| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Ungewünschte Webseite öffnet sichWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
03.02.2017, 11:43
| #1 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Ungewünschte Webseite öffnet sich 1. Schritt: Malwarebytes Anti-Rootkit (MBAR) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers 2. Schritt: Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
07.02.2017, 11:41
| #2 |
 | Ungewünschte Webseite öffnet sich Nicht gefunden. Zwischenfrage: kann es auch sein, dass nicht mein PC sondern die Webseite nicht in Ordnung war? Handelt sich allerdings um die Webseite einer großen Hotelkete (Best Western; hxxp://www.airporthotelrotterdam.nl/deutsch/). Ist aber, wie gesagt nicht reproduzierbar.
__________________Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2017.02.07.04
rootkit: v2016.11.20.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.18537
***** :: THINK [administrator]
07.02.2017 11:15:05
mbar-log-2017-02-07 (11-15-05).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 347137
Time elapsed: 13 minute(s), 48 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter 11:33:49.0384 0x2f28 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
11:34:12.0358 0x2f28 ============================================================
11:34:12.0358 0x2f28 Current date / time: 2017/02/07 11:34:12.0358
11:34:12.0358 0x2f28 SystemInfo:
11:34:12.0358 0x2f28
11:34:12.0358 0x2f28 OS Version: 6.1.7601 ServicePack: 1.0
11:34:12.0358 0x2f28 Product type: Workstation
11:34:12.0358 0x2f28 ComputerName: THINK
11:34:12.0358 0x2f28 UserName: *****
11:34:12.0358 0x2f28 Windows directory: C:\Windows
11:34:12.0358 0x2f28 System windows directory: C:\Windows
11:34:12.0358 0x2f28 Running under WOW64
11:34:12.0358 0x2f28 Processor architecture: Intel x64
11:34:12.0358 0x2f28 Number of processors: 4
11:34:12.0358 0x2f28 Page size: 0x1000
11:34:12.0358 0x2f28 Boot type: Normal boot
11:34:12.0358 0x2f28 CodeIntegrityOptions = 0x00000001
11:34:12.0358 0x2f28 ============================================================
11:34:12.0457 0x2f28 KLMD registered as C:\Windows\system32\drivers\35755373.sys
11:34:12.0457 0x2f28 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23572, osProperties = 0x1
11:34:12.0556 0x2f28 System UUID: {B8F224B9-A328-4D6D-7BBB-3D088D1DAA56}
11:34:12.0921 0x2f28 Drive \Device\Harddisk0\DR0 - Size: 0x37E4896000 ( 223.57 Gb ), SectorSize: 0x200, Cylinders: 0x7201, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:34:12.0926 0x2f28 ============================================================
11:34:12.0926 0x2f28 \Device\Harddisk0\DR0:
11:34:12.0926 0x2f28 MBR partitions:
11:34:12.0926 0x2f28 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2EE000
11:34:12.0926 0x2f28 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x190DD000
11:34:12.0926 0x2f28 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x193CB800, BlocksNum 0x1B58000
11:34:12.0926 0x2f28 ============================================================
11:34:12.0927 0x2f28 C: <-> \Device\Harddisk0\DR0\Partition2
11:34:12.0928 0x2f28 Q: <-> \Device\Harddisk0\DR0\Partition3
11:34:12.0928 0x2f28 ============================================================
11:34:12.0928 0x2f28 Initialize success
11:34:12.0928 0x2f28 ============================================================
11:34:20.0488 0x068c ============================================================
11:34:20.0488 0x068c Scan started
11:34:20.0488 0x068c Mode: Manual;
11:34:20.0488 0x068c ============================================================
11:34:20.0488 0x068c KSN ping started
11:34:22.0587 0x068c KSN ping finished: true
11:34:22.0902 0x068c ================ Scan system memory ========================
11:34:22.0902 0x068c Scan was interrupted by user!
11:34:22.0933 0x068c AV detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\wmiav.exe ( 17.0.0.611 ), 0x41000 ( enabled : updated )
11:34:22.0934 0x068c FW detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\wmiav.exe ( 17.0.0.611 ), 0x41010 ( enabled )
11:34:25.0048 0x068c ============================================================
11:34:25.0048 0x068c Scan finished
11:34:25.0048 0x068c ============================================================
11:34:25.0053 0x30cc Detected object count: 0
11:34:25.0053 0x30cc Actual detected object count: 0
11:34:57.0932 0x252c ============================================================
11:34:57.0932 0x252c Scan started
11:34:57.0932 0x252c Mode: Manual; SigCheck; TDLFS;
11:34:57.0932 0x252c ============================================================
11:34:57.0932 0x252c KSN ping started
11:35:00.0077 0x252c KSN ping finished: true
11:35:00.0327 0x252c ================ Scan system memory ========================
11:35:00.0327 0x252c System memory - ok
11:35:00.0327 0x252c ================ Scan services =============================
11:35:00.0367 0x252c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:35:00.0408 0x252c 1394ohci - ok
11:35:00.0417 0x252c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:35:00.0431 0x252c ACPI - ok
11:35:00.0434 0x252c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:35:00.0451 0x252c AcpiPmi - ok
11:35:00.0458 0x252c [ C355E18A892271574976DFEC962A66C5, A3E13D15D5B54E77DF74592039E2056E926794B66E44E048BA90AB5006F4F5B7 ] AcPrfMgrSvc C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe
11:35:00.0467 0x252c AcPrfMgrSvc - ok
11:35:00.0472 0x252c [ AAA8E68E685DB1B68747E3DF68F96368, 1A5BE239B2D0C6F727303A98CFFC91070B6A05ECD6B9CD05AB326AC1910ECEBF ] acsock C:\Windows\system32\DRIVERS\acsock64.sys
11:35:00.0487 0x252c acsock - ok
11:35:00.0494 0x252c [ 59997CDE434376E03384C2659728DA17, C48FBAEF0FC58B22BB57C5B6650769BCF9D7AA8E556E93BB38A1E205D3DE9549 ] AcSvc C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe
11:35:00.0505 0x252c AcSvc - ok
11:35:00.0510 0x252c [ B932E0EE190778D840F1442DFC0F9612, 8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:35:00.0518 0x252c AdobeARMservice - ok
11:35:00.0546 0x252c [ 1EEC35CD4B215AF8C217084EDC629532, 62B527C9AB4443CC2513010E0BAB8474020368827417AAEDCE008B9AB499ECFE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:35:00.0561 0x252c AdobeFlashPlayerUpdateSvc - ok
11:35:00.0572 0x252c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:35:00.0589 0x252c adp94xx - ok
11:35:00.0597 0x252c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:35:00.0610 0x252c adpahci - ok
11:35:00.0616 0x252c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:35:00.0627 0x252c adpu320 - ok
11:35:00.0632 0x252c [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:35:00.0644 0x252c AeLookupSvc - ok
11:35:00.0655 0x252c [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
11:35:00.0675 0x252c AFD - ok
11:35:00.0679 0x252c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
11:35:00.0688 0x252c agp440 - ok
11:35:00.0692 0x252c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
11:35:00.0706 0x252c ALG - ok
11:35:00.0710 0x252c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
11:35:00.0717 0x252c aliide - ok
11:35:00.0793 0x252c ALSysIO - ok
11:35:00.0825 0x252c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
11:35:00.0832 0x252c amdide - ok
11:35:00.0836 0x252c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:35:00.0846 0x252c AmdK8 - ok
11:35:00.0850 0x252c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
11:35:00.0861 0x252c AmdPPM - ok
11:35:00.0866 0x252c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:35:00.0876 0x252c amdsata - ok
11:35:00.0883 0x252c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:35:00.0893 0x252c amdsbs - ok
11:35:00.0897 0x252c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:35:00.0904 0x252c amdxata - ok
11:35:00.0908 0x252c [ FCE5C79717A487BDC71F3DEC78A684CA, F5520F112A4EBDD10444AA5E9FDB9125219FCF768FEB95AB608BC84D60136816 ] AppID C:\Windows\system32\drivers\appid.sys
11:35:00.0923 0x252c AppID - ok
11:35:00.0926 0x252c [ 8921E1D8AE5171691F186A7C5B98B630, 4A37313BB94D4B49D0294C9439AD0793DE328F9F4DA1C47E34E6ACEA46AF6E14 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:35:00.0936 0x252c AppIDSvc - ok
11:35:00.0940 0x252c [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo C:\Windows\System32\appinfo.dll
11:35:00.0950 0x252c Appinfo - ok
11:35:00.0956 0x252c [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
11:35:00.0968 0x252c AppMgmt - ok
11:35:00.0973 0x252c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
11:35:00.0982 0x252c arc - ok
11:35:00.0987 0x252c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:35:00.0995 0x252c arcsas - ok
11:35:01.0009 0x252c [ EE424A5CE56E3923D59BB7DE2E15036D, 8B8196870EFE74D43EDA72674021A46846D370E97A6A058134D84A721AECD091 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:35:01.0019 0x252c aspnet_state - ok
11:35:01.0022 0x252c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:35:01.0070 0x252c AsyncMac - ok
11:35:01.0073 0x252c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
11:35:01.0081 0x252c atapi - ok
11:35:01.0095 0x252c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:35:01.0117 0x252c AudioEndpointBuilder - ok
11:35:01.0131 0x252c [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:35:01.0150 0x252c AudioSrv - ok
11:35:01.0161 0x252c [ 03B45C52179E8DAE51A0F685C30D06D6, E06F066B4BFE5344BBF5749B9B8B8CFBA0C02920FD2B9C73BDDA7E34F1785DA7 ] AVP17.0.0 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
11:35:01.0174 0x252c AVP17.0.0 - ok
11:35:01.0180 0x252c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:35:01.0201 0x252c AxInstSV - ok
11:35:01.0211 0x252c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:35:01.0231 0x252c b06bdrv - ok
11:35:01.0239 0x252c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:35:01.0252 0x252c b57nd60a - ok
11:35:01.0259 0x252c [ 455EB0128FD08E07EACE0C6F754A3AAD, E14237655F64B1576A67CC6A323933F13A5104003B53D46A650420F0279E8ADD ] bcbtums C:\Windows\system32\drivers\bcbtums.sys
11:35:01.0270 0x252c bcbtums - ok
11:35:01.0274 0x252c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
11:35:01.0287 0x252c BDESVC - ok
11:35:01.0292 0x252c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
11:35:01.0315 0x252c Beep - ok
