| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: supremo - ZugriffWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
17.06.2017, 20:15
| #1 |
| |  supremo - Zugriff Hallo liebes Forum, ich bin leider Opfer von diesen dubiosen Supremo-Anrufen geworden und würde gerne eure Hilfe in Anspruch nehmen. |
|
17.06.2017, 23:26
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | supremo - Zugriff Ach, durch den Anruf allein hast du bitte welchen Schaden? Oder ist das ein Geheimnis?
__________________Wir können diesen Thread auch in die Tonne schieben. Glaubst du echt, so sieht eine ernsthafte Anfrage aus?  
__________________ |
|
17.06.2017, 23:35
| #3 |
| | supremo - Zugriff Sorry, ich wollte hier niemanden verärgern!
__________________... aber ich dachte bei dieser "Standard-Abfrage" wissen die Experten bereits Bescheid, was passiert ist! - Anruf von "Microsoft-Support" erhalten - dummerweise "Remote-Zugriff" zugelassen und jetzt Angst, dass ich mir einen Trojaner eingefangen habe! ... keine Ahnung, was der Herr an der anderen Seite während des Gespräches über den Remote-Zugriff auf meinen Rechner alles so angestellt hat!? In den bereits bestehenden Threads wird immer von "Fabar" und "TDSSKiller" gesprochen. |
|
17.06.2017, 23:46
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | supremo - Zugriff Ist ja schon gut. Entschuldige bitte mein ruppiges Auftreten. Aber es wird immer schlimmer, hier werden Threads erstellt mit "geht nicht, hilfe bitte". Dass da ein paar Infos rüberkommen müssen ist ja wohl klar oder nicht Was hast du schon an Logs? Hat dein AV angeschlagen? Wenn ja posten was gefunden wurde. Keine neuen Logs erstellen. Ab jetzt hab ich dich in der Hand! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
18.06.2017, 00:02
| #5 |
| | supremo - Zugriff Super, danke für die schnelle Rückantwort. Wenn du mit AV = mein Virenschutz meinst (bin nicht so der Experte), der ist von McAfee, den habe ich schon laufen lassen hat aber nix gemeldet Hier die Logs von Fabar: FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016
durchgeführt von svenw (Administrator) auf DESKTOP-NADGJNF (17-06-2017 22:25:18)
Gestartet von C:\Users\svenw\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Geladene Profile: svenw (Verfügbare Profile: svenw)
Platform: Windows 10 Pro Version 1703 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Edge)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Byte Technologies LLC) C:\Program Files\ByteFence\ByteFenceService.exe
(FUJITSU LIMITED) C:\Program Files\FUJITSU\FUJ02E3\FUJ02E3.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(FUJITSU LIMITED) C:\Program Files\FUJITSU\StatusPanelSwitch\StatusPanelSwitchDaemon.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Fujitsu America, Inc.) C:\Program Files\FUJITSU\Utils\Config\run\Service.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(FUJITSU LIMITED) C:\Program Files\FUJITSU\Plugfree NETWORK\PFNService.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(Sierra Wireless, Inc.) C:\Program Files (x86)\Sierra Wireless Inc\Utils\SwiService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
konnte nicht auf den Prozess zugreifen -> Memory Compression
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\VSCore_15_6\mcapexe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\McCSPServiceHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\CommonBuild\McCBEntAndInstru.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(FUJITSU LIMITED) C:\Program Files\FUJITSU\StatusPanelSwitch\DeviceEngine\TouchBlockCtrl.exe
(FUJITSU LIMITED) C:\Program Files\FUJITSU\StatusPanelSwitch\DeviceEngine\SuperClearCtrl.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp.) C:\Windows\RtsCM64.exe
(Fujitsu America, Inc.) C:\Program Files\FUJITSU\Utils\FjDspMon.exe
(Fujitsu America, Inc.) C:\Program Files\FUJITSU\Utils\FjEvents.exe
(Fujitsu America, Inc.) C:\Program Files\FUJITSU\Utils\FjCdlMon.exe
(Fujitsu Technology Solutions) C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Byte Technologies LLC) C:\Program Files\ByteFence\ByteFence.exe
(FUJITSU LIMITED) C:\Program Files\FUJITSU\Plugfree NETWORK\PFNetDm.exe
(FUJITSU LIMITED) C:\Program Files\FUJITSU\Plugfree NETWORK\PFNTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
() C:\Program Files\ByteFence\rsLggr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8241.40785.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8241.40785.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Intel Security) C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.410_none_9e914f9d2d85dacb\TiWorker.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-09-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1409264 2015-09-28] (Realtek Semiconductor)
HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [216832 2015-11-23] (Realtek Semiconductor Corp.)
HKLM\...\Run: [FjStrtAp] => C:\Program Files\Fujitsu\Utils\FjStrtAp.exe [21304 2015-10-05] (Fujitsu America, Inc.)
HKLM\...\Run: [RTKUGUI] => "C:\WINDOWS\system32\RtkUGui64.exe" -s
HKLM-x32\...\Run: [DeskUpdateNotifier] => C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe [101144 2015-06-15] (Fujitsu Technology Solutions)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178400 2015-09-19] (Intel Corporation)
HKLM-x32\...\Run: [YouCam Service6] => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [515512 2015-08-04] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <======= ACHTUNG
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{26289498-c4d6-4bed-b16c-e18bd3e33f18}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{8685c6b0-df3c-42d9-b8d7-b2b71f336a96}: [DhcpNameServer] 10.172.74.8 10.172.74.9
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_08_ssg01¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dde%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0EtDtCzzyByB0C0Azz0C0ByCzz0DtBtDtN0D0Tzu0StCzzzztDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StC0BtBzztByB0AyDtGyBtDtCyEtG0EyD0FyBtGyEtB0E0BtG0A0FyByDtDtD0CtAyEyDyE0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EyC0FyCtD0AtC0BtGzytB0AtAtGyEyCzyyCtGzztBtB0EtGzztCyEyBzz0AyDtBtAtC0DyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtBtCtCtD%26cr%3D1581784143%26a%3Dwbf_secureddownload_17_08_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro
HKU\S-1-5-21-4103530663-3136467449-307975966-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4103530663-3136467449-307975966-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://fujitsu15.msn.com/?pc=FSTE
SearchScopes: HKLM -> DefaultScope {B8015D2C-3FB3-4A85-8BC4-7F6CE38D53F0} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_08_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0EtDtCzzyByB0C0Azz0C0ByCzz0DtBtDtN0D0Tzu0StCzzzztDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StC0BtBzztByB0AyDtGyBtDtCyEtG0EyD0FyBtGyEtB0E0BtG0A0FyByDtDtD0CtAyEyDyE0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EyC0FyCtD0AtC0BtGzytB0AtAtGyEyCzyyCtGzztBtB0EtGzztCyEyBzz0AyDtBtAtC0DyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtBtCtCtD%26cr%3D1581784143%26a%3Dwbf_secureddownload_17_08_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms}
SearchScopes: HKLM -> {B8015D2C-3FB3-4A85-8BC4-7F6CE38D53F0} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_08_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0EtDtCzzyByB0C0Azz0C0ByCzz0DtBtDtN0D0Tzu0StCzzzztDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StC0BtBzztByB0AyDtGyBtDtCyEtG0EyD0FyBtGyEtB0E0BtG0A0FyByDtDtD0CtAyEyDyE0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EyC0FyCtD0AtC0BtGzytB0AtAtGyEyCzyyCtGzztBtB0EtGzztCyEyBzz0AyDtBtAtC0DyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtBtCtCtD%26cr%3D1581784143%26a%3Dwbf_secureddownload_17_08_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {B8015D2C-3FB3-4A85-8BC4-7F6CE38D53F0} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_08_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0EtDtCzzyByB0C0Azz0C0ByCzz0DtBtDtN0D0Tzu0StCzzzztDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StC0BtBzztByB0AyDtGyBtDtCyEtG0EyD0FyBtGyEtB0E0BtG0A0FyByDtDtD0CtAyEyDyE0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EyC0FyCtD0AtC0BtGzytB0AtAtGyEyCzyyCtGzztBtB0EtGzztCyEyBzz0AyDtBtAtC0DyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtBtCtCtD%26cr%3D1581784143%26a%3Dwbf_secureddownload_17_08_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms}
SearchScopes: HKLM-x32 -> {B8015D2C-3FB3-4A85-8BC4-7F6CE38D53F0} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_08_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0EtDtCzzyByB0C0Azz0C0ByCzz0DtBtDtN0D0Tzu0StCzzzztDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StC0BtBzztByB0AyDtGyBtDtCyEtG0EyD0FyBtGyEtB0E0BtG0A0FyByDtDtD0CtAyEyDyE0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EyC0FyCtD0AtC0BtGzytB0AtAtGyEyCzyyCtGzztBtB0EtGzztCyEyBzz0AyDtBtAtC0DyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtBtCtCtD%26cr%3D1581784143%26a%3Dwbf_secureddownload_17_08_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4103530663-3136467449-307975966-1001 -> {0CE02FFA-A6B0-46F6-BA2F-BD32C3630126} URL = hxxps://de.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_08_ssg01¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3Dwinyahoo%26cd%3D2XzuyEtN2Y1L1Qzu0EtDtCzzyByB0C0Azz0C0ByCzz0DtBtDtN0D0Tzu0StCzzzztDtN1L2XzutAtFtByCtFtBtFyDtDtN1L1Czu1ByCtN1L1G1B1V1N2Y1L1Qzu2StC0BtBzztByB0AyDtGyBtDtCyEtG0EyD0FyBtGyEtB0E0BtG0A0FyByDtDtD0CtAyEyDyE0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0EyC0FyCtD0AtC0BtGzytB0AtAtGyEyCzyyCtGzztBtB0EtGzztCyEyBzz0AyDtBtAtC0DyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCtBtCtCtD%26cr%3D1581784143%26a%3Dwbf_secureddownload_17_08_ssg01%26os_ver%3D10.0%26os%3DWindows%2B10%2BPro&p={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-28] (Microsoft Corporation)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-05-16] (McAfee, Inc.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-28] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-04-03] (Oracle Corporation)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-05-16] (McAfee, Inc.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-28] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-04-03] (Oracle Corporation)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-05-16] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-05-16] (McAfee, Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-28] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-05-16] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-05-16] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\MSC\McSnIePl64.dll [2017-04-17] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2017-04-17] (McAfee, Inc.)
FireFox:
========
FF ProfilePath: C:\Users\svenw\AppData\Roaming\Mozilla\Firefox\Profiles\k7t6rsq9.default
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-04-17] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-04-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-04-03] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-04-17] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-28] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-28] (Microsoft Corporation)
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-04-18]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2017-06-09] [ist nicht signiert]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AppVClient; C:\Windows\system32\AppVClient.exe [846752 2017-06-03] (Microsoft Corporation)
R2 ByteFenceService; C:\Program Files\ByteFence\ByteFenceService.exe [145888 2017-04-19] (Byte Technologies LLC)
S2 CDPUserSvc; C:\Windows\System32\CDPUserSvc.dll [524288 2017-03-18] (Microsoft Corporation)
R2 CDPUserSvc_3a7b51b; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation)
R2 CDPUserSvc_3a7b51b; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3971264 2017-05-14] (Microsoft Corporation)
R3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1752992 2017-03-29] (Intel Security)
R3 cphs; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\IntelCpHeciSvc.exe [301528 2017-02-08] (Intel Corporation)
S3 cplspcon; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\IntelCpHDCPSvc.exe [480224 2017-02-08] (Intel Corporation)
S3 DevicesFlowUserSvc; C:\Windows\System32\DevicesFlowBroker.dll [689152 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_3a7b51b; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_3a7b51b; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
R2 DusmSvc; C:\Windows\System32\dusmsvc.dll [302592 2017-03-18] (Microsoft Corporation)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1392792 2015-09-17] (Intel Corporation)
R2 FJStatusPanelSwitchDaemon; C:\Program Files\Fujitsu\StatusPanelSwitch\StatusPanelSwitchDaemon.exe [430240 2015-10-23] (FUJITSU LIMITED)
R2 FjStaUpd; C:\Program Files\Fujitsu\Utils\Config\Run\Service.exe [109056 2015-10-13] (Fujitsu America, Inc.) [Datei ist nicht signiert]
S3 FrameServer; C:\Windows\system32\FrameServer.dll [599552 2017-03-18] (Microsoft Corporation)
R2 FUJ02E3Service; C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe [63648 2015-07-02] (FUJITSU LIMITED)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
S3 HvHost; C:\Windows\System32\hvhostsvc.dll [59800 2017-03-18] (Microsoft Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\igfxCUIService.exe [341976 2017-02-08] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-24] (Intel Corporation)
S3 IpxlatCfgSvc; C:\Windows\System32\IpxlatCfg.dll [64000 2017-03-18] (Microsoft Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-09-19] (Intel Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [188256 2017-05-16] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe [994312 2017-04-04] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\\McCSPServiceHost.exe [2054080 2017-02-28] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [1344472 2017-02-24] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [241040 2017-01-18] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [385112 2017-01-18] (McAfee, Inc.)
R3 mfevtp; C:\WINDOWS\system32\mfevtps.exe [343792 2017-01-18] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1551512 2017-02-26] (McAfee, Inc.)
R3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [641520 2017-02-22] (McAfee, Inc.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
S3 NaturalAuthentication; C:\Windows\System32\NaturalAuth.dll [723968 2017-03-18] (Microsoft Corporation)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1105840 2017-04-21] (Intel Security, Inc.)
