0630 MMCSS - ok
23:13:46.0860 0x0630 [ 0D50B3F3AB32D416786B58D4553859CE, 9DA4D7A30982E8B31C45BDB721AEF5240EAD9DA6839CF34FDDBCF123BF104F2C ] Modem C:\WINDOWS\system32\drivers\modem.sys
23:13:46.0874 0x0630 Modem - ok
23:13:46.0877 0x0630 [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor C:\WINDOWS\System32\drivers\monitor.sys
23:13:46.0887 0x0630 monitor - ok
23:13:46.0890 0x0630 [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
23:13:46.0898 0x0630 mouclass - ok
23:13:46.0902 0x0630 [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
23:13:46.0915 0x0630 mouhid - ok
23:13:46.0919 0x0630 [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
23:13:46.0927 0x0630 mountmgr - ok
23:13:46.0932 0x0630 [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:13:46.0941 0x0630 MozillaMaintenance - ok
23:13:46.0945 0x0630 [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
23:13:46.0959 0x0630 mpsdrv - ok
23:13:46.0976 0x0630 [ 779CFDB17EA07A6D26FEBBAC95B65772, 74D9542E8DCCD07396A45A45D2F500AA6F9DCC1DB785A6153EB3067E42F576A4 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
23:13:47.0005 0x0630 MpsSvc - ok
23:13:47.0012 0x0630 [ 4FC62380457DE25B69011D3542E954AC, D212DDD2446618A6215CF9FC370FA2634F027BC92D1D4999E019BEF8A86AA6EB ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
23:13:47.0028 0x0630 MQAC - ok
23:13:47.0034 0x0630 [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
23:13:47.0049 0x0630 MRxDAV - ok
23:13:47.0059 0x0630 [ E671EDAB0726E05ECEF4058B4CD73C4D, 9F4C50E635CE2204E3291C8D3D7F658A969E80722B8B6F0304228D9B434C20EA ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:13:47.0073 0x0630 mrxsmb - ok
23:13:47.0081 0x0630 [ D4D12BC29DE0F09280868FDCA65B3474, A6FE89ABD52087FEE52FDF31DDF4CB627ED400E94FDA86BEBF1D4763F1E42518 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
23:13:47.0099 0x0630 mrxsmb10 - ok
23:13:47.0105 0x0630 [ 93A77008A8932FC84A173C4E97E52874, B7510CF7998C538D68BD2ECDC512A0BFC7CB7362F598EE4110F728427AFF0F5A ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
23:13:47.0117 0x0630 mrxsmb20 - ok
23:13:47.0121 0x0630 [ 74C9D21523DAE0C18F413C196DF0058A, 3DB4B8CA368D9DD82FAE2C2BC828A21142C8D29780A7C8667188C447519FF702 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
23:13:47.0133 0x0630 MsBridge - ok
23:13:47.0138 0x0630 [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC C:\WINDOWS\System32\msdtc.exe
23:13:47.0150 0x0630 MSDTC - ok
23:13:47.0155 0x0630 [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
23:13:47.0169 0x0630 Msfs - ok
23:13:47.0172 0x0630 [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
23:13:47.0180 0x0630 msgpiowin32 - ok
23:13:47.0183 0x0630 [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
23:13:47.0195 0x0630 mshidkmdf - ok
23:13:47.0198 0x0630 [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
23:13:47.0211 0x0630 mshidumdf - ok
23:13:47.0213 0x0630 [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
23:13:47.0221 0x0630 msisadrv - ok
23:13:47.0225 0x0630 [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
23:13:47.0242 0x0630 MSiSCSI - ok
23:13:47.0244 0x0630 msiserver - ok
23:13:47.0247 0x0630 [ 13D614E6B51ECF36746C48CE829FA7F6, CAD63C0A4F7110093F84C58252C5803F14E3FC46584B79DA17EC86D49FEAEA64 ] MSKSSRV C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
23:13:47.0260 0x0630 MSKSSRV - ok
23:13:47.0264 0x0630 [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
23:13:47.0278 0x0630 MsLldp - ok
23:13:47.0281 0x0630 [ F3EF38D07A4ADCDF922EEEAF0FED7D4D, B9D436BFA29AA0A7B00889D96C4F8BC33C1809E19B7A71A69AB2E534E9794BF0 ] MSMQ C:\WINDOWS\system32\mqsvc.exe
23:13:47.0291 0x0630 MSMQ - ok
23:13:47.0294 0x0630 [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
23:13:47.0307 0x0630 MSPCLOCK - ok
23:13:47.0310 0x0630 [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM C:\WINDOWS\system32\DRIVERS\MSPQM.sys
23:13:47.0322 0x0630 MSPQM - ok
23:13:47.0331 0x0630 [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
23:13:47.0344 0x0630 MsRPC - ok
23:13:47.0349 0x0630 [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
23:13:47.0357 0x0630 mssmbios - ok
23:13:47.0360 0x0630 [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE C:\WINDOWS\system32\DRIVERS\MSTEE.sys
23:13:47.0373 0x0630 MSTEE - ok
23:13:47.0377 0x0630 [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
23:13:47.0387 0x0630 MTConfig - ok
23:13:47.0391 0x0630 [ 15D987C8F6CCD4AC94E070C5986762CB, 452FB0C48B86C7F8F53794CC2DDBF2B900B03A0383B2DE8F6A830F8CB0AFBAD8 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
23:13:47.0400 0x0630 Mup - ok
23:13:47.0404 0x0630 [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
23:13:47.0412 0x0630 mvumis - ok
23:13:47.0423 0x0630 [ DB31EBB04C871F422C36A0962DA7D38B, B1BC2344744F537FB2C7D07B415F860195B7795E185253F05C0817A3764FEC10 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
23:13:47.0449 0x0630 NativeWifiP - ok
23:13:47.0454 0x0630 [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
23:13:47.0471 0x0630 NcaSvc - ok
23:13:47.0478 0x0630 [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService C:\WINDOWS\System32\ncbservice.dll
23:13:47.0499 0x0630 NcbService - ok
23:13:47.0503 0x0630 [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
23:13:47.0527 0x0630 NcdAutoSetup - ok
23:13:47.0531 0x0630 [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
23:13:47.0540 0x0630 ndfltr - ok
23:13:47.0561 0x0630 [ D5564FC81350458ED570528C4E3B1CCF, DD3C5012492EF9BCE3BE635BBB3AA40B3C5F5FDBD795A76B327D9C994102AC2B ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
23:13:47.0589 0x0630 NDIS - ok
23:13:47.0593 0x0630 [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
23:13:47.0607 0x0630 NdisCap - ok
23:13:47.0612 0x0630 [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
23:13:47.0627 0x0630 NdisImPlatform - ok
23:13:47.0630 0x0630 [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:13:47.0643 0x0630 NdisTapi - ok
23:13:47.0647 0x0630 [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
23:13:47.0660 0x0630 Ndisuio - ok
23:13:47.0663 0x0630 [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
23:13:47.0673 0x0630 NdisVirtualBus - ok
23:13:47.0678 0x0630 [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
23:13:47.0695 0x0630 NdisWan - ok
23:13:47.0701 0x0630 [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:13:47.0717 0x0630 ndiswanlegacy - ok
23:13:47.0720 0x0630 [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
23:13:47.0734 0x0630 ndproxy - ok
23:13:47.0740 0x0630 [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
23:13:47.0755 0x0630 Ndu - ok
23:13:47.0759 0x0630 [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
23:13:47.0773 0x0630 NetAdapterCx - ok
23:13:47.0777 0x0630 [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
23:13:47.0785 0x0630 NetBIOS - ok
23:13:47.0793 0x0630 [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
23:13:47.0812 0x0630 NetBT - ok
23:13:47.0815 0x0630 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] Netlogon C:\WINDOWS\system32\lsass.exe
23:13:47.0825 0x0630 Netlogon - ok
23:13:47.0832 0x0630 [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman C:\WINDOWS\System32\netman.dll
23:13:47.0848 0x0630 Netman - ok
23:13:47.0854 0x0630 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:13:47.0863 0x0630 NetMsmqActivator - ok
23:13:47.0867 0x0630 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:13:47.0875 0x0630 NetPipeActivator - ok
23:13:47.0885 0x0630 [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
23:13:47.0912 0x0630 netprofm - ok
23:13:47.0920 0x0630 [ D65F295A049473E6A39EA9A0EA76CA32, 274FC0BA044EB2D14093AB0E561F7FACEE06A3F433C81343C8B926FA2F9BD251 ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
23:13:47.0942 0x0630 NetSetupSvc - ok
23:13:47.0946 0x0630 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
|
|
13.01.2017, 23:26
| #7 |
| | PUP.Optional.Reimage mit MB gefunden Teil 3 Code:
ATTFilter 23:13:47.0954 0x0630 NetTcpActivator - ok
23:13:47.0958 0x0630 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:13:47.0966 0x0630 NetTcpPortSharing - ok
23:13:47.0975 0x0630 [ B996DE26A2E16053C9485F5905B05320, 30EB2CEB466A4F05A44F7CBFCDFD8CC3C27B5FCF1269C1B9410C48AB362D2A75 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
23:13:47.0996 0x0630 NgcCtnrSvc - ok
23:13:48.0013 0x0630 [ 54C31C2B815E2E26BB8158022F837C9C, CED660D1A58F635C6452F82FCB2EF8ACEEB7785E31617B2ADFD9EE69A2BDF2B8 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
23:13:48.0050 0x0630 NgcSvc - ok
23:13:48.0060 0x0630 [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
23:13:48.0082 0x0630 NlaSvc - ok
23:13:48.0086 0x0630 [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
23:13:48.0096 0x0630 Npfs - ok
23:13:48.0100 0x0630 [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
23:13:48.0112 0x0630 npsvctrig - ok
23:13:48.0116 0x0630 [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi C:\WINDOWS\system32\nsisvc.dll
23:13:48.0129 0x0630 nsi - ok
23:13:48.0132 0x0630 [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
23:13:48.0142 0x0630 nsiproxy - ok
23:13:48.0178 0x0630 [ DB69C6DA8B3DDFDC547D455CA23A8250, AE495CEB18924C8B21F7F150FF17CD00880F2E222D7B5155661798E0535D63C4 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
23:13:48.0224 0x0630 NTFS - ok
23:13:48.0229 0x0630 [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null C:\WINDOWS\system32\drivers\Null.sys
23:13:48.0239 0x0630 Null - ok
23:13:48.0248 0x0630 [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
23:13:48.0259 0x0630 NvContainerLocalSystem - ok
23:13:48.0268 0x0630 [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
23:13:48.0279 0x0630 NvContainerNetworkService - ok
23:13:48.0286 0x0630 [ 64DA1993B1973F049C1347DA1B05185E, 2A04E263DB13751D033E2F9B9518820CF4942EEAFA5A32488570EEB699EE2A96 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
23:13:48.0294 0x0630 NVHDA - ok
23:13:48.0313 0x0630 [ 5409D41DFB0EAB63511FE7889B2A687E, 32E8D8622798B8F16002EE617200F0172A98D984A925F6550A1E352ACFA0BDDF ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
23:13:48.0335 0x0630 NVIDIA Wireless Controller Service - ok
23:13:48.0546 0x0630 [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_848dea456d3c865e\nvlddmkm.sys
23:13:48.0762 0x0630 nvlddmkm - ok
23:13:48.0780 0x0630 [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
23:13:48.0790 0x0630 nvraid - ok
23:13:48.0795 0x0630 [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
23:13:48.0806 0x0630 nvstor - ok
23:13:48.0809 0x0630 [ 37527CCD2AAF5192D825084339CA964E, B1BE990411BA80D1F9E9F86F82F2B2762F87A5C028FB79A60DB325FAFE89D059 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
23:13:48.0814 0x0630 NvStreamKms - ok
23:13:48.0817 0x0630 [ 66B4D2AA9C733A40B1C673402E99A7D0, DD4297CCB3527C95E52132271C296D277FC4C5FB59731AF25FCC19A523A8D20C ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
23:13:48.0822 0x0630 nvvad_WaveExtensible - ok
23:13:48.0830 0x0630 [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
23:13:48.0851 0x0630 OneSyncSvc - ok
23:13:48.0886 0x0630 [ 3E498CE04DD40C60769854DF2CE8D21D, 28B9331787FE598A79E40DA839B022D353280BE0E8F0D20CE4AAB6284866DE48 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
23:13:48.0923 0x0630 Origin Client Service - ok
23:13:48.0958 0x0630 [ B66980E730FEF1E31BE39B09F55514A1, 756F7695AB112FB2FEBA905F5F9E7C9435823195DE164AF60071457BC047535E ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
23:13:48.0994 0x0630 Origin Web Helper Service - ok
23:13:49.0004 0x0630 [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
23:13:49.0026 0x0630 p2pimsvc - ok
23:13:49.0035 0x0630 [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc C:\WINDOWS\system32\p2psvc.dll
23:13:49.0054 0x0630 p2psvc - ok
23:13:49.0058 0x0630 [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport C:\WINDOWS\System32\drivers\parport.sys
23:13:49.0074 0x0630 Parport - ok
23:13:49.0079 0x0630 [ CDBD029BAEC8D09F6FBD404632D9AF28, 71F4401150CD4C9C6BBF2DA854CF07EA2F8C9BBE900833858F49134DDAF14414 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
23:13:49.0088 0x0630 partmgr - ok
23:13:49.0098 0x0630 [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
23:13:49.0115 0x0630 PcaSvc - ok
23:13:49.0123 0x0630 [ 29AF16726F4DD84376ECA85AB6AFF2C6, BEF9EA10637065365ED343C4EBA51191B9BEADD8F1F3362D3EFE75F40BE9A027 ] pci C:\WINDOWS\system32\drivers\pci.sys
23:13:49.0136 0x0630 pci - ok
23:13:49.0140 0x0630 [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide C:\WINDOWS\system32\drivers\pciide.sys
23:13:49.0147 0x0630 pciide - ok
23:13:49.0151 0x0630 [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
23:13:49.0160 0x0630 pcmcia - ok
23:13:49.0164 0x0630 [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
23:13:49.0172 0x0630 pcw - ok
23:13:49.0176 0x0630 [ 9EA203A07EFA6D74F07F32EF0DAB5CA6, D851F1CC748B4CD0E263931668FFF2FE20D5778267F4FF2237D565CFC171B5AF ] pdc C:\WINDOWS\system32\drivers\pdc.sys
23:13:49.0185 0x0630 pdc - ok
23:13:49.0198 0x0630 [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
23:13:49.0227 0x0630 PEAUTH - ok
23:13:49.0231 0x0630 [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
23:13:49.0239 0x0630 percsas2i - ok
23:13:49.0243 0x0630 [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
23:13:49.0251 0x0630 percsas3i - ok
23:13:49.0276 0x0630 [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
23:13:49.0291 0x0630 PerfHost - ok
23:13:49.0309 0x0630 [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
23:13:49.0336 0x0630 PhoneSvc - ok
23:13:49.0344 0x0630 [ B4AB2C0177715FFAED88A1223212043A, 1920792ADC78DD51EF98B6A9634D686EAED0848FB7EF74A0DCD3AEBA5AF41EC6 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
23:13:49.0363 0x0630 PimIndexMaintenanceSvc - ok
23:13:49.0388 0x0630 [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla C:\WINDOWS\system32\pla.dll
23:13:49.0443 0x0630 pla - ok
23:13:49.0448 0x0630 [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
23:13:49.0463 0x0630 PlugPlay - ok
23:13:49.0467 0x0630 [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
23:13:49.0473 0x0630 PnkBstrA - ok
23:13:49.0477 0x0630 [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
23:13:49.0487 0x0630 PNRPAutoReg - ok
23:13:49.0494 0x0630 [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
23:13:49.0511 0x0630 PNRPsvc - ok
23:13:49.0521 0x0630 [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
23:13:49.0539 0x0630 PolicyAgent - ok
23:13:49.0545 0x0630 [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power C:\WINDOWS\system32\umpo.dll
23:13:49.0559 0x0630 Power - ok
23:13:49.0563 0x0630 [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
23:13:49.0577 0x0630 PptpMiniport - ok
23:13:49.0631 0x0630 [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
23:13:49.0720 0x0630 PrintNotify - ok
23:13:49.0728 0x0630 [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor C:\WINDOWS\System32\drivers\processr.sys
23:13:49.0739 0x0630 Processor - ok
23:13:49.0748 0x0630 [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
23:13:49.0770 0x0630 ProfSvc - ok
23:13:49.0776 0x0630 [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
23:13:49.0786 0x0630 Psched - ok
23:13:49.0793 0x0630 [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE C:\WINDOWS\system32\qwave.dll
23:13:49.0812 0x0630 QWAVE - ok
23:13:49.0816 0x0630 [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
23:13:49.0825 0x0630 QWAVEdrv - ok
23:13:49.0829 0x0630 [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:13:49.0838 0x0630 RasAcd - ok
23:13:49.0841 0x0630 [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
23:13:49.0857 0x0630 RasAgileVpn - ok
23:13:49.0861 0x0630 [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto C:\WINDOWS\System32\rasauto.dll
23:13:49.0873 0x0630 RasAuto - ok
23:13:49.0877 0x0630 [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
23:13:49.0892 0x0630 Rasl2tp - ok
23:13:49.0904 0x0630 [ F79BFB5588B777C71734C1D1EC129D07, 9B9D70EC8978AAC19B2B94694EE1B9957C13DFDDFCBE8AA82C5F0D0EA04CDBDF ] RasMan C:\WINDOWS\System32\rasmans.dll
23:13:49.0933 0x0630 RasMan - ok
23:13:49.0937 0x0630 [ 9387DF155233D45D4E010F4F2FB52A57, CABC25DA4E512809AED0085767BDD94BF3C1DA792BFF8A009B5465D9110E7060 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:13:49.0948 0x0630 RasPppoe - ok
23:13:49.0952 0x0630 [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
23:13:49.0966 0x0630 RasSstp - ok
23:13:49.0975 0x0630 [ AF6963414B820B7C45578ED3300438A7, C00F60FD72608E6983D32642768AECE891DD816FADFA7B872BA88091C16B95D7 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:13:49.0990 0x0630 rdbss - ok
23:13:49.0994 0x0630 [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
23:13:50.0007 0x0630 rdpbus - ok
23:13:50.0013 0x0630 [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
23:13:50.0025 0x0630 RDPDR - ok
23:13:50.0031 0x0630 [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
23:13:50.0038 0x0630 RdpVideoMiniport - ok
23:13:50.0044 0x0630 [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
23:13:50.0056 0x0630 rdyboost - ok
23:13:50.0073 0x0630 [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
23:13:50.0097 0x0630 ReFSv1 - ok
23:13:50.0108 0x0630 [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
23:13:50.0132 0x0630 RemoteAccess - ok
23:13:50.0137 0x0630 [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
23:13:50.0154 0x0630 RemoteRegistry - ok
23:13:50.0166 0x0630 [ 0660F4A14F9D2A2F59B26B1D74F1A6D0, A9443B6B7ED1ECA22AC960A2C6A2BE18C0BA58CD7BCF60E7AA617CD3662D122D ] RetailDemo C:\WINDOWS\system32\RDXService.dll
23:13:50.0195 0x0630 RetailDemo - ok
23:13:50.0200 0x0630 [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc C:\WINDOWS\System32\RMapi.dll
23:13:50.0213 0x0630 RmSvc - ok
23:13:50.0217 0x0630 [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
23:13:50.0228 0x0630 RpcEptMapper - ok
23:13:50.0231 0x0630 [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator C:\WINDOWS\system32\locator.exe
23:13:50.0241 0x0630 RpcLocator - ok
23:13:50.0257 0x0630 [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] RpcSs C:\WINDOWS\system32\rpcss.dll
23:13:50.0287 0x0630 RpcSs - ok