11:35:01.0329 0x252c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
11:35:01.0352 0x252c BFE - ok
11:35:01.0370 0x252c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
11:35:01.0436 0x252c BITS - ok
11:35:01.0440 0x252c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:35:01.0450 0x252c blbdrive - ok
11:35:01.0455 0x252c [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:35:01.0468 0x252c bowser - ok
11:35:01.0472 0x252c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:35:01.0483 0x252c BrFiltLo - ok
11:35:01.0486 0x252c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:35:01.0497 0x252c BrFiltUp - ok
11:35:01.0502 0x252c [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:35:01.0528 0x252c BridgeMP - ok
11:35:01.0533 0x252c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
11:35:01.0545 0x252c Browser - ok
11:35:01.0553 0x252c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:35:01.0569 0x252c Brserid - ok
11:35:01.0573 0x252c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:35:01.0583 0x252c BrSerWdm - ok
11:35:01.0587 0x252c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:35:01.0596 0x252c BrUsbMdm - ok
11:35:01.0599 0x252c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:35:01.0608 0x252c BrUsbSer - ok
11:35:01.0612 0x252c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:35:01.0623 0x252c BthEnum - ok
11:35:01.0627 0x252c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:35:01.0639 0x252c BTHMODEM - ok
11:35:01.0643 0x252c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:35:01.0656 0x252c BthPan - ok
11:35:01.0668 0x252c [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
11:35:01.0692 0x252c BTHPORT - ok
11:35:01.0701 0x252c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
11:35:01.0730 0x252c bthserv - ok
11:35:01.0735 0x252c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
11:35:01.0745 0x252c BTHUSB - ok
11:35:01.0758 0x252c [ 96E22173FD0E2670A2A20C1EEECA162A, 2CC26317DBA063058178EA9B775C2A0FA2CF94FEDC6DF89F3D8314207D56DA24 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
11:35:01.0779 0x252c btwampfl - ok
11:35:01.0785 0x252c [ A771078558477068DFD8037B82EB00F8, 58E1686B12B747639FE3BF4CCA58D48B8BBB349C9D316315AD7237F44EF760A4 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
11:35:01.0794 0x252c btwaudio - ok
11:35:01.0801 0x252c [ 9FF58F76024D25784755B01F926B00BE, 7A2504E326E63B7225FA25EA6D6ED3E7267278F5D2343A375D7F3B3F74EC9F38 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
11:35:01.0810 0x252c btwavdt - ok
11:35:01.0834 0x252c [ C8306C64F95DABC69A11DF3A664C00FB, 1AFE7B7E9FADA3A55CACADA8FEC1C2646CB99DA71CD033A28239932253B807C4 ] btwdins C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
11:35:01.0863 0x252c btwdins - ok
11:35:01.0867 0x252c [ B1ACFD00CDD13B48D86F46BFEC153BF9, CD7BE27D93364735511CC714B85CB7D97E21E84E3C2361EC405BADAAEA550925 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
11:35:01.0874 0x252c btwl2cap - ok
11:35:01.0877 0x252c [ EDD953D635F3AA89EF902E3F82D60D22, 22A60B225A1AD0F25B9715338C805FED9D5F4BCAC296BBC0D045C6935BDA55E7 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
11:35:01.0884 0x252c btwrchid - ok
11:35:01.0889 0x252c [ 32B94975BF6F101C27C43E90FF8ABBEB, B5475D9A705894CBFA583D6E9DAF969527A75800E98D0288182BAB2F10136642 ] busenum C:\Windows\system32\DRIVERS\busenum.sys
11:35:01.0897 0x252c busenum - ok
11:35:01.0922 0x252c [ 4E1D29BD13F186158A4D788DF98984D1, 64D6F925860DDDCEED4342776C0133ECF81A4A70890DE8C7C8A6375F7677D867 ] CAMService C:\Program Files\Intel\CAM\bin\CAMService.exe
11:35:01.0950 0x252c CAMService - ok
11:35:01.0954 0x252c catchme - ok
11:35:01.0959 0x252c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:35:01.0984 0x252c cdfs - ok
11:35:01.0989 0x252c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:35:02.0000 0x252c cdrom - ok
11:35:02.0004 0x252c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
11:35:02.0028 0x252c CertPropSvc - ok
11:35:02.0031 0x252c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
11:35:02.0042 0x252c circlass - ok
11:35:02.0051 0x252c [ 3D67C27DD17B254D7915FA16A5AE3573, 5B3A6C6A7F940C06362775DAF13CEADA37C7AA84A509458A57C23B4369970A90 ] CLFS C:\Windows\system32\CLFS.sys
11:35:02.0065 0x252c CLFS - ok
11:35:02.0073 0x252c [ AA64F36A4DFEE8374D74200F1C1560B9, 179DB04A96524E0D2D601F6A0046AECA50D04992F95452DE5F7081CFB8BABED0 ] Cloud Station Backup VSS Service x64 C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe
11:35:02.0083 0x252c Cloud Station Backup VSS Service x64 - detected UnsignedFile.Multi.Generic ( 1 )
11:35:04.0280 0x252c Detect skipped due to KSN trusted
11:35:04.0280 0x252c Cloud Station Backup VSS Service x64 - ok
11:35:04.0288 0x252c [ 2DD3F8945831AA402A22F955338CF6C2, 45BBD1077F39D6BAE46ACC5B2FB0F80631842BF98E1DCC9BCC181AE70FA8C01C ] Cloud Station Drive VSS Service x64 C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe
11:35:04.0298 0x252c Cloud Station Drive VSS Service x64 - detected UnsignedFile.Multi.Generic ( 1 )
11:35:06.0408 0x252c Detect skipped due to KSN trusted
11:35:06.0408 0x252c Cloud Station Drive VSS Service x64 - ok
11:35:06.0414 0x252c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:35:06.0422 0x252c clr_optimization_v2.0.50727_32 - ok
11:35:06.0427 0x252c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:35:06.0436 0x252c clr_optimization_v2.0.50727_64 - ok
11:35:06.0445 0x252c [ 5BAF4F1296D4D91FC28560CDB4C37C4B, ACA4BC57ED1F8432F18F0F215EC7FF956BAEF6E02760779E264E4008A979E9DD ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:35:06.0455 0x252c clr_optimization_v4.0.30319_32 - ok
11:35:06.0460 0x252c [ 569B54004A7E85A74FD92841DE6058E2, 58949313D0F6B1C06359B2F3C68E29940B1655A17E93FFC3718F6D2EAE1633E4 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:35:06.0472 0x252c clr_optimization_v4.0.30319_64 - ok
11:35:06.0475 0x252c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:35:06.0485 0x252c CmBatt - ok
11:35:06.0488 0x252c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:35:06.0496 0x252c cmdide - ok
11:35:06.0503 0x252c [ B29A764A1E76473CD9D64C9438705C19, CD0497EB84DE60E1E491CA495AF981A8DFC4949BB373C1978CAF1BCF4321D30E ] cm_km C:\Windows\system32\DRIVERS\cm_km.sys
11:35:06.0515 0x252c cm_km - ok
11:35:06.0526 0x252c [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG C:\Windows\system32\Drivers\cng.sys
11:35:06.0545 0x252c CNG - ok
11:35:06.0549 0x252c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:35:06.0556 0x252c Compbatt - ok
11:35:06.0559 0x252c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
11:35:06.0571 0x252c CompositeBus - ok
11:35:06.0574 0x252c COMSysApp - ok
11:35:06.0600 0x252c [ A93043E0B855AD23C97B9121D73DCA7E, B134450EFD61E901A3FA02A97BFE8B23B29E2551081CBE6D07DBC190F3711029 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:35:06.0615 0x252c cphs - ok
11:35:06.0690 0x252c cpuz137 - ok
11:35:06.0724 0x252c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:35:06.0732 0x252c crcdisk - ok
11:35:06.0739 0x252c [ 2C6632CECFDBBE793FDA8AF9CA55A9CC, 335188515F798483660E529204A13012E4D21B0ECA489224A11C26F91A5B3CCE ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:35:06.0754 0x252c CryptSvc - ok
11:35:06.0765 0x252c [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
11:35:06.0785 0x252c CSC - ok
11:35:06.0802 0x252c [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
11:35:06.0823 0x252c CscService - ok
11:35:06.0830 0x252c [ DC08465037FA57A5203BDF3E963422C2, ADA7F6B4ED68413924E187DA1A609BB7B7AA5E483055994A17AEBC7F1BCEC5F2 ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
11:35:06.0841 0x252c ctxusbm - ok
11:35:06.0852 0x252c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch C:\Windows\system32\rpcss.dll
11:35:06.0872 0x252c DcomLaunch - ok
11:35:06.0881 0x252c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
11:35:06.0909 0x252c defragsvc - ok
11:35:06.0914 0x252c [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:35:06.0927 0x252c DfsC - ok
11:35:06.0933 0x252c [ 1E0F456A03E204F92D24437CD907A512, 8BB28AF33BDEFFECC4EC5C6BFBFBDA525A32FA6A26382353E01FF94BAD2A200C ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
11:35:06.0943 0x252c dg_ssudbus - ok
11:35:06.0951 0x252c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:35:06.0966 0x252c Dhcp - ok
11:35:06.0993 0x252c [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack C:\Windows\system32\diagtrack.dll
11:35:07.0028 0x252c DiagTrack - ok
11:35:07.0033 0x252c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
11:35:07.0058 0x252c discache - ok
11:35:07.0062 0x252c [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk C:\Windows\system32\drivers\disk.sys
11:35:07.0070 0x252c Disk - ok
11:35:07.0074 0x252c [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
11:35:07.0087 0x252c dmvsc - ok
11:35:07.0093 0x252c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:35:07.0107 0x252c Dnscache - ok
11:35:07.0115 0x252c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
11:35:07.0142 0x252c dot3svc - ok
11:35:07.0151 0x252c [ 497E0E7CD4E6A708EDF8EF4D1702F427, 53591AFB2CACD1A1EDEAEDFABE57E04E219E0A7112F168E78A34DFE9413D7CEC ] DozeSvc C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE
11:35:07.0164 0x252c DozeSvc - ok
11:35:07.0169 0x252c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
11:35:07.0196 0x252c DPS - ok
11:35:07.0199 0x252c [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:35:07.0273 0x252c drmkaud - ok
11:35:07.0294 0x252c [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:35:07.0319 0x252c DXGKrnl - ok
11:35:07.0324 0x252c [ 3CE83D7EE95D9C9F03323810A2E747DF, 50E34E2EC26584A1BE06EA5049481D1AE2F3213B2A81BA86411623ADCEE24F53 ] DzHDD64 C:\Windows\system32\DRIVERS\DzHDD64.sys
11:35:07.0331 0x252c DzHDD64 - ok
11:35:07.0334 0x252c [ A0D5450B3D4689DCE4CBBC8268141C37, 86674139314058AB8D8B12BED193828C006329CBA70FA5469E5D39526867B346 ] e.dentifier2 C:\Windows\system32\DRIVERS\aabed2.sys
11:35:07.0345 0x252c e.dentifier2 - ok
11:35:07.0350 0x252c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
11:35:07.0375 0x252c EapHost - ok
11:35:07.0434 0x252c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:35:07.0506 0x252c ebdrv - ok