R2 PFNService; C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe [2220032 2015-07-28] (FUJITSU LIMITED) [Datei ist nicht signiert]
R3 RmSvc; C:\Windows\System32\RMapi.dll [152576 2017-03-18] (Microsoft Corporation)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [304456 2017-02-26] ()
R2 SecurityHealthService; C:\Windows\system32\SecurityHealthService.exe [335808 2017-06-09] (Microsoft Corporation)
S3 SEMgrSvc; C:\Windows\system32\SEMgrSvc.dll [1191424 2017-03-18] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation)
S4 shpamsvc; C:\Windows\system32\Windows.SharedPC.AccountManager.dll [192512 2017-06-09] (Microsoft Corporation)
S3 spectrum; C:\Windows\system32\spectrum.exe [891904 2017-03-18] (Microsoft Corporation)
R2 SwiService; C:\Program Files (x86)\Sierra Wireless Inc\Utils\SWIService.exe [801544 2015-07-31] (Sierra Wireless, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [256120 2016-08-24] (Synaptics Incorporated)
R3 TimeBrokerSvc; C:\Windows\System32\TimeBrokerServer.dll [165888 2017-03-18] (Microsoft Corporation)
R3 TokenBroker; C:\Windows\System32\TokenBroker.dll [1054208 2017-06-09] (Microsoft Corporation)
R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [799232 2017-06-09] (Microsoft Corporation)
S4 UevAgentService; C:\Windows\system32\AgentService.exe [1200640 2017-03-20] (Microsoft Corporation)
S3 vmicrdv; C:\Windows\System32\icsvcext.dll [307712 2017-03-18] (Microsoft Corporation)
S3 vmicvss; C:\Windows\System32\icsvcext.dll [307712 2017-03-18] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\Windows\System32\wfdsconmgrsvc.dll [555008 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation)
S3 wisvc; C:\Windows\system32\flightsettings.dll [699904 2017-03-18] (Microsoft Corporation)
R3 wlpasvc; C:\Windows\System32\lpasvc.dll [1295360 2017-03-18] (Microsoft Corporation)
S2 WpnUserService; C:\Windows\System32\WpnUserService.dll [72704 2017-03-18] (Microsoft Corporation)
R2 WpnUserService_3a7b51b; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation)
R2 WpnUserService_3a7b51b; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
S3 xbgm; C:\Windows\System32\xbgmsvc.dll [301216 2017-03-18] (Microsoft Corporation)
S3 XboxGipSvc; C:\Windows\System32\XboxGipSvc.dll [18944 2017-03-18] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AcpiDev; C:\Windows\System32\drivers\AcpiDev.sys [20480 2017-03-18] (Microsoft Corporation)
S3 applockerfltr; C:\Windows\System32\drivers\applockerfltr.sys [17920 2017-03-18] (Microsoft Corporation)
S3 AppvStrm; C:\Windows\system32\drivers\AppvStrm.sys [127904 2017-03-20] (Microsoft Corporation)
S3 AppvVemgr; C:\Windows\system32\drivers\AppvVemgr.sys [161696 2017-03-20] (Microsoft Corporation)
S3 AppvVfs; C:\Windows\system32\drivers\AppvVfs.sys [143776 2017-03-20] (Microsoft Corporation)
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [533920 2017-03-18] (QLogic Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [96768 2017-03-18] (Microsoft Corporation)
R3 CAD; C:\Windows\System32\drivers\CAD.sys [53664 2017-03-18] (Microsoft Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [88464 2017-04-03] (McAfee, Inc.)
S3 cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [347032 2017-03-18] (Chelsio Communications)
S3 cht4vbd; C:\Windows\System32\drivers\cht4vx64.sys [2104224 2017-03-18] (Chelsio Communications)
S2 CldFlt; C:\Windows\System32\drivers\cldflt.sys [12288 2017-03-18] (Microsoft Corporation)
R2 clreg; C:\Windows\System32\drivers\registry.sys [14336 2017-03-18] (Microsoft Corporation)
R3 clwvd6; C:\Windows\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [57304 2015-09-17] (Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [52200 2015-09-17] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [260072 2015-09-17] (Intel Corporation)
R2 FBIOSDRV; C:\Windows\System32\Drivers\FBIOSDRV.sys [46200 2016-01-15] (FUJITSU LIMITED)
R3 FUJ02E3; C:\Windows\System32\drivers\FUJ02E3.sys [29904 2015-07-07] (FUJITSU LIMITED)
R3 HID_PCI; C:\Windows\System32\drivers\HID_PCI.sys [47928 2015-11-04] (Intel)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [225432 2017-04-01] (McAfee, Inc.)
S3 hvservice; C:\Windows\System32\drivers\hvservice.sys [74648 2017-03-18] (Microsoft Corporation)
S3 iagpio; C:\Windows\System32\drivers\iagpio.sys [33280 2017-03-18] (Intel(R) Corporation)
R3 iaLPSS2i_GPIO2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [70656 2017-03-18] (Intel Corporation)
S3 iaLPSS2i_GPIO2_BXT_P; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504 2017-03-18] (Intel Corporation)
S3 iaLPSS2i_I2C_BXT_P; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448 2017-03-18] (Intel Corporation)
S3 iaLPSS2_I2C; C:\Windows\System32\drivers\iaLPSS2_I2C.sys [185128 2015-07-20] (Intel Corporation)
R3 iaLPSS2_UART2; C:\Windows\System32\drivers\iaLPSS2_UART2.sys [281896 2015-07-20] (Intel Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [732416 2016-10-15] (Intel Corporation)
R3 igfx; C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\igdkmd64.sys [11027928 2017-02-08] (Intel Corporation)
S3 IndirectKmd; C:\Windows\System32\drivers\IndirectKmd.sys [36864 2017-03-18] (Microsoft Corporation)
R0 iorate; C:\Windows\System32\drivers\iorate.sys [49568 2017-03-18] (Microsoft Corporation)
R3 ISH; C:\Windows\System32\drivers\ISH.sys [135992 2015-11-04] (Intel)
R3 ISH_BusDriver; C:\Windows\System32\drivers\ISH_BusDriver.sys [71992 2015-11-09] (Intel)
S3 mausbhost; C:\Windows\System32\drivers\mausbhost.sys [405408 2017-03-18] (Microsoft Corporation)
S3 mausbip; C:\Windows\System32\drivers\mausbip.sys [51104 2017-03-18] (Microsoft Corporation)
S0 megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [64416 2017-03-18] (Avago Technologies)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [185088 2015-08-31] (Intel Corporation)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [487184 2017-04-03] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [366328 2017-04-03] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [85048 2017-04-03] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [518696 2017-04-03] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [923640 2017-04-03] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [498648 2017-03-31] (McAfee, Inc.)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [109320 2017-03-31] (McAfee, Inc.)
R3 mfeplk; C:\Windows\System32\drivers\mfeplk.sys [110248 2017-04-03] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [254800 2017-04-03] (McAfee, Inc.)
S3 MsSecFlt; C:\Windows\System32\drivers\mssecflt.sys [230816 2017-03-20] (Microsoft Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [122368 2017-03-18] (Microsoft Corporation)
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [7218176 2017-03-18] (Intel Corporation)
S3 nvdimmn; C:\Windows\System32\drivers\nvdimmn.sys [80896 2017-03-18] (Microsoft Corporation)
S0 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58784 2017-03-18] (Avago Technologies)
S3 pmem; C:\Windows\System32\drivers\pmem.sys [101376 2017-03-18] (Microsoft Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [3090176 2015-11-23] (Realtek Semiconductor Corp.)
S0 scmbus; C:\Windows\System32\drivers\scmbus.sys [91040 2017-03-18] (Microsoft Corporation)
S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 SpatialGraphFilter; C:\Windows\System32\drivers\SpatialGraphFilter.sys [40352 2017-03-20] (Microsoft Corporation)
S3 swg3kser00; C:\Windows\system32\DRIVERS\swg3kser00.sys [294168 2015-07-31] (Sierra Wireless Incorporated)
S3 swg3kser03; C:\Windows\System32\drivers\swg3kser03.sys [294168 2015-07-31] (Sierra Wireless Incorporated)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [66168 2016-08-24] (Synaptics Incorporated)
S3 UcmTcpciCx0101; C:\Windows\System32\Drivers\UcmTcpciCx.sys [179200 2017-03-18] (Microsoft Corporation)
S4 UevAgentDriver; C:\Windows\system32\drivers\UevAgentDriver.sys [40344 2017-03-20] (Microsoft Corporation)
S3 vmgid; C:\Windows\System32\drivers\vmgid.sys [10240 2017-03-18] (Microsoft Corporation)
R0 volume; C:\Windows\System32\drivers\volume.sys [16288 2017-03-18] (Microsoft Corporation)
R2 wcifs; C:\Windows\system32\drivers\wcifs.sys [142240 2017-06-09] (Microsoft Corporation)
S3 wcnfs; C:\Windows\system32\drivers\wcnfs.sys [72192 2017-03-18] (Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
S3 WinNat; C:\Windows\System32\drivers\winnat.sys [217088 2017-03-18] (Microsoft Corporation)
R3 wmbclass; C:\Windows\System32\drivers\wmbclass.sys [327168 2017-06-09] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
NETSVC: shpamsvc -> C:\Windows\system32\Windows.SharedPC.AccountManager.dll (Microsoft Corporation)
NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: wisvc -> C:\Windows\system32\flightsettings.dll (Microsoft Corporation)
NETSVC: WpnService -> C:\Windows\system32\WpnService.dll (Microsoft Corporation)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVCx32: TokenBroker -> C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-06-17 22:25 - 2017-06-17 22:25 - 00000000 ____D C:\FRST
2017-06-17 22:23 - 2017-06-17 22:23 - 00000000 ___HD C:\OneDriveTemp
2017-06-17 10:43 - 2017-06-17 10:47 - 00000000 ____D C:\ProgramData\SupremoRemoteDesktop
2017-06-14 07:56 - 2017-06-03 08:32 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-14 07:56 - 2017-06-03 08:32 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-13 22:41 - 2017-06-17 20:15 - 00004034 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2017-06-13 22:41 - 2017-06-16 16:24 - 00004222 _____ C:\WINDOWS\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2017-06-13 22:23 - 2017-06-03 12:15 - 01596600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-13 22:23 - 2017-06-03 12:15 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-13 22:23 - 2017-06-03 12:15 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-13 22:23 - 2017-06-03 12:14 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-06-13 22:23 - 2017-06-03 12:14 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-06-13 22:23 - 2017-06-03 12:10 - 00130464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-13 22:23 - 2017-06-03 12:09 - 08318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-13 22:23 - 2017-06-03 12:09 - 01003624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-06-13 22:23 - 2017-06-03 12:08 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-13 22:23 - 2017-06-03 12:07 - 00923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-13 22:23 - 2017-06-03 12:07 - 00119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-13 22:23 - 2017-06-03 12:02 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-13 22:23 - 2017-06-03 12:01 - 05477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-06-13 22:23 - 2017-06-03 12:00 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-06-13 22:23 - 2017-06-03 12:00 - 00321376 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
2017-06-13 22:23 - 2017-06-03 12:00 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2017-06-13 22:23 - 2017-06-03 11:59 - 01409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-06-13 22:23 - 2017-06-03 11:59 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-06-13 22:23 - 2017-06-03 11:59 - 00311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2017-06-13 22:23 - 2017-06-03 11:59 - 00259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-06-13 22:23 - 2017-06-03 11:58 - 21352696 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-13 22:23 - 2017-06-03 11:58 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-06-13 22:23 - 2017-06-03 11:58 - 00660384 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2017-06-13 22:23 - 2017-06-03 11:58 - 00254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-06-13 22:23 - 2017-06-03 11:57 - 00371616 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 02228120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 01854880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 01693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 01458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 00848288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 00846752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-06-13 22:23 - 2017-06-03 11:56 - 00844696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 00697760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 00672672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-06-13 22:23 - 2017-06-03 11:56 - 00399264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-06-13 22:23 - 2017-06-03 11:55 - 02681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-06-13 22:23 - 2017-06-03 11:36 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2017-06-13 22:23 - 2017-06-03 11:35 - 02259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-06-13 22:23 - 2017-06-03 11:28 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-13 22:23 - 2017-06-03 11:26 - 00266640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll
2017-06-13 22:23 - 2017-06-03 11:23 - 20373920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-06-13 22:23 - 2017-06-03 11:23 - 06760024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-06-13 22:23 - 2017-06-03 11:23 - 00573856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2017-06-13 22:23 - 2017-06-03 11:21 - 01516448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2017-06-13 22:23 - 2017-06-03 11:20 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-06-13 22:23 - 2017-06-03 11:14 - 03673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-13 22:23 - 2017-06-03 11:14 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2017-06-13 22:23 - 2017-06-03 11:14 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-06-13 22:23 - 2017-06-03 11:14 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-06-13 22:23 - 2017-06-03 11:14 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-13 22:23 - 2017-06-03 11:12 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-13 22:23 - 2017-06-03 11:11 - 02958848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-06-13 22:23 - 2017-06-03 11:11 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-06-13 22:23 - 2017-06-03 11:11 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-13 22:23 - 2017-06-03 11:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2017-06-13 22:23 - 2017-06-03 11:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-13 22:23 - 2017-06-03 11:11 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-13 22:23 - 2017-06-03 11:10 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-06-13 22:23 - 2017-06-03 11:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-13 22:23 - 2017-06-03 11:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe
2017-06-13 22:23 - 2017-06-03 11:09 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-06-13 22:23 - 2017-06-03 11:09 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll
2017-06-13 22:23 - 2017-06-03 11:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-06-13 22:23 - 2017-06-03 11:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-06-13 22:23 - 2017-06-03 11:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-13 22:23 - 2017-06-03 11:07 - 00778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-06-13 22:23 - 2017-06-03 11:07 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-13 22:23 - 2017-06-03 11:07 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-06-13 22:23 - 2017-06-03 11:07 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-06-13 22:23 - 2017-06-03 11:06 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-06-13 22:23 - 2017-06-03 11:05 - 20506624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-06-13 22:23 - 2017-06-03 11:05 - 07336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-13 22:23 - 2017-06-03 11:05 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-06-13 22:23 - 2017-06-03 11:05 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2017-06-13 22:23 - 2017-06-03 11:05 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devicengccredprov.dll
2017-06-13 22:23 - 2017-06-03 11:04 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-13 22:23 - 2017-06-03 11:04 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-06-13 22:23 - 2017-06-03 11:04 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-13 22:23 - 2017-06-03 11:03 - 19336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-06-13 22:23 - 2017-06-03 11:03 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-06-13 22:23 - 2017-06-03 11:03 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-06-13 22:23 - 2017-06-03 11:02 - 08245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-13 22:23 - 2017-06-03 11:01 - 06726656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-06-13 22:23 - 2017-06-03 11:01 - 02804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-13 22:23 - 2017-06-03 11:00 - 03379200 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-06-13 22:23 - 2017-06-03 11:00 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-13 22:23 - 2017-06-03 11:00 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-06-13 22:23 - 2017-06-03 10:59 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-13 22:23 - 2017-06-03 10:59 - 02672128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-06-13 22:23 - 2017-06-03 10:59 - 02625024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-13 22:23 - 2017-06-03 10:59 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-06-13 22:23 - 2017-06-03 10:59 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-13 22:23 - 2017-06-03 10:59 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-13 22:23 - 2017-06-03 10:59 - 01142784 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-13 22:23 - 2017-06-03 10:59 - 00975360 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-13 22:23 - 2017-06-03 10:59 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-06-13 22:23 - 2017-06-03 10:58 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-06-13 22:23 - 2017-06-03 10:58 - 02650112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-06-13 22:23 - 2017-06-03 10:58 - 02516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-06-13 22:23 - 2017-06-03 10:58 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-13 22:23 - 2017-06-03 10:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-06-13 22:23 - 2017-06-03 10:58 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-13 22:23 - 2017-06-03 10:57 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-06-13 22:23 - 2017-06-03 10:57 - 06535168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2017-06-13 22:23 - 2017-06-03 10:57 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-06-13 22:23 - 2017-06-03 10:57 - 02829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-13 22:23 - 2017-06-03 10:57 - 01675264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-06-13 22:23 - 2017-06-03 10:57 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-06-13 22:23 - 2017-06-03 10:57 - 00797184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2017-06-13 22:23 - 2017-06-03 10:56 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-06-13 22:23 - 2017-06-03 10:55 - 03656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-06-13 22:23 - 2017-06-03 10:55 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-06-13 22:23 - 2017-06-03 10:55 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-06-13 22:23 - 2017-06-03 10:54 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2017-06-13 22:23 - 2017-06-03 10:54 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2017-06-13 22:23 - 2017-06-03 10:54 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe
2017-06-13 22:23 - 2017-06-03 10:53 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-06-13 22:23 - 2017-06-03 10:51 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2017-06-09 19:34 - 2017-06-09 19:34 - 00000000 ____D C:\Users\svenw\AppData\Local\DBG
2017-06-09 15:33 - 2017-06-09 15:33 - 00002121 _____ C:\Users\Public\Desktop\McAfee LiveSafe.lnk