23:13:50.0292 0x0630 [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
23:13:50.0302 0x0630 rspndr - ok
23:13:50.0305 0x0630 [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
23:13:50.0314 0x0630 s3cap - ok
23:13:50.0317 0x0630 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] SamSs C:\WINDOWS\system32\lsass.exe
23:13:50.0326 0x0630 SamSs - ok
23:13:50.0330 0x0630 [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
23:13:50.0339 0x0630 sbp2port - ok
23:13:50.0345 0x0630 [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
23:13:50.0361 0x0630 SCardSvr - ok
23:13:50.0368 0x0630 [ 5E8ECCE130A72107B6DFDBE26185A7FB, 811E2CE485BC14161FF629069BCCF53B2B8C6F8B1E1A6B3A3C86DBE4F85A5577 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
23:13:50.0382 0x0630 ScDeviceEnum - ok
23:13:50.0385 0x0630 [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
23:13:50.0395 0x0630 scfilter - ok
23:13:50.0412 0x0630 [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule C:\WINDOWS\system32\schedsvc.dll
23:13:50.0447 0x0630 Schedule - ok
23:13:50.0452 0x0630 [ 9055ADDFBA4C8B914C914CE693B55C0A, DB213AC36E14D856B81D2AFE46815402537A2ABEEA15032A9FF436F953129441 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
23:13:50.0461 0x0630 scmbus - ok
23:13:50.0466 0x0630 [ B6F2363584E62960846F7C3F00124A4F, 252189FF9D623CF69BF415FF7C7FE74B0BBF756B632420578BFAFF6595616CF7 ] scmdisk0101 C:\WINDOWS\System32\drivers\scmdisk0101.sys
23:13:50.0477 0x0630 scmdisk0101 - ok
23:13:50.0483 0x0630 [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
23:13:50.0496 0x0630 SCPolicySvc - ok
23:13:50.0503 0x0630 [ 7C3D10BEC8B0DBA00A78C78EB10B3AE2, A671C9CB97977613576D70607E106C7A29B9EA9E875C7C5AF293EE5903D7AD0A ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
23:13:50.0515 0x0630 sdbus - ok
23:13:50.0520 0x0630 [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
23:13:50.0536 0x0630 SDRSVC - ok
23:13:50.0540 0x0630 [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
23:13:50.0549 0x0630 sdstor - ok
23:13:50.0552 0x0630 [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon C:\WINDOWS\system32\seclogon.dll
23:13:50.0567 0x0630 seclogon - ok
23:13:50.0571 0x0630 [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS C:\WINDOWS\System32\sens.dll
23:13:50.0585 0x0630 SENS - ok
23:13:50.0608 0x0630 [ 2B4E090D06C60853C5C00CF255F9E02A, 4D4DBA7B04519622612BD4A4F28318CA2F5646C84CAFF8C5ACC9BF4C6031894E ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
23:13:50.0649 0x0630 SensorDataService - ok
23:13:50.0659 0x0630 [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService C:\WINDOWS\system32\SensorService.dll
23:13:50.0683 0x0630 SensorService - ok
23:13:50.0689 0x0630 [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
23:13:50.0707 0x0630 SensrSvc - ok
23:13:50.0711 0x0630 [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
23:13:50.0719 0x0630 SerCx - ok
23:13:50.0724 0x0630 [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
23:13:50.0734 0x0630 SerCx2 - ok
23:13:50.0737 0x0630 [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
23:13:50.0746 0x0630 Serenum - ok
23:13:50.0751 0x0630 [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial C:\WINDOWS\System32\drivers\serial.sys
23:13:50.0761 0x0630 Serial - ok
23:13:50.0765 0x0630 [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
23:13:50.0774 0x0630 sermouse - ok
23:13:50.0785 0x0630 [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ] SessionEnv C:\WINDOWS\system32\sessenv.dll
23:13:50.0807 0x0630 SessionEnv - ok
23:13:50.0812 0x0630 [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
23:13:50.0822 0x0630 sfloppy - ok
23:13:50.0833 0x0630 [ 832E933AA8DB9FD4733B96D8B6484D3F, 3A8E3D7ECA192EEE154CB568073B7211FDA06078EFC3BC7E961563A1BFDD0CAA ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
23:13:50.0858 0x0630 SharedAccess - ok
23:13:50.0869 0x0630 [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:13:50.0898 0x0630 ShellHWDetection - ok
23:13:50.0904 0x0630 [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
23:13:50.0921 0x0630 shpamsvc - ok
23:13:50.0924 0x0630 [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
23:13:50.0932 0x0630 SiSRaid2 - ok
23:13:50.0936 0x0630 [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
23:13:50.0944 0x0630 SiSRaid4 - ok
23:13:50.0952 0x0630 [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
23:13:50.0964 0x0630 SkypeUpdate - ok
23:13:50.0967 0x0630 [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost C:\WINDOWS\System32\smphost.dll
23:13:50.0982 0x0630 smphost - ok
23:13:50.0993 0x0630 [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
23:13:51.0020 0x0630 SmsRouter - ok
23:13:51.0026 0x0630 [ 6F4CE07D420FB657B5936F71101ABD41, CEC52984C56E578E0FFE12BE1B8148335F788B7D1751F2D0E79B944A41113C20 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
23:13:51.0037 0x0630 SNMPTRAP - ok
23:13:51.0048 0x0630 [ C994DF90427103CCB80F893FFD2B1CE8, 7E4B08095C77E68D337A3425EEA38F8FEC4D103CA7661E34FD96BF518DFB4BCB ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
23:13:51.0065 0x0630 spaceport - ok
23:13:51.0069 0x0630 [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
23:13:51.0078 0x0630 SpbCx - ok
23:13:51.0092 0x0630 [ 79DCE27E8C4CF6701BFE49EC2446BBF6, F51CBB7A45C3C878F41653FD5FBDC93CC302712B7725DAAB4D3475A1F4771E3D ] Spooler C:\WINDOWS\System32\spoolsv.exe
23:13:51.0124 0x0630 Spooler - ok
23:13:51.0207 0x0630 [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
23:13:51.0312 0x0630 sppsvc - ok
23:13:51.0322 0x0630 [ 53B623AD190024EADD9F04317CBBCC13, 0699BC79A7C55AF1830EED581319C5855C9E9E77BC11A2E542844F29007D59D3 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
23:13:51.0331 0x0630 SQLWriter - ok
23:13:51.0341 0x0630 [ E83830BB74AE8CBECEA0ECD94DE436F9, 4A34569A34260324EBD629039E1BF45A3527FC75B22D9A3DB6360A6EB365483A ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
23:13:51.0359 0x0630 srv - ok
23:13:51.0372 0x0630 [ 55CA5329D1ADEB8F8034045930147AE4, D4F31BC82700D166564C7F9CDCEA3ABAB4A37B55137C34572768DF46FDA9320A ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
23:13:51.0401 0x0630 srv2 - ok
23:13:51.0409 0x0630 [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
23:13:51.0423 0x0630 srvnet - ok
23:13:51.0430 0x0630 [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
23:13:51.0448 0x0630 SSDPSRV - ok
23:13:51.0455 0x0630 [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
23:13:51.0470 0x0630 SstpSvc - ok
23:13:51.0475 0x0630 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
23:13:51.0483 0x0630 ssudmdm - ok
23:13:51.0545 0x0630 [ 4E330AD1EED4A5D582EE415FD55953A2, 2C02E1F45F74D250110BA5117AA942495CB2EBAC7F2CCECC284B4FB8F47B13E1 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
23:13:51.0653 0x0630 StateRepository - ok
23:13:51.0681 0x0630 [ 9867A86327E8AE3806305F1BCF01211A, CCDDB2560B30D27CE662F1B02710E1FAA9331E6A27D9A6629EEDED2CBA822062 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:13:51.0707 0x0630 Steam Client Service - ok
23:13:51.0712 0x0630 [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
23:13:51.0720 0x0630 stexstor - ok
23:13:51.0732 0x0630 [ 91CB95B35481155BFE29C217CD237F27, CA66957DF1441D991453BEF02D768D44E5D9A484BC23C8874E8A7AC20904CB06 ] stisvc C:\WINDOWS\System32\wiaservc.dll
23:13:51.0762 0x0630 stisvc - ok
23:13:51.0767 0x0630 [ 53EB8CE34B55A1EE63424C8DB7388BFC, 5AB59117BA8A2844EB8693CCC19B217AE039B28C87519F96E1C845FE9BF456C2 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
23:13:51.0777 0x0630 storahci - ok
23:13:51.0782 0x0630 [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
23:13:51.0789 0x0630 storflt - ok
23:13:51.0793 0x0630 [ B66D8C75C9BC59D637177AB3B1C569A6, 76252A631F03EEBF5FDC7693F6B0A5E73838CDBE3157114CC96B8BBE88B476BF ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
23:13:51.0802 0x0630 stornvme - ok
23:13:51.0805 0x0630 [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
23:13:51.0820 0x0630 storqosflt - ok
23:13:51.0829 0x0630 [ B91FBE7CB4633FEB32AFBD0B48576396, 9EFDD92E8096CE5555F8DC3C870864E5515469603C2373B99B3607234633CA66 ] StorSvc C:\WINDOWS\system32\storsvc.dll
23:13:51.0852 0x0630 StorSvc - ok
23:13:51.0855 0x0630 [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
23:13:51.0863 0x0630 storufs - ok
23:13:51.0867 0x0630 [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
23:13:51.0874 0x0630 storvsc - ok
23:13:51.0878 0x0630 [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc C:\WINDOWS\system32\svsvc.dll
23:13:51.0890 0x0630 svsvc - ok
23:13:51.0893 0x0630 [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum C:\WINDOWS\System32\drivers\swenum.sys
23:13:51.0900 0x0630 swenum - ok
23:13:51.0910 0x0630 [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv C:\WINDOWS\System32\swprv.dll
23:13:51.0932 0x0630 swprv - ok
23:13:51.0937 0x0630 [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
23:13:51.0950 0x0630 Synth3dVsc - ok
23:13:51.0967 0x0630 [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain C:\WINDOWS\system32\sysmain.dll
23:13:52.0002 0x0630 SysMain - ok
23:13:52.0012 0x0630 [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
23:13:52.0031 0x0630 SystemEventsBroker - ok
23:13:52.0037 0x0630 [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
23:13:52.0053 0x0630 TabletInputService - ok
23:13:52.0060 0x0630 [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
23:13:52.0077 0x0630 TapiSrv - ok
23:13:52.0117 0x0630 [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
23:13:52.0168 0x0630 Tcpip - ok
23:13:52.0209 0x0630 [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
23:13:52.0260 0x0630 Tcpip6 - ok
23:13:52.0267 0x0630 [ 8DBB1BE20C36E6D19BCC89EEA00B953C, 8B97A7E53E1D77363AFF6A5AAEAD89EBAE28DCB8D82753C804FD7CD5646500AF ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
23:13:52.0280 0x0630 tcpipreg - ok
23:13:52.0286 0x0630 [ 9D2DD64A0B51C56285512DC9454340F6, ABB90CE6A55269F71AFB08E04969CF9A4EFD93F7A7189AF920EEE3E005214DDD ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
23:13:52.0295 0x0630 tdx - ok
23:13:52.0300 0x0630 [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
23:13:52.0308 0x0630 terminpt - ok
23:13:52.0327 0x0630 [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService C:\WINDOWS\System32\termsrv.dll
23:13:52.0364 0x0630 TermService - ok
23:13:52.0369 0x0630 [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes C:\WINDOWS\system32\themeservice.dll
23:13:52.0384 0x0630 Themes - ok
23:13:52.0391 0x0630 [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
23:13:52.0410 0x0630 TieringEngineService - ok
23:13:52.0422 0x0630 [ 3B3C607C3C62DFBEF61938DA2CAB94DF, E5EEA7F45A7BBFDF6F0003CD77E39958C451DD1B4B401876B5619A3C20F5C370 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
23:13:52.0449 0x0630 tiledatamodelsvc - ok
23:13:52.0456 0x0630 [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
23:13:52.0469 0x0630 TimeBrokerSvc - ok
23:13:52.0475 0x0630 [ 46171262D0E806779DEEDFCAB2F830CC, 7F4A4658B8BA217D99E5B5C0E01600C20DC96ECBCA32A5BA7FBE17D2A7B8BFD8 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
23:13:52.0486 0x0630 TPM - ok
23:13:52.0491 0x0630 [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks C:\WINDOWS\System32\trkwks.dll
23:13:52.0504 0x0630 TrkWks - ok
23:13:52.0508 0x0630 [ 09440FA30C020B4443391FAFCF4876E3, 208C7725F70C75D8C96CCAF5B22F83B8B1C66D8C9FFF48465B1C9F4A77425569 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
23:13:52.0524 0x0630 TrustedInstaller - ok
23:13:52.0529 0x0630 [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt C:\WINDOWS\system32\drivers\TsUsbFlt.sys
23:13:52.0542 0x0630 tsusbflt - ok
23:13:52.0545 0x0630 [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
23:13:52.0555 0x0630 TsUsbGD - ok
23:13:52.0560 0x0630 [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
23:13:52.0575 0x0630 tunnel - ok
23:13:52.0580 0x0630 [ F723552F65D44FE693DB1A383825B3A8, EF8C343C4EB5EEA4EC830378EF576CCD6CD4EEDEDD486C0F29697044E8C71F45 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
23:13:52.0595 0x0630 tzautoupdate - ok
23:13:52.0599 0x0630 [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
23:13:52.0607 0x0630 UASPStor - ok
23:13:52.0611 0x0630 [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
23:13:52.0625 0x0630 UcmCx0101 - ok
23:13:52.0630 0x0630 [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
23:13:52.0641 0x0630 UcmTcpciCx0101 - ok
23:13:52.0644 0x0630 [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
23:13:52.0653 0x0630 UcmUcsi - ok
23:13:52.0659 0x0630 [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
23:13:52.0670 0x0630 Ucx01000 - ok
23:13:52.0673 0x0630 [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
23:13:52.0687 0x0630 UdeCx - ok
23:13:52.0694 0x0630 [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
23:13:52.0713 0x0630 udfs - ok
23:13:52.0717 0x0630 [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
23:13:52.0724 0x0630 UEFI - ok
23:13:52.0731 0x0630 [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
23:13:52.0742 0x0630 Ufx01000 - ok
23:13:52.0747 0x0630 [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
23:13:52.0756 0x0630 UfxChipidea - ok
23:13:52.0760 0x0630 [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
23:13:52.0770 0x0630 ufxsynopsys - ok
23:13:52.0777 0x0630 [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
23:13:52.0788 0x0630 UI0Detect - ok
23:13:52.0792 0x0630 [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus C:\WINDOWS\System32\drivers\umbus.sys
23:13:52.0802 0x0630 umbus - ok
23:13:52.0806 0x0630 [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
23:13:52.0814 0x0630 UmPass - ok
23:13:52.0822 0x0630 [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
23:13:52.0838 0x0630 UmRdpService - ok
23:13:52.0859 0x0630 [ B8272BB8D4982C496FDC704809C38E02, F93855D932FB1DBBCC86E82C0FE0DC9ECF93BBD629D2CA9D0BE7E075E114B7FF ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
23:13:52.0900 0x0630 UnistoreSvc - ok
23:13:52.0912 0x0630 [ 0F9E1BC7E2BEA1A4108EC9736CF0C2D9, 0D256DC2A6B867E7077DD3A5C18FF0345D2FEEC7A2245B037530761248BC9FB1 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
23:13:52.0921 0x0630 UNS - ok
23:13:52.0931 0x0630 [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost C:\WINDOWS\System32\upnphost.dll
23:13:52.0955 0x0630 upnphost - ok
23:13:52.0958 0x0630 [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
23:13:52.0966 0x0630 UrsChipidea - ok
23:13:52.0969 0x0630 [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
23:13:52.0977 0x0630 UrsCx01000 - ok
23:13:52.0980 0x0630 [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
23:13:52.0988 0x0630 UrsSynopsys - ok
23:13:52.0993 0x0630 [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
23:13:53.0003 0x0630 usbccgp - ok
23:13:53.0007 0x0630 [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
23:13:53.0018 0x0630 usbcir - ok
23:13:53.0022 0x0630 [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
23:13:53.0030 0x0630 usbehci - ok
23:13:53.0041 0x0630 [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
23:13:53.0056 0x0630 usbhub - ok
23:13:53.0068 0x0630 [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
23:13:53.0085 0x0630 USBHUB3 - ok
23:13:53.0088 0x0630 [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
23:13:53.0097 0x0630 usbohci - ok
23:13:53.0101 0x0630 [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
23:13:53.0110 0x0630 usbprint - ok
23:13:53.0114 0x0630 [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
23:13:53.0124 0x0630 usbser - ok
23:13:53.0129 0x0630 [ 0CC16F7B91C57AE9A4E44425A295FDAA, 7CEE11955E5742DA390601F565412C14A7481B8747C495CCD246696C56B426DC ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
23:13:53.0138 0x0630 USBSTOR - ok
23:13:53.0141 0x0630 [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
23:13:53.0150 0x0630 usbuhci - ok
23:13:53.0158 0x0630 [ 95BCCEFBC40D06484CF16144FE79B8A5, 8ABA73C5FFEDD319FB96B807AD08716698E557522478DF1A2C5D662675636AE0 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
23:13:53.0172 0x0630 USBXHCI - ok
23:13:53.0199 0x0630 [ 4CC81AB9D380A6264FF4C0C1512CF965, 76C33053D1C9155B0F3F8392FF982AD4EABEE2BBBEE89EA41DBFE8E436973EB0 ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
23:13:53.0243 0x0630 UserDataSvc - ok
23:13:53.0263 0x0630 [ AA24C61D88E36BA1144072227922173D, 2EBBC827E740F72EA2E75745E585378189BC0DEE91CACD7FA31BDBC5EFCF8733 ] UserManager C:\WINDOWS\System32\usermgr.dll
23:13:53.0301 0x0630 UserManager - ok
23:13:53.0313 0x0630 [ EBF9E40845362DBE2AD0DB3077269488, A6363006350D097F95B03A2F44E1D3FBD3BC40048BE57C715CD7CBC22D1EE70B ] UsoSvc C:\WINDOWS\system32\usocore.dll
23:13:53.0339 0x0630 UsoSvc - ok
23:13:53.0343 0x0630 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] VaultSvc C:\WINDOWS\system32\lsass.exe
23:13:53.0351 0x0630 VaultSvc - ok
23:13:53.0356 0x0630 [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
23:13:53.0364 0x0630 vdrvroot - ok
23:13:53.0376 0x0630 [ 0783EDE1FA94649ED7F3CEF6A734041A, 1A13A613EF6B67459031C7994FFC6F32F73E02E0F123A171618E4F011C635684 ] vds C:\WINDOWS\System32\vds.exe
23:13:53.0403 0x0630 vds - ok
23:13:53.0409 0x0630 [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
23:13:53.0420 0x0630 VerifierExt - ok
23:13:53.0433 0x0630 [ 3BB8D153A9A514EC9FFCB586251A1925, 5E4B46511F9791699826DC63B35528544347166BDE9981FB93F1F7F2A09599C7 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
23:13:53.0453 0x0630 vhdmp - ok
23:13:53.0456 0x0630 [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
23:13:53.0466 0x0630 vhf - ok
23:13:53.0469 0x0630 [ C67A307C9B53D1C7EFF098EC63DDDAF3, FEDFA1F46706E75FC102D945F355AAB65C5CC9C2941BFB27F3EA8438ED55B47B ] VHidXInput C:\WINDOWS\System32\drivers\VXInput.sys
23:13:53.0480 0x0630 VHidXInput - ok
23:13:53.0484 0x0630 [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
23:13:53.0493 0x0630 vmbus - ok
23:13:53.0495 0x0630 [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
23:13:53.0504 0x0630 VMBusHID - ok
23:13:53.0507 0x0630 [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
23:13:53.0516 0x0630 vmgid - ok
23:13:53.0524 0x0630 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
23:13:53.0544 0x0630 vmicguestinterface - ok