11:35:07.0514 0x252c [ B90BEFCCEB59C83AC65BFD39EF7404F4, E67C41BF4512948F4F30CE981F4BCF52E3A93EBBAE8408783E9D2D3A04C5CB46 ] ecnssndis C:\Windows\system32\Drivers\wwuss64.sys
11:35:07.0522 0x252c ecnssndis - ok
11:35:07.0525 0x252c [ 1CF09C0555BE49EFE96B33BDA514A334, 63D57C887EB259EA364CBF89AB1D85D7C86D980AAD26E727185ED48348D60A15 ] ecnssndisfltr C:\Windows\system32\Drivers\wwussf64.sys
11:35:07.0533 0x252c ecnssndisfltr - ok
11:35:07.0536 0x252c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] EFS C:\Windows\System32\lsass.exe
11:35:07.0548 0x252c EFS - ok
11:35:07.0562 0x252c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:35:07.0587 0x252c ehRecvr - ok
11:35:07.0592 0x252c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
11:35:07.0604 0x252c ehSched - ok
11:35:07.0615 0x252c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:35:07.0633 0x252c elxstor - ok
11:35:07.0637 0x252c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:35:07.0646 0x252c ErrDev - ok
11:35:07.0659 0x252c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
11:35:07.0690 0x252c EventSystem - ok
11:35:07.0705 0x252c [ 323740D842252032D57B5DED757C65D5, 617875CA136E0CDA7C4856C4D0C2B233EE09078E5B46C515CA2476CCCE44AF00 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
11:35:07.0722 0x252c EvtEng - ok
11:35:07.0729 0x252c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
11:35:07.0759 0x252c exfat - ok
11:35:07.0766 0x252c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:35:07.0795 0x252c fastfat - ok
11:35:07.0809 0x252c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
11:35:07.0833 0x252c Fax - ok
11:35:07.0838 0x252c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
11:35:07.0847 0x252c fdc - ok
11:35:07.0850 0x252c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
11:35:07.0875 0x252c fdPHost - ok
11:35:07.0878 0x252c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
11:35:07.0903 0x252c FDResPub - ok
11:35:07.0907 0x252c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:35:07.0915 0x252c FileInfo - ok
11:35:07.0918 0x252c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:35:07.0945 0x252c Filetrace - ok
11:35:07.0948 0x252c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
11:35:07.0957 0x252c flpydisk - ok
11:35:07.0965 0x252c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:35:07.0977 0x252c FltMgr - ok
11:35:07.0999 0x252c [ 700A5373FA66F1DAAECBD2CFB88C73ED, D6C1C4C846BC24EB6539ECC701A456FA53BB6679C79391F5B70580D47B6CE395 ] FontCache C:\Windows\system32\FntCache.dll
11:35:08.0035 0x252c FontCache - ok
11:35:08.0040 0x252c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:35:08.0047 0x252c FontCache3.0.0.0 - ok
11:35:08.0051 0x252c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:35:08.0059 0x252c FsDepends - ok
11:35:08.0062 0x252c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:35:08.0071 0x252c Fs_Rec - ok
11:35:08.0078 0x252c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:35:08.0091 0x252c fvevol - ok
11:35:08.0095 0x252c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:35:08.0103 0x252c gagp30kx - ok
11:35:08.0106 0x252c [ 9F5E8645FECD68C0ECC374F5A4AE068A, 7F225A1DC6B665EF3DB8B19D553194A1D6020EEDA74A9CEE0E9B22FE4573C4B6 ] gfiark C:\Windows\system32\drivers\gfiark.sys
11:35:08.0114 0x252c gfiark - ok
11:35:08.0117 0x252c [ 14908F4F9005C29DE8F5587E271390EE, 43DDFA99F52467F91019DB858989F111EBE48A2BED8D43EA2C15D1FD3C104489 ] gfibto C:\Windows\system32\drivers\gfibto.sys
11:35:08.0124 0x252c gfibto - ok
11:35:08.0140 0x252c [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
11:35:08.0165 0x252c gpsvc - ok
11:35:08.0171 0x252c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:35:08.0179 0x252c gupdate - ok
11:35:08.0184 0x252c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:35:08.0192 0x252c gupdatem - ok
11:35:08.0195 0x252c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:35:08.0207 0x252c hcw85cir - ok
11:35:08.0216 0x252c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:35:08.0233 0x252c HdAudAddService - ok
11:35:08.0238 0x252c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:35:08.0251 0x252c HDAudBus - ok
11:35:08.0255 0x252c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:35:08.0264 0x252c HidBatt - ok
11:35:08.0268 0x252c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:35:08.0280 0x252c HidBth - ok
11:35:08.0284 0x252c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
11:35:08.0295 0x252c HidIr - ok
11:35:08.0299 0x252c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
11:35:08.0324 0x252c hidserv - ok
11:35:08.0328 0x252c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:35:08.0338 0x252c HidUsb - ok
11:35:08.0343 0x252c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:35:08.0367 0x252c hkmsvc - ok
11:35:08.0374 0x252c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:35:08.0387 0x252c HomeGroupListener - ok
11:35:08.0393 0x252c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:35:08.0405 0x252c HomeGroupProvider - ok
11:35:08.0409 0x252c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:35:08.0417 0x252c HpSAMD - ok
11:35:08.0432 0x252c [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:35:08.0457 0x252c HTTP - ok
11:35:08.0480 0x252c [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
11:35:08.0487 0x252c HWiNFO32 - ok
11:35:08.0490 0x252c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:35:08.0497 0x252c hwpolicy - ok
11:35:08.0505 0x252c [ 16A7CA284629A4D002F7B992C9A49EF9, FEA48B8DAAE18042C87F05D7C07251F4543D0E9F49C7B705E55477E7F75884A3 ] HyperW7Svc C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
11:35:08.0513 0x252c HyperW7Svc - ok
11:35:08.0518 0x252c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:35:08.0528 0x252c i8042prt - ok
11:35:08.0541 0x252c [ CCFA835960E35F30D28A868E0B3B8722, 47D95E75685F9D40229902A92426FBCB358EA929202EAFBBF79C72873B8B9032 ] iaStor C:\Windows\system32\drivers\iaStor.sys
11:35:08.0557 0x252c iaStor - ok
11:35:08.0570 0x252c [ 8BE099617DA18FE085A40D47FC156B1B, A5F7AB41D32DF8A12F1945C263EE954CE15069C3CFD7131C74A8A3F4EC3AC122 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
11:35:08.0588 0x252c iaStorA - ok
11:35:08.0592 0x252c [ 005C0887D8B57A19883E3ADEF5478F05, E4D53F6197F128C5A753DBA0592619893D93F87575678E9708830B04C4CE1553 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
11:35:08.0599 0x252c iaStorF - ok
11:35:08.0608 0x252c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:35:08.0623 0x252c iaStorV - ok
11:35:08.0627 0x252c [ 053DFE4E6324B828C16CB6F5B9F20790, 17347896126DE49C570D2AC025F2A4BB8250B67ECD6A6D31B80EBD9423799F0B ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
11:35:08.0638 0x252c IBMPMDRV - ok
11:35:08.0644 0x252c [ D84EF85ED4F2044784A44C211A27D065, FA18EA57507353DC3DB18F840F0499D7874AC055E3190E4D76DB9AA1021FC674 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
11:35:08.0655 0x252c IBMPMSVC - ok
11:35:08.0661 0x252c [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
11:35:08.0670 0x252c ICCS - ok
11:35:08.0687 0x252c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:35:08.0710 0x252c idsvc - ok
11:35:08.0714 0x252c IEEtwCollectorService - ok
11:35:08.0809 0x252c [ E294EA00A7B5616215C0A3DFB8BF3A6D, F7E20695EF0A9E4F6C30F86823BBF24CE7CBDE9432958A1D98E82E62DCCCB167 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
11:35:08.0920 0x252c igfx - ok
11:35:08.0929 0x252c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:35:08.0937 0x252c iirsp - ok
11:35:08.0954 0x252c [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
11:35:08.0976 0x252c IKEEXT - ok
11:35:08.0982 0x252c [ 314285071F7117263BD246E35C17FD82, 12E135DAB9D717D697026800C97FB58A64C0C37ACE715C2805A411A5384CB55A ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
11:35:08.0989 0x252c intaud_WaveExtensible - ok
11:35:09.0052 0x252c [ 0CDE7928C4B99C25AAED3B4E84E78168, 5B5444574551D2637A3827F26D248573AECE1B12DFA175C13B10B2A777AD2513 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:35:09.0128 0x252c IntcAzAudAddService - ok
11:35:09.0143 0x252c [ B375D8686E1BD2B79C0F00E3868A8C3B, A15D99F04B69FB37ED3AC0C3BBA464BF6D6EB1873D4AE1062983120E3BD1C4DB ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
11:35:09.0157 0x252c IntcDAud - ok
11:35:09.0172 0x252c [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:35:09.0191 0x252c Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
11:35:11.0308 0x252c Detect skipped due to KSN trusted
11:35:11.0308 0x252c Intel(R) Capability Licensing Service Interface - ok
11:35:11.0325 0x252c [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
11:35:11.0346 0x252c Intel(R) Capability Licensing Service TCP IP Interface - ok
11:35:11.0349 0x252c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
11:35:11.0357 0x252c intelide - ok
11:35:11.0361 0x252c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:35:11.0371 0x252c intelppm - ok
11:35:11.0376 0x252c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:35:11.0402 0x252c IPBusEnum - ok
11:35:11.0406 0x252c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:35:11.0430 0x252c IpFilterDriver - ok
11:35:11.0442 0x252c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:35:11.0461 0x252c iphlpsvc - ok
11:35:11.0466 0x252c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:35:11.0476 0x252c IPMIDRV - ok
11:35:11.0480 0x252c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:35:11.0507 0x252c IPNAT - ok
11:35:11.0510 0x252c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:35:11.0523 0x252c IRENUM - ok
11:35:11.0526 0x252c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:35:11.0536 0x252c isapnp - ok
11:35:11.0543 0x252c [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:35:11.0556 0x252c iScsiPrt - ok
11:35:11.0560 0x252c [ 970995B7C36F4408ED31C3BF204FE1F5, 466C5FA3A26E997009E33EA9B0923BFE7FCC9D367444F31C1BEB3D6EACDB6BA9 ] ISCT C:\Windows\system32\DRIVERS\ISCTD64.sys
11:35:11.0567 0x252c ISCT - ok
11:35:11.0571 0x252c [ 68CF5515B176527523ED379915350AE3, C69C7B69ECAE290A27F0D3DF6C989CDA667A0C4807216D3C0390EECFC4108D16 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
11:35:11.0578 0x252c iusb3hcs - ok
11:35:11.0587 0x252c [ EE522B28633D275BFE12EF70F4936E37, 420153B13CF3C2AD566A8A3EAFDBE57877E41BA8D3130447EFF97E14D2C61FED ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