2017-06-09 15:33 - 2017-06-09 15:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2017-06-09 15:32 - 2017-04-01 01:14 - 00225432 _____ (McAfee, Inc.) C:\WINDOWS\system32\Drivers\HipShieldK.sys
2017-06-09 15:30 - 2017-06-09 15:30 - 00003142 _____ C:\WINDOWS\System32\Tasks\McAfeeLogon
2017-06-09 15:30 - 2017-06-09 15:30 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2017-06-09 15:30 - 2017-06-09 15:30 - 00000000 ____D C:\ProgramData\Intel Security
2017-06-09 15:28 - 2017-06-09 15:28 - 00000000 ____D C:\Program Files\McAfee.com
2017-06-09 15:28 - 2017-06-09 15:28 - 00000000 ____D C:\Program Files\Common Files\Intel Security
2017-06-09 15:27 - 2017-06-09 15:27 - 00000000 ____D C:\Program Files\Common Files\AV
2017-06-09 15:04 - 2017-06-09 15:32 - 00000000 ____D C:\Program Files\Common Files\McAfee
2017-06-09 15:04 - 2017-01-18 12:56 - 00343792 _____ (McAfee, Inc.) C:\WINDOWS\system32\mfevtps.exe
2017-06-09 14:52 - 2017-06-09 14:52 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-06-09 14:50 - 2017-06-09 14:50 - 00000020 ___SH C:\Users\svenw\ntuser.ini
2017-06-09 04:02 - 2017-06-09 04:02 - 00000000 ____D C:\Windows.old
2017-06-09 04:01 - 2017-06-09 04:01 - 17365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 13840384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 06551856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 05821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 05802968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04847928 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 04709528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04537344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 04446208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 03135488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 03116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02635336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02604256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02443776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02347520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02158544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-06-09 04:01 - 2017-06-09 04:01 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-06-09 04:01 - 2017-06-09 04:01 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01911752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01852776 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01803264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01700408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01628160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01600512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01557288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01459728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01450496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01433600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01325456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01320352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01295872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01269760 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01242624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01219560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01120864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmgaserver.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00754080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00741784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaserver.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00730016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00722944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00716440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00712608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00708712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00673112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00667040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00651680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00599576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00559000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-06-09 04:01 - 2017-06-09 04:01 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00523296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-06-09 04:01 - 2017-06-09 04:01 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00406064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-06-09 04:01 - 2017-06-09 04:01 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00370928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00363424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00335808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wmbclass.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.ps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00211872 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00188824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00181664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00112544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00105456 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00095584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00086016 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-06-09 04:01 - 2017-06-09 04:01 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2017-06-09 04:01 - 2017-06-09 04:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00059904 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-06-09 04:01 - 2017-06-09 04:01 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
2017-06-09 04:01 - 2017-06-09 04:01 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-06-09 04:01 - 2017-06-09 04:01 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-06-09 04:01 - 2017-06-09 04:01 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-06-09 03:58 - 2017-06-09 03:58 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-06-09 03:58 - 2017-06-09 03:04 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-06-09 03:57 - 2017-06-09 03:57 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-06-09 03:57 - 2017-06-09 03:57 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-06-09 03:57 - 2017-06-09 03:57 - 00000000 ____D C:\Program Files\MSBuild
2017-06-09 03:57 - 2017-06-09 03:57 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-06-09 03:57 - 2017-06-09 03:57 - 00000000 ____D C:\Program Files (x86)\MSBuild
2017-06-09 03:57 - 2017-06-09 03:06 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2017-06-09 03:57 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-06-09 03:57 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-06-09 03:57 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-06-09 03:57 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-06-09 03:57 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-06-09 03:57 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-06-09 03:13 - 2017-06-14 07:59 - 01958306 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-09 03:13 - 2017-06-09 03:13 - 00000000 ____D C:\ProgramData\USOShared
2017-06-09 03:11 - 2017-06-09 03:12 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2017-06-09 03:11 - 2017-06-09 03:12 - 00007623 _____ C:\WINDOWS\diagerr.xml
2017-06-09 03:10 - 2017-06-17 22:23 - 00004170 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{005E0491-E2DA-4B9D-B47A-B3BBE4FF79A4}
2017-06-09 03:10 - 2017-06-14 07:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-09 03:10 - 2017-06-09 14:52 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-09 03:10 - 2017-06-09 03:10 - 00003758 _____ C:\WINDOWS\System32\Tasks\Secured Yahoo Powered firor
2017-06-09 03:10 - 2017-06-09 03:10 - 00003042 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2017-06-09 03:10 - 2017-06-09 03:10 - 00003040 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec
2017-06-09 03:10 - 2017-06-09 03:10 - 00002678 _____ C:\WINDOWS\System32\Tasks\ByteFence Scan
2017-06-09 03:10 - 2017-06-09 03:10 - 00002674 _____ C:\WINDOWS\System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon
2017-06-09 03:10 - 2017-06-09 03:10 - 00002570 _____ C:\WINDOWS\System32\Tasks\ByteFence
2017-06-09 03:10 - 2017-06-09 03:10 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2017-06-09 03:10 - 2017-06-09 03:10 - 00000000 ____D C:\WINDOWS\System32\Tasks\Fujitsu
2017-06-09 03:08 - 2017-06-09 03:08 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-06-09 03:06 - 2017-06-09 03:08 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-06-09 03:05 - 2017-06-16 10:01 - 00000000 ____D C:\Users\svenw
2017-06-09 03:05 - 2017-06-09 03:06 - 00000000 ____D C:\Program Files\Realtek
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Vorlagen
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Startmenü
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Netzwerkumgebung
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Lokale Einstellungen
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Eigene Dateien
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Druckumgebung
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Documents\Eigene Videos
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Documents\Eigene Musik
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Documents\Eigene Bilder
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\AppData\Local\Verlauf
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\AppData\Local\Anwendungsdaten
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 _SHDL C:\Users\svenw\Anwendungsdaten
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-06-09 03:05 - 2017-06-09 03:05 - 00000000 ____D C:\WINDOWS\system32\DAX2
2017-06-09 03:04 - 2017-06-17 21:17 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-09 03:04 - 2017-06-14 07:55 - 00382176 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-09 03:04 - 2017-06-09 03:06 - 00000000 ____D C:\Program Files\Intel
2017-06-09 03:04 - 2017-06-09 03:06 - 00000000 ____D C:\Program Files (x86)\Intel
2017-06-09 03:04 - 2017-06-09 03:04 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_NXPProximityPCSCDrv_01_11_00.Wdf
2017-06-09 03:04 - 2017-06-09 03:04 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf
2017-06-09 03:04 - 2017-06-09 03:04 - 00000000 ____D C:\Program Files\Synaptics
2017-06-09 03:04 - 2017-06-09 03:04 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2017-06-09 03:04 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2017-06-09 03:04 - 2017-02-08 01:31 - 00113672 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-06-09 01:01 - 2017-06-09 01:01 - 00999532 _____ C:\Users\svenw\Downloads\Geocache Heimstetten.pdf
2017-06-06 22:31 - 2017-06-09 14:50 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-02 12:04 - 2017-06-02 12:04 - 00001252 _____ C:\Users\svenw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update- und Datenschutzeinstellungen.lnk
2017-06-02 12:04 - 2017-06-02 12:04 - 00000000 ____D C:\Users\svenw\AppData\Local\UNP
2017-06-02 11:30 - 2017-06-09 03:08 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-02 11:30 - 2017-06-02 11:31 - 00000000 ____D C:\Program Files\UNP
2017-05-18 07:52 - 2016-10-04 17:32 - 165882312 _____ C:\Users\svenw\Downloads\Sprungkraft_standard.mp4.pdvo7no.partial
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-06-17 22:23 - 2016-12-26 19:38 - 00000000 ___RD C:\Users\svenw\OneDrive
2017-06-17 21:31 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-06-17 20:21 - 2016-12-26 22:10 - 00000000 ____D C:\Daten
2017-06-17 20:13 - 2017-02-23 07:56 - 00000000 ____D C:\Program Files\ByteFence
2017-06-17 20:13 - 2016-12-26 19:38 - 00000000 ____D C:\Users\svenw\Documents\YouCam
2017-06-17 20:12 - 2016-12-26 19:35 - 00000000 __SHD C:\Users\svenw\IntelGraphicsProfiles
2017-06-17 10:33 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-17 10:17 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-17 10:13 - 2016-12-26 19:35 - 00000000 ____D C:\Users\svenw\AppData\Local\Packages
2017-06-16 13:51 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF
2017-06-16 12:51 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache
2017-06-16 10:00 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat
2017-06-14 16:33 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-14 07:59 - 2017-03-20 06:41 - 00859952 _____ C:\WINDOWS\system32\perfh007.dat
2017-06-14 07:59 - 2017-03-20 06:41 - 00178552 _____ C:\WINDOWS\system32\perfc007.dat
2017-06-14 07:59 - 2015-11-06 00:32 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-14 01:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-06-14 01:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-14 01:02 - 2017-03-18 13:40 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-06-13 22:41 - 2015-12-03 01:04 - 00000000 ____D C:\ProgramData\McAfee
2017-06-13 22:27 - 2016-12-26 20:06 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-13 22:25 - 2016-12-26 20:06 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-09 19:01 - 2017-03-10 15:01 - 00000000 ____D C:\ProgramData\{B9277C44-3365-F682-B5A3-68C02FE1E30E}
2017-06-09 18:33 - 2016-12-29 14:32 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2017-06-09 15:38 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-09 15:33 - 2015-12-03 01:04 - 00000000 ____D C:\Program Files (x86)\McAfee
2017-06-09 15:32 - 2015-12-03 01:04 - 00000000 ____D C:\Program Files\mcafee
2017-06-09 15:29 - 2017-03-18 23:03 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2017-06-09 14:59 - 2016-10-25 00:46 - 00000000 ____D C:\Users\Default.migrated
2017-06-09 14:52 - 2016-12-26 19:38 - 00002383 _____ C:\Users\svenw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-09 14:50 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-06-09 14:50 - 2017-01-12 08:42 - 00000000 ____D C:\Users\svenw\AppData\Local\ConnectedDevicesPlatform
2017-06-09 04:03 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-06-09 04:02 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup
2017-06-09 04:02 - 2017-03-18 23:03 - 00000000 ___RD C:\Program Files\Windows Defender
2017-06-09 04:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-06-09 04:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-09 04:02 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Provisioning
2017-06-09 03:13 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate
2017-06-09 03:13 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows NT
2017-06-09 03:13 - 2017-02-23 07:56 - 00000392 __RSH C:\ProgramData\ntuser.pol
2017-06-09 03:12 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-06-09 03:11 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration
2017-06-09 03:11 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-06-09 03:11 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-06-09 03:10 - 2017-03-20 06:43 - 00000000 ____D C:\WINDOWS\HoloShell
2017-06-09 03:10 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries
2017-06-09 03:10 - 2016-10-25 01:06 - 00023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-06-09 03:08 - 2017-04-11 18:48 - 00000000 ____D C:\Users\svenw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\cosinex Bietertool
2017-06-09 03:08 - 2017-04-03 16:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-06-09 03:08 - 2017-03-01 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ByteFence Anti-Malware
2017-06-09 03:08 - 2017-02-26 18:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft PhotoStudio
2017-06-09 03:08 - 2017-02-26 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-06-09 03:08 - 2016-12-29 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2017-06-09 03:08 - 2015-12-03 01:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FUJITSU - Function Manager
2017-06-09 03:08 - 2015-12-03 01:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam 6
2017-06-09 03:08 - 2015-12-03 01:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plugfree NETWORK
2017-06-09 03:08 - 2015-12-02 07:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fujitsu
2017-06-09 03:06 - 2017-03-20 06:42 - 00000000 ____D C:\WINDOWS\OCR
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\system32\winrm
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\system32\WCN
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\system32\slmgr
2017-06-09 03:06 - 2017-03-20 06:41 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\en-GB
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\IME
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\System
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-06-09 03:06 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-06-09 03:06 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism
2017-06-09 03:06 - 2017-02-23 07:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2017-06-09 03:06 - 2017-01-03 20:51 - 00000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2017-06-09 03:06 - 2017-01-03 20:51 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2017-06-09 03:06 - 2016-12-26 20:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xilisoft
2017-06-09 03:06 - 2016-05-19 11:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra Wireless
2017-06-09 03:06 - 2016-05-19 11:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-06-09 03:06 - 2015-12-03 01:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FUJITSU - Anytime USB Charge Utility
2017-06-09 03:06 - 2015-12-03 00:58 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles
2017-06-09 03:06 - 2015-10-30 09:24 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-06-09 03:05 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-06-09 02:50 - 2017-03-20 07:06 - 00000000 ___HD C:\$WINDOWS.~BT
2017-06-03 20:12 - 2017-02-26 17:48 - 00000000 ____D C:\Users\svenw\AppData\Local\CrashDumps
2017-06-02 11:29 - 2017-03-21 00:12 - 00565416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-28 22:27 - 2016-05-19 10:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2017-02-26 16:05 - 2017-02-26 16:05 - 13675160 _____ () C:\Program Files\FileZilla_3.24.1.zip
2016-07-14 07:44 - 2016-07-14 07:44 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2017-01-18 20:39 - 2017-01-18 20:39 - 0000038 ___SH () C:\Users\svenw\AppData\Local\1441539262505c637310aaf0.08228658
2017-06-09 03:05 - 2017-06-09 03:05 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
C:\Users\svenw\AppData\Local\Temp\McCSPInstall.dll
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-06-09 03:04
==================== Ende von FRST.txt ============================
|
|
18.06.2017, 00:07
| #6 |
| | supremo - Zugriff Hier die Logs von Fabar in 2 Dateien aufgeteilt, |
|
18.06.2017, 00:09
| #7 |
| | supremo - Zugriff und hier noch die AdditionFRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:13-04-2016
durchgeführt von svenw (2017-06-17 22:26:03)
Gestartet von C:\Users\svenw\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Windows 10 Pro Version 1703 (X64) (2017-06-09 01:13:35)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4103530663-3136467449-307975966-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4103530663-3136467449-307975966-503 - Limited - Disabled)
Gast (S-1-5-21-4103530663-3136467449-307975966-501 - Limited - Disabled)
svenw (S-1-5-21-4103530663-3136467449-307975966-1001 - Administrator - Enabled) => C:\Users\svenw
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: McAfee Firewall (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Anytime USB Charge Utility (HKLM-x32\...\InstallShield_{A794229E-401E-44D4-A8B5-B21E975676DE}) (Version: 3.0.0.0 - FUJITSU LIMITED)
Anytime USB Charge Utility (Version: 3.0.0.0 - FUJITSU LIMITED) Hidden
ArcSoft PhotoStudio 5 (HKLM-x32\...\{03F1CC67-5BD8-4C36-8394-76311B2AE69A}) (Version: - )
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.8.2 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - )
ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 3.9.0.3 - Byte Technologies LLC)
Chromium (HKLM-x32\...\{F2741AB4-A2F4-CB34-1374-BBB4C3F46834}) (Version: - )
CyberLink YouCam 6 (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.4404.0 - CyberLink Corp.)