23:13:53.0552 0x0630 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
23:13:53.0567 0x0630 vmicheartbeat - ok
23:13:53.0574 0x0630 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
23:13:53.0590 0x0630 vmickvpexchange - ok
23:13:53.0599 0x0630 [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
23:13:53.0620 0x0630 vmicrdv - ok
23:13:53.0627 0x0630 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
23:13:53.0643 0x0630 vmicshutdown - ok
23:13:53.0650 0x0630 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
23:13:53.0666 0x0630 vmictimesync - ok
23:13:53.0673 0x0630 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
23:13:53.0689 0x0630 vmicvmsession - ok
23:13:53.0697 0x0630 [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
23:13:53.0714 0x0630 vmicvss - ok
23:13:53.0718 0x0630 [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
23:13:53.0727 0x0630 volmgr - ok
23:13:53.0735 0x0630 [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
23:13:53.0748 0x0630 volmgrx - ok
23:13:53.0757 0x0630 [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
23:13:53.0771 0x0630 volsnap - ok
23:13:53.0773 0x0630 [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume C:\WINDOWS\system32\drivers\volume.sys
23:13:53.0781 0x0630 volume - ok
23:13:53.0785 0x0630 [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
23:13:53.0793 0x0630 vpci - ok
23:13:53.0798 0x0630 [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
23:13:53.0808 0x0630 vsmraid - ok
23:13:53.0833 0x0630 [ 01FFD5AF533F2CFDF26DDDC9313731C1, BFF0F2E57CD2358AC8F519F6F5692A46D97EC4E9B763D47101CEF31712FD4738 ] VSS C:\WINDOWS\system32\vssvc.exe
23:13:53.0878 0x0630 VSS - ok
23:13:53.0886 0x0630 [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
23:13:53.0899 0x0630 VSTXRAID - ok
23:13:53.0902 0x0630 [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
23:13:53.0915 0x0630 vwifibus - ok
23:13:53.0919 0x0630 [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
23:13:53.0929 0x0630 vwififlt - ok
23:13:53.0940 0x0630 [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time C:\WINDOWS\system32\w32time.dll
23:13:53.0967 0x0630 W32Time - ok
23:13:53.0972 0x0630 [ 4053FB949F48647A327BC18DFEEA4374, 52511C35854A673ADCD9084FEF9BC6A339BCA0290374B81140A371D67B13A8FB ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
23:13:53.0983 0x0630 w3logsvc - ok
23:13:53.0994 0x0630 [ 85461F6AD65CCE84A7BC6D9F2A5861B3, 0C9A662F1BADF429B1DF62E91F4626DE996F84945D3A42D26A0FA09EC15CC9D7 ] W3SVC C:\WINDOWS\system32\inetsrv\iisw3adm.dll
23:13:54.0017 0x0630 W3SVC - ok
23:13:54.0021 0x0630 [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
23:13:54.0030 0x0630 WacomPen - ok
23:13:54.0039 0x0630 [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService C:\WINDOWS\system32\WalletService.dll
23:13:54.0062 0x0630 WalletService - ok
23:13:54.0067 0x0630 [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:13:54.0081 0x0630 wanarp - ok
23:13:54.0085 0x0630 [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:13:54.0099 0x0630 wanarpv6 - ok
23:13:54.0110 0x0630 [ 85461F6AD65CCE84A7BC6D9F2A5861B3, 0C9A662F1BADF429B1DF62E91F4626DE996F84945D3A42D26A0FA09EC15CC9D7 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
23:13:54.0132 0x0630 WAS - ok
23:13:54.0158 0x0630 [ 30B8286F8FE1AE90A583100D45E02247, 3C86A4A5E21F9A1267EA231B20914E0A162BA4C25FE8917AD3AB6D504DA5BE0C ] wbengine C:\WINDOWS\system32\wbengine.exe
23:13:54.0208 0x0630 wbengine - ok
23:13:54.0225 0x0630 [ 8C521D161445C3E1F38A494E7649E70D, F00990B2FE1FB52C74A2057E6480C5EBF2BDBC32955CC03C6B63360F20A49A18 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
23:13:54.0257 0x0630 WbioSrvc - ok
23:13:54.0262 0x0630 [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
23:13:54.0272 0x0630 wcifs - ok
23:13:54.0286 0x0630 [ 32960EA9CF836D7DD77767DCB68CE230, 679446A4FAB0331C181D2716CAEA225267C6164BB9867E360C5B3D6AB1083195 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
23:13:54.0316 0x0630 Wcmsvc - ok
23:13:54.0326 0x0630 [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
23:13:54.0351 0x0630 wcncsvc - ok
23:13:54.0355 0x0630 [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
23:13:54.0365 0x0630 wcnfs - ok
23:13:54.0368 0x0630 [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
23:13:54.0376 0x0630 WdBoot - ok
23:13:54.0392 0x0630 [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
23:13:54.0412 0x0630 Wdf01000 - ok
23:13:54.0420 0x0630 [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
23:13:54.0432 0x0630 WdFilter - ok
23:13:54.0454 0x0630 [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
23:13:54.0468 0x0630 WdiServiceHost - ok
23:13:54.0472 0x0630 [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
23:13:54.0485 0x0630 WdiSystemHost - ok
23:13:54.0500 0x0630 [ 8CB606A3057355FD5A9DBDD1A0AC94EF, 6DD0B4A2270633086EBB569A00B87430EE6EF173525E341404B15845B57BE86D ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
23:13:54.0525 0x0630 wdiwifi - ok
23:13:54.0530 0x0630 [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
23:13:54.0539 0x0630 WdNisDrv - ok
23:13:54.0541 0x0630 WdNisSvc - ok
23:13:54.0548 0x0630 [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient C:\WINDOWS\System32\webclnt.dll
23:13:54.0565 0x0630 WebClient - ok
23:13:54.0572 0x0630 [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
23:13:54.0592 0x0630 Wecsvc - ok
23:13:54.0595 0x0630 [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
23:13:54.0607 0x0630 WEPHOSTSVC - ok
23:13:54.0611 0x0630 [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
23:13:54.0630 0x0630 wercplsupport - ok
23:13:54.0636 0x0630 [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
23:13:54.0652 0x0630 WerSvc - ok
23:13:54.0657 0x0630 [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
23:13:54.0667 0x0630 WFPLWFS - ok
23:13:54.0671 0x0630 [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
23:13:54.0683 0x0630 WiaRpc - ok
23:13:54.0686 0x0630 [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
23:13:54.0694 0x0630 WIMMount - ok
23:13:54.0696 0x0630 WinDefend - ok
23:13:54.0704 0x0630 [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
23:13:54.0712 0x0630 WindowsTrustedRT - ok
23:13:54.0716 0x0630 [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
23:13:54.0723 0x0630 WindowsTrustedRTProxy - ok
23:13:54.0738 0x0630 [ C2A3B07F0118D61086C99BDCBAB6A6A3, 04D646BEF1C6F427503C594F0ECBB33140C3991A3A7AFB66B2C9581E358F9FD2 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
23:13:54.0767 0x0630 WinHttpAutoProxySvc - ok
23:13:54.0771 0x0630 [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
23:13:54.0778 0x0630 WinMad - ok
23:13:54.0786 0x0630 [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
23:13:54.0804 0x0630 Winmgmt - ok
23:13:54.0847 0x0630 [ B8C0D620219ECAA23A2AC841EAF454D1, FB527C4D36929D7FAE2A837727C557B7823A72069EBCAB7D16C49E8B21E8D952 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
23:13:54.0924 0x0630 WinRM - ok
23:13:54.0932 0x0630 [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
23:13:54.0942 0x0630 WINUSB - ok
23:13:54.0946 0x0630 [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
23:13:54.0955 0x0630 WinVerbs - ok
23:13:54.0967 0x0630 [ ECD999D8412A3473C26B118F89DB9908, 5FB9B93E4B5482CCFF01D805DFA386FD8D3441BC81E7BD5DF89EE3078FD724F3 ] wisvc C:\WINDOWS\system32\flightsettings.dll
23:13:54.0996 0x0630 wisvc - ok
23:13:55.0034 0x0630 [ 7671078AEF4C0203B053A9642C401FF7, BBFADA89CD31F20ADDBFAFAD2E492C72D82BF2F8B823BB6773F04D229B62534C ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
23:13:55.0099 0x0630 WlanSvc - ok
23:13:55.0134 0x0630 [ E15711970C5BE05E8D70B294D0AFF621, 30670CFC4DA57B4A3E0E895E4111100D847BB8041A258A303524CD96DC566482 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
23:13:55.0195 0x0630 wlidsvc - ok
23:13:55.0200 0x0630 [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
23:13:55.0209 0x0630 WmiAcpi - ok
23:13:55.0216 0x0630 [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
23:13:55.0229 0x0630 wmiApSrv - ok
23:13:55.0232 0x0630 WMPNetworkSvc - ok
23:13:55.0238 0x0630 [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
23:13:55.0249 0x0630 Wof - ok
23:13:55.0279 0x0630 [ 909CB4BBF7B08E78C363000E09E79A6F, 217205D1B5EE03274AFF9405AED6D2A5665CBA4C3876E84B53DA44920CDF9CB1 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
23:13:55.0335 0x0630 workfolderssvc - ok
23:13:55.0341 0x0630 [ F02930EB91596042F2221397D60AFCE5, 10E2AB0993B67CBAA9E11C68280608965064EC9F7E0C570F5B453FACADB8AB5D ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
23:13:55.0356 0x0630 WPDBusEnum - ok
23:13:55.0360 0x0630 [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
23:13:55.0367 0x0630 WpdUpFltr - ok
23:13:55.0374 0x0630 [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService C:\WINDOWS\system32\WpnService.dll
23:13:55.0392 0x0630 WpnService - ok
23:13:55.0396 0x0630 [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
23:13:55.0408 0x0630 WpnUserService - ok
23:13:55.0413 0x0630 [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
23:13:55.0426 0x0630 ws2ifsl - ok
23:13:55.0431 0x0630 [ 9A0E0B836413EB0BC885532D2A5389D6, AFEE4A0578D5581E4D72999A33C0DEA6253BD891F611AFF9AFDE4160A60105F3 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
23:13:55.0449 0x0630 wscsvc - ok
23:13:55.0451 0x0630 WSearch - ok
23:13:55.0489 0x0630 [ DDB7E452A99E0E5244105C6D2CF4BC9E, 1364B03AFFD20D339A2EBA303575BCCBC2D122D89810B1E3593CC55F93F9B79A ] wuauserv C:\WINDOWS\system32\wuaueng.dll
23:13:55.0554 0x0630 wuauserv - ok
23:13:55.0561 0x0630 [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
23:13:55.0572 0x0630 WudfPf - ok
23:13:55.0577 0x0630 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd C:\WINDOWS\system32\drivers\WudfRd.sys
23:13:55.0591 0x0630 WUDFRd - ok
23:13:55.0596 0x0630 [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
23:13:55.0608 0x0630 wudfsvc - ok
23:13:55.0614 0x0630 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:13:55.0628 0x0630 WUDFWpdFs - ok
23:13:55.0633 0x0630 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:13:55.0646 0x0630 WUDFWpdMtp - ok
23:13:55.0668 0x0630 [ E231728BC515A4B85543AF74A1FEDFCB, 5D250D7D789B5BB56BFA2E7A109BCEB3686B7636C54D89F4E9804101D145C955 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
23:13:55.0711 0x0630 WwanSvc - ok
23:13:55.0729 0x0630 [ F39D6915451D9226AC9A5E7AE70E2ABA, E05D678DC0423A4D0EB8B3BB5A942721BB4F3B0BED22748252DBD6053FE956F1 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
23:13:55.0762 0x0630 XblAuthManager - ok
23:13:55.0783 0x0630 [ 765FF96467A26C4C03281ECA426EC2D9, 2526B03C518D72F429C29BA4D4F11707AF277BF71520A1A92238A932950AE161 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
23:13:55.0824 0x0630 XblGameSave - ok
23:13:55.0832 0x0630 [ 9627BBAA50878F6833A6A7843EE3B1D9, 637566BB56501C4D11E3B6E6AC1C602D880C9D357CCE3DF1DF74EE672744F2B7 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
23:13:55.0849 0x0630 xboxgip - ok
23:13:55.0868 0x0630 [ 335E6F2BE58523B295945C840C185B00, 94ED7E2CB212A3D55B8A2CB90CD1D02A6AF92DC0DDD487CB5B7CAC9883343460 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
23:13:55.0905 0x0630 XboxNetApiSvc - ok
23:13:55.0909 0x0630 [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
23:13:55.0918 0x0630 xinputhid - ok
23:13:55.0920 0x0630 ================ Scan global ===============================
23:13:55.0923 0x0630 [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\WINDOWS\system32\basesrv.dll
23:13:55.0928 0x0630 [ 4C08BF958476A137C78B62B22B5F90A4, 11DDD033896C96F8F7F1A1EDD0F4E0F07AFBB3202DC8A2E5E3ADB51C4D0700D4 ] C:\WINDOWS\system32\winsrv.dll
23:13:55.0934 0x0630 [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\WINDOWS\system32\sxssrv.dll
23:13:55.0943 0x0630 [ 3C69CC28665854F1AAB4B4005005FA31, 2750F5ECCD448C07E3402AA64EA625D27C6BC1D000A3FFE57C03D62428BB46C4 ] C:\WINDOWS\system32\services.exe
23:13:55.0949 0x0630 [ Global ] - ok
23:13:55.0950 0x0630 ================ Scan MBR ==================================
23:13:55.0951 0x0630 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:13:56.0013 0x0630 \Device\Harddisk0\DR0 - ok
23:13:56.0023 0x0630 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
23:13:56.0147 0x0630 \Device\Harddisk1\DR1 - ok
23:13:56.0152 0x0630 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
23:13:56.0175 0x0630 \Device\Harddisk2\DR2 - ok
23:13:56.0183 0x0630 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR5
23:13:56.0343 0x0630 \Device\Harddisk5\DR5 - ok
23:13:56.0344 0x0630 ================ Scan VBR ==================================
23:13:56.0347 0x0630 [ 408C3C85845A7B0FDB07BD6B15043C2E ] \Device\Harddisk0\DR0\Partition1
23:13:56.0349 0x0630 \Device\Harddisk0\DR0\Partition1 - ok
23:13:56.0353 0x0630 [ 2172AD6282536670FA9CF28F2B1411A3 ] \Device\Harddisk0\DR0\Partition2
23:13:56.0356 0x0630 \Device\Harddisk0\DR0\Partition2 - ok
23:13:56.0360 0x0630 [ 34757113D870A44A4BBFADBE960383A1 ] \Device\Harddisk1\DR1\Partition1
23:13:56.0362 0x0630 \Device\Harddisk1\DR1\Partition1 - ok
23:13:56.0365 0x0630 [ D75C534AB789774D260AA13FD4DFC06C ] \Device\Harddisk1\DR1\Partition2
23:13:56.0367 0x0630 \Device\Harddisk1\DR1\Partition2 - ok
23:13:56.0379 0x0630 [ CBBD98436E7C3560FC16C6F7DE1A3339 ] \Device\Harddisk1\DR1\Partition3
23:13:56.0381 0x0630 \Device\Harddisk1\DR1\Partition3 - ok
23:13:56.0384 0x0630 [ FE6DE43A53F209624EC6CF0239621713 ] \Device\Harddisk2\DR2\Partition1
23:13:56.0385 0x0630 \Device\Harddisk2\DR2\Partition1 - ok
23:13:56.0389 0x0630 [ FB38D778921383BC9057E0EF579D00E9 ] \Device\Harddisk5\DR5\Partition1
23:13:56.0390 0x0630 \Device\Harddisk5\DR5\Partition1 - ok
23:13:56.0390 0x0630 ================ Scan generic autorun ======================
23:13:56.0582 0x0630 [ 1F590BA022251AF63ED0CD0DAFD49052, 397C28F9C27A851F5893B4271EB5DB38520ED7146DEACDAC82BD5B82D1C2447B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:13:56.0766 0x0630 RtHDVCpl - ok
23:13:56.0809 0x0630 [ 08D7625AD933D37E347ABF4448A6E962, 86451216775842E8F1B7714E3083CD4A1CA007EA74A2FE4FB8DA2FAD41D6D1CA ] C:\Program Files\AudioMX HS-11B Headset\CPL\FaceLift_x64.exe
23:13:56.0866 0x0630 Cm108BSound - detected UnsignedFile.Multi.Generic ( 1 )
23:13:56.0919 0x0630 Cm108BSound ( UnsignedFile.Multi.Generic ) - warning
23:13:56.0990 0x0630 [ C7645D43451C6D94D87F4D07BDE59C89, 495BBA47FC43EE23054FCD419F2F00457162D1C04296900C6AEA551102A810F3 ] C:\WINDOWS\system32\rundll32.exe
23:13:57.0021 0x0630 ShadowPlay - ok
23:13:57.0022 0x0630 WindowsDefender - ok
23:13:57.0031 0x0630 [ 6BA8D86746935498D64CB5CF6286F2EB, E47D1DEE39451428344233DB15412BCB486C4F6FE1D0426F20AA4C6245387926 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
23:13:57.0040 0x0630 USB3MON - ok
23:13:57.0125 0x0630 [ E5255D63DD01AA9F1CC4355FE366E2D3, 2E28C14DC1FEAE10626D37FF4C1DAE27F3801A40EA973E02E42B48185CBBC89B ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
23:13:57.0209 0x0630 LogMeIn Hamachi Ui - ok
23:13:57.0222 0x0630 [ F9D9B0E9BB2181C88DD252E8119DF37D, CAC0E9DB747B1AF004904D29FF502D7F993BA7BD030D92242EA172486F5E4329 ] C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitor.EXE
23:13:57.0239 0x0630 RoccatTyon - detected UnsignedFile.Multi.Generic ( 1 )
23:13:57.0239 0x0630 Detect skipped due to KSN trusted
23:13:57.0239 0x0630 RoccatTyon - ok
23:13:57.0248 0x0630 [ E9FA6BDC0D89E7743A111ED8438BBD06, 3A98B6188614625B07541A0199BB37C80D04C845FCF4EDB99EC12ED419822F7D ] C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitorW.EXE
23:13:57.0265 0x0630 RoccatTyonW - detected UnsignedFile.Multi.Generic ( 1 )
23:13:57.0265 0x0630 Detect skipped due to KSN trusted
23:13:57.0265 0x0630 RoccatTyonW - ok
23:13:57.0406 0x0630 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:57.0540 0x0630 OneDriveSetup - ok
23:13:57.0673 0x0630 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:57.0808 0x0630 OneDriveSetup - ok
23:13:57.0840 0x0630 [ 44348495F9D6ED21F4EFB3FF80677D99, 05B76248764B2BF7F9229626D7EFAFF96B724D38A82969EBE376CBE879E30450 ] C:\Users\ChAzubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
23:13:57.0870 0x0630 OneDrive - ok
23:13:58.0013 0x0630 [ 2269768074F6A93E454BA384ED9652E2, 3BB698018941471327A3031CC0F4011D69EBA03B00E9E6F2D99922639DCCDA59 ] C:\Program Files\CCleaner\CCleaner64.exe
23:13:58.0153 0x0630 CCleaner Monitoring - ok
23:13:58.0210 0x0630 [ 0B31486D156CFC9C7BB5E6B2FBF19C6F, 0444F8CF7298A23AFA95F1EEEC034D76A171391C6F42FCB3FBBB21D6317A0006 ] C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe
23:13:58.0265 0x0630 Amazon Music - ok
23:13:58.0395 0x0630 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:13:58.0529 0x0630 OneDriveSetup - ok
23:13:58.0544 0x0630 [ 2781E6EF593909A8B73FE1AD397F778A, E892D6C57F8903E20129E75A9B877690229280FD8106B5C7F96173175EA1AC4E ] C:\Program Files (x86)\Windows Mail\wab.exe
23:13:58.0569 0x0630 WAB Migrate - ok
23:13:58.0573 0x0630 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
23:13:58.0574 0x0630 Win FW state via NFP2: enabled ( trusted )
23:13:58.0639 0x0630 ============================================================
23:13:58.0639 0x0630 Scan finished
23:13:58.0639 0x0630 ============================================================
23:13:58.0644 0x041c Detected object count: 1
23:13:58.0644 0x041c Actual detected object count: 1
23:15:59.0827 0x041c Cm108BSound ( UnsignedFile.Multi.Generic ) - skipped by user
23:15:59.0827 0x041c Cm108BSound ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
13.01.2017, 23:54
| #8 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUP.Optional.Reimage mit MB gefundenZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
13.01.2017, 23:57
| #9 |
| | PUP.Optional.Reimage mit MB gefunden Oh, tut mir leid. Ich hatte Tomaten auf den Augen.  Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2017.01.13.13
rootkit: v2016.11.20.01
Windows 10 x64 NTFS
Internet Explorer 11.576.14393.0
ChAzubi :: CHAZUBI-PC [administrator]
13.01.2017 22:59:58
mbar-log-2017-01-13 (22-59-58).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 353937
Time elapsed: 9 minute(s), 27 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
|
|
13.01.2017, 23:59
| #10 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUP.Optional.Reimage mit MB gefunden Das passt aber jetzt. Aber: Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.01.2017, 00:08