11:35:11.0600 0x252c iusb3hub - ok
11:35:11.0616 0x252c [ 69AB13996A97F8168538F98FB832A86B, 305DD07ACE25E83175FD95DBBB4B1A276ECFB1DAB840595182C03FED7B02B2EB ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
11:35:11.0637 0x252c iusb3xhc - ok
11:35:11.0642 0x252c [ 4487AD9C070D3973FE28AB4406555FC6, 77D8DE3036613618D44D7E5E47C9C754B8F0FF294D9DD778C92A7AFDA8F778FC ] iwdbus C:\Windows\system32\DRIVERS\iwdbus.sys
11:35:11.0650 0x252c iwdbus - ok
11:35:11.0657 0x252c [ A3B59E5887B294F2ED06A522F0FDC9D3, 38B8453FC100C74376E6B36D71F27228D1EBE1094ED0175F96C018C958B1B37A ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
11:35:11.0665 0x252c jhi_service - ok
11:35:11.0669 0x252c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:35:11.0677 0x252c kbdclass - ok
11:35:11.0680 0x252c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:35:11.0690 0x252c kbdhid - ok
11:35:11.0693 0x252c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] KeyIso C:\Windows\system32\lsass.exe
11:35:11.0703 0x252c KeyIso - ok
11:35:11.0715 0x252c [ 97E3E8F35632EECD0ABD2DE6519A9666, ABE96FDEB1076E380D7FB4975C020B43ED4E821097EFC6AFE8C75D764167D6E8 ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
11:35:11.0734 0x252c kl1 - ok
11:35:11.0739 0x252c [ B01AD8DA034EE42D4C2282F77FDB03AE, 3FF55F3CEE4A0E5D559F04F5A639297EA0F36580720E94CF9DD56DEBF2E98F39 ] klbackupdisk C:\Windows\system32\DRIVERS\klbackupdisk.sys
11:35:11.0749 0x252c klbackupdisk - ok
11:35:11.0754 0x252c [ 39DFFABF0E74E1F4856EF0A9E696C337, F7CA397BC87B01EAF0A2B737447B0B84ACCD72782473CA98FA73DA3232B64AD7 ] klbackupflt C:\Windows\system32\DRIVERS\klbackupflt.sys
11:35:11.0764 0x252c klbackupflt - ok
11:35:11.0768 0x252c [ 7DAA9047F50BF5A3F8C147719FC520AF, 0740387075AF46DB1E9AEE3B12C65A06EDFE58EADB8B562C36CB1FEFF9905C26 ] kldisk C:\Windows\system32\DRIVERS\kldisk.sys
11:35:11.0779 0x252c kldisk - ok
11:35:11.0786 0x252c [ DCF9E429D30DD641F948DF7F6B1AE098, 04A2241B93FA6C543BC57FA5E7817D526F0BB98970A8DA1EF2783300227DC58C ] klflt C:\Windows\system32\DRIVERS\klflt.sys
11:35:11.0798 0x252c klflt - ok
11:35:11.0807 0x252c [ 9A5B29ADF3F6F3A09DD92C6A6C6C4C3C, F8F8FC5CEE5A39C53FB39EC8F5B55EEC318206690B81A4D32C27018294820ECB ] klhk C:\Windows\system32\DRIVERS\klhk.sys
11:35:11.0823 0x252c klhk - ok
11:35:11.0844 0x252c [ EE74069475F36F56042150ED71876D5E, DE2E87B4610A1BA4A18FB81786CE1106D367B19DDE1ADE0FD9EA2532D1A3B4D2 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
11:35:11.0873 0x252c KLIF - ok
11:35:11.0877 0x252c [ F8AE6D4060F8822D246D493359D06201, 9974A80DF0CF22ACB8A4F37E1A19E27ACB4F16429FDC194608762E02BE23FDD9 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
11:35:11.0888 0x252c KLIM6 - ok
11:35:11.0892 0x252c [ DDBA4D4C8C08E4C972D7AF7B06B84804, FDC9138316C1ADA0895BBB9358EC74CD1E1B546E09EA1079393C4E6568523612 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
11:35:11.0902 0x252c klkbdflt - ok
11:35:11.0906 0x252c [ D792857D47B8DF5BFEC02534C1933BE2, BDD483FA8E2DC50DB4E54D475867455F0D7E115494E2A31CD27A065C7EC26951 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
11:35:11.0915 0x252c klmouflt - ok
11:35:11.0918 0x252c [ 6B0C605591C892CBB683F63EA47822DC, E74C0A0501A1B4B56B417402108521F34DA6A23FCD1C05E4E524E41EBA0906FF ] klpd C:\Windows\system32\DRIVERS\klpd.sys
11:35:11.0928 0x252c klpd - ok
11:35:11.0932 0x252c [ 828B042A95F055648DA190DF6C7AB1B6, 0457B0EF03BCB4CC1297EB25A25C162937F456BF406EC7B1A5E9A0AA13A9BCD7 ] kltap C:\Windows\system32\DRIVERS\kltap.sys
11:35:11.0941 0x252c kltap - ok
11:35:11.0945 0x252c [ CFE5FD219EC7773D5674C6EDDF8C1A98, 34F7EEA492690980BE3A76E978D545CA49245E668174A51C9209B878ADA1E96A ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
11:35:11.0956 0x252c kltdi - ok
11:35:11.0962 0x252c [ D7F0B46844565E2ED68AC99AF0F4263F, AB419CBC29F96703237127AC4178A5365D4CCA010BAB1BD66D100D635E6E89B8 ] klvssbrigde64 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\vssbridge64.exe
11:35:11.0970 0x252c klvssbrigde64 - ok
11:35:11.0975 0x252c [ D476ABA10C8429EB69E8F943247A5423, EC74FECA4A85D05D426D0A16A302ACA71CD47A8F1A83361D732ACC8F0A0EE971 ] Klwtp C:\Windows\system32\DRIVERS\klwtp.sys
11:35:11.0987 0x252c Klwtp - ok
11:35:11.0994 0x252c [ 67EFD862ACEFCB9687523832C62FA584, B3C9A36C535B706EB19E5C5437705E8C5EC71F45115A2C97E1348462EC2A3922 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
11:35:12.0007 0x252c kneps - ok
11:35:12.0014 0x252c [ EFF5EA6088DB81C6EF6EDCDA5EE79909, 4D364B0BF012C335FA3B25BDF042D4AF672D961B9B48CB7C5BE34FCFD1D64979 ] KSDE1.0.0 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
11:35:12.0025 0x252c KSDE1.0.0 - ok
11:35:12.0031 0x252c [ 6F5F0C6160EF237F0243C1E416EEBA98, 8BA8AA0D71350A74E294A731226B1638C6059013D645ABDE7188F7733E320FBD ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:35:12.0040 0x252c KSecDD - ok
11:35:12.0046 0x252c [ 05529E53B286FD60E7EF04EF138CABFD, 6C045750DCD3EE76F748582513AD4FA99C0E8E56B616725CD48DCA1068FF8923 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:35:12.0056 0x252c KSecPkg - ok
11:35:12.0059 0x252c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:35:12.0083 0x252c ksthunk - ok
11:35:12.0091 0x252c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
11:35:12.0121 0x252c KtmRm - ok
11:35:12.0127 0x252c [ 69355633064DF425098477A3247B9448, 07F5E633D9C7FEEC1B451765EBD27835AB101B29230DAC037C2B659074C586A9 ] l36wgps C:\Windows\system32\DRIVERS\l36wgps64.sys
11:35:12.0136 0x252c l36wgps - ok
11:35:12.0140 0x252c [ 95DA07E4859396912D8E5630DA5A9324, E49278419B7F121C8A51926B56043D2BD0CE26335F580BBAE394348275542B48 ] l36wscard C:\Windows\system32\DRIVERS\l36wscard.sys
11:35:12.0147 0x252c l36wscard - ok
11:35:12.0155 0x252c [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:35:12.0182 0x252c LanmanServer - ok
11:35:12.0188 0x252c [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:35:12.0214 0x252c LanmanWorkstation - ok
11:35:12.0264 0x252c [ 8FB6D64CB42E660C4534D38013D64A03, 11A6A914E8588DDFDE32D12A858BA8A31783B5DDB42C9E7FD0F237D57A437976 ] LavasoftTcpService C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.3.4.7\LavasoftTcpService.exe
11:35:12.0316 0x252c LavasoftTcpService - ok
11:35:12.0324 0x252c [ 070A31A7AEDBC6FC0E990D4944A95FB4, A486D85D1F4857F832AA45372FF531C9001329FD02CEFB16DDC1C82CDC0A8FF1 ] LenLan C:\Windows\system32\DRIVERS\LenLan.sys
11:35:12.0336 0x252c LenLan - ok
11:35:12.0341 0x252c [ F96ADC7EA527C2588CB0A7AA94F23B31, BA317F71F2035DE1CF856381A92463E31DFFB580B23275F34A3770D13313F0FE ] LENOVO.MICMUTE C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
11:35:12.0349 0x252c LENOVO.MICMUTE - ok
11:35:12.0354 0x252c [ EE982F13F0957AB40992DDBC47164A76, C75AA052A8B2E5A1CBA06C32D855B74C576F2E349B8D1A4570F7E991933FEE6A ] Lenovo.VIRTSCRLSVC C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
11:35:12.0362 0x252c Lenovo.VIRTSCRLSVC - ok
11:35:12.0366 0x252c [ 77D5786C6A7765503884E38706C9FD5E, 827DC2069AA0997DB87E118AAAA53575D97A89147C1451464986F8D68A329D41 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:35:12.0375 0x252c LHidFilt - ok
11:35:12.0378 0x252c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:35:12.0403 0x252c lltdio - ok
11:35:12.0410 0x252c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:35:12.0440 0x252c lltdsvc - ok
11:35:12.0444 0x252c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:35:12.0470 0x252c lmhosts - ok
11:35:12.0474 0x252c [ F84023FB2E3DEA06103501974A2EDB44, 38144EB7DE7F0B33F9C3E637715834CD0860CCE11915C77065000949767D98DF ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:35:12.0481 0x252c LMouFilt - ok
11:35:12.0490 0x252c [ 3142FC089FE8FCF79B442B91BC4F0C16, ECF8E9CC84B87D19C4762E73EA2DD80B336A9C42A67512F2E73179F49484592A ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:35:12.0503 0x252c LMS - ok
11:35:12.0506 0x252c [ 285BE1702B8ED8EDDE032C2994845A48, 2E8829A7F28456B9035A53C2488507577B5A08C5E90C29B0089386773D31A453 ] lnvDiscoveryWinSvc C:\Program Files\Lenovo\Lenovo Peer Connect\LenovoDiscoverySvc.exe
11:35:12.0513 0x252c lnvDiscoveryWinSvc - ok
11:35:12.0529 0x252c [ 67569B50D28182AE1B21C46815CE58D0, 8332604147643BB151DB035F97A611B0D935DA6778266D9913BC945D5789EF87 ] LPlatSvc C:\Windows\system32\LPlatSvc.exe
11:35:12.0551 0x252c LPlatSvc - ok
11:35:12.0561 0x252c [ FD66828B7E8D085FD0F6009444525636, EA9405BA323EF8B1972669713C45DF1F2BF9C4C55310FEE6367FA8C9DE2CC164 ] LSC.Services.SystemService C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
11:35:12.0575 0x252c LSC.Services.SystemService - ok
11:35:12.0580 0x252c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:35:12.0590 0x252c LSI_FC - ok
11:35:12.0594 0x252c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:35:12.0603 0x252c LSI_SAS - ok
11:35:12.0608 0x252c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
11:35:12.0616 0x252c LSI_SAS2 - ok
11:35:12.0621 0x252c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:35:12.0630 0x252c LSI_SCSI - ok
11:35:12.0635 0x252c [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
11:35:12.0661 0x252c luafv - ok
11:35:12.0664 0x252c [ 97355D9AAC9EC42A7DFC9664F81FC699, B96E483271F326135F2CB7797A7EEFFCA275761FE75134849DCAA812E26523B8 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
11:35:12.0671 0x252c LUsbFilt - ok
11:35:12.0681 0x252c [ 7FC758B6B562E8105758328961EE50F2, DE12E5C0283510C21632157D151D1168C09CCEB3F3BFAA58357DE652450687FE ] Mbm3CBus C:\Windows\system32\DRIVERS\Mbm3CBus.sys
11:35:12.0696 0x252c Mbm3CBus - ok
11:35:12.0706 0x252c [ 9644C6B313A08B36E3577193FE844197, BA51DFD136CC741EF908402F21FC6748805B50EC4DE162415E50A3273D0EA3BE ] Mbm3DevMt C:\Windows\system32\DRIVERS\Mbm3DevMt.sys
11:35:12.0721 0x252c Mbm3DevMt - ok
11:35:12.0725 0x252c [ FAFA77810CB6C4E196C7CD28855292BB, C59E5C297FDE253DACAC4371847E7BA741CCE297633EBA92CD028930D70B28CB ] Mbm3mdfl C:\Windows\system32\DRIVERS\Mbm3mdfl.sys
11:35:12.0732 0x252c Mbm3mdfl - ok
11:35:12.0743 0x252c [ A1A8597F1EB14A27DDA510371498C0AB, 6D22A5FA1C22FD871146516311C1F657B59CFAFF9458CCF8F2D55C971353F4A1 ] Mbm3Mdm C:\Windows\system32\DRIVERS\Mbm3Mdm.sys
11:35:12.0758 0x252c Mbm3Mdm - ok
11:35:12.0762 0x252c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:35:12.0772 0x252c Mcx2Svc - ok