DeskUpdate (HKLM-x32\...\DeskUpdate_is1) (Version: 4.15.0144 - Fujitsu Technology Solutions)
FileZilla Client 3.24.1 (HKLM-x32\...\FileZilla Client) (Version: 3.24.1 - Tim Kosse)
FJ Camera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.10240.11152 - Realtek Semiconductor Corp.)
Fujitsu BIOS Driver (HKLM-x32\...\InstallShield_{7292FFCF-FA9A-4585-AB80-A71961F931AF}) (Version: 1.2.0.0 - FUJITSU LIMITED)
Fujitsu BIOS Driver (Version: 1.2.0.0 - FUJITSU LIMITED) Hidden
Fujitsu MobilityCenter Extension Utility (HKLM-x32\...\InstallShield_{EC314CDF-3521-482B-A21C-65AC95664814}) (Version: 4.01.00.000 - FUJITSU LIMITED)
Fujitsu MobilityCenter Extension Utility (Version: 4.01.00.000 - FUJITSU LIMITED) Hidden
Fujitsu System Extension Utility (HKLM-x32\...\InstallShield_{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}) (Version: 3.6.3.0 - FUJITSU LIMITED)
Fujitsu System Extension Utility (Version: 3.6.3.0 - FUJITSU LIMITED) Hidden
Fujitsu System Manager (HKLM\...\{B0DCAAED-C1FB-42C1-9F3C-F8C49BACC372}) (Version: 8.00.0815.2015 - Fujitsu America, Inc.)
Function Manager (HKLM-x32\...\InstallShield_{FFAA234C-E621-4787-A02D-5CD0852000D4}) (Version: 1.2.3.0 - FUJITSU LIMITED)
Function Manager (Version: 1.2.3.0 - FUJITSU LIMITED) Hidden
Intel(R) Chipset Device Software (x32 Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10604.207 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.2 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4300 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{5DD8D7E4-87F1-4134-AD28-4228FB1A03BA}) (Version: 6.0.44.0 - Intel Corporation)
Intel(R) WiDi Software Asset Manager (x32 Version: 1.1.383 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{AA1CAAC2-2A6A-4771-B813-8B73C74AE477}) (Version: 18.1.1539.2349 - Intel Corporation)
Intel® Integrated Sensor Solution (HKLM-x32\...\{755abcd0-2942-482b-a27d-22921a5849f0}) (Version: 3.0.14.3056 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{cc892976-0919-4ba9-ab52-ae15d2127a12}) (Version: 18.21.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
ISS_Drivers_x64 (Version: 3.0.14.3056 - Intel Corporation) Hidden
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Maxx Audio Installer (x64) (Version: 2.6.6568.0 - Waves Audio Ltd.) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 14.0 R13 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.139 - McAfee, Inc.)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.8067.2115 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4103530663-3136467449-307975966-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 52.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 52.0.2 (x86 de)) (Version: 52.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.2 - Mozilla)
NXPProximityInstaller (HKLM-x32\...\NXPProximityInstaller) (Version: 7.7.5.0 - NXP Semiconductors)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7967.2073 - Microsoft Corporation) Hidden
Plugfree NETWORK (HKLM\...\{7BA64D21-EE46-4a9a-8145-52B0175C3F86}) (Version: 7.2.0.1 - FUJITSU LIMITED)
Plugfree NETWORK (Version: 7.2.001 - FUJITSU LIMITED) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7614 - Realtek Semiconductor Corp.)
Realtek USB Audio (HKLM\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.40 - Realtek Semiconductor Corp.)
Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 10.5.1019.2015 - Realtek)
Sierra Wireless Fujitsu Mobile Broadband Driver Package (HKLM-x32\...\SWIFujitsuDrvInstaller) (Version: 6.16.4323.0303 - Sierra Wireless, Inc.)
Sierra Wireless Skylight (HKLM\...\{84B14718-3004-469F-85A8-611686FE750B}) (Version: 6.0.4290.6603 - Sierra Wireless, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.26.5 - Synaptics Incorporated)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Driver Package - FUJITSU LIMITED (FUJ02E3) System (05/22/2015 1.30.3.0) (HKLM\...\A1B419AE27B7A71A04669DF9C4FE00AED8CE0EDA) (Version: 05/22/2015 1.30.3.0 - FUJITSU LIMITED)
Xilisoft Video Converter Ultimate (HKLM-x32\...\Xilisoft Video Converter Ultimate) (Version: 7.8.18.20160913 - Xilisoft)
Xilisoft Video Editor 2 (HKLM-x32\...\Xilisoft Video Editor 2) (Version: 2.2.0.20120901 - Xilisoft)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4103530663-3136467449-307975966-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\svenw\AppData\Local\Microsoft\OneDrive\17.3.6816.0313\FileCoAuth.exe (Microsoft Corporation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00325F3B-B908-4D7D-90FC-B3059A2745C5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-28] ()
Task: {0446E39B-C49C-43B9-BF33-A1C9B866BE1E} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-24] (Intel Corporation)
Task: {0554F263-AE1F-4A38-9456-993516B21680} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand
Task: {05B6D512-02B8-4594-AD58-42BD89E9B316} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-28] ()
Task: {05E2082C-D22E-4C31-BFAB-672A358AD81A} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask
Task: {0C518199-F01B-42CF-9CB7-16710B002812} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2017-03-18] (Microsoft Corporation)
Task: {1107BD67-AE83-442B-87DD-BF224C82A8FA} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {11DB2636-C967-41F9-92EE-9965468A16F8} - System32\Tasks\Fujitsu\StatusPanelSwitch\EnableLANAdapter => C:\Program Files\Fujitsu\StatusPanelSwitch\DeviceEngine\LANCtrl.exe [2015-10-23] (FUJITSU LIMITED)
Task: {13A402A2-ECD8-4E4A-AD3C-66B0A699CA7A} - System32\Tasks\Fujitsu\StatusPanelSwitch\ShowDialogToRestartSuspendPrevention => C:\Program Files\Fujitsu\StatusPanelSwitch\StatusPanelSwitch.exe [2015-10-23] (FUJITSU LIMITED)
Task: {1ECB68D2-E5D2-4101-BD70-16EBC9234C84} - System32\Tasks\Fujitsu\StatusPanelSwitch\DisableLANAdapter => C:\Program Files\Fujitsu\StatusPanelSwitch\DeviceEngine\LANCtrl.exe [2015-10-23] (FUJITSU LIMITED)
Task: {2002092C-979A-4E67-98B8-E2F57602BABF} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-06-24] (Intel Corporation)
Task: {2B974AFC-DB2E-4F59-8970-A1DB693D0EC4} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {2C6E7069-477E-4636-906C-9976F7AAFC0C} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\svenw\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2017-06-09] (Microsoft Corporation)
Task: {3437C883-42EA-4D1E-998A-21B4C0E8EA54} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2016-10-20] (McAfee, Inc.)
Task: {3D53F921-47B8-42B5-9382-2C7CDE483D70} - System32\Tasks\Fujitsu\StatusPanelSwitch\QuickNoteTaking => C:\Program Files\Fujitsu\StatusPanelSwitch\ScreenCapture.exe [2015-10-23] (FUJITSU LIMITED)
Task: {3EDAF9A0-CC33-4FD4-B705-9B2F01B8F349} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession
Task: {434DFEB0-9EB6-4FBE-87C5-D9AEAC7B47D7} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange
Task: {443BD701-242A-430E-9130-B73B30474A41} - System32\Tasks\Fujitsu\StatusPanelSwitch\StopPopupPrevention => C:\Program Files\Fujitsu\StatusPanelSwitch\DeviceEngine\StopPopupPrevention.exe [2015-10-23] (FUJITSU LIMITED)
Task: {4F8469A9-9BD0-433D-86A1-91EF3D09E6BD} - System32\Tasks\Fujitsu\StatusPanelSwitch\ResetDeviceCurrentStatus => C:\Program Files\Fujitsu\StatusPanelSwitch\SetDeviceCurrentStatus.exe [2015-10-23] (Fujitsu Limited)
Task: {53E00EC9-ACC6-4C03-8C9D-DF818F0F97CB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
Task: {59BCBF6B-E283-4FAB-B835-4F712DE50518} - System32\Tasks\Secured Yahoo Powered firor => Wscript.exe "C:\ProgramData\{B9277C44-3365-F682-B5A3-68C02FE1E30E}\mife.txt" "68747470733a2f2f6464756b6d716c2e636f6d" "433a5c50726f6772616d446174615c7b42393237374334342d333336352d463638322d423541332d3638433032464531453330457d5c636f6c6f6665" "433a5c50726f6772616d446174615c7b42393237374334342d333336352d463638322d (Der Dateneintrag hat 84 mehr Zeichen).
Task: {5C326114-085E-444C-9B7A-D3E2E59C549E} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2017-03-18] (Microsoft Corporation)
Task: {5C43827A-D8C9-495B-AC43-3E0C135AA98D} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange
Task: {5C86E5C4-8361-4B1B-8BC1-8FCF5D1409B6} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-04-19] (Byte Technologies LLC)
Task: {60ECA01D-DA53-442F-B332-6A3FC93FF4C4} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task
Task: {64D227A1-CAF2-4F62-893C-CB71B7F5593F} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
Task: {66FDFE9B-DE13-47D5-96B4-126DA92BF6F9} - System32\Tasks\Fujitsu\StatusPanelSwitch\StartSuperClearCtrl => C:\Program Files\Fujitsu\StatusPanelSwitch\DeviceEngine\SuperClearCtrl.exe [2015-10-23] (FUJITSU LIMITED)
Task: {6772AC65-7600-4DF2-9BD5-F17292FAAE4B} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2017-03-18] (Microsoft Corporation)
Task: {68861600-8DE1-4D43-8F44-847C6947AA70} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task
Task: {693F02EA-12F7-4661-8730-A5DF1AFD642F} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
Task: {6BD9FDA3-C8EE-4C02-95CB-1B221BF24F79} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
Task: {7072963F-3763-4E9F-A1F5-DE9703BAE827} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask
Task: {72469F2E-2ECE-457E-A934-BE76155C2DD9} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation)
Task: {744C6A12-1FB9-4BF2-AA0C-A61BE628022F} - System32\Tasks\Fujitsu\StatusPanelSwitch\StartTouchBlockCtrlDaemon => C:\Program Files\Fujitsu\StatusPanelSwitch\DeviceEngine\TouchBlockCtrl.exe [2015-10-23] (FUJITSU LIMITED)
Task: {74D75D8D-492F-4D39-99A6-59EC9114EF4A} - System32\Tasks\Fujitsu\StatusPanelSwitch\PressHoldButton => C:\Program Files\Fujitsu\StatusPanelSwitch\PressHoldButton.exe [2015-10-23] (FUJITSU LIMITED)
Task: {786E9D92-5BB1-4399-958E-2550B6CEEFA8} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand
Task: {78F76D6D-0B70-46A9-8DEB-4FCB650A6627} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
Task: {7B921B3E-E559-47C5-A817-C4B13C3DFD23} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\Windows\System32\XblGameSaveTask.exe [2017-03-18] (Microsoft Corporation)
Task: {7E48EB16-2459-437A-B3B5-DD91866302CC} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task
Task: {81FA80CA-1663-44EE-A910-8E0A95D969AD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-28] (Microsoft Corporation)
Task: {8478C771-AE7D-47EA-9D79-22DC82C4E3F6} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense
Task: {84C0DAB6-B7D9-4E08-B0B7-E8C19B5A82BF} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2017-03-20] (Microsoft Corporation)
Task: {88E18EB0-E633-47C9-8FE5-84CEAB8F5EF7} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2017-03-18] (Microsoft Corporation)
Task: {9000242B-836A-4AD7-A226-4F1B16E5DFDC} - System32\Tasks\Fujitsu\StatusPanelSwitch\StopSuspendPrevention => C:\Program Files\Fujitsu\StatusPanelSwitch\DeviceEngine\StopSuspendPrevention.exe [2015-10-23] (FUJITSU LIMITED)
Task: {9BFBFF63-27D1-4C7C-ADFA-AE5B98B90F78} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
Task: {9F1EF953-4CEC-4DFB-8787-63CA9E24A335} - System32\Tasks\Microsoft\Windows\UNP\RunCampaignManager => C:\Windows\System32\UNP\UNPCampaignManager.exe [2017-04-02] (Microsoft Corporation)
Task: {ABB1489C-8589-46F3-B836-F5C04F60A3D6} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
Task: {B572A437-F4AB-4193-A1CF-AD067BF20A0D} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation)
Task: {BBECDD6F-D879-4A44-B424-82DCFD04A1A4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-28] (Microsoft Corporation)
Task: {BD69C6ED-AD55-467C-B787-533200C3B376} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2017-03-18] (Microsoft Corporation)
Task: {C05E2FFD-7D0D-4F6B-952B-A3318F829D19} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\Windows\system32\ProvTool.exe [2017-03-18] (Microsoft Corporation)
Task: {C6D01D63-6EED-4F7F-AD40-20AD77927CBC} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.50.1291.1\mcdatrep.exe [2016-10-20] (McAfee, Inc.)