| #11 |
| | PUP.Optional.Reimage mit MB gefunden Ich hab es jetzt nochmal gemacht. Nach der verlinkten Anleitung. Code:
ATTFilter 00:04:25.0205 0x13e0 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
00:04:28.0339 0x13e0 ============================================================
00:04:28.0339 0x13e0 Current date / time: 2017/01/14 00:04:28.0339
00:04:28.0339 0x13e0 SystemInfo:
00:04:28.0339 0x13e0
00:04:28.0339 0x13e0 OS Version: 10.0.14393 ServicePack: 0.0
00:04:28.0339 0x13e0 Product type: Workstation
00:04:28.0339 0x13e0 ComputerName: CHAZUBI-PC
00:04:28.0339 0x13e0 UserName: ChAzubi
00:04:28.0339 0x13e0 Windows directory: C:\WINDOWS
00:04:28.0339 0x13e0 System windows directory: C:\WINDOWS
00:04:28.0339 0x13e0 Running under WOW64
00:04:28.0339 0x13e0 Processor architecture: Intel x64
00:04:28.0339 0x13e0 Number of processors: 4
00:04:28.0339 0x13e0 Page size: 0x1000
00:04:28.0339 0x13e0 Boot type: Normal boot
00:04:28.0339 0x13e0 CodeIntegrityOptions = 0x00000001
00:04:28.0339 0x13e0 ============================================================
00:04:28.0389 0x13e0 KLMD registered as C:\WINDOWS\system32\drivers\98146109.sys
00:04:28.0389 0x13e0 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.693, osProperties = 0x19
00:04:28.0872 0x13e0 System UUID: {7A4DF462-BC82-2094-0E8C-B72F3AE064D0}
00:04:29.0207 0x13e0 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:04:29.0220 0x13e0 Drive \Device\Harddisk1\DR1 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:04:29.0222 0x13e0 Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:04:29.0248 0x13e0 Drive \Device\Harddisk5\DR5 - Size: 0xEDEA00000 ( 59.48 Gb ), SectorSize: 0x200, Cylinders: 0x1E54, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:04:29.0253 0x13e0 ============================================================
00:04:29.0253 0x13e0 \Device\Harddisk0\DR0:
00:04:29.0253 0x13e0 MBR partitions:
00:04:29.0253 0x13e0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
00:04:29.0253 0x13e0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D192800
00:04:29.0253 0x13e0 \Device\Harddisk1\DR1:
00:04:29.0254 0x13e0 MBR partitions:
00:04:29.0254 0x13e0 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC34F800
00:04:29.0263 0x13e0 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0xC3501CF, BlocksNum 0x1E846621
00:04:29.0276 0x13e0 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x2AB9682F, BlocksNum 0x1FCBC7D1
00:04:29.0276 0x13e0 \Device\Harddisk2\DR2:
00:04:29.0276 0x13e0 MBR partitions:
00:04:29.0276 0x13e0 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800
00:04:29.0276 0x13e0 \Device\Harddisk5\DR5:
00:04:29.0277 0x13e0 MBR partitions:
00:04:29.0277 0x13e0 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x8000, BlocksNum 0x76ED000
00:04:29.0277 0x13e0 ============================================================
00:04:29.0279 0x13e0 C: <-> \Device\Harddisk0\DR0\Partition2
00:04:29.0294 0x13e0 E: <-> \Device\Harddisk1\DR1\Partition1
00:04:29.0312 0x13e0 F: <-> \Device\Harddisk1\DR1\Partition2
00:04:29.0331 0x13e0 G: <-> \Device\Harddisk1\DR1\Partition3
00:04:29.0332 0x13e0 H: <-> \Device\Harddisk2\DR2\Partition1
00:04:29.0332 0x13e0 ============================================================
00:04:29.0332 0x13e0 Initialize success
00:04:29.0332 0x13e0 ============================================================
00:05:20.0344 0x1f70 ============================================================
00:05:20.0344 0x1f70 Scan started
00:05:20.0344 0x1f70 Mode: Manual; SigCheck; TDLFS;
00:05:20.0344 0x1f70 ============================================================
00:05:20.0344 0x1f70 KSN ping started
00:05:20.0407 0x1f70 KSN ping finished: true
00:05:20.0900 0x1f70 ================ Scan system memory ========================
00:05:20.0900 0x1f70 System memory - ok
00:05:20.0900 0x1f70 ================ Scan services =============================
00:05:20.0932 0x1f70 [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
00:05:20.0969 0x1f70 1394ohci - ok
00:05:20.0976 0x1f70 [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
00:05:20.0986 0x1f70 3ware - ok
00:05:21.0000 0x1f70 [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
00:05:21.0020 0x1f70 ACPI - ok
00:05:21.0024 0x1f70 [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
00:05:21.0034 0x1f70 AcpiDev - ok
00:05:21.0038 0x1f70 [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
00:05:21.0048 0x1f70 acpiex - ok
00:05:21.0051 0x1f70 [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
00:05:21.0060 0x1f70 acpipagr - ok
00:05:21.0063 0x1f70 [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
00:05:21.0072 0x1f70 AcpiPmi - ok
00:05:21.0075 0x1f70 [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
00:05:21.0084 0x1f70 acpitime - ok
00:05:21.0089 0x1f70 [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:05:21.0096 0x1f70 AdobeARMservice - ok
00:05:21.0117 0x1f70 [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
00:05:21.0144 0x1f70 ADP80XX - ok
00:05:21.0157 0x1f70 [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD C:\WINDOWS\system32\drivers\afd.sys
00:05:21.0176 0x1f70 AFD - ok
00:05:21.0183 0x1f70 [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
00:05:21.0199 0x1f70 ahcache - ok
00:05:21.0202 0x1f70 [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter C:\WINDOWS\System32\AJRouter.dll
00:05:21.0212 0x1f70 AJRouter - ok
00:05:21.0216 0x1f70 [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG C:\WINDOWS\System32\alg.exe
00:05:21.0228 0x1f70 ALG - ok
00:05:21.0232 0x1f70 [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
00:05:21.0244 0x1f70 AmdK8 - ok
00:05:21.0249 0x1f70 [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
00:05:21.0260 0x1f70 AmdPPM - ok
00:05:21.0264 0x1f70 [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
00:05:21.0273 0x1f70 amdsata - ok
00:05:21.0280 0x1f70 [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
00:05:21.0292 0x1f70 amdsbs - ok
00:05:21.0295 0x1f70 [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
00:05:21.0304 0x1f70 amdxata - ok
00:05:21.0307 0x1f70 [ 5B0F4FB165256DE463A51E3A3127969E, 6751ADFFE95FA671C584427A9624EEB79518DE08132FD7A83148700B75487316 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
00:05:21.0318 0x1f70 AppHostSvc - ok
00:05:21.0324 0x1f70 [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID C:\WINDOWS\system32\drivers\appid.sys
00:05:21.0334 0x1f70 AppID - ok
00:05:21.0339 0x1f70 [ 74A24CF946279111D7F203B36569EC02, FD67D36804744B4FE3E20BA891852575E6C2DA6515643B2F4B4210118B0FCCDA ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
00:05:21.0352 0x1f70 AppIDSvc - ok
00:05:21.0356 0x1f70 [ 73FAA5517CCD1332F00192A303CF2026, 75636222BFF381A3EECA010752DF7DC1603A395B91FF7FBF92127B5CA8EFFEE5 ] Appinfo C:\WINDOWS\System32\appinfo.dll
00:05:21.0368 0x1f70 Appinfo - ok
00:05:21.0371 0x1f70 [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
00:05:21.0383 0x1f70 applockerfltr - ok
00:05:21.0394 0x1f70 [ A0746EF6C5AB7A17A67BC167167499C1, 1D2154D3AFC5219293EDD508C7726E7756FB72BF04F73861C575D1FE5C553411 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
00:05:21.0416 0x1f70 AppReadiness - ok
00:05:21.0452 0x1f70 [ D70B1453ADA82A92E76EAE72D936A0F6, 439DBC5818025887343D4B5B509C7D2C97ED0FFA4641A5178EA5719C50E5013F ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
00:05:21.0513 0x1f70 AppXSvc - ok
00:05:21.0519 0x1f70 [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
00:05:21.0529 0x1f70 arcsas - ok
00:05:21.0539 0x1f70 [ 5EE26734A882478AF6696092E2E0F352, 6CACFF521B3B839F73EBEB6EFBFDCCA8A8BC319DDB254BE3EFE29A39040B2C26 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:05:21.0548 0x1f70 aspnet_state - ok
00:05:21.0551 0x1f70 [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
00:05:21.0561 0x1f70 AsyncMac - ok
00:05:21.0564 0x1f70 [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
00:05:21.0572 0x1f70 atapi - ok
00:05:21.0580 0x1f70 [ 2DC3D53FFA0D10EB8C911AE2DB7BF4CF, 8E0A4B5D610D487A216E70396A99ACC1BEA12C46A6681B1A39CD0FD01EDD406A ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
00:05:21.0597 0x1f70 AudioEndpointBuilder - ok
00:05:21.0613 0x1f70 [ 7B993290E7691C446C16A56A431669BA, 004551934E27E9FC1A939C9BD1DEB850A216CBED9B18CB3317920F5656D9F6BF ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
00:05:21.0644 0x1f70 Audiosrv - ok
00:05:21.0649 0x1f70 [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
00:05:21.0662 0x1f70 AxInstSV - ok
00:05:21.0674 0x1f70 [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
00:05:21.0690 0x1f70 b06bdrv - ok
00:05:21.0694 0x1f70 [ 68F72B05EBC6D1779C0D60A147C7CA0B, AA1C857BEE34865C6B901157FC22570D4CF45D950708BAD7AA333F120F2B474C ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
00:05:21.0704 0x1f70 BasicDisplay - ok
00:05:21.0708 0x1f70 [ 23156E7EDAF613D839E2839746B168D3, CAEF8F9C7D3A338BD747AC9D5BFBE730D77B911E87BCF532EBB75E1F80916AFA ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
00:05:21.0717 0x1f70 BasicRender - ok
00:05:21.0721 0x1f70 [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn C:\WINDOWS\System32\drivers\bcmfn.sys
00:05:21.0730 0x1f70 bcmfn - ok
00:05:21.0733 0x1f70 [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
00:05:21.0742 0x1f70 bcmfn2 - ok
00:05:21.0750 0x1f70 [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
00:05:21.0767 0x1f70 BDESVC - ok
00:05:21.0771 0x1f70 [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep C:\WINDOWS\system32\drivers\Beep.sys
00:05:21.0779 0x1f70 Beep - ok
00:05:21.0794 0x1f70 [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE C:\WINDOWS\System32\bfe.dll
00:05:21.0821 0x1f70 BFE - ok
00:05:21.0841 0x1f70 [ D876C567AB767258036F05E4766189FD, DE8BA67325CB64495BD454B8F9DDCAE82636253844FC68B360C7E1CF5D51DD0E ] BITS C:\WINDOWS\System32\qmgr.dll
00:05:21.0875 0x1f70 BITS - ok
00:05:21.0881 0x1f70 [ 9CD2A4821DE379305CACB2E99AD8953A, 89D700DFC3C59ACBBADB48954A28C0EBF8D6A11A9E63837689DD891868E43188 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
00:05:21.0892 0x1f70 bowser - ok
00:05:21.0906 0x1f70 [ 2447BD15B41298622CC662249CD0F496, 013A326D2E3BF68D654BBABE2F1E5DF0FF0A153A4B95D570EE28F9BC0F5A78C3 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
00:05:21.0933 0x1f70 BrokerInfrastructure - ok
00:05:21.0939 0x1f70 [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser C:\WINDOWS\System32\browser.dll
00:05:21.0950 0x1f70 Browser - ok
00:05:21.0954 0x1f70 [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
00:05:21.0963 0x1f70 BthAvrcpTg - ok
00:05:21.0967 0x1f70 [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
00:05:21.0977 0x1f70 BthHFEnum - ok
00:05:21.0980 0x1f70 [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
00:05:21.0989 0x1f70 bthhfhid - ok
00:05:21.0997 0x1f70 [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
00:05:22.0013 0x1f70 BthHFSrv - ok
00:05:22.0017 0x1f70 [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
00:05:22.0027 0x1f70 BTHMODEM - ok
00:05:22.0033 0x1f70 [ 96932F631F5CB9F5D1C8F99A71568EF3, 5E4C8955A2EE9DC76B4EBC383653EB753D76D6B017E1A5DD553AC16094D7F12A ] bthserv C:\WINDOWS\system32\bthserv.dll
00:05:22.0045 0x1f70 bthserv - ok
00:05:22.0049 0x1f70 [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
00:05:22.0058 0x1f70 buttonconverter - ok
00:05:22.0062 0x1f70 [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
00:05:22.0074 0x1f70 CapImg - ok
00:05:22.0078 0x1f70 [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
00:05:22.0089 0x1f70 cdfs - ok
00:05:22.0098 0x1f70 [ 2E6612376D257F74781F2EF1F869D8C3, 908B0DECB9F098F7F11B029A03C06C67FB52E5E8BEA42033A2B579D3B3686AB8 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
00:05:22.0116 0x1f70 CDPSvc - ok
00:05:22.0124 0x1f70 [ A93C9B9EBE2FDE5A536000D72CC17F7F, 9793CFAE8BE8C6B5B39A1D276577965FBB2CE131325A410B7C68BD23492ADAAF ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
00:05:22.0141 0x1f70 CDPUserSvc - ok
00:05:22.0149 0x1f70 [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
00:05:22.0162 0x1f70 cdrom - ok
00:05:22.0167 0x1f70 [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
00:05:22.0181 0x1f70 CertPropSvc - ok
00:05:22.0189 0x1f70 [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
00:05:22.0202 0x1f70 cht4iscsi - ok
00:05:22.0236 0x1f70 [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
00:05:22.0281 0x1f70 cht4vbd - ok
00:05:22.0286 0x1f70 [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
00:05:22.0296 0x1f70 circlass - ok
00:05:22.0304 0x1f70 [ B72D26074E72A757D788FB1BEF8B2F2E, 36847C5315AFB9A5EC66AD3EF2A09C24C0FAF669FDF0831F78600F4609352CB4 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
00:05:22.0318 0x1f70 CLFS - ok
00:05:22.0332 0x1f70 [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
00:05:22.0353 0x1f70 ClipSVC - ok
00:05:22.0358 0x1f70 [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg C:\WINDOWS\System32\drivers\registry.sys
00:05:22.0368 0x1f70 clreg - ok
00:05:22.0377 0x1f70 [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
00:05:22.0386 0x1f70 CmBatt - ok
00:05:22.0398 0x1f70 [ 90C07EB909C42316982E753BDAA7860D, 438581FD3468FAF01D35529672201A920E8821EC80E30E59A43645DA57738F21 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
00:05:22.0417 0x1f70 CNG - ok
00:05:22.0421 0x1f70 [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
00:05:22.0428 0x1f70 cnghwassist - ok
00:05:22.0438 0x1f70 [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
00:05:22.0447 0x1f70 CompositeBus - ok
00:05:22.0450 0x1f70 COMSysApp - ok
00:05:22.0454 0x1f70 [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
00:05:22.0462 0x1f70 condrv - ok
00:05:22.0477 0x1f70 [ 5DE2049D5F57C1D142F36FA9CE443693, E6C2807C0B1EF90C11EB39634693B76EACE6CC675777776112835212A334F328 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
00:05:22.0498 0x1f70 CoreMessagingRegistrar - ok
00:05:22.0504 0x1f70 [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
00:05:22.0516 0x1f70 CryptSvc - ok
00:05:22.0519 0x1f70 [ 039B5A8CBD5C75D1C46DF15F7C74D136, A5C8A41F2D406D37E147939F2058373ED091BFCC00CA7E829F887638CD3A2F64 ] dam C:\WINDOWS\system32\drivers\dam.sys
00:05:22.0528 0x1f70 dam - ok
00:05:22.0545 0x1f70 [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
00:05:22.0576 0x1f70 DcomLaunch - ok
00:05:22.0582 0x1f70 [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc C:\WINDOWS\system32\dcpsvc.dll
00:05:22.0598 0x1f70 DcpSvc - ok
00:05:22.0609 0x1f70 [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
00:05:22.0633 0x1f70 defragsvc - ok
00:05:22.0643 0x1f70 [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
00:05:22.0662 0x1f70 DeviceAssociationService - ok
00:05:22.0668 0x1f70 [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
00:05:22.0684 0x1f70 DeviceInstall - ok
00:05:22.0687 0x1f70 [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
00:05:22.0697 0x1f70 DevQueryBroker - ok
00:05:22.0701 0x1f70 [ 0D1D392ED2597F295956D058D33BD7C3, 2F7FE5A06D880F9E2A46C9803DD249DC40C2898C04E946D14E7EECCCC9F2B24F ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
00:05:22.0713 0x1f70 Dfsc - ok
00:05:22.0718 0x1f70 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
00:05:22.0729 0x1f70 dg_ssudbus - ok
00:05:22.0738 0x1f70 [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
00:05:22.0756 0x1f70 Dhcp - ok
00:05:22.0762 0x1f70 [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
00:05:22.0772 0x1f70 diagnosticshub.standardcollector.service - ok
00:05:22.0805 0x1f70 [ CAD14E0AD1F03397E9B1C8733D76BEF4, 0035EF35F6520B1DF0E599C8A06D4163C52576BCE0976BF729B44DECDC506627 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
00:05:22.0861 0x1f70 DiagTrack - ok
00:05:22.0868 0x1f70 [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk C:\WINDOWS\system32\drivers\disk.sys
00:05:22.0877 0x1f70 disk - ok
00:05:22.0886 0x1f70 [ 09CF47A74BFB480B8262FCEE222004B6, F5CD0ACA04BCB95984595CC2E17BC9E92865091A0A3BCAD4B06438A1570E7696 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
00:05:22.0906 0x1f70 DmEnrollmentSvc - ok
00:05:22.0910 0x1f70 [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
00:05:22.0920 0x1f70 dmvsc - ok
00:05:22.0923 0x1f70 [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
00:05:22.0938 0x1f70 dmwappushservice - ok
00:05:22.0945 0x1f70 [ 7F8A3ABF7750326E18CE953CCE262670, 5DBD159E8A455A42764FC73CF7DCAC849B5896848C5589B00BD36697804C0A3B ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
00:05:22.0960 0x1f70 Dnscache - ok
00:05:22.0968 0x1f70 [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc C:\WINDOWS\System32\dot3svc.dll
00:05:22.0983 0x1f70 dot3svc - ok
00:05:22.0988 0x1f70 [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS C:\WINDOWS\system32\dps.dll
00:05:23.0001 0x1f70 DPS - ok
00:05:23.0004 0x1f70 [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud C:\WINDOWS\system32\DRIVERS\drmkaud.sys
00:05:23.0012 0x1f70 drmkaud - ok
00:05:23.0017 0x1f70 [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
00:05:23.0032 0x1f70 DsmSvc - ok
00:05:23.0037 0x1f70 [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc C:\WINDOWS\System32\DsSvc.dll
00:05:23.0052 0x1f70 DsSvc - ok
00:05:23.0087 0x1f70 [ 19F2B54EE8861D90579BD0E3AE5182F9, FDD4F091C61C8C20550C8F68375ABD7ED718A733F680F0F0367D4796C302BA14 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
00:05:23.0132 0x1f70 DXGKrnl - ok
00:05:23.0139 0x1f70 [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost C:\WINDOWS\System32\eapsvc.dll
00:05:23.0154 0x1f70 EapHost - ok
00:05:23.0207 0x1f70 [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
00:05:23.0273 0x1f70 ebdrv - ok
00:05:23.0279 0x1f70 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] EFS C:\WINDOWS\System32\lsass.exe
00:05:23.0288 0x1f70 EFS - ok
00:05:23.0293 0x1f70 [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
00:05:23.0301 0x1f70 EhStorClass - ok
00:05:23.0306 0x1f70 [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
00:05:23.0316 0x1f70 EhStorTcgDrv - ok
00:05:23.0321 0x1f70 [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
00:05:23.0335 0x1f70 embeddedmode - ok