11:35:12.0775 0x252c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
11:35:12.0782 0x252c megasas - ok
11:35:12.0790 0x252c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
11:35:12.0802 0x252c MegaSR - ok
11:35:12.0806 0x252c [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
11:35:12.0814 0x252c MEIx64 - ok
11:35:12.0819 0x252c Microsoft SharePoint Workspace Audit Service - ok
11:35:12.0823 0x252c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
11:35:12.0852 0x252c MMCSS - ok
11:35:12.0855 0x252c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
11:35:12.0879 0x252c Modem - ok
11:35:12.0882 0x252c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:35:12.0893 0x252c monitor - ok
11:35:12.0897 0x252c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:35:12.0905 0x252c mouclass - ok
11:35:12.0908 0x252c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:35:12.0917 0x252c mouhid - ok
11:35:12.0921 0x252c [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:35:12.0929 0x252c mountmgr - ok
11:35:12.0935 0x252c [ ADF79A49E942C91D1FC9863CBFDD6B58, C2B2A792C4717133DCAE6297EE3F5D985B11D3C1E68A8DC23985AC6B78ACDE98 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:35:12.0946 0x252c MozillaMaintenance - ok
11:35:12.0951 0x252c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
11:35:12.0963 0x252c mpio - ok
11:35:12.0968 0x252c [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:35:12.0992 0x252c mpsdrv - ok
11:35:13.0010 0x252c [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:35:13.0046 0x252c MpsSvc - ok
11:35:13.0052 0x252c [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:35:13.0067 0x252c MRxDAV - ok
11:35:13.0074 0x252c [ 632E8A00090E4F85F304E152C92C7F2C, A3098941251A8327C95E6B1122384D54FB0ED705A9215577D968EA5B5FD88C87 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:35:13.0089 0x252c mrxsmb - ok
11:35:13.0097 0x252c [ 0D9C05484F2F4BD9D33A615D5DBE67EA, 1E164B631B1CD85DD5B205284CB547B189609946490AAABD22741743BFB413DF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:35:13.0112 0x252c mrxsmb10 - ok
11:35:13.0118 0x252c [ 6123E6FECC1C164022868FB1982271BE, 417E6C7AFF8B014B31AFCC202B0DCEECBDBB73205DF8C3EFC7E313664E284178 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:35:13.0129 0x252c mrxsmb20 - ok
11:35:13.0133 0x252c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
11:35:13.0141 0x252c msahci - ok
11:35:13.0146 0x252c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:35:13.0156 0x252c msdsm - ok
11:35:13.0161 0x252c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
11:35:13.0174 0x252c MSDTC - ok
11:35:13.0179 0x252c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:35:13.0204 0x252c Msfs - ok
11:35:13.0207 0x252c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:35:13.0232 0x252c mshidkmdf - ok
11:35:13.0235 0x252c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:35:13.0245 0x252c msisadrv - ok
11:35:13.0251 0x252c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:35:13.0277 0x252c MSiSCSI - ok
11:35:13.0280 0x252c msiserver - ok
11:35:13.0283 0x252c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:35:13.0307 0x252c MSKSSRV - ok
11:35:13.0310 0x252c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:35:13.0333 0x252c MSPCLOCK - ok
11:35:13.0336 0x252c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:35:13.0361 0x252c MSPQM - ok
11:35:13.0371 0x252c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:35:13.0384 0x252c MsRPC - ok
11:35:13.0389 0x252c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:35:13.0397 0x252c mssmbios - ok
11:35:13.0400 0x252c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:35:13.0425 0x252c MSTEE - ok
11:35:13.0427 0x252c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:35:13.0436 0x252c MTConfig - ok
11:35:13.0440 0x252c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
11:35:13.0449 0x252c Mup - ok
11:35:13.0457 0x252c [ CD8DD76B58803B36FDC7C6B5D68300DD, 7F8672E22BFC2993A50D85F7749C1007FA7C4010FB51CA44F47B2A3028FEC0B7 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
11:35:13.0468 0x252c MyWiFiDHCPDNS - ok
11:35:13.0479 0x252c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
11:35:13.0511 0x252c napagent - ok
11:35:13.0519 0x252c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:35:13.0537 0x252c NativeWifiP - ok
11:35:13.0555 0x252c [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:35:13.0581 0x252c NDIS - ok
11:35:13.0585 0x252c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:35:13.0611 0x252c NdisCap - ok
11:35:13.0614 0x252c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:35:13.0639 0x252c NdisTapi - ok
11:35:13.0642 0x252c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:35:13.0667 0x252c Ndisuio - ok
11:35:13.0673 0x252c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:35:13.0701 0x252c NdisWan - ok
11:35:13.0704 0x252c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:35:13.0728 0x252c NDProxy - ok
11:35:13.0731 0x252c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:35:13.0756 0x252c NetBIOS - ok
11:35:13.0763 0x252c [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:35:13.0780 0x252c NetBT - ok
11:35:13.0784 0x252c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] Netlogon C:\Windows\system32\lsass.exe
11:35:13.0793 0x252c Netlogon - ok
11:35:13.0801 0x252c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
11:35:13.0831 0x252c Netman - ok
11:35:13.0839 0x252c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:35:13.0851 0x252c NetMsmqActivator - ok
11:35:13.0855 0x252c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:35:13.0865 0x252c NetPipeActivator - ok
11:35:13.0875 0x252c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
11:35:13.0907 0x252c netprofm - ok
11:35:13.0912 0x252c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:35:13.0923 0x252c NetTcpActivator - ok
11:35:13.0927 0x252c [ 0BEF1F19F32C9F3DBE9A503F2E66CC22, 4F4812CDDB675C5D655B5B90375F188A3A5AA52A2BC2CED383B03449CF8210C8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:35:13.0938 0x252c NetTcpPortSharing - ok
11:35:14.0138 0x252c [ 9233F2F1A3CD407A6622F6D38F120838, BA63FB78A29718F5F9DE5B967B4BAE8D3F455356855BB8E2A03DFF760BE6A6DA ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
11:35:14.0364 0x252c NETwNs64 - ok
11:35:14.0377 0x252c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:35:14.0386 0x252c nfrd960 - ok
11:35:14.0393 0x252c [ BC4B7FA7F7EBE5E9CC70885A2CB727D0, 0BC3EF7B5CEC9A4639607E5F901A65296F150B451714DF754847637D98CD8D98 ] NitroDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
11:35:14.0402 0x252c NitroDriverReadSpool2 - ok
11:35:14.0410 0x252c [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
11:35:14.0426 0x252c NlaSvc - ok
11:35:14.0430 0x252c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:35:14.0454 0x252c Npfs - ok
11:35:14.0457 0x252c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
11:35:14.0482 0x252c nsi - ok
11:35:14.0485 0x252c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:35:14.0510 0x252c nsiproxy - ok
11:35:14.0544 0x252c [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:35:14.0584 0x252c Ntfs - ok
11:35:14.0589 0x252c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
11:35:14.0614 0x252c Null - ok
11:35:14.0619 0x252c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:35:14.0629 0x252c nvraid - ok
11:35:14.0634 0x252c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:35:14.0645 0x252c nvstor - ok
11:35:14.0650 0x252c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:35:14.0659 0x252c nv_agp - ok
11:35:14.0663 0x252c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:35:14.0673 0x252c ohci1394 - ok
11:35:14.0678 0x252c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:35:14.0687 0x252c ose - ok
11:35:14.0770 0x252c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:35:14.0862 0x252c osppsvc - ok
11:35:14.0878 0x252c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:35:14.0895 0x252c p2pimsvc - ok
11:35:14.0909 0x252c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
11:35:14.0924 0x252c p2psvc - ok
11:35:14.0929 0x252c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
11:35:14.0939 0x252c Parport - ok
11:35:14.0943 0x252c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:35:14.0951 0x252c partmgr - ok
11:35:14.0958 0x252c [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc C:\Windows\System32\pcasvc.dll
11:35:14.0974 0x252c PcaSvc - ok
11:35:14.0981 0x252c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
11:35:14.0992 0x252c pci - ok
11:35:14.0995 0x252c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
11:35:15.0003 0x252c pciide - ok
11:35:15.0009 0x252c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:35:15.0021 0x252c pcmcia - ok
11:35:15.0025 0x252c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
11:35:15.0033 0x252c pcw - ok
11:35:15.0046 0x252c [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:35:15.0067 0x252c PEAUTH - ok
11:35:15.0095 0x252c [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:35:15.0135 0x252c PeerDistSvc - ok
11:35:15.0164 0x252c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:35:15.0175 0x252c PerfHost - ok
11:35:15.0181 0x252c [ B4C1BF666DBD6899EC4A9A499DAA040B, D6F9E42F25DCBE19A3766165D96CC2D30E834B19B841688FD6A2E26FD9166315 ] PHCORE C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS
11:35:15.0189 0x252c PHCORE - ok
11:35:15.0217 0x252c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
11:35:15.0263 0x252c pla - ok
11:35:15.0275 0x252c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
|
|
07.02.2017, 11:42
| #3 |
| | Ungewünschte Webseite öffnet sichCode:
ATTFilter 11:35:15.0294 0x252c PlugPlay - ok
11:35:15.0298 0x252c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:35:15.0308 0x252c PNRPAutoReg - ok
11:35:15.0316 0x252c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:35:15.0329 0x252c PNRPsvc - ok
11:35:15.0341 0x252c [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:35:15.0360 0x252c PolicyAgent - ok
11:35:15.0368 0x252c [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\Windows\system32\umpo.dll
11:35:15.0383 0x252c Power - ok