Task: {CFE9501D-B60F-45DB-B48F-19C572F7F30E} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2017-03-18] (Microsoft Corporation)
Task: {E1BA48CF-2BC8-42A6-AD9D-F1AB7E32137B} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {E8CEBEC3-0404-4375-B166-41928AD4F425} - System32\Tasks\Fujitsu\DeskUpdate => C:\Program Files (x86)\Fujitsu\DeskUpdate\ducmd.exe [2015-06-15] (Fujitsu Technology Solutions)
Task: {F4DC7B5B-0C91-4D84-93A2-33828BB5127A} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-04-19] (Byte Technologies LLC)
Task: {F76048E1-616A-4C82-90F1-EA87CA22976C} - System32\Tasks\Fujitsu\StatusPanelSwitch\NotifyOfCradleStatusChange => C:\Program Files\Fujitsu\StatusPanelSwitch\StatusPanelSwitch.exe [2015-10-23] (FUJITSU LIMITED)
Task: {F7F4E7D8-F22D-48F6-85FF-F0099AEAE09F} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2017-02-22] (McAfee, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Secured Yahoo Powered firor.job => Wscript.exe C:\ProgramData\{B9277C44-3365-F682-B5A3-68C02FE1E30E}\mife.txt <==== ACHTUNG
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Public\Desktop\Intel(R) SBA.lnk -> C:\Fujitsu\IntelSBA\sba.bat ()
ShortcutWithArgument: C:\Users\svenw\Desktop\cosinex Bietertool www.dtvp.de.lnk -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxps://www.dtvp.de/Center/webstart/jnlpfiles/de/21238.jnlp "C:\Users\svenw\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\53d0905-7b8ff9c1"
ShortcutWithArgument: C:\Users\svenw\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\cosinex Bietertool\cosinex Bietertool www.dtvp.de.lnk -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\javaws.exe (Oracle Corporation) -> -localfile -J-Djnlp.application.href=hxxps://www.dtvp.de/Center/webstart/jnlpfiles/de/21238.jnlp "C:\Users\svenw\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\53d0905-7b8ff9c1"
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-05-25 14:38 - 2016-05-25 14:38 - 00129304 _____ () C:\Program Files\ByteFence\x64\lz4_x64.dll
2017-02-26 18:00 - 2017-02-26 18:00 - 00304456 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
2017-02-26 18:00 - 2017-02-26 18:00 - 00619848 _____ () C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-02-21 23:09 - 2017-02-21 23:09 - 00052392 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2017-03-18 22:59 - 2017-03-20 06:43 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-06-08 20:45 - 2017-06-08 20:45 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-06-08 20:45 - 2017-06-08 20:45 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-06-08 20:45 - 2017-06-08 20:45 - 43318784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-06-08 20:45 - 2017-06-08 20:45 - 02427904 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\skypert.dll
2017-03-07 20:18 - 2017-03-07 20:18 - 00582936 _____ () C:\Program Files\ByteFence\rsLggr.exe
2017-06-02 11:30 - 2017-06-02 11:30 - 23661056 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-06-02 11:30 - 2017-06-02 11:30 - 09016320 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-05-26 14:50 - 2017-05-26 14:50 - 03140520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-16 10:00 - 2017-06-16 10:01 - 01199816 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8241.40785.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll
2017-06-16 10:00 - 2017-06-16 10:01 - 13207240 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8241.40785.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-05-09 22:21 - 2017-05-09 22:21 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-05-09 22:21 - 2017-05-09 22:21 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-09 22:21 - 2017-05-09 22:21 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2015-09-19 00:34 - 2015-09-19 00:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 09:24 - 2017-06-14 07:55 - 00002024 ____A C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com
Da befinden sich 4 zusätzliche Einträge.
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-4103530663-3136467449-307975966-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\Web\Wallpaper\FujitsuBackGround.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Allow) %systemroot%\system32\CastSrv.exe
FirewallRules: [{4BD00CB9-5450-4A91-ABD8-89DDECDFE4BA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{0235D38A-891B-4C3C-8EB5-3C99607FB34F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F62CBC6A-3AAE-465F-B1CD-000FA9C02BFB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{17C60071-0D44-4849-BFD6-F07B5DB25496}] => (Allow) C:\Users\svenw\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{64532207-900B-4486-A1F0-4340D2B6E48E}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe
FirewallRules: [{C3974941-9A73-4751-A672-A824F006BA0A}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe
FirewallRules: [{A017FA24-41FB-4C17-9DF4-B2A0E4027C05}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe
FirewallRules: [{35213D71-07C1-49E3-B79F-0C61897347CF}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{79459073-7DD2-4A6F-8B38-17490181CC8E}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{98A5AA8E-AE91-427C-91CB-92A9A24B073E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{672E7A65-E204-4676-A2CF-CA63DDD03072}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{5F5BD26A-6BB2-4A41-BFBA-1A5D0EE8B3A8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A195590C-F287-41A5-A5FC-B4D0A7ACFD39}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{A3B45661-570B-4000-A606-B712372E6707}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
==================== Wiederherstellungspunkte =========================
09-06-2017 22:54:36 Windows Update
13-06-2017 22:24:00 Windows Update
17-06-2017 20:13:26 McAfee Vulnerability Scanner
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/17/2017 08:57:16 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-NADGJNF)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/17/2017 08:30:12 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-NADGJNF)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/17/2017 10:45:12 AM) (Source: SupremoSystem.exe) (EventID: 0) (User: )
Description: Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen
Error: (06/17/2017 10:43:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Supremo (1).exe, Version: 3.2.1.674, Zeitstempel: 0x5829c2b9
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.15063.296, Zeitstempel: 0x28e9cf15
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x000eb802
ID des fehlerhaften Prozesses: 0x46dc
Startzeit der fehlerhaften Anwendung: 0xSupremo (1).exe0
Pfad der fehlerhaften Anwendung: Supremo (1).exe1
Pfad des fehlerhaften Moduls: Supremo (1).exe2
Berichtskennung: Supremo (1).exe3
Vollständiger Name des fehlerhaften Pakets: Supremo (1).exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Supremo (1).exe5
Error: (06/17/2017 10:15:38 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2" in Zeile UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (06/16/2017 12:46:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-NADGJNF)
Description: Bei der Aktivierung der App „Microsoft.Windows.Photos_8wekyb3d8bbwe!App“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (06/16/2017 10:02:49 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2" in Zeile UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (06/16/2017 10:01:20 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"2" in Zeile UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (06/09/2017 07:54:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-NADGJNF)
Description: Das Paket „Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe+App“ wurde beendet, da das Anhalten zu lange dauerte.
Error: (06/09/2017 07:34:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MicrosoftEdge.exe, Version: 11.0.15063.332, Zeitstempel: 0x591fdaf0
Name des fehlerhaften Moduls: EMODEL.dll, Version: 11.0.15063.332, Zeitstempel: 0x7f5a6051
Ausnahmecode: 0xc0000409
Fehleroffset: 0x00000000000eae6c
ID des fehlerhaften Prozesses: 0x404
Startzeit der fehlerhaften Anwendung: 0xMicrosoftEdge.exe0
Pfad der fehlerhaften Anwendung: MicrosoftEdge.exe1
Pfad des fehlerhaften Moduls: MicrosoftEdge.exe2
Berichtskennung: MicrosoftEdge.exe3
Vollständiger Name des fehlerhaften Pakets: MicrosoftEdge.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: MicrosoftEdge.exe5
Systemfehler:
=============
Error: (06/17/2017 08:57:16 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NADGJNF)
Description: Microsoft.Windows.Photos_17.524.10020.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca
Error: (06/17/2017 08:30:12 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NADGJNF)
Description: Microsoft.Windows.Photos_17.524.10020.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca
Error: (06/17/2017 08:12:33 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (06/17/2017 08:12:33 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (06/17/2017 08:12:33 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (06/17/2017 08:12:33 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (06/17/2017 08:12:22 PM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: )
Description: Für den Miniport "EM7305, {3A01FA7F-FD65-4301-B077-EE98587721E6}" ist das Ereignis "71" aufgetreten.
Error: (06/17/2017 10:28:56 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (06/17/2017 10:28:55 AM) (Source: Microsoft-Windows-NDIS) (EventID: 10317) (User: NT-AUTORITÄT)
Description: Für den Miniport "EM7305, {3A01FA7F-FD65-4301-B077-EE98587721E6}" ist das Ereignis "71" aufgetreten.
Error: (06/17/2017 10:17:34 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
%%1
CodeIntegrity:
===================================
Date: 2017-06-09 15:02:12.737
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-6300U CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 8084.44 MB
Verfügbarer physikalischer RAM: 4108.06 MB
Summe virtueller Speicher: 9364.44 MB
Verfügbarer virtueller Speicher: 4936.61 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:234.35 GB) (Free:38.72 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
|
18.06.2017, 00:11
| #8 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | supremo - Zugriff McAfee und das: Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.06.2017, 00:11
| #9 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | supremo - Zugriff McAfee und das: Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.06.2017, 00:19
| #10 |
| | supremo - Zugriff Nein, privat! Es ist Microsoft Office Proffessional Plus 2016 als "home use Edition" Hier das logfile von TDSSKiller: Code:
ATTFilter 22:32:56.0831 0x2684 TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
22:32:56.0831 0x2684 UEFI system
22:33:03.0304 0x2684 ============================================================
22:33:03.0304 0x2684 Current date / time: 2017/06/17 22:33:03.0304
22:33:03.0305 0x2684 SystemInfo:
22:33:03.0305 0x2684
22:33:03.0305 0x2684 OS Version: 10.0.15063 ServicePack: 0.0
22:33:03.0305 0x2684 Product type: Workstation
22:33:03.0305 0x2684 ComputerName: DESKTOP-NADGJNF
22:33:03.0305 0x2684 UserName: svenw
22:33:03.0305 0x2684 Windows directory: C:\WINDOWS
22:33:03.0305 0x2684 System windows directory: C:\WINDOWS
22:33:03.0305 0x2684 Running under WOW64
22:33:03.0305 0x2684 Processor architecture: Intel x64
22:33:03.0305 0x2684 Number of processors: 4
22:33:03.0305 0x2684 Page size: 0x1000
22:33:03.0305 0x2684 Boot type: Normal boot
22:33:03.0305 0x2684 CodeIntegrityOptions = 0x00000001
22:33:03.0305 0x2684 ============================================================
22:33:03.0473 0x2684 KLMD registered as C:\WINDOWS\system32\drivers\14252703.sys
22:33:03.0473 0x2684 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 15063.0, osProperties = 0x19
22:33:04.0922 0x2684 System UUID: {E61DAFDF-6DE8-9B46-736A-9FAFFBE7C5A1}
22:33:05.0967 0x2684 Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:33:05.0971 0x2684 ============================================================
22:33:05.0971 0x2684 \Device\Harddisk0\DR0:
22:33:05.0971 0x2684 GPT partitions:
22:33:05.0972 0x2684 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {58B41782-684D-4E40-A410-CC4475DD0822}, Name: COB, StartLBA 0x800, BlocksNum 0x200000
22:33:05.0972 0x2684 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {985E71DA-20C8-41CE-B1FC-D8CEB4E42E64}, Name: MSR, StartLBA 0x200800, BlocksNum 0x40000
22:33:05.0972 0x2684 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {B71328AF-3276-4BDF-8D72-6F870F5C8E7E}, Name: OS, StartLBA 0x240800, BlocksNum 0x1D4B22B0
22:33:05.0972 0x2684 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {AB2D22B1-6671-4454-9966-FFAC81E7C2A0}, Name: PBR, StartLBA 0x1D6F2AB0, BlocksNum 0x600000
22:33:05.0972 0x2684 MBR partitions:
22:33:05.0972 0x2684 ============================================================
22:33:05.0973 0x2684 C: <-> \Device\Harddisk0\DR0\Partition3
22:33:05.0973 0x2684 ============================================================
22:33:05.0973 0x2684 Initialize success
22:33:05.0973 0x2684 ============================================================
22:33:11.0710 0x2c30 ============================================================
22:33:11.0710 0x2c30 Scan started
22:33:11.0710 0x2c30 Mode: Manual;
22:33:11.0710 0x2c30 ============================================================
22:33:11.0710 0x2c30 KSN ping started
22:33:11.0809 0x2c30 KSN ping finished: true
22:33:12.0807 0x2c30 ================ Scan system memory ========================
22:33:12.0807 0x2c30 System memory - ok
22:33:12.0808 0x2c30 ================ Scan services =============================
22:33:12.0847 0x2c30 [ AAB860A5E606B9621E130D8C29D3F305, 93466620433B27F3BCFECDA26DD420AD1E5219034BA3B4E930EDED6D6728AE5C ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
22:33:12.0851 0x2c30 1394ohci - ok
22:33:12.0864 0x2c30 [ 4140B14929C555E9513D59A2EEB5C471, 39A8400B3AA7FB1D8EBE87E65F89881AB23B6AE911BECAEC1FD86C7DADD4F1AA ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
22:33:12.0866 0x2c30 3ware - ok
22:33:12.0883 0x2c30 [ D3DB4E3C096EFF74FB6E73E37CB66DD7, 451BE72D50D2316690910B86ACA1EBB5C0F3FE688BAB806EC94BCCB6F3798A0A ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
22:33:12.0894 0x2c30 ACPI - ok
22:33:12.0898 0x2c30 [ 3E5E5DAE5CAEC0209C93D3AD8128D8A0, 5CFA4D715AE8D928EA11F213C5A7B0B1C1705D2A8FF041E0A1988E645E669C54 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
22:33:12.0899 0x2c30 AcpiDev - ok
22:33:12.0904 0x2c30 [ F72D7CC7E7A97A09757313F3B4C7E17A, 36E3363380C51A2DB58D3177655A0A75DAA977C00C5A9C60A189068C0AFDC643 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
22:33:12.0907 0x2c30 acpiex - ok
22:33:12.0910 0x2c30 [ F04B6F53FBDB2B6B0451AE53DE19F0C9, 41A8C314A46867BAA45CD9666AAF734AD45B74E2033A8E66D93E17CDDAD66578 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
22:33:12.0911 0x2c30 acpipagr - ok
22:33:12.0916 0x2c30 [ C347A6095F3BE417D24F1E1349F4AF0F, 72C9D759BB132985AF55860658DC01F08590A2BD7E976FCF25E1314C5AA1D37B ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
22:33:12.0917 0x2c30 AcpiPmi - ok
22:33:12.0921 0x2c30 [ 686BFFC47454DD2F58795C2EE891CA9F, 6CC4B6679914742D700A8373DED2DD9A821CA5284D4D73493BA0855DB8E6520A ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
22:33:12.0922 0x2c30 acpitime - ok
22:33:12.0952 0x2c30 [ FBDA59118E59B3722248C66BAD89CAA9, 11AB83499757E3143834348DE39E85D56EC853071C96337C3ADD8A1E374C6CBC ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
22:33:12.0969 0x2c30 ADP80XX - ok
22:33:12.0986 0x2c30 [ AC1928C2F7505BD556C552F153B062AB, B48EA30F76DEA57868CA74CC775DD60257021A3DE10CE101B8BEFA1CE9D22CF4 ] AFD C:\WINDOWS\system32\drivers\afd.sys
22:33:12.0995 0x2c30 AFD - ok
22:33:13.0004 0x2c30 [ 1D914C996F2C3134E2344BB74F79BCF6, D27AF01BA29784555AF7D2E89A3A65E81D6AFE1D3C7E8F9367F06D9DF5F88069 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
22:33:13.0007 0x2c30 ahcache - ok
22:33:13.0011 0x2c30 [ 41856B40EE15F96DEC8755AB01FA3CF7, 33C3C899AF9CA15BE5A4CF097FF43DF3F0DBA0E48B6F1E28AE3E76AD76A1C361 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
22:33:13.0013 0x2c30 AJRouter - ok
22:33:13.0018 0x2c30 [ F485CA5559DB37A4882467A4F7D58BEA, A1C648EFE12A5A3356BC0949372ADD0FF0CA2F5A8F992EB71C87E9C0D5C92BB2 ] ALG C:\WINDOWS\System32\alg.exe
22:33:13.0020 0x2c30 ALG - ok
22:33:13.0026 0x2c30 [ 9C39FBA94FFEF04561D13ED0D1B50DD0, 53FA118DEF37F0BA6030B9CB4C17019E6B5934941514756D66143B7BB66D7CA1 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
22:33:13.0029 0x2c30 AmdK8 - ok
22:33:13.0037 0x2c30 [ 395D56FA2E22A10AE4774440D086F559, 24D7CBE9B82DC8900D9A5E345347FEC330D47FDBD1517A2AC10218BA2A9DFAA9 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
22:33:13.0039 0x2c30 AmdPPM - ok
22:33:13.0044 0x2c30 [ EB729A9ADCB9F9C406B533F95E2F67D4, EDCB8E39C503FF30ECB82F368242179E2788C12B4FD9B557F38380A934E7D8E7 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
22:33:13.0046 0x2c30 amdsata - ok
22:33:13.0054 0x2c30 [ 3B5C5C696F33FE61F1922533B03B9316, C9BAAA9B02547C66A276A31958DFD2A289C5963A4EE3FF306535565240D816CC ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
22:33:13.0058 0x2c30 amdsbs - ok
22:33:13.0062 0x2c30 [ A7D45A303FF8A9493C96C4B804051E6E, 6074C264876A398039D3F89905A486ABA5BDACA038B79920A34323B38CFCB358 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
22:33:13.0064 0x2c30 amdxata - ok
22:33:13.0070 0x2c30 [ 5180537517C27375B1F2CB37ED599FAF, 121BF0E3BDE068CC1E1E9B24DC334BA29348725E9BFB790699E4CC66664A4C3D ] AppID C:\WINDOWS\system32\drivers\appid.sys
22:33:13.0073 0x2c30 AppID - ok
22:33:13.0079 0x2c30 [ F7FEBF66A705F18DC063DFD259F15102, 394DA8A7355573C4D81C375450DF5C5B2FA6360E246B06FDE8E7F9ADF21360FA ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
22:33:13.0081 0x2c30 AppIDSvc - ok
22:33:13.0087 0x2c30 [ 13D7FEA71091D1EAD8ADDD10BFFEA06D, A707CAC76CBF0334E2FCE3220147B382F5E44DEF9E23DD459CF7C40F27771695 ] Appinfo C:\WINDOWS\System32\appinfo.dll
22:33:13.0089 0x2c30 Appinfo - ok
22:33:13.0093 0x2c30 [ EAF36A714E16A69B8B4ED7591CBA77B6, 11FE2A5D991FB8AF78F4E78FB6DF02005EC5404DC298FE2D4E7774BB0011AB52 ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
22:33:13.0095 0x2c30 applockerfltr - ok
22:33:13.0101 0x2c30 [ 290469FC9FDE400248DA3E528E729BC2, D9ABBEB76673D136698AA2F53C8EB1EAFBBDE365ACCA9AE348523B346143CA9C ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:33:13.0105 0x2c30 AppMgmt - ok
22:33:13.0119 0x2c30 [ 1C8DA5C681B603BBC893D50C5D643504, D38EDDB67C993498761978D5DC3DB648E20CB2CA16BA66A8629B16EAA04519EA ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
22:33:13.0129 0x2c30 AppReadiness - ok
22:33:13.0148 0x2c30 [ 9CEB98E9BB0B9C4C9C6C6C248480BE00, 064F06B707956502FE34435AE4C2BCD328056786FF081D37D06B7456DAB6E51D ] AppVClient C:\WINDOWS\system32\AppVClient.exe
22:33:13.0160 0x2c30 AppVClient - ok
22:33:13.0167 0x2c30 [ 2D2DF2463FACFBF2FEE39DCCDF49D1B5, F083C1B5B2284AB818431ECC6C9A61EBAFA241840727B97DD0E3B4FF0CBD07C5 ] AppvStrm C:\WINDOWS\system32\drivers\AppvStrm.sys
22:33:13.0170 0x2c30 AppvStrm - ok
22:33:13.0176 0x2c30 [ B86E646CE67FE9D75C0D762B19B465FC, B50C45A06AC6862DB4B183F567D55AE289EB05E6A1B32CC3AEBB6163C4296D79 ] AppvVemgr C:\WINDOWS\system32\drivers\AppvVemgr.sys
22:33:13.0179 0x2c30 AppvVemgr - ok
22:33:13.0186 0x2c30 [ 2207D2A001A3C30B825F191CD2A76C91, A43EA8CB9E2D1A1FB2DDC738827514588BFFA420A2D618DBCA55614BE2E3B45D ] AppvVfs C:\WINDOWS\system32\drivers\AppvVfs.sys
22:33:13.0188 0x2c30 AppvVfs - ok
22:33:13.0242 0x2c30 [ CC2D94671F2185383AEAEAD8784784CD, 98453192A1203B768F59EEF48EDE9CF0F45BF259F3771B254920E1FC0A8BAF06 ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
22:33:13.0282 0x2c30 AppXSvc - ok
22:33:13.0290 0x2c30 [ 6E456A94B9BD7F6B4758729BCEDE40C3, 2F3146AC960992FA947A8E8C4D5497624A5BC69B7A3EECA117AD599C70DDE8E3 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
22:33:13.0293 0x2c30 arcsas - ok
22:33:13.0296 0x2c30 [ 766F3A7E42AFCF74265FAC78987D1665, 8FE82913DF5CF79B49B28B3CD782AF09FF30585A37473AE3E518A26C5D6453D0 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
22:33:13.0297 0x2c30 AsyncMac - ok
22:33:13.0302 0x2c30 [ 01733BEEE02E51F712330D5909BD701C, A583B482DBE701A752EDFDEAE2EF16D7160DFEA6077E0C8EF013828E285D960A ] atapi C:\WINDOWS\system32\drivers\atapi.sys
22:33:13.0303 0x2c30 atapi - ok
22:33:13.0319 0x2c30 [ 5F9C86F133D50EC14BC247B1408EB339, D5C9DC375B91774E580C128677F36C4A4949FC70C7EE82F573EFC8841C084D18 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
22:33:13.0328 0x2c30 AudioEndpointBuilder - ok
22:33:13.0360 0x2c30 [ 18DD15CD20F3AFB8A056B6250CDD4ABE, B17DDF9C79EE51CBF274BB8763935F841CC865168A8C27512290946D053EC332 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
22:33:13.0379 0x2c30 Audiosrv - ok
22:33:13.0386 0x2c30 [ 6086B5EE0DA4600B2EC2725D82DEB74E, C67CA7021D710CFDCF62B17A2B2890E61E4F1E3D956312688454FD85738C303F ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
22:33:13.0388 0x2c30 AxInstSV - ok
22:33:13.0401 0x2c30 [ 0914A5E66C0775CE11960452A6434FEC, 978C1E20023841FBFEF0CEAFE09EDB679612C8E5986C6E40C1F6D0835112D13E ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
22:33:13.0409 0x2c30 b06bdrv - ok
22:33:13.0414 0x2c30 [ F8129321B1874D4386F7FEB754BC3380, 7264E7E2A339E456C0A1A40FDFAE0D202905467400B93FA0700498B86172337F ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
22:33:13.0415 0x2c30 BasicDisplay - ok
22:33:13.0419 0x2c30 [ E2BFD01BD0ECF2BDE9420022147952A4, 7798211996143067787881A1362D07B95CF688E96192E3627D30347C719D40CB ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
22:33:13.0420 0x2c30 BasicRender - ok
22:33:13.0425 0x2c30 [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
22:33:13.0426 0x2c30 bcmfn2 - ok
22:33:13.0436 0x2c30 [ C3B27514035315E3C1FCE64E69E253ED, 03AF100927077AD608C5EA47A17081CEA849F44C471AF978F410B83E2ABA5AE7 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
22:33:13.0442 0x2c30 BDESVC - ok
22:33:13.0446 0x2c30 [ ED03D2ACE378C9EB8BB957ABBD85B951, E9AE3025DC4956B736651B20AEA665909C2B468F9AE3E317F545DD4EEEA7D9E8 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:33:13.0447 0x2c30 Beep - ok
22:33:13.0465 0x2c30 [ 1FDC6CB56572203E6F4BF4E3FB30B886, 81D5C77C823DC078EEEB2DABEE5203D542C824E04FEDD96AA58F96037C065155 ] BFE C:\WINDOWS\System32\bfe.dll
22:33:13.0477 0x2c30 BFE - ok
22:33:13.0502 0x2c30 [ 5C0D4DBACB90D9ECE77907F4F6CF9EF6, FC29F03FB7E58A9ED17A34BC2D8E39533070B8B23D1A110622C3A213BF48CD2D ] BITS C:\WINDOWS\System32\qmgr.dll
22:33:13.0520 0x2c30 BITS - ok
22:33:13.0526 0x2c30 [ 2342B8619193B0D9FAC0D02C69DCE74A, 06A1512C9750ACD154DE8873DE6628355B7195759CE54FA96097EA6D56BE320E ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
22:33:13.0528 0x2c30 bowser - ok
22:33:13.0549 0x2c30 [ DD459140CBD075DCFA898097327DB8EB, 8EB685107F06566BC7516F6921547844F1E05A6CD3F0EE80E449638302F46F97 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
22:33:13.0561 0x2c30 BrokerInfrastructure - ok
22:33:13.0568 0x2c30 [ 9C7F445B018AB4744B6E0C657B5D1833, 83D04F5E3D4BA46BBD8A67764A60F5731F86B0BE3A85C2858E002ABCC362F592 ] Browser C:\WINDOWS\System32\browser.dll
22:33:13.0570 0x2c30 Browser - ok
22:33:13.0575 0x2c30 [ AF57F0B0E284BE06860A7B701341324D, F94E44C777FDC049158B7BF73DAFCDB103D08493AC898D1C928771650F664412 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
22:33:13.0576 0x2c30 BthAvrcpTg - ok
22:33:13.0582 0x2c30 [ 4C0FCF1BF33A706D2D23C122D5AF990C, 8FF78C6ABF1DB8D9EF318D2C71EA29E65EC80BCA24BC53CE1F521182733383CC ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
22:33:13.0584 0x2c30 BthEnum - ok
22:33:13.0588 0x2c30 [ 729CC10B1658178F0F009FE0E9159281, B0F692CAB2BE47415C8A8CCCE8D53CDDF2B70518536ACF91CF96D74ADD04AF9C ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
22:33:13.0590 0x2c30 BthHFEnum - ok
22:33:13.0594 0x2c30 [ 336A9C0254A0178ED50281B6EDF5B836, C9C454C6EC4FF5897B1873A7E90D1CE8122E43783E978A570CEA75E15F65DE97 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
22:33:13.0595 0x2c30 bthhfhid - ok
22:33:13.0606 0x2c30 [ D8428BEF4033C7BFCD981074E2318F89, 9C0692F8387BAD94CCA4E36B59701A7A7B8FDCB5377B4C2CA75424583835E112 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
22:33:13.0613 0x2c30 BthHFSrv - ok