00:05:23.0342 0x1f70 [ 3CE2B6AECB9AF8BC159299EEC46A35CA, E933B28BB6E4D01FCCDF8FBBB134C244B28DA3ECBDFA13333F0D4C24B2551780 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
00:05:23.0358 0x1f70 EntAppSvc - ok
00:05:23.0361 0x1f70 [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
00:05:23.0370 0x1f70 ErrDev - ok
00:05:23.0382 0x1f70 [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem C:\WINDOWS\system32\es.dll
00:05:23.0401 0x1f70 EventSystem - ok
00:05:23.0410 0x1f70 [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat C:\WINDOWS\system32\drivers\exfat.sys
00:05:23.0427 0x1f70 exfat - ok
00:05:23.0434 0x1f70 [ FA918EC296EB410FF02867D008D02421, 23D164A24CB0D212778FA9592A046B6BA1F3628003E04181744A1F891B5B3E5A ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
00:05:23.0448 0x1f70 fastfat - ok
00:05:23.0461 0x1f70 [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax C:\WINDOWS\system32\fxssvc.exe
00:05:23.0485 0x1f70 Fax - ok
00:05:23.0488 0x1f70 [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
00:05:23.0498 0x1f70 fdc - ok
00:05:23.0501 0x1f70 [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
00:05:23.0512 0x1f70 fdPHost - ok
00:05:23.0515 0x1f70 [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub C:\WINDOWS\system32\fdrespub.dll
00:05:23.0527 0x1f70 FDResPub - ok
00:05:23.0531 0x1f70 [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
00:05:23.0543 0x1f70 fhsvc - ok
00:05:23.0547 0x1f70 [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
00:05:23.0557 0x1f70 FileCrypt - ok
00:05:23.0561 0x1f70 [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
00:05:23.0569 0x1f70 FileInfo - ok
00:05:23.0572 0x1f70 [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
00:05:23.0584 0x1f70 Filetrace - ok
00:05:23.0587 0x1f70 [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
00:05:23.0596 0x1f70 flpydisk - ok
00:05:23.0605 0x1f70 [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
00:05:23.0619 0x1f70 FltMgr - ok
00:05:23.0649 0x1f70 [ 49BF5C8182C3D2D6CD9F7EEDF1CFDB66, 0977EBE86B57FC370D27CA69D58122397D5D5369AF0C8DBCC492AE7AD55CBA2B ] FontCache C:\WINDOWS\system32\FntCache.dll
00:05:23.0700 0x1f70 FontCache - ok
00:05:23.0705 0x1f70 [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:05:23.0712 0x1f70 FontCache3.0.0.0 - ok
00:05:23.0726 0x1f70 [ 8B52024D3A5C3A12F1C4D75D30A976C5, 982F1C783966C9A6D255AA7DBAB6D225EBE0050A36176B8DE85E8ADBFE17FDF1 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
00:05:23.0753 0x1f70 FrameServer - ok
00:05:23.0757 0x1f70 [ D152CCBFC8251670BF0AAFE00D6BC782, 9DE82D8FC4E1DAF8FF23EE08C0B7CB5051A9224E64544D262CFA4996A41B04E1 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
00:05:23.0765 0x1f70 FsDepends - ok
00:05:23.0768 0x1f70 [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:05:23.0776 0x1f70 Fs_Rec - ok
00:05:23.0789 0x1f70 [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
00:05:23.0808 0x1f70 fvevol - ok
00:05:23.0811 0x1f70 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
00:05:23.0816 0x1f70 gdrv - ok
00:05:23.0819 0x1f70 [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
00:05:23.0828 0x1f70 gencounter - ok
00:05:23.0831 0x1f70 [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
00:05:23.0839 0x1f70 genericusbfn - ok
00:05:23.0845 0x1f70 [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
00:05:23.0855 0x1f70 GPIOClx0101 - ok
00:05:23.0877 0x1f70 [ 713A176494CEC107E663CAD6C2B27F77, 76871D8CFBA8FCD8CFF96208AE84C658EBEC60270D978898B90EE9451AA1BCE1 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
00:05:23.0914 0x1f70 gpsvc - ok
00:05:23.0917 0x1f70 [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
00:05:23.0926 0x1f70 GpuEnergyDrv - ok
00:05:23.0932 0x1f70 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:05:23.0939 0x1f70 gupdate - ok
00:05:23.0943 0x1f70 [ 0C03FB91E17987EED93F60007B08DAA0, BF4549F45FA1B291339E5053738B95BA50F021225F294F7B1ED9DACBD09BA426 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:05:23.0949 0x1f70 gupdatem - ok
00:05:23.0951 0x1f70 [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64 C:\Windows\GVTDrv64.sys
00:05:23.0956 0x1f70 GVTDrv64 - ok
00:05:23.0961 0x1f70 [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] Hamachi C:\WINDOWS\System32\drivers\Hamdrv.sys
00:05:23.0970 0x1f70 Hamachi - ok
00:05:24.0013 0x1f70 [ C0EF69A59C13D9204D1D70434AA3D00C, 56BD4F7C74B2A36665677C32F30C4E1839DB9AAAC82FFA4A2622B4D261D865F2 ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
00:05:24.0056 0x1f70 Hamachi2Svc - ok
00:05:24.0062 0x1f70 [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
00:05:24.0072 0x1f70 HDAudBus - ok
00:05:24.0076 0x1f70 [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
00:05:24.0083 0x1f70 HidBatt - ok
00:05:24.0087 0x1f70 [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
00:05:24.0099 0x1f70 HidBth - ok
00:05:24.0102 0x1f70 [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
00:05:24.0111 0x1f70 hidi2c - ok
00:05:24.0115 0x1f70 [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
00:05:24.0123 0x1f70 hidinterrupt - ok
00:05:24.0126 0x1f70 [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
00:05:24.0136 0x1f70 HidIr - ok
00:05:24.0139 0x1f70 [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv C:\WINDOWS\system32\hidserv.dll
00:05:24.0149 0x1f70 hidserv - ok
00:05:24.0152 0x1f70 [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
00:05:24.0161 0x1f70 HidUsb - ok
00:05:24.0169 0x1f70 [ 0AC1BD5A28FAA371EF34859FE703E515, 1DD1C33AF8D6EBE7C36FCD051F066E4039D2B47ABAECF7C68BC3933D567930B2 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
00:05:24.0184 0x1f70 HomeGroupListener - ok
00:05:24.0194 0x1f70 [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
00:05:24.0214 0x1f70 HomeGroupProvider - ok
00:05:24.0218 0x1f70 [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
00:05:24.0226 0x1f70 HpSAMD - ok
00:05:24.0246 0x1f70 [ A10C7C1E69FC90620C7BF2E51302A01F, D725AEAE38255CED73F4922A10F226215528706580B06D01C228488F93AC0397 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
00:05:24.0272 0x1f70 HTTP - ok
00:05:24.0276 0x1f70 [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
00:05:24.0286 0x1f70 HvHost - ok
00:05:24.0290 0x1f70 [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
00:05:24.0299 0x1f70 hvservice - ok
00:05:24.0302 0x1f70 [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
00:05:24.0310 0x1f70 hwpolicy - ok
00:05:24.0313 0x1f70 [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
00:05:24.0321 0x1f70 hyperkbd - ok
00:05:24.0326 0x1f70 [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
00:05:24.0337 0x1f70 i8042prt - ok
00:05:24.0340 0x1f70 [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
00:05:24.0349 0x1f70 iagpio - ok
00:05:24.0353 0x1f70 [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
00:05:24.0363 0x1f70 iai2c - ok
00:05:24.0366 0x1f70 [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
00:05:24.0377 0x1f70 iaLPSS2i_GPIO2 - ok
00:05:24.0382 0x1f70 [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
00:05:24.0390 0x1f70 iaLPSS2i_I2C - ok
00:05:24.0394 0x1f70 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
00:05:24.0400 0x1f70 iaLPSSi_GPIO - ok
00:05:24.0404 0x1f70 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
00:05:24.0415 0x1f70 iaLPSSi_I2C - ok
00:05:24.0428 0x1f70 [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
00:05:24.0447 0x1f70 iaStorAV - ok
00:05:24.0457 0x1f70 [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
00:05:24.0471 0x1f70 iaStorV - ok
00:05:24.0481 0x1f70 [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
00:05:24.0498 0x1f70 ibbus - ok
00:05:24.0503 0x1f70 [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
00:05:24.0510 0x1f70 ICCS - detected UnsignedFile.Multi.Generic ( 1 )
00:05:24.0620 0x1f70 Detect skipped due to KSN trusted
00:05:24.0620 0x1f70 ICCS - ok
00:05:24.0632 0x1f70 [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc C:\WINDOWS\System32\tetheringservice.dll
00:05:24.0659 0x1f70 icssvc - ok
00:05:24.0663 0x1f70 [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:05:24.0669 0x1f70 IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
00:05:24.0777 0x1f70 Detect skipped due to KSN trusted
00:05:24.0777 0x1f70 IDriverT - ok
00:05:24.0809 0x1f70 [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT C:\WINDOWS\System32\ikeext.dll
00:05:24.0842 0x1f70 IKEEXT - ok
00:05:24.0846 0x1f70 [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
00:05:24.0855 0x1f70 IndirectKmd - ok
00:05:24.0931 0x1f70 [ ACACD1B925D448558C1C9D0258749451, 896ECC9CD5EBE658B3A4211700029C8855DD7F38312F15716A6AC1FD0302CF6E ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
00:05:25.0006 0x1f70 IntcAzAudAddService - ok
00:05:25.0023 0x1f70 [ 2D66067C7A8A0112156BCD1C0BAA7042, 89F77EEE59FF3AD2E777DA15187F1447F6E112E8831417A0DE656ACB82E7B22E ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
00:05:25.0037 0x1f70 Intel(R) Capability Licensing Service Interface - ok
00:05:25.0040 0x1f70 [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide C:\WINDOWS\system32\drivers\intelide.sys
00:05:25.0048 0x1f70 intelide - ok
00:05:25.0051 0x1f70 [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
00:05:25.0059 0x1f70 intelpep - ok
00:05:25.0064 0x1f70 [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
00:05:25.0075 0x1f70 intelppm - ok
00:05:25.0079 0x1f70 [ DB32758F3A7F6CCE81A5430080A2EA65, 36A26BAA884E96804F8EA0B12BB3E81BBE6D4EE704809904091445F36CAB5A29 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
00:05:25.0086 0x1f70 iorate - ok
00:05:25.0090 0x1f70 [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:05:25.0101 0x1f70 IpFilterDriver - ok
00:05:25.0118 0x1f70 [ EF1BB0EF8A12C32DD88C409706B8145E, 7AEDE717C258C29592CC8AEC40F61617E5382646E5141E1C0941882ACE5C5758 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
00:05:25.0148 0x1f70 iphlpsvc - ok
00:05:25.0153 0x1f70 [ 450DBDD716C7911F83E05F78EE18BFA2, 43C0DA172F632131898F315A53DEDD1AE99FB0620AB32B3A5B99FEC498C9AAE5 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
00:05:25.0162 0x1f70 IPMIDRV - ok
00:05:25.0168 0x1f70 [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
00:05:25.0181 0x1f70 IPNAT - ok
00:05:25.0186 0x1f70 [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda C:\WINDOWS\system32\drivers\irda.sys
00:05:25.0198 0x1f70 irda - ok
00:05:25.0201 0x1f70 [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
00:05:25.0211 0x1f70 IRENUM - ok
00:05:25.0214 0x1f70 [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon C:\WINDOWS\System32\irmon.dll
00:05:25.0223 0x1f70 irmon - ok
00:05:25.0227 0x1f70 [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
00:05:25.0234 0x1f70 isapnp - ok
00:05:25.0241 0x1f70 [ C9FD02D62E09337B67B0C61EC8CA38CC, DC77E935ECC8474BE9018F0937CB11C137073582B20A0EE107CE247FD9E1F9C1 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
00:05:25.0252 0x1f70 iScsiPrt - ok
00:05:25.0256 0x1f70 [ B2381712638B0B714D0EEAB9A1F7C640, 113BCA8868057156EFDC7C079171308C1EBA4F979C85EB1265F42F95A499B086 ] iusb3hcs C:\WINDOWS\system32\drivers\iusb3hcs.sys
00:05:25.0260 0x1f70 iusb3hcs - ok
00:05:25.0265 0x1f70 [ 166FC0B36842135BC2D3C32DF70ED0D6, 83319957ECEFFF372C683C56DC6ECD34CD4B16A98F3F602E48108B124D07D975 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
00:05:25.0272 0x1f70 jhi_service - ok
00:05:25.0276 0x1f70 [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
00:05:25.0284 0x1f70 kbdclass - ok
00:05:25.0287 0x1f70 [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
Code:
ATTFilter 00:05:25.0297 0x1f70 kbdhid - ok
00:05:25.0300 0x1f70 [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
00:05:25.0310 0x1f70 kdnic - ok
00:05:25.0314 0x1f70 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] KeyIso C:\WINDOWS\system32\lsass.exe
00:05:25.0322 0x1f70 KeyIso - ok
00:05:25.0327 0x1f70 [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
00:05:25.0336 0x1f70 KSecDD - ok
00:05:25.0341 0x1f70 [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
00:05:25.0352 0x1f70 KSecPkg - ok
00:05:25.0355 0x1f70 [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
00:05:25.0368 0x1f70 ksthunk - ok
00:05:25.0377 0x1f70 [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
00:05:25.0394 0x1f70 KtmRm - ok
00:05:25.0399 0x1f70 [ 4E444F41E69BBE2E0BAE34D5DFCB5732, ACAEFB839CF7A3113D026B9A715994C3DFF8797D73B991253959EF606C4FBC00 ] L1C C:\WINDOWS\System32\drivers\L1C63x64.sys
00:05:25.0410 0x1f70 L1C - ok
00:05:25.0418 0x1f70 [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
00:05:25.0435 0x1f70 LanmanServer - ok
00:05:25.0442 0x1f70 [ 33DBBCF71F68EA97D9FD34E4C9AB5AC6, 104F04A1560E75EB224A3825707CE51E8798ABD764F5CC3B854FFFC93A39AF60 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
00:05:25.0458 0x1f70 LanmanWorkstation - ok
00:05:25.0462 0x1f70 [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc C:\WINDOWS\System32\lfsvc.dll
00:05:25.0472 0x1f70 lfsvc - ok
00:05:25.0475 0x1f70 [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
00:05:25.0484 0x1f70 LicenseManager - ok
00:05:25.0488 0x1f70 [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
00:05:25.0498 0x1f70 lltdio - ok
00:05:25.0505 0x1f70 [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
00:05:25.0520 0x1f70 lltdsvc - ok
00:05:25.0523 0x1f70 [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
00:05:25.0534 0x1f70 lmhosts - ok
00:05:25.0543 0x1f70 [ D6BF6FD055BD719F3D62E51B90857159, A7777D18E404164B4DA531AD94D2A712D9CC6A9288795B7388037752A558E96F ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
00:05:25.0553 0x1f70 LMIGuardianSvc - ok
00:05:25.0559 0x1f70 [ C56E64BA70DC822B84D100A6F8D690D3, 1F511FBDDDD6E8CC83C8D0BD152BBE8C4C9E103D2DDED93564DC0FB9962DD040 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
00:05:25.0568 0x1f70 LMS - ok
00:05:25.0573 0x1f70 [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
00:05:25.0583 0x1f70 LSI_SAS - ok
00:05:25.0587 0x1f70 [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
00:05:25.0596 0x1f70 LSI_SAS2i - ok
00:05:25.0600 0x1f70 [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
00:05:25.0609 0x1f70 LSI_SAS3i - ok
00:05:25.0613 0x1f70 [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
00:05:25.0621 0x1f70 LSI_SSS - ok
00:05:25.0634 0x1f70 [ D5EFC0BAEC21EDE6FE03D377D403B421, 41BE71AF7C896FD4C51EF7E3871AAB769164DFB8050DA43E48C7A100711414B4 ] LSM C:\WINDOWS\System32\lsm.dll
00:05:25.0659 0x1f70 LSM - ok
00:05:25.0664 0x1f70 [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
00:05:25.0678 0x1f70 luafv - ok
00:05:25.0682 0x1f70 [ CAAF0CD70FEE7C5110B1E62804E41B17, 48482A6C8D2296C4DC613304637C8DBB7DD1DB39326F27650EBCA6FD2793BCFD ] MapsBroker C:\WINDOWS\System32\moshost.dll
00:05:25.0693 0x1f70 MapsBroker - ok
00:05:25.0697 0x1f70 [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas C:\WINDOWS\system32\drivers\megasas.sys
00:05:25.0705 0x1f70 megasas - ok
00:05:25.0709 0x1f70 [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
00:05:25.0717 0x1f70 megasas2i - ok
00:05:25.0728 0x1f70 [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr C:\WINDOWS\system32\drivers\megasr.sys
00:05:25.0745 0x1f70 megasr - ok
00:05:25.0749 0x1f70 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
00:05:25.0755 0x1f70 MEIx64 - ok
00:05:25.0758 0x1f70 [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
00:05:25.0769 0x1f70 MessagingService - ok
00:05:25.0787 0x1f70 [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
00:05:25.0809 0x1f70 mlx4_bus - ok
00:05:25.0813 0x1f70 [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
00:05:25.0823 0x1f70 MMCSS - ok
00:05:25.0826 0x1f70 [ 0D50B3F3AB32D416786B58D4553859CE, 9DA4D7A30982E8B31C45BDB721AEF5240EAD9DA6839CF34FDDBCF123BF104F2C ] Modem C:\WINDOWS\system32\drivers\modem.sys
00:05:25.0835 0x1f70 Modem - ok
00:05:25.0838 0x1f70 [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor C:\WINDOWS\System32\drivers\monitor.sys
00:05:25.0848 0x1f70 monitor - ok
00:05:25.0852 0x1f70 [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
00:05:25.0859 0x1f70 mouclass - ok
00:05:25.0863 0x1f70 [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
00:05:25.0872 0x1f70 mouhid - ok
00:05:25.0876 0x1f70 [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
00:05:25.0885 0x1f70 mountmgr - ok
00:05:25.0890 0x1f70 [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:05:25.0898 0x1f70 MozillaMaintenance - ok
00:05:25.0903 0x1f70 [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
00:05:25.0913 0x1f70 mpsdrv - ok
00:05:25.0929 0x1f70 [ 779CFDB17EA07A6D26FEBBAC95B65772, 74D9542E8DCCD07396A45A45D2F500AA6F9DCC1DB785A6153EB3067E42F576A4 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
00:05:25.0958 0x1f70 MpsSvc - ok
00:05:25.0965 0x1f70 [ 4FC62380457DE25B69011D3542E954AC, D212DDD2446618A6215CF9FC370FA2634F027BC92D1D4999E019BEF8A86AA6EB ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
00:05:25.0978 0x1f70 MQAC - ok
00:05:25.0983 0x1f70 [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
00:05:25.0994 0x1f70 MRxDAV - ok
00:05:26.0004 0x1f70 [ E671EDAB0726E05ECEF4058B4CD73C4D, 9F4C50E635CE2204E3291C8D3D7F658A969E80722B8B6F0304228D9B434C20EA ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:05:26.0019 0x1f70 mrxsmb - ok
00:05:26.0026 0x1f70 [ D4D12BC29DE0F09280868FDCA65B3474, A6FE89ABD52087FEE52FDF31DDF4CB627ED400E94FDA86BEBF1D4763F1E42518 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
00:05:26.0041 0x1f70 mrxsmb10 - ok
00:05:26.0047 0x1f70 [ 93A77008A8932FC84A173C4E97E52874, B7510CF7998C538D68BD2ECDC512A0BFC7CB7362F598EE4110F728427AFF0F5A ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
00:05:26.0058 0x1f70 mrxsmb20 - ok
00:05:26.0063 0x1f70 [ 74C9D21523DAE0C18F413C196DF0058A, 3DB4B8CA368D9DD82FAE2C2BC828A21142C8D29780A7C8667188C447519FF702 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
00:05:26.0075 0x1f70 MsBridge - ok
00:05:26.0080 0x1f70 [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC C:\WINDOWS\System32\msdtc.exe
00:05:26.0092 0x1f70 MSDTC - ok
00:05:26.0099 0x1f70 [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
00:05:26.0108 0x1f70 Msfs - ok
00:05:26.0111 0x1f70 [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
00:05:26.0119 0x1f70 msgpiowin32 - ok