11:35:15.0415 0x252c [ 3E1BA96F0B2E07117AD0E81C2B685E32, 8E6C45C1222D3C5442ECCE5E29B1023DDEB1E457FE86267A1DDEF8ED06ADDB3B ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
11:35:15.0448 0x252c Power Manager DBC Service - ok
11:35:15.0456 0x252c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:35:15.0481 0x252c PptpMiniport - ok
11:35:15.0485 0x252c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
11:35:15.0497 0x252c Processor - ok
11:35:15.0503 0x252c [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
11:35:15.0517 0x252c ProfSvc - ok
11:35:15.0520 0x252c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] ProtectedStorage C:\Windows\system32\lsass.exe
11:35:15.0529 0x252c ProtectedStorage - ok
11:35:15.0532 0x252c [ 05A4779E4994B21473EDBE85AABE8030, AFD597461B036FDE42013648A4D542B02AE1D7E128BF0B193BA4B478432F0C72 ] psadd C:\Windows\system32\DRIVERS\psadd.sys
11:35:15.0538 0x252c psadd - ok
11:35:15.0543 0x252c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:35:15.0568 0x252c Psched - ok
11:35:15.0595 0x252c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:35:15.0630 0x252c ql2300 - ok
11:35:15.0638 0x252c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:35:15.0648 0x252c ql40xx - ok
11:35:15.0654 0x252c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
11:35:15.0670 0x252c QWAVE - ok
11:35:15.0673 0x252c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:35:15.0685 0x252c QWAVEdrv - ok
11:35:15.0688 0x252c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:35:15.0713 0x252c RasAcd - ok
11:35:15.0717 0x252c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:35:15.0742 0x252c RasAgileVpn - ok
11:35:15.0746 0x252c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
11:35:15.0772 0x252c RasAuto - ok
11:35:15.0776 0x252c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:35:15.0801 0x252c Rasl2tp - ok
11:35:15.0810 0x252c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
11:35:15.0843 0x252c RasMan - ok
11:35:15.0848 0x252c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:35:15.0873 0x252c RasPppoe - ok
11:35:15.0877 0x252c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:35:15.0903 0x252c RasSstp - ok
11:35:15.0911 0x252c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:35:15.0940 0x252c rdbss - ok
11:35:15.0944 0x252c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:35:15.0956 0x252c rdpbus - ok
11:35:15.0958 0x252c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:35:15.0984 0x252c RDPCDD - ok
11:35:15.0992 0x252c [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:35:16.0005 0x252c RDPDR - ok
11:35:16.0009 0x252c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:35:16.0032 0x252c RDPENCDD - ok
11:35:16.0036 0x252c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:35:16.0059 0x252c RDPREFMP - ok
11:35:16.0064 0x252c [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:35:16.0079 0x252c RdpVideoMiniport - ok
11:35:16.0086 0x252c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:35:16.0100 0x252c RDPWD - ok
11:35:16.0107 0x252c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:35:16.0118 0x252c rdyboost - ok
11:35:16.0124 0x252c [ 23D6449B8D2E2A0CA02A09453853F5B0, 227A151C61D94040F3635E6FBC6238CA3378973EC830755674A306DEE7EC2289 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
11:35:16.0133 0x252c RegSrvc - ok
11:35:16.0139 0x252c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:35:16.0164 0x252c RemoteAccess - ok
11:35:16.0169 0x252c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:35:16.0199 0x252c RemoteRegistry - ok
11:35:16.0205 0x252c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:35:16.0219 0x252c RFCOMM - ok
11:35:16.0224 0x252c [ 5A227511ED22DDFEDF7EF7323C8F7D2F, 5056DED32432E192268BE8214B6152A488807357D1BBB769171843E589BF4320 ] risdxc C:\Windows\system32\DRIVERS\risdxc64.sys
11:35:16.0235 0x252c risdxc - ok
11:35:16.0239 0x252c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:35:16.0265 0x252c RpcEptMapper - ok
11:35:16.0268 0x252c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
11:35:16.0277 0x252c RpcLocator - ok
11:35:16.0289 0x252c [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs C:\Windows\system32\rpcss.dll
11:35:16.0307 0x252c RpcSs - ok
11:35:16.0311 0x252c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:35:16.0336 0x252c rspndr - ok
11:35:16.0347 0x252c [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
11:35:16.0363 0x252c s3cap - ok
11:35:16.0366 0x252c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] SamSs C:\Windows\system32\lsass.exe
11:35:16.0377 0x252c SamSs - ok
11:35:16.0381 0x252c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:35:16.0390 0x252c sbp2port - ok
11:35:16.0397 0x252c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:35:16.0424 0x252c SCardSvr - ok
11:35:16.0427 0x252c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:35:16.0450 0x252c scfilter - ok
11:35:16.0471 0x252c [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
11:35:16.0500 0x252c Schedule - ok
11:35:16.0507 0x252c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:35:16.0530 0x252c SCPolicySvc - ok
11:35:16.0535 0x252c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:35:16.0549 0x252c SDRSVC - ok
11:35:16.0553 0x252c [ A507D0060EEB23B89E76E08C240B5E99, ACDB11F8AB8619983E553227227138E5C47BA9831F64BBBEFFABA8DC9440DE9F ] SearchProtectionService C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
11:35:16.0558 0x252c SearchProtectionService - ok
11:35:16.0561 0x252c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:35:16.0571 0x252c secdrv - ok
11:35:16.0575 0x252c [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
11:35:16.0586 0x252c seclogon - ok
11:35:16.0591 0x252c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
11:35:16.0615 0x252c SENS - ok
11:35:16.0619 0x252c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:35:16.0630 0x252c SensrSvc - ok
11:35:16.0634 0x252c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:35:16.0643 0x252c Serenum - ok
11:35:16.0648 0x252c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:35:16.0658 0x252c Serial - ok
11:35:16.0661 0x252c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:35:16.0671 0x252c sermouse - ok
11:35:16.0679 0x252c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
11:35:16.0706 0x252c SessionEnv - ok
11:35:16.0709 0x252c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:35:16.0719 0x252c sffdisk - ok
11:35:16.0722 0x252c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:35:16.0733 0x252c sffp_mmc - ok
11:35:16.0736 0x252c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:35:16.0747 0x252c sffp_sd - ok
11:35:16.0749 0x252c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:35:16.0759 0x252c sfloppy - ok
11:35:16.0768 0x252c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:35:16.0798 0x252c SharedAccess - ok
11:35:16.0807 0x252c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:35:16.0836 0x252c ShellHWDetection - ok
11:35:16.0840 0x252c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:35:16.0848 0x252c SiSRaid2 - ok
11:35:16.0852 0x252c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:35:16.0860 0x252c SiSRaid4 - ok
11:35:16.0871 0x252c [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:35:16.0886 0x252c SkypeUpdate - ok
11:35:16.0890 0x252c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:35:16.0914 0x252c Smb - ok
11:35:16.0918 0x252c [ 7956FD22F1AC83057630975D2B9AA452, ACBA47559D97B1B3FBDD7D9C7F13918EA00D63D9194642692E89E05B2D304BDE ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
11:35:16.0926 0x252c SmbDrvI - ok
11:35:16.0929 0x252c smihlp2 - ok
11:35:16.0935 0x252c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:35:16.0944 0x252c SNMPTRAP - ok
11:35:16.0947 0x252c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
11:35:16.0955 0x252c spldr - ok
11:35:16.0966 0x252c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
11:35:16.0988 0x252c Spooler - ok
11:35:17.0050 0x252c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
11:35:17.0140 0x252c sppsvc - ok
11:35:17.0147 0x252c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:35:17.0175 0x252c sppuinotify - ok
11:35:17.0203 0x252c [ 13F0EB464D44CA0AE87CF16F72BD07AE, 99894854B1E9EA0E40D2204E5B2006039DEE30E5593290C8323D8340DFF7F8B2 ] SPUVCbv C:\Windows\system32\Drivers\SPUVCbv_x64.sys
11:35:17.0247 0x252c SPUVCbv - ok
11:35:17.0261 0x252c [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:35:17.0280 0x252c srv - ok
11:35:17.0290 0x252c [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:35:17.0306 0x252c srv2 - ok
11:35:17.0311 0x252c [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:35:17.0322 0x252c srvnet - ok
11:35:17.0329 0x252c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:35:17.0356 0x252c SSDPSRV - ok
11:35:17.0360 0x252c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:35:17.0388 0x252c SstpSvc - ok
11:35:17.0394 0x252c [ F38232291F05CE25BA1C47FB51EB64CB, 7F72E87D02F3072E0D61D528BEBB8F4BFB6AD67FC94A93745493C9A0907FF435 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
11:35:17.0406 0x252c ssudmdm - ok
11:35:17.0409 0x252c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:35:17.0416 0x252c stexstor - ok
11:35:17.0428 0x252c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
11:35:17.0452 0x252c stisvc - ok
11:35:17.0456 0x252c [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
11:35:17.0463 0x252c storflt - ok
11:35:17.0467 0x252c [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
11:35:17.0478 0x252c StorSvc - ok
11:35:17.0481 0x252c [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:35:17.0489 0x252c storvsc - ok
11:35:17.0493 0x252c [ 26B2BB5733F69B0A8306BAC37551F90A, 60F1A0C23727144B53F1C64348907AAD611F991C0A8C9F93AC8194210634420B ] SUService C:\Program Files (x86)\Lenovo\System Update\SUService.exe
11:35:17.0500 0x252c SUService - ok
11:35:17.0503 0x252c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:35:17.0512 0x252c swenum - ok
11:35:17.0523 0x252c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
11:35:17.0557 0x252c swprv - ok
11:35:17.0568 0x252c [ AFB9FC97DAC435B588EACD63C3174DAA, FDE397F1202E02B1911E3C4A851918AA73BF206A44939BA981F50BC116E0E35A ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:35:17.0583 0x252c SynTP - ok