22:33:13.0619 0x2c30 [ 096C2A149591410A44F1C6CBE4866729, 4ED981A9AA10979C305DEC6E02DD0FF445C64055B5493007BDD5283B4626C0B9 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
22:33:13.0621 0x2c30 BthLEEnum - ok
22:33:13.0625 0x2c30 [ 5428242193611BF91DDBF4F58900A55A, 91D59B0D0C7CA3DBBA8CA7CAD1E24845A224F451FC1880BE8CB7C1585AC79080 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
22:33:13.0627 0x2c30 BTHMODEM - ok
22:33:13.0633 0x2c30 [ E39223EAA36AC546A03ABE213C960A37, D1CFCC3BE2DD76BAE1EA927E9F32BD178D5C5593A4CD34E81038BB692957894E ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
22:33:13.0635 0x2c30 BthPan - ok
22:33:13.0655 0x2c30 [ 622833A26A27F15F42CE0888B1C70472, 9EED4C69DD955AE591270F0E371BEA256AA6DD9C527231BAD191FF3ED3A0826E ] BTHPORT C:\WINDOWS\system32\DRIVERS\BTHport.sys
22:33:13.0670 0x2c30 BTHPORT - ok
22:33:13.0677 0x2c30 [ 6927D295017E9F1A5D655A8F3A122672, 4B686C93056924580390440B49C721BD9039D5C972994D8EA96CA848B786B693 ] bthserv C:\WINDOWS\system32\bthserv.dll
22:33:13.0680 0x2c30 bthserv - ok
22:33:13.0685 0x2c30 [ FA5CE6301192DD6ED4AA747B2C88FD42, F06A7748FCB6BBF0BB0A8348F505A1703EF2D1B59DC5BA6B600951200463F876 ] BTHUSB C:\WINDOWS\system32\DRIVERS\BTHUSB.sys
22:33:13.0686 0x2c30 BTHUSB - ok
22:33:13.0691 0x2c30 [ 102CAA11BA89290D48FBFD2E04274BA0, 9C6786AD6C8BE5AF7538BAD553C401B0D7443E533CDE59E975CF3E07EF262F0C ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
22:33:13.0692 0x2c30 buttonconverter - ok
22:33:13.0699 0x2c30 [ BB90EDB4747578AF79F721C0F6C97577, 39060F3C34A45DB6B655E6F1C82E4BC1A577CB5349474F9F42F865246EBAF03B ] ByteFenceService C:\Program Files\ByteFence\ByteFenceService.exe
22:33:13.0701 0x2c30 ByteFenceService - ok
22:33:13.0706 0x2c30 [ 029434AC0A3935F9125ABBD08BF7C30B, 742338B882488CA83F502ACEBFEDC2783B8D9D6C391FE1088988276315A065F6 ] CAD C:\WINDOWS\System32\drivers\CAD.sys
22:33:13.0707 0x2c30 CAD - ok
22:33:13.0712 0x2c30 [ 307AE8BC9B45772DA02FB952A1D86C35, 4983AC71C8E164D9E6669D345925B4FBEDD0A0A4566887E7ECC56C996B66DBD4 ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
22:33:13.0715 0x2c30 CapImg - ok
22:33:13.0720 0x2c30 [ B6E5AD7C83A5254DEE9D86023C0E5A81, 40F297406A025378A6273535475C1FF8C99BC6502B17C0E161131DA754D7974B ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
22:33:13.0722 0x2c30 cdfs - ok
22:33:13.0744 0x2c30 [ A0E5905465CBCCB63FE915F5B08752A8, 435B39A8B1684FFE9F2720A2CD11AF5A5F55E701709939756322C2CD6A22E0FA ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
22:33:13.0758 0x2c30 CDPSvc - ok
22:33:13.0772 0x2c30 [ 618DA70D0D90DF3602259C1B121794DD, D2AF7967DE38F3B7C10824A1C900A145F45C57C0F179753A85989406600C4279 ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
22:33:13.0780 0x2c30 CDPUserSvc - ok
22:33:13.0790 0x2c30 [ ABE77AD954BC3D72F559CF0C381E50BC, D0F24B023D7CADD4893AAF223A9BAC00B2C58D552E0C314B506C01767FB74133 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
22:33:13.0793 0x2c30 cdrom - ok
22:33:13.0800 0x2c30 [ 0EC94DA356D89CACD89B6E139E4D0A7D, 2F887681FDD5AB787154403E34623B1DFB61C70DAE5E2BFF1565E100F228870B ] CertPropSvc C:\WINDOWS\System32\certprop.dll
22:33:13.0803 0x2c30 CertPropSvc - ok
22:33:13.0808 0x2c30 [ DB541802D8564AA30A68245BE168F461, B50D4A5D9A8D1BDB18B0D2147612DD018ACD00FBB2CEB020E93AA05874EA3667 ] cfwids C:\WINDOWS\system32\drivers\cfwids.sys
22:33:13.0810 0x2c30 cfwids - ok
22:33:13.0820 0x2c30 [ 05EA22CFC40EDE05BF6E3BC782E5204C, F0C9C692FC31387E9D19426D3253317B6BA86D7118E3884C11E3287695006443 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
22:33:13.0825 0x2c30 cht4iscsi - ok
22:33:13.0875 0x2c30 [ 863E1C9F6750446DFB9EDCAEC3531367, 88C5EE76FD85640EB1440DEFC7B6CB918E18DC09507BA91FAE285370B8C7D56A ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
22:33:13.0905 0x2c30 cht4vbd - ok
22:33:13.0912 0x2c30 [ 3E416539352B007AD0610BF34AC15D31, E2041129770B24AE95C5EC4B507477C72DFE8CB08D412E2621BF67207F9DEB8C ] circlass C:\WINDOWS\System32\drivers\circlass.sys
22:33:13.0913 0x2c30 circlass - ok
22:33:13.0917 0x2c30 [ 616E1ED94FA7F96D429D985FDB203D2E, EA681C442AA0F7D424C8DABD8D1C14653E61BDE740C0BC4C6C308B5FB4FE67AA ] CldFlt C:\WINDOWS\system32\drivers\cldflt.sys
22:33:13.0917 0x2c30 CldFlt - ok
22:33:13.0927 0x2c30 [ 96C01F97576D2542FCBD28E13C8CC6A1, 98E2501197B97399EB1F7C8AA96B5696931736E44400314E768A6C029B9E1C62 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
22:33:13.0934 0x2c30 CLFS - ok
22:33:14.0004 0x2c30 [ F6ED2A874E4FC4FC95F544088F0523F4, F5F239A666288373ED93C6F13EC14FC4AC7257ABF117A7DD97F20070F8EC2205 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
22:33:14.0061 0x2c30 ClickToRunSvc - ok
22:33:14.0103 0x2c30 [ 85F31D4986E81CF3E78A5E2442C8F7AF, B6E6233D63A2C3E7AF0A9BBB62799159BF96C0F0EEBBC9B523BD227CC7A746B3 ] ClientAnalyticsService C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe
22:33:14.0128 0x2c30 ClientAnalyticsService - ok
22:33:14.0158 0x2c30 [ FA57DEAD00DF87AF861B5FAF253ED3B9, 81BD591549CC1F2312AE85A455B28D051FC7D3A54D6371A634DF09DF8A00F952 ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
22:33:14.0171 0x2c30 ClipSVC - ok
22:33:14.0176 0x2c30 [ 5118CFC33BBB51C7E3ED441B7085AD26, 8D33864FF750926C4B95827FFAD24C558DE8A90FC5B2663084DEAB5ADBBFAFD2 ] clreg C:\WINDOWS\System32\drivers\registry.sys
22:33:14.0177 0x2c30 clreg - ok
22:33:14.0186 0x2c30 [ 7BB935831ACAEEF54684B675575530E5, C0F1D2BD84B696BDDA247845A1A76E188175EB36F1C52D8505C250E088CF44F2 ] clwvd6 C:\WINDOWS\system32\DRIVERS\clwvd6.sys
22:33:14.0187 0x2c30 clwvd6 - ok
22:33:14.0191 0x2c30 [ 232F3A3AC3A2FB32C5C46503A6517073, 9E0232E095471E6C8825E870F5842838F1AE515E56410F6A5CC3D58A9A4AF33A ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
22:33:14.0192 0x2c30 CmBatt - ok
22:33:14.0208 0x2c30 [ 3413CE81E02C091F33C4C3DD3071630F, 4758A2BB2FD453E9867C04CC420D12B279BB97E3C4E664A7058EA5F1EC63D04C ] CNG C:\WINDOWS\system32\Drivers\cng.sys
22:33:14.0217 0x2c30 CNG - ok
22:33:14.0221 0x2c30 [ E1BFF774FF67CA951A5DFF0E104FB132, 68809C4B72C54CEDE3AD33F5634E15A0225A67B391F9012EC7CEBA8AFC6EC3D5 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
22:33:14.0222 0x2c30 cnghwassist - ok
22:33:14.0236 0x2c30 [ DFDAEDB857BC18764F0D8ECDCC3C1499, AE12E908BAF53C605A17A9FB1AFD6BFBEC75EBE45D893541281473C197C71FED ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_de4c68ea4fb1be53\CompositeBus.sys
22:33:14.0237 0x2c30 CompositeBus - ok
22:33:14.0240 0x2c30 COMSysApp - ok
22:33:14.0245 0x2c30 [ 04532711732BE9DBC364E88E4A9EC18A, FCEB1F486E146A3FE7307397C1EB6760BFD8A327545F81C546F7134B08615B9E ] condrv C:\WINDOWS\system32\drivers\condrv.sys
22:33:14.0246 0x2c30 condrv - ok
22:33:14.0266 0x2c30 [ 605D4C2E374197FEA0D0BC9C41E5945A, 0E655CEBB86DECC76153776AA4B78B7B7457ABA899B3437F76A7BE09F08752BB ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
22:33:14.0280 0x2c30 CoreMessagingRegistrar - ok
22:33:14.0294 0x2c30 [ 2309E684CD1E5E09AFE4480B35840CF5, F307D2B5A9EEA95B478348EBE30290D8ABFF090D122327502B913CA614BCA170 ] cphs C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\IntelCpHeciSvc.exe
22:33:14.0299 0x2c30 cphs - ok
22:33:14.0313 0x2c30 [ 3AB0811AC4A792705B45B38FAB169CD0, A6D499AEF53059A2CBBA0B91CE3FEEC681B581B776C3B3619EB1AC8859745CC1 ] cplspcon C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\IntelCpHDCPSvc.exe
22:33:14.0320 0x2c30 cplspcon - ok
22:33:14.0327 0x2c30 [ 1F7F1A15B807BC7B241BB2FEEA79BC92, D756E2247757C274F3470B46FCDBB63317C05E8E66FDA9DB7ABF3A6820933D4C ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
22:33:14.0330 0x2c30 CryptSvc - ok
22:33:14.0343 0x2c30 [ EFB2A77F0CD1B8A79899C1D37B01CA86, 9FA32E0853FA93513ACA2CD4203DE8BC22268ABCA4BBDB366307C106F4FD5917 ] CSC C:\WINDOWS\system32\drivers\csc.sys
22:33:14.0351 0x2c30 CSC - ok
22:33:14.0368 0x2c30 [ F010BDED808E86E1046F08865C11EDF2, 48FE0D176F7FA1F04685C0A1FD4FFB6464B6B88883D7D50E05C9C6C0636E895A ] CscService C:\WINDOWS\System32\cscsvc.dll
22:33:14.0379 0x2c30 CscService - ok
22:33:14.0384 0x2c30 [ F51953EC4B9AACD92A3B3CE66E05CEF4, D39C9696213F53F89209000F245AC178B342A84E46EE766B634BB8DB86A26BB8 ] dam C:\WINDOWS\system32\drivers\dam.sys
22:33:14.0386 0x2c30 dam - ok
22:33:14.0421 0x2c30 [ 0E79A4C76CAAA0CFE9CA42C13E5AA086, C4D90EDA54216CC7897128D39517E4E18195BF28254796C6D0684E2C7DB90642 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
22:33:14.0438 0x2c30 DcomLaunch - ok
22:33:14.0450 0x2c30 [ 1175E107082287A58A756239F48E1A73, 0DB2017061D94FAC95CEBD7C4729E42018A92698D72CEE3EA412A9D14DB8D552 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
22:33:14.0458 0x2c30 defragsvc - ok
22:33:14.0469 0x2c30 [ BBCAC50027D030E07EC7E5C36469FAFF, FEF39659F21D2AE676E4882FBAF5A881C534BB7EA26E5EFF9F7B5F8B952D6532 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
22:33:14.0476 0x2c30 DeviceAssociationService - ok
22:33:14.0484 0x2c30 [ A2BACEBAC01BE7A6656B454E75C23262, C2C168718A341D48679AC4CA8005BD06E9F1F0D1F7C72D3C30A7A8CE1F665A43 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
22:33:14.0487 0x2c30 DeviceInstall - ok
22:33:14.0502 0x2c30 [ 5B84093D490A6B060C8BE60BA52C876F, D34A854418A66529B18313A50E6D7EAB982611AD9AB0335245AE764FE0602C22 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
22:33:14.0513 0x2c30 DevicesFlowUserSvc - ok
22:33:14.0519 0x2c30 [ F08F70BBD833BAA3BF0D5E500CBEE6CC, 8BB99E6D96CB8B25036549030986EC267C26BF1FC66E4EB00A3E41FE3BB5DE70 ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
22:33:14.0521 0x2c30 DevQueryBroker - ok
22:33:14.0526 0x2c30 [ 185A4519B7764F4DEF714D890A7A9FD2, 9805D9DB42D11582583EA3F0FFEE9EF2B0C536DA99A9A3D3863B2669B1CC34A7 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
22:33:14.0529 0x2c30 Dfsc - ok
22:33:14.0539 0x2c30 [ BC5188B3F35BB8070888441A2A740465, 05C18A3DC1BD96C6751E76DBF57C47E526A1F9DF5E013B20B69EA0159CD6CE56 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
22:33:14.0545 0x2c30 Dhcp - ok
22:33:14.0551 0x2c30 [ 5DF493C7954890EEC65CC2A21D479F76, 67087AAAC2AF93F265077AA392444E32DC299918A843A8AECFBE73636A5F2314 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
22:33:14.0553 0x2c30 diagnosticshub.standardcollector.service - ok
22:33:14.0598 0x2c30 [ 3835D0DD7A932266CC0746FDC5EC5568, 9F0933698C94FB51960818D20DAF2EE7530EA77DCA6E30603EEE85B60D807891 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
22:33:14.0635 0x2c30 DiagTrack - ok
22:33:14.0644 0x2c30 [ 1203EA16F36C5BEB2509FB7CC03DC178, 195209CB711E5BDE24A50C88AA62F32E8AE26F6A83B423374FCA41444F55D1CE ] Disk C:\WINDOWS\system32\drivers\disk.sys
22:33:14.0646 0x2c30 Disk - ok
22:33:14.0658 0x2c30 [ 626E3564A7588139DE2367E14F8CAAB2, 472530B6DD70F4A5E61A8572B0479A6DF3BE8B4DD1E021BF00D05B3553927463 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
22:33:14.0668 0x2c30 DmEnrollmentSvc - ok
22:33:14.0673 0x2c30 [ 038B8B76284BC291EC75B005BB3EB13F, FE7BD7CF833C4A96ABF4FD6EBAB829CC4D8096780A22A313035D7E49BBA12D36 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
22:33:14.0674 0x2c30 dmvsc - ok
22:33:14.0678 0x2c30 [ 32C76DFE2586EBECFFA4112E9196591C, 190C294F50B96B13D0B776F7C19DCB47EAACBEE999CBA50236CF8C856CF38B17 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
22:33:14.0680 0x2c30 dmwappushservice - ok
22:33:14.0688 0x2c30 [ FC3AA34608A69BDAC67E31FB70C8A720, 38815F527DF963B4A7D93895776DDD618BD29782B1FA74EB1A7319AE58739A06 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
22:33:14.0693 0x2c30 Dnscache - ok
22:33:14.0702 0x2c30 [ F08CB37830A1F9950E8B2F7B1F78CC7E, E4E75645893597F6A02B98DC4F126A664F5DEF7B1CD4C2DEE5CA8ED18DB64C9C ] dot3svc C:\WINDOWS\System32\dot3svc.dll
22:33:14.0707 0x2c30 dot3svc - ok
22:33:14.0713 0x2c30 [ 3425E26D0A7792F2EE7745C0336C2062, 54A3AFFC31C2641BCE1877F2CBA61D2CD7191BA39FD5B3659491E4E307570C1E ] DPS C:\WINDOWS\system32\dps.dll
22:33:14.0716 0x2c30 DPS - ok
22:33:14.0720 0x2c30 [ 85680CFC129C7BD79B09404DB833DB78, 62A5AF0ACF16ACAC84F95AB9E82E43A9F1A6D4EBED3319E1C83112FB41678EAA ] dptf_acpi C:\WINDOWS\System32\drivers\dptf_acpi.sys
22:33:14.0722 0x2c30 dptf_acpi - ok
22:33:14.0726 0x2c30 [ 4FC126DB5602E8661E9D78818C3FCED7, DC5CE610B408C02B1B2567BF5B8BB2B52E0C6699A5987FE3FF34AECC78071E98 ] dptf_cpu C:\WINDOWS\System32\drivers\dptf_cpu.sys
22:33:14.0727 0x2c30 dptf_cpu - ok