00:05:26.0122 0x1f70 [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
00:05:26.0131 0x1f70 mshidkmdf - ok
00:05:26.0133 0x1f70 [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
00:05:26.0142 0x1f70 mshidumdf - ok
00:05:26.0145 0x1f70 [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
00:05:26.0152 0x1f70 msisadrv - ok
00:05:26.0157 0x1f70 [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
00:05:26.0169 0x1f70 MSiSCSI - ok
00:05:26.0172 0x1f70 msiserver - ok
00:05:26.0174 0x1f70 [ 13D614E6B51ECF36746C48CE829FA7F6, CAD63C0A4F7110093F84C58252C5803F14E3FC46584B79DA17EC86D49FEAEA64 ] MSKSSRV C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
00:05:26.0187 0x1f70 MSKSSRV - ok
00:05:26.0191 0x1f70 [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
00:05:26.0202 0x1f70 MsLldp - ok
00:05:26.0205 0x1f70 [ F3EF38D07A4ADCDF922EEEAF0FED7D4D, B9D436BFA29AA0A7B00889D96C4F8BC33C1809E19B7A71A69AB2E534E9794BF0 ] MSMQ C:\WINDOWS\system32\mqsvc.exe
00:05:26.0214 0x1f70 MSMQ - ok
00:05:26.0217 0x1f70 [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
00:05:26.0230 0x1f70 MSPCLOCK - ok
00:05:26.0233 0x1f70 [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM C:\WINDOWS\system32\DRIVERS\MSPQM.sys
00:05:26.0246 0x1f70 MSPQM - ok
00:05:26.0253 0x1f70 [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
00:05:26.0267 0x1f70 MsRPC - ok
00:05:26.0272 0x1f70 [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
00:05:26.0280 0x1f70 mssmbios - ok
00:05:26.0283 0x1f70 [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE C:\WINDOWS\system32\DRIVERS\MSTEE.sys
00:05:26.0296 0x1f70 MSTEE - ok
00:05:26.0299 0x1f70 [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
00:05:26.0308 0x1f70 MTConfig - ok
00:05:26.0312 0x1f70 [ 15D987C8F6CCD4AC94E070C5986762CB, 452FB0C48B86C7F8F53794CC2DDBF2B900B03A0383B2DE8F6A830F8CB0AFBAD8 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
00:05:26.0321 0x1f70 Mup - ok
00:05:26.0324 0x1f70 [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
00:05:26.0333 0x1f70 mvumis - ok
00:05:26.0345 0x1f70 [ DB31EBB04C871F422C36A0962DA7D38B, B1BC2344744F537FB2C7D07B415F860195B7795E185253F05C0817A3764FEC10 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
00:05:26.0366 0x1f70 NativeWifiP - ok
00:05:26.0372 0x1f70 [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
00:05:26.0385 0x1f70 NcaSvc - ok
00:05:26.0393 0x1f70 [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService C:\WINDOWS\System32\ncbservice.dll
00:05:26.0410 0x1f70 NcbService - ok
00:05:26.0414 0x1f70 [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
00:05:26.0429 0x1f70 NcdAutoSetup - ok
00:05:26.0433 0x1f70 [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
00:05:26.0442 0x1f70 ndfltr - ok
00:05:26.0463 0x1f70 [ D5564FC81350458ED570528C4E3B1CCF, DD3C5012492EF9BCE3BE635BBB3AA40B3C5F5FDBD795A76B327D9C994102AC2B ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
00:05:26.0491 0x1f70 NDIS - ok
00:05:26.0495 0x1f70 [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
00:05:26.0505 0x1f70 NdisCap - ok
00:05:26.0510 0x1f70 [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
00:05:26.0521 0x1f70 NdisImPlatform - ok
00:05:26.0524 0x1f70 [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:05:26.0537 0x1f70 NdisTapi - ok
00:05:26.0540 0x1f70 [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
00:05:26.0550 0x1f70 Ndisuio - ok
00:05:26.0553 0x1f70 [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
00:05:26.0563 0x1f70 NdisVirtualBus - ok
00:05:26.0568 0x1f70 [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
00:05:26.0585 0x1f70 NdisWan - ok
00:05:26.0590 0x1f70 [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:05:26.0608 0x1f70 ndiswanlegacy - ok
00:05:26.0611 0x1f70 [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
00:05:26.0625 0x1f70 ndproxy - ok
00:05:26.0629 0x1f70 [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
00:05:26.0644 0x1f70 Ndu - ok
00:05:26.0648 0x1f70 [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
00:05:26.0658 0x1f70 NetAdapterCx - ok
00:05:26.0662 0x1f70 [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
00:05:26.0670 0x1f70 NetBIOS - ok
00:05:26.0678 0x1f70 [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
00:05:26.0693 0x1f70 NetBT - ok
00:05:26.0697 0x1f70 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] Netlogon C:\WINDOWS\system32\lsass.exe
00:05:26.0706 0x1f70 Netlogon - ok
00:05:26.0712 0x1f70 [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman C:\WINDOWS\System32\netman.dll
00:05:26.0728 0x1f70 Netman - ok
00:05:26.0734 0x1f70 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:05:26.0743 0x1f70 NetMsmqActivator - ok
00:05:26.0746 0x1f70 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:05:26.0755 0x1f70 NetPipeActivator - ok
00:05:26.0766 0x1f70 [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
00:05:26.0786 0x1f70 netprofm - ok
00:05:26.0793 0x1f70 [ D65F295A049473E6A39EA9A0EA76CA32, 274FC0BA044EB2D14093AB0E561F7FACEE06A3F433C81343C8B926FA2F9BD251 ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
00:05:26.0808 0x1f70 NetSetupSvc - ok
00:05:26.0813 0x1f70 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:05:26.0821 0x1f70 NetTcpActivator - ok
00:05:26.0825 0x1f70 [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:05:26.0833 0x1f70 NetTcpPortSharing - ok
00:05:26.0842 0x1f70 [ B996DE26A2E16053C9485F5905B05320, 30EB2CEB466A4F05A44F7CBFCDFD8CC3C27B5FCF1269C1B9410C48AB362D2A75 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
00:05:26.0859 0x1f70 NgcCtnrSvc - ok
00:05:26.0877 0x1f70 [ 54C31C2B815E2E26BB8158022F837C9C, CED660D1A58F635C6452F82FCB2EF8ACEEB7785E31617B2ADFD9EE69A2BDF2B8 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
00:05:26.0908 0x1f70 NgcSvc - ok
00:05:26.0917 0x1f70 [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
00:05:26.0934 0x1f70 NlaSvc - ok
00:05:26.0938 0x1f70 [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
00:05:26.0948 0x1f70 Npfs - ok
00:05:26.0952 0x1f70 [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
00:05:26.0960 0x1f70 npsvctrig - ok
00:05:26.0963 0x1f70 [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi C:\WINDOWS\system32\nsisvc.dll
00:05:26.0973 0x1f70 nsi - ok
00:05:26.0976 0x1f70 [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
00:05:26.0986 0x1f70 nsiproxy - ok
00:05:27.0023 0x1f70 [ DB69C6DA8B3DDFDC547D455CA23A8250, AE495CEB18924C8B21F7F150FF17CD00880F2E222D7B5155661798E0535D63C4 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
00:05:27.0069 0x1f70 NTFS - ok
00:05:27.0073 0x1f70 [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null C:\WINDOWS\system32\drivers\Null.sys
00:05:27.0082 0x1f70 Null - ok
00:05:27.0092 0x1f70 [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
00:05:27.0103 0x1f70 NvContainerLocalSystem - ok
00:05:27.0112 0x1f70 [ 2F35D14522207092C09F57B0242FD650, C13E9A15BEEB1CF331B81D90526C6D824E88259AF066E7D5BE34AD798F33334C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
00:05:27.0123 0x1f70 NvContainerNetworkService - ok
00:05:27.0130 0x1f70 [ 64DA1993B1973F049C1347DA1B05185E, 2A04E263DB13751D033E2F9B9518820CF4942EEAFA5A32488570EEB699EE2A96 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
00:05:27.0138 0x1f70 NVHDA - ok
00:05:27.0157 0x1f70 [ 5409D41DFB0EAB63511FE7889B2A687E, 32E8D8622798B8F16002EE617200F0172A98D984A925F6550A1E352ACFA0BDDF ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
00:05:27.0179 0x1f70 NVIDIA Wireless Controller Service - ok
00:05:27.0390 0x1f70 [ 76ECA562B95DB26C64BEC14BB188A3F6, B4DB40D391B227393EEC13659C64B03499632FD11A75E5183BE8A0C8F3C9688B ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_848dea456d3c865e\nvlddmkm.sys
00:05:27.0607 0x1f70 nvlddmkm - ok
00:05:27.0623 0x1f70 [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
00:05:27.0633 0x1f70 nvraid - ok
00:05:27.0638 0x1f70 [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
00:05:27.0648 0x1f70 nvstor - ok
00:05:27.0651 0x1f70 [ 37527CCD2AAF5192D825084339CA964E, B1BE990411BA80D1F9E9F86F82F2B2762F87A5C028FB79A60DB325FAFE89D059 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
00:05:27.0656 0x1f70 NvStreamKms - ok
00:05:27.0660 0x1f70 [ 66B4D2AA9C733A40B1C673402E99A7D0, DD4297CCB3527C95E52132271C296D277FC4C5FB59731AF25FCC19A523A8D20C ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
00:05:27.0665 0x1f70 nvvad_WaveExtensible - ok
00:05:27.0674 0x1f70 [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
00:05:27.0691 0x1f70 OneSyncSvc - ok
00:05:27.0725 0x1f70 [ 3E498CE04DD40C60769854DF2CE8D21D, 28B9331787FE598A79E40DA839B022D353280BE0E8F0D20CE4AAB6284866DE48 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
00:05:27.0761 0x1f70 Origin Client Service - ok
00:05:27.0797 0x1f70 [ B66980E730FEF1E31BE39B09F55514A1, 756F7695AB112FB2FEBA905F5F9E7C9435823195DE164AF60071457BC047535E ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
00:05:27.0834 0x1f70 Origin Web Helper Service - ok
00:05:27.0843 0x1f70 [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
00:05:27.0860 0x1f70 p2pimsvc - ok
00:05:27.0870 0x1f70 [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc C:\WINDOWS\system32\p2psvc.dll
00:05:27.0889 0x1f70 p2psvc - ok
00:05:27.0893 0x1f70 [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport C:\WINDOWS\System32\drivers\parport.sys
00:05:27.0904 0x1f70 Parport - ok
00:05:27.0908 0x1f70 [ CDBD029BAEC8D09F6FBD404632D9AF28, 71F4401150CD4C9C6BBF2DA854CF07EA2F8C9BBE900833858F49134DDAF14414 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
00:05:27.0918 0x1f70 partmgr - ok
00:05:27.0928 0x1f70 [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
00:05:27.0945 0x1f70 PcaSvc - ok
00:05:27.0953 0x1f70 [ 29AF16726F4DD84376ECA85AB6AFF2C6, BEF9EA10637065365ED343C4EBA51191B9BEADD8F1F3362D3EFE75F40BE9A027 ] pci C:\WINDOWS\system32\drivers\pci.sys
00:05:27.0967 0x1f70 pci - ok
00:05:27.0970 0x1f70 [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide C:\WINDOWS\system32\drivers\pciide.sys
00:05:27.0977 0x1f70 pciide - ok
00:05:27.0981 0x1f70 [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
00:05:27.0990 0x1f70 pcmcia - ok
00:05:27.0994 0x1f70 [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
00:05:28.0002 0x1f70 pcw - ok
00:05:28.0006 0x1f70 [ 9EA203A07EFA6D74F07F32EF0DAB5CA6, D851F1CC748B4CD0E263931668FFF2FE20D5778267F4FF2237D565CFC171B5AF ] pdc C:\WINDOWS\system32\drivers\pdc.sys
00:05:28.0015 0x1f70 pdc - ok
00:05:28.0029 0x1f70 [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
00:05:28.0058 0x1f70 PEAUTH - ok
00:05:28.0062 0x1f70 [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
00:05:28.0071 0x1f70 percsas2i - ok
00:05:28.0074 0x1f70 [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
00:05:28.0082 0x1f70 percsas3i - ok
00:05:28.0096 0x1f70 [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
00:05:28.0106 0x1f70 PerfHost - ok
00:05:28.0124 0x1f70 [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
00:05:28.0152 0x1f70 PhoneSvc - ok
00:05:28.0158 0x1f70 [ B4AB2C0177715FFAED88A1223212043A, 1920792ADC78DD51EF98B6A9634D686EAED0848FB7EF74A0DCD3AEBA5AF41EC6 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
00:05:28.0172 0x1f70 PimIndexMaintenanceSvc - ok
00:05:28.0198 0x1f70 [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla C:\WINDOWS\system32\pla.dll
00:05:28.0240 0x1f70 pla - ok
00:05:28.0246 0x1f70 [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
00:05:28.0261 0x1f70 PlugPlay - ok
00:05:28.0265 0x1f70 [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA C:\Windows\system32\PnkBstrA.exe
00:05:28.0271 0x1f70 PnkBstrA - ok
00:05:28.0274 0x1f70 [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
00:05:28.0285 0x1f70 PNRPAutoReg - ok
00:05:28.0292 0x1f70 [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
00:05:28.0309 0x1f70 PNRPsvc - ok
00:05:28.0319 0x1f70 [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
00:05:28.0338 0x1f70 PolicyAgent - ok
00:05:28.0343 0x1f70 [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power C:\WINDOWS\system32\umpo.dll
00:05:28.0357 0x1f70 Power - ok
00:05:28.0362 0x1f70 [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
00:05:28.0376 0x1f70 PptpMiniport - ok
00:05:28.0428 0x1f70 [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
00:05:28.0513 0x1f70 PrintNotify - ok
00:05:28.0520 0x1f70 [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor C:\WINDOWS\System32\drivers\processr.sys
00:05:28.0531 0x1f70 Processor - ok
00:05:28.0538 0x1f70 [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
00:05:28.0557 0x1f70 ProfSvc - ok
00:05:28.0562 0x1f70 [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
00:05:28.0572 0x1f70 Psched - ok
00:05:28.0580 0x1f70 [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE C:\WINDOWS\system32\qwave.dll
00:05:28.0595 0x1f70 QWAVE - ok
00:05:28.0599 0x1f70 [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
00:05:28.0608 0x1f70 QWAVEdrv - ok
00:05:28.0611 0x1f70 [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:05:28.0620 0x1f70 RasAcd - ok
00:05:28.0624 0x1f70 [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
00:05:28.0635 0x1f70 RasAgileVpn - ok
00:05:28.0639 0x1f70 [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto C:\WINDOWS\System32\rasauto.dll
00:05:28.0651 0x1f70 RasAuto - ok
00:05:28.0655 0x1f70 [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
00:05:28.0669 0x1f70 Rasl2tp - ok
00:05:28.0681 0x1f70 [ F79BFB5588B777C71734C1D1EC129D07, 9B9D70EC8978AAC19B2B94694EE1B9957C13DFDDFCBE8AA82C5F0D0EA04CDBDF ] RasMan C:\WINDOWS\System32\rasmans.dll
00:05:28.0706 0x1f70 RasMan - ok
00:05:28.0710 0x1f70 [ 9387DF155233D45D4E010F4F2FB52A57, CABC25DA4E512809AED0085767BDD94BF3C1DA792BFF8A009B5465D9110E7060 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:05:28.0722 0x1f70 RasPppoe - ok
00:05:28.0725 0x1f70 [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
00:05:28.0739 0x1f70 RasSstp - ok
00:05:28.0749 0x1f70 [ AF6963414B820B7C45578ED3300438A7, C00F60FD72608E6983D32642768AECE891DD816FADFA7B872BA88091C16B95D7 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:05:28.0763 0x1f70 rdbss - ok
00:05:28.0767 0x1f70 [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
00:05:28.0777 0x1f70 rdpbus - ok
00:05:28.0782 0x1f70 [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
00:05:28.0794 0x1f70 RDPDR - ok
00:05:28.0800 0x1f70 [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
00:05:28.0808 0x1f70 RdpVideoMiniport - ok
00:05:28.0814 0x1f70 [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
00:05:28.0826 0x1f70 rdyboost - ok
00:05:28.0844 0x1f70 [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
00:05:28.0868 0x1f70 ReFSv1 - ok
00:05:28.0879 0x1f70 [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
00:05:28.0899 0x1f70 RemoteAccess - ok
00:05:28.0904 0x1f70 [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
00:05:28.0920 0x1f70 RemoteRegistry - ok
00:05:28.0932 0x1f70 [ 0660F4A14F9D2A2F59B26B1D74F1A6D0, A9443B6B7ED1ECA22AC960A2C6A2BE18C0BA58CD7BCF60E7AA617CD3662D122D ] RetailDemo C:\WINDOWS\system32\RDXService.dll
00:05:28.0957 0x1f70 RetailDemo - ok
00:05:28.0963 0x1f70 [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc C:\WINDOWS\System32\RMapi.dll
00:05:28.0975 0x1f70 RmSvc - ok
00:05:28.0979 0x1f70 [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
00:05:28.0991 0x1f70 RpcEptMapper - ok
00:05:28.0993 0x1f70 [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator C:\WINDOWS\system32\locator.exe
00:05:29.0003 0x1f70 RpcLocator - ok
00:05:29.0019 0x1f70 [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] RpcSs C:\WINDOWS\system32\rpcss.dll
00:05:29.0050 0x1f70 RpcSs - ok
00:05:29.0054 0x1f70 [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
00:05:29.0065 0x1f70 rspndr - ok
00:05:29.0068 0x1f70 [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
00:05:29.0077 0x1f70 s3cap - ok
00:05:29.0080 0x1f70 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] SamSs C:\WINDOWS\system32\lsass.exe
00:05:29.0089 0x1f70 SamSs - ok
00:05:29.0093 0x1f70 [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
00:05:29.0102 0x1f70 sbp2port - ok
00:05:29.0109 0x1f70 [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
00:05:29.0133 0x1f70 SCardSvr - ok
00:05:29.0139 0x1f70 [ 5E8ECCE130A72107B6DFDBE26185A7FB, 811E2CE485BC14161FF629069BCCF53B2B8C6F8B1E1A6B3A3C86DBE4F85A5577 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
00:05:29.0153 0x1f70 ScDeviceEnum - ok
00:05:29.0157 0x1f70 [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
00:05:29.0167 0x1f70 scfilter - ok
00:05:29.0183 0x1f70 [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule C:\WINDOWS\system32\schedsvc.dll
00:05:29.0218 0x1f70 Schedule - ok
00:05:29.0222 0x1f70 [ 9055ADDFBA4C8B914C914CE693B55C0A, DB213AC36E14D856B81D2AFE46815402537A2ABEEA15032A9FF436F953129441 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
00:05:29.0231 0x1f70 scmbus - ok
00:05:29.0236 0x1f70 [ B6F2363584E62960846F7C3F00124A4F, 252189FF9D623CF69BF415FF7C7FE74B0BBF756B632420578BFAFF6595616CF7 ] scmdisk0101 C:\WINDOWS\System32\drivers\scmdisk0101.sys
00:05:29.0248 0x1f70 scmdisk0101 - ok
00:05:29.0253 0x1f70 [ C1B5EE58E759C53F9939581709DC70BB, 85095ABC9459A766832373BC3839E573E9A73C967F8427D6B7CAB972551C3191 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
00:05:29.0266 0x1f70 SCPolicySvc - ok
00:05:29.0273 0x1f70 [ 7C3D10BEC8B0DBA00A78C78EB10B3AE2, A671C9CB97977613576D70607E106C7A29B9EA9E875C7C5AF293EE5903D7AD0A ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
00:05:29.0285 0x1f70 sdbus - ok
00:05:29.0290 0x1f70 [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
00:05:29.0302 0x1f70 SDRSVC - ok
00:05:29.0307 0x1f70 [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
00:05:29.0315 0x1f70 sdstor - ok
00:05:29.0319 0x1f70 [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon C:\WINDOWS\system32\seclogon.dll
00:05:29.0337 0x1f70 seclogon - ok
00:05:29.0352 0x1f70 [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS C:\WINDOWS\System32\sens.dll
00:05:29.0363 0x1f70 SENS - ok
00:05:29.0385 0x1f70 [ 2B4E090D06C60853C5C00CF255F9E02A, 4D4DBA7B04519622612BD4A4F28318CA2F5646C84CAFF8C5ACC9BF4C6031894E ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