11:35:17.0615 0x252c [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
11:35:17.0660 0x252c SysMain - ok
11:35:17.0667 0x252c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:35:17.0684 0x252c TabletInputService - ok
11:35:17.0689 0x252c [ F9BE29D5E097F03F81D3CD12B794CB66, 5EC208DEAF7C721F4C36512E7DAD4AC66578AB935B9502A5E1E213BC91BE508C ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
11:35:17.0699 0x252c tap0901 - ok
11:35:17.0708 0x252c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
11:35:17.0740 0x252c TapiSrv - ok
11:35:17.0776 0x252c [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:35:17.0822 0x252c Tcpip - ok
11:35:17.0860 0x252c [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:35:17.0901 0x252c TCPIP6 - ok
11:35:17.0911 0x252c [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:35:17.0925 0x252c tcpipreg - ok
11:35:17.0929 0x252c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:35:17.0944 0x252c TDPIPE - ok
11:35:17.0949 0x252c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:35:17.0960 0x252c TDTCP - ok
11:35:17.0965 0x252c [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:35:17.0978 0x252c tdx - ok
11:35:17.0983 0x252c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:35:17.0992 0x252c TermDD - ok
11:35:18.0008 0x252c [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
11:35:18.0034 0x252c TermService - ok
11:35:18.0040 0x252c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
11:35:18.0055 0x252c Themes - ok
11:35:18.0060 0x252c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
11:35:18.0088 0x252c THREADORDER - ok
11:35:18.0095 0x252c [ CCF673CD41815063EEC0DE517F5E1D27, D49B1465A51EF3C2229938752A785009E1ED8306A8DE399F63354379DB2F8BF9 ] TPHKLOAD C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
11:35:18.0105 0x252c TPHKLOAD - ok
11:35:18.0110 0x252c [ 7FF003567BE266566A2F13BE04F76714, 0E8525B6D54DAC39E72DE79006CA4E72A2BB41010DA486828882F9BC88B22234 ] TPHKSVC C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
11:35:18.0118 0x252c TPHKSVC - ok
11:35:18.0124 0x252c [ 48DDEF0B921DD331536CC82C1A8FF64F, 540107E278E4C7DE4F43D37F7EA7BC094B6755399C22EE3A68574AA8A7719ACC ] TPM C:\Windows\system32\drivers\tpm.sys
11:35:18.0133 0x252c TPM - ok
11:35:18.0137 0x252c [ 1B58B92F059C30F33A7B9DF7EC61F288, 0C0469784166F0433A178017BFB79831919372C5B5A7C948BAA8727F753FBF09 ] TPPWRIF C:\Windows\system32\drivers\Tppwr64v.sys
11:35:18.0144 0x252c TPPWRIF - ok
11:35:18.0149 0x252c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
11:35:18.0176 0x252c TrkWks - ok
11:35:18.0182 0x252c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:35:18.0208 0x252c TrustedInstaller - ok
11:35:18.0213 0x252c [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:35:18.0224 0x252c tssecsrv - ok
11:35:18.0229 0x252c [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:35:18.0240 0x252c TsUsbFlt - ok
11:35:18.0244 0x252c [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:35:18.0255 0x252c TsUsbGD - ok
11:35:18.0261 0x252c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:35:18.0285 0x252c tunnel - ok
11:35:18.0288 0x252c [ D4915DB03B19F9FD50EC084CC0ED15FC, 1CA899C0D48E69825DB27A4A52D8A3FEBA00A47C2D0E2FC0F5F358D15B7F3496 ] TVTI2C C:\Windows\system32\DRIVERS\Tvti2c.sys
11:35:18.0294 0x252c TVTI2C - ok
11:35:18.0298 0x252c [ 760B34088C2AD8D634CC3784EF3A2CA2, 20D23EDBDE7EBBA495C032097E7C5B1C6F94037971D9B2D6B98ABE11E7FF3643 ] tvtvcamd C:\Windows\system32\DRIVERS\tvtvcamd.sys
11:35:18.0305 0x252c tvtvcamd - ok
11:35:18.0309 0x252c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:35:18.0317 0x252c uagp35 - ok
11:35:18.0325 0x252c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:35:18.0353 0x252c udfs - ok
11:35:18.0359 0x252c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:35:18.0370 0x252c UI0Detect - ok
11:35:18.0373 0x252c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:35:18.0381 0x252c uliagpkx - ok
11:35:18.0385 0x252c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:35:18.0394 0x252c umbus - ok
11:35:18.0397 0x252c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:35:18.0407 0x252c UmPass - ok
11:35:18.0413 0x252c [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
11:35:18.0426 0x252c UmRdpService - ok
11:35:18.0434 0x252c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
11:35:18.0465 0x252c upnphost - ok
11:35:18.0469 0x252c [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
11:35:18.0481 0x252c usbccgp - ok
11:35:18.0486 0x252c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:35:18.0498 0x252c usbcir - ok
11:35:18.0505 0x252c [ 5F446E44B402B5FD12056EA57F929E42, 1EFE583AFBFD36E1CCD8F933A0476661BD213FA18FD4352066CA2F28C1D63C7E ] UsbClientService C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
11:35:18.0514 0x252c UsbClientService - detected UnsignedFile.Multi.Generic ( 1 )
11:35:20.0712 0x252c Detect skipped due to KSN trusted
11:35:20.0712 0x252c UsbClientService - ok
11:35:20.0717 0x252c [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:35:20.0729 0x252c usbehci - ok
11:35:20.0737 0x252c [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub C:\Windows\system32\drivers\usbhub.sys
11:35:20.0753 0x252c usbhub - ok
11:35:20.0756 0x252c [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:35:20.0765 0x252c usbohci - ok
11:35:20.0768 0x252c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:35:20.0779 0x252c usbprint - ok
11:35:20.0782 0x252c [ 2C42E595E7E381596B9A14F88F5AE027, 948C2AD7FA0B01184312D1ABE43F2F3D85A934CF0658A8B2BDF9F0919568377B ] usbrndis6 C:\Windows\system32\DRIVERS\usb80236.sys
11:35:20.0793 0x252c usbrndis6 - ok
11:35:20.0797 0x252c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:35:20.0808 0x252c usbscan - ok
11:35:20.0812 0x252c [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
11:35:20.0825 0x252c USBSTOR - ok
11:35:20.0829 0x252c [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:35:20.0838 0x252c usbuhci - ok
11:35:20.0845 0x252c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:35:20.0859 0x252c usbvideo - ok
11:35:20.0863 0x252c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
11:35:20.0888 0x252c UxSms - ok
11:35:20.0891 0x252c [ 1F9335A2C68B65E7D95985FA50968EA0, A0918C943F9CF5C6DB9440222B8E3B0DD645068B44E18253F275509550C0DF4D ] VaultSvc C:\Windows\system32\lsass.exe
11:35:20.0899 0x252c VaultSvc - ok
11:35:20.0903 0x252c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:35:20.0910 0x252c vdrvroot - ok
11:35:20.0922 0x252c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
11:35:20.0955 0x252c vds - ok
11:35:20.0958 0x252c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:35:20.0968 0x252c vga - ok
11:35:20.0972 0x252c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:35:20.0996 0x252c VgaSave - ok
11:35:21.0004 0x252c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
11:35:21.0015 0x252c vhdmp - ok
11:35:21.0018 0x252c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
11:35:21.0026 0x252c viaide - ok
11:35:21.0030 0x252c [ 49C122513203B98B0B2C10211F23450B, 98C281A5F9A68C0E9F766EE136B72605C8724BA521B6A28E9B7232FFDB1108B9 ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
11:35:21.0037 0x252c VIPAppService - ok
11:35:21.0044 0x252c [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:35:21.0054 0x252c vmbus - ok
11:35:21.0058 0x252c [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
11:35:21.0066 0x252c VMBusHID - ok
11:35:21.0070 0x252c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:35:21.0078 0x252c volmgr - ok
11:35:21.0088 0x252c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:35:21.0101 0x252c volmgrx - ok
11:35:21.0109 0x252c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:35:21.0121 0x252c volsnap - ok
11:35:21.0134 0x252c [ 8B02F857621B5482BB05DF9C2CB9AB87, 0BB91BF5D2E2C5FE62AB9FAC0BBE8FD88661983EE2D98235D93166E5B24248D0 ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
11:35:21.0150 0x252c vpnagent - ok
11:35:21.0154 0x252c [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva C:\Windows\system32\DRIVERS\vpnva64-6.sys
11:35:21.0161 0x252c vpnva - ok
11:35:21.0167 0x252c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:35:21.0176 0x252c vsmraid - ok
11:35:21.0205 0x252c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
11:35:21.0258 0x252c VSS - ok
11:35:21.0262 0x252c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:35:21.0273 0x252c vwifibus - ok
11:35:21.0276 0x252c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:35:21.0289 0x252c vwififlt - ok
11:35:21.0292 0x252c [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:35:21.0304 0x252c vwifimp - ok
11:35:21.0312 0x252c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
11:35:21.0344 0x252c W32Time - ok
11:35:21.0348 0x252c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:35:21.0357 0x252c WacomPen - ok
11:35:21.0360 0x252c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:35:21.0384 0x252c WANARP - ok
11:35:21.0387 0x252c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:35:21.0411 0x252c Wanarpv6 - ok
11:35:21.0435 0x252c [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:35:21.0466 0x252c WatAdminSvc - ok
11:35:21.0494 0x252c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
11:35:21.0588 0x252c wbengine - ok
11:35:21.0595 0x252c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:35:21.0612 0x252c WbioSrvc - ok
11:35:21.0621 0x252c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:35:21.0640 0x252c wcncsvc - ok
11:35:21.0643 0x252c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:35:21.0655 0x252c WcsPlugInService - ok
11:35:21.0658 0x252c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
11:35:21.0665 0x252c Wd - ok
11:35:21.0680 0x252c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:35:21.0702 0x252c Wdf01000 - ok
11:35:21.0707 0x252c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:35:21.0720 0x252c WdiServiceHost - ok
11:35:21.0724 0x252c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:35:21.0735 0x252c WdiSystemHost - ok
11:35:21.0742 0x252c [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
11:35:21.0757 0x252c WebClient - ok
11:35:21.0763 0x252c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:35:21.0792 0x252c Wecsvc - ok
11:35:21.0797 0x252c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:35:21.0824 0x252c wercplsupport - ok
11:35:21.0829 0x252c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
11:35:21.0856 0x252c WerSvc - ok
11:35:21.0859 0x252c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:35:21.0882 0x252c WfpLwf - ok
11:35:21.0885 0x252c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:35:21.0893 0x252c WIMMount - ok
11:35:21.0895 0x252c WinDefend - ok
11:35:21.0901 0x252c WinHttpAutoProxySvc - ok
11:35:21.0912 0x252c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:35:21.0941 0x252c Winmgmt - ok
11:35:21.0976 0x252c [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
11:35:22.0027 0x252c WinRM - ok
11:35:22.0034 0x252c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:35:22.0045 0x252c WinUsb - ok
11:35:22.0063 0x252c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:35:22.0091 0x252c Wlansvc - ok
11:35:22.0095 0x252c [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:35:22.0101 0x252c wlcrasvc - ok
11:35:22.0141 0x252c [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:35:22.0185 0x252c wlidsvc - ok
11:35:22.0203 0x252c [ 45AA83A1FA24D5A630254D3FCF9EFDE9, 7497C8477414A512E3438786B628E55ADCDF6DBEC85381CEF49C1394561D5DED ] WMCoreService C:\Program Files (x86)\Mobile Broadband drivers\WMCore\mini_WMCore.exe
11:35:22.0220 0x252c WMCoreService - ok
11:35:22.0223 0x252c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:35:22.0232 0x252c WmiAcpi - ok
11:35:22.0239 0x252c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:35:22.0252 0x252c wmiApSrv - ok
11:35:22.0254 0x252c WMPNetworkSvc - ok
11:35:22.0258 0x252c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:35:22.0270 0x252c WPCSvc - ok
11:35:22.0275 0x252c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:35:22.0292 0x252c WPDBusEnum - ok
11:35:22.0296 0x252c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:35:22.0320 0x252c ws2ifsl - ok
11:35:22.0324 0x252c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
11:35:22.0339 0x252c wscsvc - ok
11:35:22.0342 0x252c [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys
11:35:22.0353 0x252c WSDPrintDevice - ok
11:35:22.0356 0x252c [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys
11:35:22.0364 0x252c WSDScan - ok
11:35:22.0366 0x252c WSearch - ok
11:35:22.0414 0x252c [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv C:\Windows\system32\wuaueng.dll
11:35:22.0474 0x252c wuauserv - ok
11:35:22.0480 0x252c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:35:22.0491 0x252c WudfPf - ok
11:35:22.0497 0x252c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:35:22.0509 0x252c WUDFRd - ok
11:35:22.0513 0x252c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:35:22.0523 0x252c wudfsvc - ok
11:35:22.0529 0x252c [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
11:35:22.0544 0x252c WwanSvc - ok
11:35:22.0551 0x252c [ 47499F9665153749DB433C76790C3262, 39526C595B7EF05653FCDF12C2CBACD99471944174A7E72D4A3DDB115DE801A3 ] WwanUsbServ C:\Windows\system32\DRIVERS\WwanUsbMp64.sys
11:35:22.0562 0x252c WwanUsbServ - ok
11:35:22.0631 0x252c [ 75044F6FC44045047B15415B89E4D1B4, 43461141A326B99C218C3712725767C08825963EA9D430CBA03D4978E15EF23E ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
11:35:22.0699 0x252c ZeroConfigService - ok
11:35:22.0719 0x252c ================ Scan global ===============================
11:35:22.0722 0x252c [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
11:35:22.0728 0x252c [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
11:35:22.0737 0x252c [ 93E5D2B763374F484918A0909724B3EB, 900F1CCAEFCF77AB678C74D542ABDDA7134CD33D7811537E2829FC69E99F2B3E ] C:\Windows\system32\winsrv.dll
11:35:22.0743 0x252c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:35:22.0751 0x252c [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
11:35:22.0757 0x252c [ Global ] - ok
11:35:22.0758 0x252c ================ Scan MBR ==================================
11:35:22.0759 0x252c [ B78F010C2F6E54FC3F947B22CE0352FC ] \Device\Harddisk0\DR0
11:35:22.0890 0x252c \Device\Harddisk0\DR0 - ok
11:35:22.0890 0x252c ================ Scan VBR ==================================
11:35:22.0891 0x252c [ 001EEEC6A385F26084D41060D4596F89 ] \Device\Harddisk0\DR0\Partition1
11:35:22.0892 0x252c \Device\Harddisk0\DR0\Partition1 - ok
11:35:22.0894 0x252c [ CCAA2FAC2A5CA3B922360B270F04CF0E ] \Device\Harddisk0\DR0\Partition2
11:35:22.0895 0x252c \Device\Harddisk0\DR0\Partition2 - ok
11:35:22.0897 0x252c [ 2D6DF5AF477E641F37230E0CCA1835B7 ] \Device\Harddisk0\DR0\Partition3
11:35:22.0898 0x252c \Device\Harddisk0\DR0\Partition3 - ok
11:35:22.0898 0x252c ================ Scan generic autorun ======================
11:35:23.0124 0x252c [ 047D94A22B47AF83DDE4E32BB4E06D0A, CB9257995C67A1A44D6D316C36D3AAEF639BFD51A26C699D70FD047C45440CA5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
11:35:23.0348 0x252c RTHDVCPL - ok
11:35:23.0382 0x252c [ D8AB6AC4A2D30641C9544021373B47EB, A0553AFB3B186D8EA28CF056139FA5AA150D6BD31E36E5EB9D5DD5940A90CA55 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:35:23.0409 0x252c RtHDVBg_Dolby - ok
11:35:23.0410 0x252c SynTPEnh - ok
11:35:23.0416 0x252c [ 0FFB5B307B3CD92E6ED89D5B7BAC1C01, 4AA5124443BB4F28B856688788A4F341212B1C1E05E4716F82522454C73552A9 ] C:\Windows\system32\igfxtray.exe
11:35:23.0428 0x252c IgfxTray - ok
11:35:23.0436 0x252c [ 7BF9B8232D62635C22944C1BCD1C1378, A9AA1FA62BC05E766B17847FBC52A5B33C0A7874833B5E0AC323240EDFB7078B ] C:\Windows\system32\hkcmd.exe
11:35:23.0450 0x252c HotKeysCmds - ok
11:35:23.0460 0x252c [ 1BBD5272533630E6E2AE1DFF4A5EC2FF, 9522DC4A51659A6DDFF4629CB55AC56E58A024503FB8774900B412053C428EBA ] C:\Windows\system32\igfxpers.exe
11:35:23.0475 0x252c Persistence - ok
11:35:23.0482 0x252c [ 7515EC02E1F288107C95D5C195381235, E9D1C77FA69AA00EA8AC653D8F924BD2EC5BA599C946F543016749F448E87FC0 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
11:35:23.0493 0x252c USB3MON - ok
11:35:23.0497 0x252c [ 9CBEE48C8C5BB8BEED9F68D6FE66C3C5, CE52DC224F12FA71E399127590C9C417A7FC6D8E58B7D3FF0175DC4AAF52F3ED ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
11:35:23.0505 0x252c IMSS - ok
11:35:23.0511 0x252c [ 49CD8D25D932C5BF867EBFF00D432B75, D107F7736AC8D43CE93ABDE1A8038D8FE87779F25F41B3FD1E942DF439581236 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
11:35:23.0520 0x252c Intel AppUp(SM) center - ok
11:35:23.0595 0x252c [ B3E053ED10DD568A3B292241F1A74D32, 62606F78FF968D7DF3EF04CD146749B525AEC9C438E9A897DA48F05577659DB2 ] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe
11:35:23.0683 0x252c Lenovo Registration - ok
11:35:23.0693 0x252c [ 49CD8D25D932C5BF867EBFF00D432B75, D107F7736AC8D43CE93ABDE1A8038D8FE87779F25F41B3FD1E942DF439581236 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
11:35:23.0701 0x252c Lenovo App Shop - ok
11:35:23.0732 0x252c [ 040E1896190EA93D1B4DE31AC7B8F216, EA144E0ED16887498623BA67F7209FC1A58195B077A832250B27AF0C6B9D043D ] C:\Program Files (x86)\Integrated Camera\monitor.exe
11:35:23.0769 0x252c Integrated Camera_Monitor - detected UnsignedFile.Multi.Generic ( 1 )
11:35:25.0966 0x252c Detect skipped due to KSN trusted
11:35:25.0967 0x252c Integrated Camera_Monitor - ok
11:35:25.0979 0x252c [ EE864CD35936E4AAD8120321907DA8F5, D4A37E70302DF0A76E20F1AC1CD427A831BA80A8E1729E0E5637DC48E7A85DF3 ] C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
11:35:25.0993 0x252c Dolby Home Theater v4 - ok
11:35:25.0998 0x252c [ 2754C202DAD779D3AB4AC4DCFF2D0A96, FB818CC1D60DB0028C47075AB0E71A86AC6389BD0F8831E06150B4AC41D1E703 ] C:\Program Files (x86)\ABN AMRO e.dentifier2\wss\becwsupa.exe
11:35:26.0009 0x252c Becwsupa - ok
11:35:26.0010 0x252c PWMTRV - ok
11:35:26.0016 0x252c [ CD0362AEE36CFE1EF5DF973230742E67, 9F1D8AD4E09D16C39CD6A35CB298456468C1808226FFA8AD65BF9562A6ECC07D ] C:\Program Files (x86)\PDF24\pdf24.exe
11:35:26.0028 0x252c PDFPrint - ok
11:35:26.0039 0x252c [ 395CB6E8C67BFB1063AD86987909C184, 15F3BA6DF6D0C5C8FB9FF0AB661A5A652F26BAB7A0FB0DB47874069522400B16 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
11:35:26.0055 0x252c SunJavaUpdateSched - ok
11:35:26.0061 0x252c [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] C:\Users\*****\AppData\Local\Dropbox\Update\DropboxUpdate.exe
11:35:26.0071 0x252c Dropbox Update - ok
11:35:26.0097 0x252c [ BCAD71A4D347781B57D1392712008739, 557F8E3E2DFFAEE87FA20B2DA4CE62A43E5B130E123F184E15692E16EA709B56 ] C:\Users\*****\AppData\Roaming\Spotify\SpotifyWebHelper.exe
11:35:26.0127 0x252c Spotify Web Helper - ok
11:35:26.0142 0x252c [ FE9E6388A039441098EB09C070EA5049, 3888822AF992F3BE27E9F973E31EBEE5302901E4A8260A9A6CF6B2BB2A12D173 ] C:\Users\*****\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe
11:35:26.0160 0x252c Google Update - ok
11:35:26.0173 0x252c [ 6320CA4A7C486D412D01391E202745F6, D694D6A6C696AF16F14A000E0DD09D7BD6F177CEDAF6BD20012AEED4CB531EE4 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIHVE.EXE
11:35:26.0183 0x252c EPLTarget\P0000000000000001 - ok
11:35:26.0187 0x252c Waiting for KSN requests completion. In queue: 148
11:35:27.0187 0x252c Waiting for KSN requests completion. In queue: 148
11:35:28.0187 0x252c Waiting for KSN requests completion. In queue: 148
11:35:29.0195 0x252c AV detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\wmiav.exe ( 17.0.0.611 ), 0x41000 ( enabled : updated )
11:35:29.0196 0x252c FW detected via SS2: Kaspersky Internet Security, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\wmiav.exe ( 17.0.0.611 ), 0x41010 ( enabled )
11:35:31.0318 0x252c ============================================================
11:35:31.0318 0x252c Scan finished
11:35:31.0318 0x252c ============================================================
11:35:31.0322 0x20ac Detected object count: 0
11:35:31.0322 0x20ac Actual detected object count: 0
|
|
| Themen zu Ungewünschte Webseite öffnet sich |
| browser, combofix, defender, explorer, firefox, flash player, google, home, kaspersky, lavasofttcpservice64.dll, mozilla, openvpn, prozesse, realtek, registry, rundll, scan, security, services.exe, software, svchost.exe, symantec, system, temp, windows, winlogon.exe, öffnet |
Hybrid-Darstellung