00:05:29.0426 0x1f70 SensorDataService - ok
00:05:29.0436 0x1f70 [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService C:\WINDOWS\system32\SensorService.dll
00:05:29.0454 0x1f70 SensorService - ok
00:05:29.0461 0x1f70 [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
00:05:29.0474 0x1f70 SensrSvc - ok
00:05:29.0478 0x1f70 [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
|
|
14.01.2017, 00:09
| #12 |
| | PUP.Optional.Reimage mit MB gefundenCode:
ATTFilter 00:05:29.0486 0x1f70 SerCx - ok
00:05:29.0491 0x1f70 [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
00:05:29.0501 0x1f70 SerCx2 - ok
00:05:29.0504 0x1f70 [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
00:05:29.0513 0x1f70 Serenum - ok
00:05:29.0517 0x1f70 [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial C:\WINDOWS\System32\drivers\serial.sys
00:05:29.0527 0x1f70 Serial - ok
00:05:29.0530 0x1f70 [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
00:05:29.0539 0x1f70 sermouse - ok
00:05:29.0551 0x1f70 [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ] SessionEnv C:\WINDOWS\system32\sessenv.dll
00:05:29.0569 0x1f70 SessionEnv - ok
00:05:29.0574 0x1f70 [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
00:05:29.0583 0x1f70 sfloppy - ok
00:05:29.0594 0x1f70 [ 832E933AA8DB9FD4733B96D8B6484D3F, 3A8E3D7ECA192EEE154CB568073B7211FDA06078EFC3BC7E961563A1BFDD0CAA ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
00:05:29.0616 0x1f70 SharedAccess - ok
00:05:29.0628 0x1f70 [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
00:05:29.0656 0x1f70 ShellHWDetection - ok
00:05:29.0661 0x1f70 [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
00:05:29.0674 0x1f70 shpamsvc - ok
00:05:29.0678 0x1f70 [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
00:05:29.0686 0x1f70 SiSRaid2 - ok
00:05:29.0690 0x1f70 [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
00:05:29.0698 0x1f70 SiSRaid4 - ok
00:05:29.0706 0x1f70 [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
00:05:29.0718 0x1f70 SkypeUpdate - ok
00:05:29.0730 0x1f70 [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost C:\WINDOWS\System32\smphost.dll
00:05:29.0740 0x1f70 smphost - ok
00:05:29.0752 0x1f70 [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
00:05:29.0775 0x1f70 SmsRouter - ok
00:05:29.0782 0x1f70 [ 6F4CE07D420FB657B5936F71101ABD41, CEC52984C56E578E0FFE12BE1B8148335F788B7D1751F2D0E79B944A41113C20 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
00:05:29.0792 0x1f70 SNMPTRAP - ok
00:05:29.0803 0x1f70 [ C994DF90427103CCB80F893FFD2B1CE8, 7E4B08095C77E68D337A3425EEA38F8FEC4D103CA7661E34FD96BF518DFB4BCB ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
00:05:29.0820 0x1f70 spaceport - ok
00:05:29.0824 0x1f70 [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
00:05:29.0833 0x1f70 SpbCx - ok
00:05:29.0847 0x1f70 [ 79DCE27E8C4CF6701BFE49EC2446BBF6, F51CBB7A45C3C878F41653FD5FBDC93CC302712B7725DAAB4D3475A1F4771E3D ] Spooler C:\WINDOWS\System32\spoolsv.exe
00:05:29.0875 0x1f70 Spooler - ok
00:05:29.0959 0x1f70 [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
00:05:30.0065 0x1f70 sppsvc - ok
00:05:30.0075 0x1f70 [ 53B623AD190024EADD9F04317CBBCC13, 0699BC79A7C55AF1830EED581319C5855C9E9E77BC11A2E542844F29007D59D3 ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
00:05:30.0084 0x1f70 SQLWriter - ok
00:05:30.0094 0x1f70 [ E83830BB74AE8CBECEA0ECD94DE436F9, 4A34569A34260324EBD629039E1BF45A3527FC75B22D9A3DB6360A6EB365483A ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
00:05:30.0111 0x1f70 srv - ok
00:05:30.0124 0x1f70 [ 55CA5329D1ADEB8F8034045930147AE4, D4F31BC82700D166564C7F9CDCEA3ABAB4A37B55137C34572768DF46FDA9320A ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
00:05:30.0150 0x1f70 srv2 - ok
00:05:30.0157 0x1f70 [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
00:05:30.0170 0x1f70 srvnet - ok
00:05:30.0177 0x1f70 [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
00:05:30.0192 0x1f70 SSDPSRV - ok
00:05:30.0198 0x1f70 [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
00:05:30.0213 0x1f70 SstpSvc - ok
00:05:30.0218 0x1f70 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
00:05:30.0226 0x1f70 ssudmdm - ok
00:05:30.0288 0x1f70 [ 4E330AD1EED4A5D582EE415FD55953A2, 2C02E1F45F74D250110BA5117AA942495CB2EBAC7F2CCECC284B4FB8F47B13E1 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
00:05:30.0392 0x1f70 StateRepository - ok
00:05:30.0419 0x1f70 [ 9867A86327E8AE3806305F1BCF01211A, CCDDB2560B30D27CE662F1B02710E1FAA9331E6A27D9A6629EEDED2CBA822062 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
00:05:30.0445 0x1f70 Steam Client Service - ok
00:05:30.0451 0x1f70 [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
00:05:30.0458 0x1f70 stexstor - ok
00:05:30.0470 0x1f70 [ 91CB95B35481155BFE29C217CD237F27, CA66957DF1441D991453BEF02D768D44E5D9A484BC23C8874E8A7AC20904CB06 ] stisvc C:\WINDOWS\System32\wiaservc.dll
00:05:30.0496 0x1f70 stisvc - ok
00:05:30.0501 0x1f70 [ 53EB8CE34B55A1EE63424C8DB7388BFC, 5AB59117BA8A2844EB8693CCC19B217AE039B28C87519F96E1C845FE9BF456C2 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
00:05:30.0510 0x1f70 storahci - ok
00:05:30.0514 0x1f70 [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
00:05:30.0522 0x1f70 storflt - ok
00:05:30.0525 0x1f70 [ B66D8C75C9BC59D637177AB3B1C569A6, 76252A631F03EEBF5FDC7693F6B0A5E73838CDBE3157114CC96B8BBE88B476BF ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
00:05:30.0535 0x1f70 stornvme - ok
00:05:30.0538 0x1f70 [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
00:05:30.0548 0x1f70 storqosflt - ok
00:05:30.0556 0x1f70 [ B91FBE7CB4633FEB32AFBD0B48576396, 9EFDD92E8096CE5555F8DC3C870864E5515469603C2373B99B3607234633CA66 ] StorSvc C:\WINDOWS\system32\storsvc.dll
00:05:30.0575 0x1f70 StorSvc - ok
00:05:30.0578 0x1f70 [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
00:05:30.0586 0x1f70 storufs - ok
00:05:30.0589 0x1f70 [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
00:05:30.0597 0x1f70 storvsc - ok
00:05:30.0600 0x1f70 [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc C:\WINDOWS\system32\svsvc.dll
00:05:30.0612 0x1f70 svsvc - ok
00:05:30.0615 0x1f70 [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum C:\WINDOWS\System32\drivers\swenum.sys
00:05:30.0622 0x1f70 swenum - ok
00:05:30.0633 0x1f70 [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv C:\WINDOWS\System32\swprv.dll
00:05:30.0655 0x1f70 swprv - ok
00:05:30.0659 0x1f70 [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
00:05:30.0668 0x1f70 Synth3dVsc - ok
00:05:30.0685 0x1f70 [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain C:\WINDOWS\system32\sysmain.dll
00:05:30.0719 0x1f70 SysMain - ok
00:05:30.0729 0x1f70 [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
00:05:30.0747 0x1f70 SystemEventsBroker - ok
00:05:30.0753 0x1f70 [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
00:05:30.0766 0x1f70 TabletInputService - ok
00:05:30.0774 0x1f70 [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
00:05:30.0791 0x1f70 TapiSrv - ok
00:05:30.0831 0x1f70 [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
00:05:30.0881 0x1f70 Tcpip - ok
00:05:30.0923 0x1f70 [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
00:05:30.0974 0x1f70 Tcpip6 - ok
00:05:30.0980 0x1f70 [ 8DBB1BE20C36E6D19BCC89EEA00B953C, 8B97A7E53E1D77363AFF6A5AAEAD89EBAE28DCB8D82753C804FD7CD5646500AF ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
00:05:30.0990 0x1f70 tcpipreg - ok
00:05:30.0996 0x1f70 [ 9D2DD64A0B51C56285512DC9454340F6, ABB90CE6A55269F71AFB08E04969CF9A4EFD93F7A7189AF920EEE3E005214DDD ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
00:05:31.0005 0x1f70 tdx - ok
00:05:31.0009 0x1f70 [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
00:05:31.0017 0x1f70 terminpt - ok
00:05:31.0034 0x1f70 [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService C:\WINDOWS\System32\termsrv.dll
00:05:31.0066 0x1f70 TermService - ok
00:05:31.0070 0x1f70 [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes C:\WINDOWS\system32\themeservice.dll
00:05:31.0087 0x1f70 Themes - ok
00:05:31.0095 0x1f70 [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
00:05:31.0113 0x1f70 TieringEngineService - ok
00:05:31.0126 0x1f70 [ 3B3C607C3C62DFBEF61938DA2CAB94DF, E5EEA7F45A7BBFDF6F0003CD77E39958C451DD1B4B401876B5619A3C20F5C370 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
00:05:31.0148 0x1f70 tiledatamodelsvc - ok
00:05:31.0154 0x1f70 [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
00:05:31.0167 0x1f70 TimeBrokerSvc - ok
00:05:31.0173 0x1f70 [ 46171262D0E806779DEEDFCAB2F830CC, 7F4A4658B8BA217D99E5B5C0E01600C20DC96ECBCA32A5BA7FBE17D2A7B8BFD8 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
00:05:31.0184 0x1f70 TPM - ok
00:05:31.0189 0x1f70 [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks C:\WINDOWS\System32\trkwks.dll
00:05:31.0201 0x1f70 TrkWks - ok
00:05:31.0206 0x1f70 [ 09440FA30C020B4443391FAFCF4876E3, 208C7725F70C75D8C96CCAF5B22F83B8B1C66D8C9FFF48465B1C9F4A77425569 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
00:05:31.0217 0x1f70 TrustedInstaller - ok
00:05:31.0222 0x1f70 [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt C:\WINDOWS\system32\drivers\TsUsbFlt.sys
00:05:31.0231 0x1f70 tsusbflt - ok
00:05:31.0234 0x1f70 [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
00:05:31.0243 0x1f70 TsUsbGD - ok
00:05:31.0248 0x1f70 [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
00:05:31.0260 0x1f70 tunnel - ok
00:05:31.0264 0x1f70 [ F723552F65D44FE693DB1A383825B3A8, EF8C343C4EB5EEA4EC830378EF576CCD6CD4EEDEDD486C0F29697044E8C71F45 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
00:05:31.0275 0x1f70 tzautoupdate - ok
00:05:31.0279 0x1f70 [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
00:05:31.0287 0x1f70 UASPStor - ok
00:05:31.0291 0x1f70 [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
00:05:31.0302 0x1f70 UcmCx0101 - ok
00:05:31.0306 0x1f70 [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
00:05:31.0317 0x1f70 UcmTcpciCx0101 - ok
00:05:31.0320 0x1f70 [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
00:05:31.0329 0x1f70 UcmUcsi - ok
00:05:31.0335 0x1f70 [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
00:05:31.0346 0x1f70 Ucx01000 - ok
00:05:31.0349 0x1f70 [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
00:05:31.0359 0x1f70 UdeCx - ok
00:05:31.0366 0x1f70 [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
00:05:31.0386 0x1f70 udfs - ok
00:05:31.0389 0x1f70 [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
00:05:31.0396 0x1f70 UEFI - ok
00:05:31.0403 0x1f70 [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
00:05:31.0414 0x1f70 Ufx01000 - ok
00:05:31.0418 0x1f70 [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
00:05:31.0427 0x1f70 UfxChipidea - ok
00:05:31.0432 0x1f70 [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
00:05:31.0441 0x1f70 ufxsynopsys - ok
00:05:31.0447 0x1f70 [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
00:05:31.0458 0x1f70 UI0Detect - ok
00:05:31.0462 0x1f70 [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus C:\WINDOWS\System32\drivers\umbus.sys
00:05:31.0473 0x1f70 umbus - ok
00:05:31.0475 0x1f70 [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
00:05:31.0484 0x1f70 UmPass - ok
00:05:31.0492 0x1f70 [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
00:05:31.0507 0x1f70 UmRdpService - ok
00:05:31.0528 0x1f70 [ B8272BB8D4982C496FDC704809C38E02, F93855D932FB1DBBCC86E82C0FE0DC9ECF93BBD629D2CA9D0BE7E075E114B7FF ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
00:05:31.0565 0x1f70 UnistoreSvc - ok
00:05:31.0578 0x1f70 [ 0F9E1BC7E2BEA1A4108EC9736CF0C2D9, 0D256DC2A6B867E7077DD3A5C18FF0345D2FEEC7A2245B037530761248BC9FB1 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
00:05:31.0588 0x1f70 UNS - ok
00:05:31.0597 0x1f70 [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost C:\WINDOWS\System32\upnphost.dll
00:05:31.0621 0x1f70 upnphost - ok
00:05:31.0624 0x1f70 [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
00:05:31.0631 0x1f70 UrsChipidea - ok
00:05:31.0635 0x1f70 [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
00:05:31.0643 0x1f70 UrsCx01000 - ok
00:05:31.0646 0x1f70 [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
00:05:31.0654 0x1f70 UrsSynopsys - ok
00:05:31.0659 0x1f70 [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
00:05:31.0669 0x1f70 usbccgp - ok
00:05:31.0674 0x1f70 [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
00:05:31.0685 0x1f70 usbcir - ok
00:05:31.0689 0x1f70 [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
00:05:31.0697 0x1f70 usbehci - ok
00:05:31.0707 0x1f70 [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
00:05:31.0723 0x1f70 usbhub - ok
00:05:31.0734 0x1f70 [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
00:05:31.0750 0x1f70 USBHUB3 - ok
00:05:31.0754 0x1f70 [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
00:05:31.0763 0x1f70 usbohci - ok
00:05:31.0766 0x1f70 [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
00:05:31.0775 0x1f70 usbprint - ok
00:05:31.0779 0x1f70 [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
00:05:31.0789 0x1f70 usbser - ok
00:05:31.0794 0x1f70 [ 0CC16F7B91C57AE9A4E44425A295FDAA, 7CEE11955E5742DA390601F565412C14A7481B8747C495CCD246696C56B426DC ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
00:05:31.0803 0x1f70 USBSTOR - ok
00:05:31.0806 0x1f70 [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
00:05:31.0815 0x1f70 usbuhci - ok
00:05:31.0824 0x1f70 [ 95BCCEFBC40D06484CF16144FE79B8A5, 8ABA73C5FFEDD319FB96B807AD08716698E557522478DF1A2C5D662675636AE0 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
00:05:31.0838 0x1f70 USBXHCI - ok
00:05:31.0863 0x1f70 [ 4CC81AB9D380A6264FF4C0C1512CF965, 76C33053D1C9155B0F3F8392FF982AD4EABEE2BBBEE89EA41DBFE8E436973EB0 ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
00:05:31.0908 0x1f70 UserDataSvc - ok
00:05:31.0934 0x1f70 [ AA24C61D88E36BA1144072227922173D, 2EBBC827E740F72EA2E75745E585378189BC0DEE91CACD7FA31BDBC5EFCF8733 ] UserManager C:\WINDOWS\System32\usermgr.dll
00:05:31.0967 0x1f70 UserManager - ok
00:05:31.0979 0x1f70 [ EBF9E40845362DBE2AD0DB3077269488, A6363006350D097F95B03A2F44E1D3FBD3BC40048BE57C715CD7CBC22D1EE70B ] UsoSvc C:\WINDOWS\system32\usocore.dll
00:05:32.0002 0x1f70 UsoSvc - ok
00:05:32.0006 0x1f70 [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] VaultSvc C:\WINDOWS\system32\lsass.exe
00:05:32.0014 0x1f70 VaultSvc - ok
00:05:32.0018 0x1f70 [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
00:05:32.0026 0x1f70 vdrvroot - ok
00:05:32.0039 0x1f70 [ 0783EDE1FA94649ED7F3CEF6A734041A, 1A13A613EF6B67459031C7994FFC6F32F73E02E0F123A171618E4F011C635684 ] vds C:\WINDOWS\System32\vds.exe
00:05:32.0066 0x1f70 vds - ok
00:05:32.0072 0x1f70 [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
00:05:32.0083 0x1f70 VerifierExt - ok
00:05:32.0097 0x1f70 [ 3BB8D153A9A514EC9FFCB586251A1925, 5E4B46511F9791699826DC63B35528544347166BDE9981FB93F1F7F2A09599C7 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
00:05:32.0117 0x1f70 vhdmp - ok
00:05:32.0121 0x1f70 [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
00:05:32.0130 0x1f70 vhf - ok
00:05:32.0132 0x1f70 [ C67A307C9B53D1C7EFF098EC63DDDAF3, FEDFA1F46706E75FC102D945F355AAB65C5CC9C2941BFB27F3EA8438ED55B47B ] VHidXInput C:\WINDOWS\System32\drivers\VXInput.sys
00:05:32.0138 0x1f70 VHidXInput - ok
00:05:32.0142 0x1f70 [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
00:05:32.0152 0x1f70 vmbus - ok
00:05:32.0154 0x1f70 [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
00:05:32.0163 0x1f70 VMBusHID - ok
00:05:32.0166 0x1f70 [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
00:05:32.0175 0x1f70 vmgid - ok
00:05:32.0182 0x1f70 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
00:05:32.0198 0x1f70 vmicguestinterface - ok
00:05:32.0205 0x1f70 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
00:05:32.0221 0x1f70 vmicheartbeat - ok
00:05:32.0228 0x1f70 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
00:05:32.0244 0x1f70 vmickvpexchange - ok
00:05:32.0252 0x1f70 [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
00:05:32.0269 0x1f70 vmicrdv - ok
00:05:32.0277 0x1f70 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
00:05:32.0293 0x1f70 vmicshutdown - ok
00:05:32.0300 0x1f70 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
00:05:32.0316 0x1f70 vmictimesync - ok
00:05:32.0323 0x1f70 [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
00:05:32.0339 0x1f70 vmicvmsession - ok
00:05:32.0347 0x1f70 [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
00:05:32.0363 0x1f70 vmicvss - ok
00:05:32.0368 0x1f70 [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
00:05:32.0376 0x1f70 volmgr - ok
00:05:32.0385 0x1f70 [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
00:05:32.0398 0x1f70 volmgrx - ok
00:05:32.0407 0x1f70 [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
00:05:32.0421 0x1f70 volsnap - ok
00:05:32.0424 0x1f70 [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume C:\WINDOWS\system32\drivers\volume.sys
00:05:32.0432 0x1f70 volume - ok
00:05:32.0436 0x1f70 [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
00:05:32.0444 0x1f70 vpci - ok
00:05:32.0452 0x1f70 [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
00:05:32.0461 0x1f70 vsmraid - ok
00:05:32.0486 0x1f70 [ 01FFD5AF533F2CFDF26DDDC9313731C1, BFF0F2E57CD2358AC8F519F6F5692A46D97EC4E9B763D47101CEF31712FD4738 ] VSS C:\WINDOWS\system32\vssvc.exe
00:05:32.0530 0x1f70 VSS - ok
00:05:32.0541 0x1f70 [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
00:05:32.0553 0x1f70 VSTXRAID - ok
00:05:32.0557 0x1f70 [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
00:05:32.0566 0x1f70 vwifibus - ok
00:05:32.0570 0x1f70 [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
00:05:32.0580 0x1f70 vwififlt - ok
00:05:32.0590 0x1f70 [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time C:\WINDOWS\system32\w32time.dll
00:05:32.0612 0x1f70 W32Time - ok
00:05:32.0617 0x1f70 [ 4053FB949F48647A327BC18DFEEA4374, 52511C35854A673ADCD9084FEF9BC6A339BCA0290374B81140A371D67B13A8FB ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
00:05:32.0628 0x1f70 w3logsvc - ok
00:05:32.0639 0x1f70 [ 85461F6AD65CCE84A7BC6D9F2A5861B3, 0C9A662F1BADF429B1DF62E91F4626DE996F84945D3A42D26A0FA09EC15CC9D7 ] W3SVC C:\WINDOWS\system32\inetsrv\iisw3adm.dll
00:05:32.0661 0x1f70 W3SVC - ok
00:05:32.0665 0x1f70 [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
00:05:32.0674 0x1f70 WacomPen - ok
00:05:32.0684 0x1f70 [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService C:\WINDOWS\system32\WalletService.dll
00:05:32.0704 0x1f70 WalletService - ok
00:05:32.0708 0x1f70 [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:05:32.0722 0x1f70 wanarp - ok
00:05:32.0725 0x1f70 [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:05:32.0740 0x1f70 wanarpv6 - ok
00:05:32.0751 0x1f70 [ 85461F6AD65CCE84A7BC6D9F2A5861B3, 0C9A662F1BADF429B1DF62E91F4626DE996F84945D3A42D26A0FA09EC15CC9D7 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
00:05:32.0772 0x1f70 WAS - ok
00:05:32.0798 0x1f70 [ 30B8286F8FE1AE90A583100D45E02247, 3C86A4A5E21F9A1267EA231B20914E0A162BA4C25FE8917AD3AB6D504DA5BE0C ] wbengine C:\WINDOWS\system32\wbengine.exe
00:05:32.0843 0x1f70 wbengine - ok
00:05:32.0859 0x1f70 [ 8C521D161445C3E1F38A494E7649E70D, F00990B2FE1FB52C74A2057E6480C5EBF2BDBC32955CC03C6B63360F20A49A18 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
00:05:32.0888 0x1f70 WbioSrvc - ok
00:05:32.0893 0x1f70 [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
00:05:32.0903 0x1f70 wcifs - ok
00:05:32.0916 0x1f70 [ 32960EA9CF836D7DD77767DCB68CE230, 679446A4FAB0331C181D2716CAEA225267C6164BB9867E360C5B3D6AB1083195 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
00:05:32.0946 0x1f70 Wcmsvc - ok
00:05:32.0957 0x1f70 [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
00:05:32.0976 0x1f70 wcncsvc - ok
00:05:32.0980 0x1f70 [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
00:05:32.0990 0x1f70 wcnfs - ok
00:05:32.0993 0x1f70 [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
00:05:33.0001 0x1f70 WdBoot - ok
00:05:33.0017 0x1f70 [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
00:05:33.0037 0x1f70 Wdf01000 - ok
00:05:33.0045 0x1f70 [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
00:05:33.0057 0x1f70 WdFilter - ok
00:05:33.0062 0x1f70 [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
00:05:33.0076 0x1f70 WdiServiceHost - ok
00:05:33.0079 0x1f70 [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
00:05:33.0093 0x1f70 WdiSystemHost - ok
00:05:33.0108 0x1f70 [ 8CB606A3057355FD5A9DBDD1A0AC94EF, 6DD0B4A2270633086EBB569A00B87430EE6EF173525E341404B15845B57BE86D ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
00:05:33.0133 0x1f70 wdiwifi - ok
00:05:33.0139 0x1f70 [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
00:05:33.0148 0x1f70 WdNisDrv - ok
00:05:33.0150 0x1f70 WdNisSvc - ok
00:05:33.0156 0x1f70 [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient C:\WINDOWS\System32\webclnt.dll
00:05:33.0173 0x1f70 WebClient - ok
00:05:33.0180 0x1f70 [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
00:05:33.0195 0x1f70 Wecsvc - ok
00:05:33.0198 0x1f70 [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
00:05:33.0210 0x1f70 WEPHOSTSVC - ok
00:05:33.0214 0x1f70 [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
00:05:33.0228 0x1f70 wercplsupport - ok
00:05:33.0233 0x1f70 [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
00:05:33.0246 0x1f70 WerSvc - ok
00:05:33.0251 0x1f70 [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
00:05:33.0261 0x1f70 WFPLWFS - ok
00:05:33.0264 0x1f70 [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
00:05:33.0276 0x1f70 WiaRpc - ok
00:05:33.0279 0x1f70 [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
00:05:33.0287 0x1f70 WIMMount - ok
00:05:33.0289 0x1f70 WinDefend - ok
00:05:33.0296 0x1f70 [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
00:05:33.0305 0x1f70 WindowsTrustedRT - ok
00:05:33.0308 0x1f70 [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
00:05:33.0316 0x1f70 WindowsTrustedRTProxy - ok
00:05:33.0330 0x1f70 [ C2A3B07F0118D61086C99BDCBAB6A6A3, 04D646BEF1C6F427503C594F0ECBB33140C3991A3A7AFB66B2C9581E358F9FD2 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
00:05:33.0359 0x1f70 WinHttpAutoProxySvc - ok
00:05:33.0363 0x1f70 [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
00:05:33.0371 0x1f70 WinMad - ok
00:05:33.0380 0x1f70 [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
00:05:33.0394 0x1f70 Winmgmt - ok
00:05:33.0437 0x1f70 [ B8C0D620219ECAA23A2AC841EAF454D1, FB527C4D36929D7FAE2A837727C557B7823A72069EBCAB7D16C49E8B21E8D952 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
00:05:33.0510 0x1f70 WinRM - ok
00:05:33.0519 0x1f70 [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
00:05:33.0529 0x1f70 WINUSB - ok
00:05:33.0533 0x1f70 [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
00:05:33.0542 0x1f70 WinVerbs - ok
00:05:33.0555 0x1f70 [ ECD999D8412A3473C26B118F89DB9908, 5FB9B93E4B5482CCFF01D805DFA386FD8D3441BC81E7BD5DF89EE3078FD724F3 ] wisvc C:\WINDOWS\system32\flightsettings.dll
00:05:33.0578 0x1f70 wisvc - ok
00:05:33.0618 0x1f70 [ 7671078AEF4C0203B053A9642C401FF7, BBFADA89CD31F20ADDBFAFAD2E492C72D82BF2F8B823BB6773F04D229B62534C ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
00:05:33.0681 0x1f70 WlanSvc - ok
00:05:33.0717 0x1f70 [ E15711970C5BE05E8D70B294D0AFF621, 30670CFC4DA57B4A3E0E895E4111100D847BB8041A258A303524CD96DC566482 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
00:05:33.0775 0x1f70 wlidsvc - ok
00:05:33.0779 0x1f70 [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
00:05:33.0788 0x1f70 WmiAcpi - ok
00:05:33.0795 0x1f70 [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
00:05:33.0810 0x1f70 wmiApSrv - ok
00:05:33.0812 0x1f70 WMPNetworkSvc - ok
00:05:33.0818 0x1f70 [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
00:05:33.0828 0x1f70 Wof - ok
00:05:33.0860 0x1f70 [ 909CB4BBF7B08E78C363000E09E79A6F, 217205D1B5EE03274AFF9405AED6D2A5665CBA4C3876E84B53DA44920CDF9CB1 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
00:05:33.0911 0x1f70 workfolderssvc - ok
00:05:33.0918 0x1f70 [ F02930EB91596042F2221397D60AFCE5, 10E2AB0993B67CBAA9E11C68280608965064EC9F7E0C570F5B453FACADB8AB5D ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
00:05:33.0930 0x1f70 WPDBusEnum - ok
00:05:33.0933 0x1f70 [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
00:05:33.0941 0x1f70 WpdUpFltr - ok
00:05:33.0947 0x1f70 [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService C:\WINDOWS\system32\WpnService.dll
00:05:33.0962 0x1f70 WpnService - ok
00:05:33.0966 0x1f70 [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
00:05:33.0977 0x1f70 WpnUserService - ok
00:05:33.0982 0x1f70 [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
00:05:33.0992 0x1f70 ws2ifsl - ok
00:05:33.0997 0x1f70 [ 9A0E0B836413EB0BC885532D2A5389D6, AFEE4A0578D5581E4D72999A33C0DEA6253BD891F611AFF9AFDE4160A60105F3 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
00:05:34.0011 0x1f70 wscsvc - ok
00:05:34.0014 0x1f70 WSearch - ok
00:05:34.0052 0x1f70 [ DDB7E452A99E0E5244105C6D2CF4BC9E, 1364B03AFFD20D339A2EBA303575BCCBC2D122D89810B1E3593CC55F93F9B79A ] wuauserv C:\WINDOWS\system32\wuaueng.dll
00:05:34.0115 0x1f70 wuauserv - ok
00:05:34.0121 0x1f70 [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
00:05:34.0132 0x1f70 WudfPf - ok
00:05:34.0138 0x1f70 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd C:\WINDOWS\system32\drivers\WudfRd.sys
00:05:34.0152 0x1f70 WUDFRd - ok
00:05:34.0156 0x1f70 [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
00:05:34.0169 0x1f70 wudfsvc - ok
00:05:34.0175 0x1f70 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
00:05:34.0188 0x1f70 WUDFWpdFs - ok
00:05:34.0194 0x1f70 [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
00:05:34.0208 0x1f70 WUDFWpdMtp - ok
00:05:34.0229 0x1f70 [ E231728BC515A4B85543AF74A1FEDFCB, 5D250D7D789B5BB56BFA2E7A109BCEB3686B7636C54D89F4E9804101D145C955 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
00:05:34.0269 0x1f70 WwanSvc - ok
00:05:34.0287 0x1f70 [ F39D6915451D9226AC9A5E7AE70E2ABA, E05D678DC0423A4D0EB8B3BB5A942721BB4F3B0BED22748252DBD6053FE956F1 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
00:05:34.0321 0x1f70 XblAuthManager - ok
00:05:34.0342 0x1f70 [ 765FF96467A26C4C03281ECA426EC2D9, 2526B03C518D72F429C29BA4D4F11707AF277BF71520A1A92238A932950AE161 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
00:05:34.0378 0x1f70 XblGameSave - ok
00:05:34.0386 0x1f70 [ 9627BBAA50878F6833A6A7843EE3B1D9, 637566BB56501C4D11E3B6E6AC1C602D880C9D357CCE3DF1DF74EE672744F2B7 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
00:05:34.0400 0x1f70 xboxgip - ok
00:05:34.0418 0x1f70 [ 335E6F2BE58523B295945C840C185B00, 94ED7E2CB212A3D55B8A2CB90CD1D02A6AF92DC0DDD487CB5B7CAC9883343460 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
00:05:34.0456 0x1f70 XboxNetApiSvc - ok
00:05:34.0460 0x1f70 [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
00:05:34.0469 0x1f70 xinputhid - ok
00:05:34.0471 0x1f70 ================ Scan global ===============================
00:05:34.0474 0x1f70 [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\WINDOWS\system32\basesrv.dll
00:05:34.0479 0x1f70 [ 4C08BF958476A137C78B62B22B5F90A4, 11DDD033896C96F8F7F1A1EDD0F4E0F07AFBB3202DC8A2E5E3ADB51C4D0700D4 ] C:\WINDOWS\system32\winsrv.dll
00:05:34.0485 0x1f70 [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\WINDOWS\system32\sxssrv.dll
00:05:34.0495 0x1f70 [ 3C69CC28665854F1AAB4B4005005FA31, 2750F5ECCD448C07E3402AA64EA625D27C6BC1D000A3FFE57C03D62428BB46C4 ] C:\WINDOWS\system32\services.exe
00:05:34.0501 0x1f70 [ Global ] - ok
00:05:34.0502 0x1f70 ================ Scan MBR ==================================
00:05:34.0504 0x1f70 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:05:34.0570 0x1f70 \Device\Harddisk0\DR0 - ok
00:05:34.0585 0x1f70 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
00:05:34.0709 0x1f70 \Device\Harddisk1\DR1 - ok
00:05:34.0714 0x1f70 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
00:05:34.0733 0x1f70 \Device\Harddisk2\DR2 - ok
00:05:34.0742 0x1f70 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR5
00:05:34.0894 0x1f70 \Device\Harddisk5\DR5 - ok
00:05:34.0895 0x1f70 ================ Scan VBR ==================================
00:05:34.0898 0x1f70 [ 408C3C85845A7B0FDB07BD6B15043C2E ] \Device\Harddisk0\DR0\Partition1
00:05:34.0900 0x1f70 \Device\Harddisk0\DR0\Partition1 - ok
00:05:34.0903 0x1f70 [ 2172AD6282536670FA9CF28F2B1411A3 ] \Device\Harddisk0\DR0\Partition2
00:05:34.0905 0x1f70 \Device\Harddisk0\DR0\Partition2 - ok
00:05:34.0908 0x1f70 [ 34757113D870A44A4BBFADBE960383A1 ] \Device\Harddisk1\DR1\Partition1
00:05:34.0910 0x1f70 \Device\Harddisk1\DR1\Partition1 - ok
00:05:34.0924 0x1f70 [ D75C534AB789774D260AA13FD4DFC06C ] \Device\Harddisk1\DR1\Partition2
00:05:34.0945 0x1f70 \Device\Harddisk1\DR1\Partition2 - ok
00:05:34.0966 0x1f70 [ CBBD98436E7C3560FC16C6F7DE1A3339 ] \Device\Harddisk1\DR1\Partition3
00:05:34.0968 0x1f70 \Device\Harddisk1\DR1\Partition3 - ok
00:05:34.0973 0x1f70 [ FE6DE43A53F209624EC6CF0239621713 ] \Device\Harddisk2\DR2\Partition1
00:05:34.0975 0x1f70 \Device\Harddisk2\DR2\Partition1 - ok
00:05:34.0979 0x1f70 [ FB38D778921383BC9057E0EF579D00E9 ] \Device\Harddisk5\DR5\Partition1
00:05:34.0981 0x1f70 \Device\Harddisk5\DR5\Partition1 - ok
00:05:34.0982 0x1f70 ================ Scan generic autorun ======================
00:05:35.0187 0x1f70 [ 1F590BA022251AF63ED0CD0DAFD49052, 397C28F9C27A851F5893B4271EB5DB38520ED7146DEACDAC82BD5B82D1C2447B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
00:05:35.0371 0x1f70 RtHDVCpl - ok
00:05:35.0414 0x1f70 [ 08D7625AD933D37E347ABF4448A6E962, 86451216775842E8F1B7714E3083CD4A1CA007EA74A2FE4FB8DA2FAD41D6D1CA ] C:\Program Files\AudioMX HS-11B Headset\CPL\FaceLift_x64.exe
00:05:35.0471 0x1f70 Cm108BSound - detected UnsignedFile.Multi.Generic ( 1 )
00:05:35.0638 0x1f70 Cm108BSound ( UnsignedFile.Multi.Generic ) - warning
00:05:35.0706 0x1f70 [ C7645D43451C6D94D87F4D07BDE59C89, 495BBA47FC43EE23054FCD419F2F00457162D1C04296900C6AEA551102A810F3 ] C:\WINDOWS\system32\rundll32.exe
00:05:35.0722 0x1f70 ShadowPlay - ok
00:05:35.0722 0x1f70 WindowsDefender - ok
00:05:35.0729 0x1f70 [ 6BA8D86746935498D64CB5CF6286F2EB, E47D1DEE39451428344233DB15412BCB486C4F6FE1D0426F20AA4C6245387926 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
00:05:35.0737 0x1f70 USB3MON - ok
00:05:35.0825 0x1f70 [ E5255D63DD01AA9F1CC4355FE366E2D3, 2E28C14DC1FEAE10626D37FF4C1DAE27F3801A40EA973E02E42B48185CBBC89B ] C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
00:05:35.0910 0x1f70 LogMeIn Hamachi Ui - ok
00:05:35.0923 0x1f70 [ F9D9B0E9BB2181C88DD252E8119DF37D, CAC0E9DB747B1AF004904D29FF502D7F993BA7BD030D92242EA172486F5E4329 ] C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitor.EXE
00:05:35.0940 0x1f70 RoccatTyon - detected UnsignedFile.Multi.Generic ( 1 )
00:05:36.0140 0x1f70 Detect skipped due to KSN trusted
00:05:36.0140 0x1f70 RoccatTyon - ok
00:05:36.0160 0x1f70 [ E9FA6BDC0D89E7743A111ED8438BBD06, 3A98B6188614625B07541A0199BB37C80D04C845FCF4EDB99EC12ED419822F7D ] C:\Program Files (x86)\ROCCAT\Tyon Mouse\TyonMonitorW.EXE
00:05:36.0185 0x1f70 RoccatTyonW - detected UnsignedFile.Multi.Generic ( 1 )
00:05:36.0308 0x1f70 Detect skipped due to KSN trusted
00:05:36.0308 0x1f70 RoccatTyonW - ok
00:05:36.0468 0x1f70 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
00:05:36.0605 0x1f70 OneDriveSetup - ok
00:05:36.0741 0x1f70 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
00:05:36.0875 0x1f70 OneDriveSetup - ok
00:05:36.0905 0x1f70 [ 44348495F9D6ED21F4EFB3FF80677D99, 05B76248764B2BF7F9229626D7EFAFF96B724D38A82969EBE376CBE879E30450 ] C:\Users\ChAzubi\AppData\Local\Microsoft\OneDrive\OneDrive.exe
00:05:36.0935 0x1f70 OneDrive - ok
00:05:37.0078 0x1f70 [ 2269768074F6A93E454BA384ED9652E2, 3BB698018941471327A3031CC0F4011D69EBA03B00E9E6F2D99922639DCCDA59 ] C:\Program Files\CCleaner\CCleaner64.exe
00:05:37.0217 0x1f70 CCleaner Monitoring - ok
00:05:37.0274 0x1f70 [ 0B31486D156CFC9C7BB5E6B2FBF19C6F, 0444F8CF7298A23AFA95F1EEEC034D76A171391C6F42FCB3FBBB21D6317A0006 ] C:\Users\ChAzubi\AppData\Local\Amazon Music\Amazon Music Helper.exe
00:05:37.0330 0x1f70 Amazon Music - ok
00:05:37.0463 0x1f70 [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
00:05:37.0597 0x1f70 OneDriveSetup - ok
00:05:37.0613 0x1f70 [ 2781E6EF593909A8B73FE1AD397F778A, E892D6C57F8903E20129E75A9B877690229280FD8106B5C7F96173175EA1AC4E ] C:\Program Files (x86)\Windows Mail\wab.exe
00:05:37.0633 0x1f70 WAB Migrate - ok
00:05:37.0634 0x1f70 Waiting for KSN requests completion. In queue: 218
00:05:38.0650 0x1f70 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
00:05:38.0655 0x1f70 Win FW state via NFP2: enabled ( trusted )
00:05:38.0723 0x1f70 ============================================================
00:05:38.0723 0x1f70 Scan finished
00:05:38.0723 0x1f70 ============================================================
00:05:38.0734 0x26f0 Detected object count: 1
00:05:38.0734 0x26f0 Actual detected object count: 1
00:06:02.0855 0x26f0 Cm108BSound ( UnsignedFile.Multi.Generic ) - skipped by user
00:06:02.0855 0x26f0 Cm108BSound ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
14.01.2017, 14:10
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUP.Optional.Reimage mit MB gefunden ok  Der Fund ist ein Fehlalarm, gehört zum Audio Center. Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
14.01.2017, 15:03
| #14 |
| | PUP.Optional.Reimage mit MB gefunden Textdatei von AdwCleaner Code:
ATTFilter # AdwCleaner v6.042 - Logfile created 14/01/2017 at 14:54:14
# Updated on 06/01/2017 by Malwarebytes
# Database : 2017-01-11.1 [Local]
# Operating System : Windows 10 Home (X64)
# Username : ChAzubi - CHAZUBI-PC
# Running from : C:\Users\ChAzubi\Desktop\DownloadS\AdwCleaner_6.042.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
[-] Task deleted: ReimageUpdater
[-] Task deleted: ReimageUpdater
[-] Task deleted: reimageupdater
***** [ Registry ] *****
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
:: Proxy settings cleared
:: IE policies deleted
:: Chrome policies deleted
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [8955 Bytes] - [10/04/2016 20:39:54]
C:\AdwCleaner\AdwCleaner[C2].txt - [2999 Bytes] - [20/05/2016 16:55:40]
C:\AdwCleaner\AdwCleaner[C3].txt - [1092 Bytes] - [14/01/2017 14:54:14]
C:\AdwCleaner\AdwCleaner[R0].txt - [2302 Bytes] - [19/03/2015 18:16:08]
C:\AdwCleaner\AdwCleaner[R1].txt - [2652 Bytes] - [29/06/2015 18:50:14]
C:\AdwCleaner\AdwCleaner[R2].txt - [1083 Bytes] - [29/06/2015 18:54:01]
C:\AdwCleaner\AdwCleaner[S0].txt - [2497 Bytes] - [19/03/2015 18:17:19]
C:\AdwCleaner\AdwCleaner[S1].txt - [11545 Bytes] - [29/06/2015 18:51:38]
C:\AdwCleaner\AdwCleaner[S2].txt - [1281 Bytes] - [10/04/2016 20:43:17]
C:\AdwCleaner\AdwCleaner[S3].txt - [3511 Bytes] - [18/05/2016 01:17:48]
C:\AdwCleaner\AdwCleaner[S4].txt - [2951 Bytes] - [20/05/2016 16:54:21]
C:\AdwCleaner\AdwCleaner[S5].txt - [1949 Bytes] - [14/01/2017 14:53:47]
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [1823 Bytes] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 10 Home x64
Ran by ChAzubi (Administrator) on 14.01.2017 at 14:57:58,46
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 3
Successfully deleted: C:\ProgramData\7c0535b143fc4671b6ebd202fbffe066 (Folder)
Successfully deleted: C:\Users\ChAzubi\AppData\Local\{0F376500-DFBE-47DE-A1F0-B86761A82BF2} (Empty Folder)
Successfully deleted: C:\Users\ChAzubi\AppData\Roaming\Mozilla\Firefox\Profiles\d55lzlc1.default\extensions\trash (Folder)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.01.2017 at 14:59:01,10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
14.01.2017, 15:13
| #15 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | PUP.Optional.Reimage mit MB gefunden Dann zeig mal frische FRST Logs. Haken setzen bei addition.txt dann auf Untersuchen klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu PUP.Optional.Reimage mit MB gefunden |
| .dll, antivirus, avira, cpu, defender, desktop, e-mail, explorer, failed, flash player, google, home, homepage, mozilla, node.js, prozesse, realtek, registry, rundll, scan, services.exe, software, system, teamspeak, uplay, usb, windows |
Linear-Darstellung