22:33:14.0731 0x2c30 [ 3D934A1C02EB6979CF45C70A71F580EC, 279B325E18ABF82FF523095D8D5958A3A48C7B7A4F64BD562DDED1D0662B608A ] drmkaud C:\WINDOWS\system32\DRIVERS\drmkaud.sys
22:33:14.0732 0x2c30 drmkaud - ok
22:33:14.0740 0x2c30 [ 5E92CB292D676634058E6C62653C9227, CE35C51B444664641306B4C2E21978B3418B58B2A973B19B908D86FE723FB4C4 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
22:33:14.0744 0x2c30 DsmSvc - ok
22:33:14.0750 0x2c30 [ E479C2656A3A47F5D4FAD10AE6EAED52, B17D18D5440CF131EEADA385989A8ED0DB7728CAAC4E745720947DD1BC4F9EF6 ] DsSvc C:\WINDOWS\System32\DsSvc.dll
22:33:14.0754 0x2c30 DsSvc - ok
22:33:14.0763 0x2c30 [ 682D7DF9704217DD8716307F9E2EEC05, A8D36414A7316C59995CF9689DD84B2FD3FECE47E39F515C81BC3C439890E993 ] DusmSvc C:\WINDOWS\System32\dusmsvc.dll
22:33:14.0768 0x2c30 DusmSvc - ok
22:33:14.0815 0x2c30 [ F5DFB6D800946ADE35C71BE9928098A9, 7B187EC9CCA233C16C9F98F9CFFB1A85A42FC79C652B26C8FED40890F11871F3 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
22:33:14.0849 0x2c30 DXGKrnl - ok
22:33:14.0864 0x2c30 [ 83E4A14F851341C933C3235BFB882ECA, 152EDEF6B566D010FE519FE4B046050A5281069B48AFF8A2395D7D2BD0519701 ] e1iexpress C:\WINDOWS\System32\drivers\e1i63x64.sys
22:33:14.0871 0x2c30 e1iexpress - ok
22:33:14.0877 0x2c30 [ ECA1628436628362856ACF239E6AFD29, 19051DC348918B863E0A272CF56891B8CB49E7E705B8BAC7663D36C797A7B962 ] EapHost C:\WINDOWS\System32\eapsvc.dll
22:33:14.0880 0x2c30 EapHost - ok
22:33:14.0939 0x2c30 [ D64CD3AE93125EDA383190C2AF607E70, 3D180B96C6A2318842FA03AE5F703320A93CF1F440FF7D0E6F6F9BAD98F2FA02 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
22:33:14.0986 0x2c30 ebdrv - ok
22:33:14.0995 0x2c30 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] EFS C:\WINDOWS\System32\lsass.exe
22:33:14.0997 0x2c30 EFS - ok
22:33:15.0003 0x2c30 [ FFBB37982E6D24AEC7A2E5459098EAC9, E89DD74540088ECAC9E802D7A059C0A6E3E5412BD42E5E9F26258724458EF8DB ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
22:33:15.0004 0x2c30 EhStorClass - ok
22:33:15.0011 0x2c30 [ ABF38D02E01D6ED87AE1DF65FC5DF62D, 57D48609DA30F60016D2ADEB9A772942FB39A117247EB63FAE3FCF50D726B698 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
22:33:15.0014 0x2c30 EhStorTcgDrv - ok
22:33:15.0020 0x2c30 [ 5E4AB60D50F368A09275F4055D621EDC, C840F5DF3C0813EC6CB9BA0C3C91F2C6410227A6255DEF5FA94C8AC1E43E36A0 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
22:33:15.0023 0x2c30 embeddedmode - ok
22:33:15.0035 0x2c30 [ CA966CED8970A60FB00A3592564EF093, 4BD904032445235EE69DAA0024E0FB3D8B2325D897A683E334754EB3CA90AB39 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
22:33:15.0040 0x2c30 EntAppSvc - ok
22:33:15.0045 0x2c30 [ B9A59B4AD516E38C39FA416398B96CCB, 4630A9AD414476B47F634F2EB5659597797222A8938B68847B97FECCE1A1B5F8 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
22:33:15.0046 0x2c30 ErrDev - ok
22:33:15.0085 0x2c30 [ BB6815A7650EB9CA27D6AE53D636C028, FC78D6B8F2F27E6500AF2823C6CA7072503A344201C26D34319383B32E2CA92C ] esifsvc C:\WINDOWS\SysWOW64\esif_uf.exe
22:33:15.0104 0x2c30 esifsvc - ok
22:33:15.0113 0x2c30 [ 438D377AF3651B762568AB6CFAE3C831, F1D28D7F4AC83076D2D7B271FE015410953B7A2F1CFFAEC456F6CF3A2909A47E ] esif_lf C:\WINDOWS\system32\DRIVERS\esif_lf.sys
22:33:15.0117 0x2c30 esif_lf - ok
22:33:15.0131 0x2c30 [ 1541374239F33512D7F4D24ED1E9238C, 8B1548D4052A72175EB6ADA9FD4286ACD5041E1CE071DCAC3760BB227FCD3621 ] EventSystem C:\WINDOWS\system32\es.dll
22:33:15.0139 0x2c30 EventSystem - ok
22:33:15.0157 0x2c30 [ 6DCB7233AAD29E43331B3ECFCC8FB8D1, A8E203BB774A4E055C871E9A28F958287A75E8BEA42496E6BA9983063CF6C539 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
22:33:15.0166 0x2c30 EvtEng - ok
22:33:15.0176 0x2c30 [ 9C4D88E8614487AD85A6F18A71A7298F, EE6F48C89D6379C7361484EAE7C7FAAA477D48032BFDD0D363E48642E62EADF4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
22:33:15.0182 0x2c30 exfat - ok
22:33:15.0192 0x2c30 [ C61014A176ECAAF97589E6FC979CE786, FB913AC647B68DB9854367BB1E53A504A85833966211279C8D7171698F743B27 ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
22:33:15.0197 0x2c30 fastfat - ok
22:33:15.0212 0x2c30 [ ECC5AEFEA31F1A078E954305B8CA6373, 15948D017E3B52D3B4BBEC047F963BD77247E24A59F0532B6A023B0C4159FC84 ] Fax C:\WINDOWS\system32\fxssvc.exe
22:33:15.0222 0x2c30 Fax - ok
22:33:15.0227 0x2c30 [ B668C532AFDA4F2CCA4EE38B4B1BCAD6, 23A99AB2BD0AD069A088A2B256BF45FF96082E33ED2580AE06EECA06C053BEC8 ] FBIOSDRV C:\WINDOWS\System32\Drivers\FBIOSDRV.sys
22:33:15.0229 0x2c30 FBIOSDRV - ok
22:33:15.0232 0x2c30 [ 853081957BA148F38FD8DE4390CFCF4A, 37C92C7ABA55A5FF7094F77F8EBEEE1F4BEE161CEC6B01A50FC0D0C39E36C142 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
22:33:15.0234 0x2c30 fdc - ok
22:33:15.0238 0x2c30 [ 885C06C35CC8FAEDDE3CDA36B72CA2A9, FF6584E7AF2FB540B2183665C3E216BE98DE953CEA6A7E4C5F13514BE4AAC9D3 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
22:33:15.0239 0x2c30 fdPHost - ok
22:33:15.0244 0x2c30 [ 367E878C79D9F391E3D53B6BBC1B6386, 739D89F6954E17B73F53702CFF8EE985FB241255D962A83BAF1A20E783CAF466 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
22:33:15.0245 0x2c30 FDResPub - ok
22:33:15.0250 0x2c30 [ 514F6A0B83527DD6ACCC8B21A57B10E3, EA3D401E42D05BA39E5874513DFB895A086BECE4D69FC1AC12F85F326A435A4B ] fhsvc C:\WINDOWS\system32\fhsvc.dll
22:33:15.0253 0x2c30 fhsvc - ok
22:33:15.0258 0x2c30 [ 27E764D6460504B7271AFECE7A59FB76, A32B08142068BF042B3E47C0CA7F4FCFD07A37807B1B8DAAE614F3A132475D52 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
22:33:15.0259 0x2c30 FileCrypt - ok
22:33:15.0265 0x2c30 [ 3D6087F51110F3CC0DA89385354F8C5E, 49FF976C3391A257BCD4B048BF6D1273F8537005E32D65E5F272AF3294639F05 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
22:33:15.0266 0x2c30 FileInfo - ok
22:33:15.0270 0x2c30 [ 057E95E53C38260C4EF49B3A077770CD, 7008E71663046FF1D91D9DC3570094561C812067E1CA07715A1D2E4F787207AE ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
22:33:15.0272 0x2c30 Filetrace - ok
22:33:15.0284 0x2c30 [ 58E8284200F871352FAABF43A932C225, E4661BB2CDD214C4B1594A409E32D4AEEAA0FFFA789F8DC1C013961951456FCC ] FJStatusPanelSwitchDaemon C:\Program Files\Fujitsu\StatusPanelSwitch\StatusPanelSwitchDaemon.exe
22:33:15.0290 0x2c30 FJStatusPanelSwitchDaemon - ok
22:33:15.0297 0x2c30 [ 1AA08D2B7053A897C411F5B3564DA25C, E034EC716E90A6EAE93618DB36EFADFC166AB79E1C636FF63E33CECFC8743916 ] FjStaUpd C:\Program Files\Fujitsu\Utils\Config\Run\Service.exe
22:33:15.0299 0x2c30 FjStaUpd - ok
22:33:15.0303 0x2c30 [ 90B2983D8495C26345A1DC5F0C3BB07B, 50D834D40C27EEF5023556A77B13D3335789333E302A73DF221CD86D156FDEE9 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
22:33:15.0304 0x2c30 flpydisk - ok
22:33:15.0315 0x2c30 [ A84261F75F490E45CFEDBA77EFE4F67E, 292BA04D8996140255E4B6105015C2A640890BEFB6C022E30E0D9CBF45D5F4DB ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
22:33:15.0321 0x2c30 FltMgr - ok
22:33:15.0357 0x2c30 [ 4255A21E89EFEDD8488E3ED81A9F7993, CA918E83A204A38C022A8EF28ACBF4575CEA39EED04FC739C5AD9BC464FF1753 ] FontCache C:\WINDOWS\system32\FntCache.dll
22:33:15.0384 0x2c30 FontCache - ok
22:33:15.0392 0x2c30 [ B282011D13BBEEA0273DF33C5E776D55, B4AF068BBB09D0F546F5590FCDD745250CFD58DD3A8ABF5DC26670FA32D181FB ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:33:15.0393 0x2c30 FontCache3.0.0.0 - ok
22:33:15.0407 0x2c30 [ 8E0A89C8BC29F4B066B1DA4B96A63609, 1F4ABEC209ECDCA20620C7D7DB0C407F8D1032D506259B11FEAF2A0C3E14B1A3 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
22:33:15.0416 0x2c30 FrameServer - ok
22:33:15.0421 0x2c30 [ D2814848206DFC18EB8D3D069FAE703E, A62263CDF9261B692423473F4FF23B01AC864C05850BA5591EB9019906B4A08B ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
22:33:15.0422 0x2c30 FsDepends - ok
22:33:15.0427 0x2c30 [ AE7EDF845F41ACA3B74567C3CE20E987, 6159C227C85912B03D8C35A1EF91705AE6C1C23C7228D6FCC0A9529844798E1B ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:33:15.0428 0x2c30 Fs_Rec - ok
22:33:15.0432 0x2c30 [ 08046E5E8F0D265A925481062BB2B6A5, 6944461627ABB7329521C34338F32FD2F92C2CFE83B119D5585821E1593FAE30 ] FUJ02E3 C:\WINDOWS\System32\drivers\FUJ02E3.sys
22:33:15.0434 0x2c30 FUJ02E3 - ok
22:33:15.0439 0x2c30 [ D00101B91F2F79F7EB16688F2CAFC810, 654D29B9E319E411D48C4C14ABF58BF300AC2E2DB0E29639389D59D8AADF4B5B ] FUJ02E3Service C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
22:33:15.0441 0x2c30 FUJ02E3Service - ok
22:33:15.0457 0x2c30 [ FF0699483185CE3B4E1144DF19AC5E97, 9BA0A2F04A1A51AFC3B830452AC75BE2D76300BAF1918BCF5AB60E4EB9888F0F ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
22:33:15.0471 0x2c30 fvevol - ok
22:33:15.0478 0x2c30 [ 4616F61E24B3AEA6E0E4EA7D69531EF4, 34CB16F68E4A4D19346C7FEC29BB5FE09BAAEC19EA730C9B93450F940D124D49 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
22:33:15.0479 0x2c30 gencounter - ok
22:33:15.0484 0x2c30 [ 23174BB6937459B924BB8EF667FB28EF, 6675B87F4DE9CCA96B6BAB9F77C4E0B377828613D9FFB03F7D443AF11321F157 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
22:33:15.0485 0x2c30 genericusbfn - ok
22:33:15.0494 0x2c30 [ 4B11CFBE1D9B73A9D865F6AB26F800BA, BD76CB5AF0EE6DD404875A4C36622C6BC8CCF2975C47E28DD305EB041C6C0B91 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
22:33:15.0497 0x2c30 GPIOClx0101 - ok
22:33:15.0526 0x2c30 [ CF22C0941409C772AA1568DC4F89A111, ED5895F024E64B672EB3FAE6C456FA0D30A068CF2B475A7EE988DEA4DCD6D8DE ] gpsvc C:\WINDOWS\System32\gpsvc.dll
22:33:15.0546 0x2c30 gpsvc - ok
22:33:15.0550 0x2c30 [ 3FC3FCF557D0BE3D724EA10642E1F6FF, 744D0DDE748A1B681087668CB893F9A60A2BBE80A71098944E75B6A9AA934C82 ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
22:33:15.0551 0x2c30 GpuEnergyDrv - ok
22:33:15.0558 0x2c30 [ DD1A6F4998E7E21564FA9BAFE21C87ED, CAD04E9B8244ACA3314C6FD4422BE7A3B578AF1E61F13773A2C5DB388B3337F6 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
22:33:15.0561 0x2c30 HDAudBus - ok
22:33:15.0565 0x2c30 [ 9F90819E301C70A3A042FC05D3E41B5F, D2175786775D08686264001ABAA4B61DC08A847666F6B9A2A64D10BFC022F646 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
22:33:15.0566 0x2c30 HidBatt - ok
22:33:15.0572 0x2c30 [ 3CA3244C45B25F3B3ED9445C195E40EB, 9C43B31DAB473D29069D0D6BC130660424FE2414BA519107641FA1561C10C76D ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
22:33:15.0574 0x2c30 HidBth - ok
22:33:15.0581 0x2c30 [ 55DAF856F9633DD2519BA4E942870F02, 5283548CB93EB46C5FD3B08E45C97BBFB33D47F11F89560508775889FBF2F754 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
22:33:15.0582 0x2c30 hidi2c - ok
22:33:15.0587 0x2c30 [ E34216A190D9BF8EAA666F6903BCD0EF, DA8529DAF903B447CC5FF2D112F670696549A4B66F54DF9A8C8C615D969CD477 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
22:33:15.0588 0x2c30 hidinterrupt - ok
22:33:15.0593 0x2c30 [ 852DBB5185996AD8C73872A43A453729, 8C20331AE99E280799407CC5FCF88F8F645C331604230876A2CD7C253B9BD633 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
22:33:15.0595 0x2c30 HidIr - ok
22:33:15.0599 0x2c30 [ 6339CC87F0F610D1575C9A419940602A, B2A054ED0B669FA54E250EC2926955B1D944FA1FB2AF5B590C181CB2E9D297BA ] hidserv C:\WINDOWS\system32\hidserv.dll
22:33:15.0601 0x2c30 hidserv - ok
22:33:15.0605 0x2c30 [ C1A608120DE0DF52E51B8BAF86AF19F9, F3529822E78CFCA2E323A75926A833529889E40BB9602B287CC343C496CB2062 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
22:33:15.0607 0x2c30 HidUsb - ok
22:33:15.0612 0x2c30 [ 78C78504A6C58E7A7F3156707A64CC2E, 904B06E5EA2A7ADC5CD79FDCD81AFB474C2E21F552B0EC81B86ECE3B7920DAC2 ] HID_PCI C:\WINDOWS\System32\drivers\HID_PCI.sys
22:33:15.0613 0x2c30 HID_PCI - ok
22:33:15.0620 0x2c30 [ 2FE7E5C7DEE4872FF5FE18743D870B5C, 8E547C45D80519108B4D469430E35E43F97C539720E58DF9B647079EA608D4AF ] HipShieldK C:\WINDOWS\system32\drivers\HipShieldK.sys
22:33:15.0624 0x2c30 HipShieldK - ok
22:33:15.0633 0x2c30 [ BD1CF47172B97707DFC66ADA741AE2BE, 9607AB7074FC54D88FDF6E2A31506BCF8ECBF8FD651BB5CEA2421471C24BCED1 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
22:33:15.0638 0x2c30 HomeGroupListener - ok
22:33:15.0649 0x2c30 [ A004895B838003BAE2281DAF193B6A09, 587FCDCEF769B2AED12551B6426477B764CB8A025E692D4EC8B24E1CBA1C06E3 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
22:33:15.0657 0x2c30 HomeGroupProvider - ok
22:33:15.0674 0x2c30 [ A52ACBECFE7BE36E377A203B969705AE, F42FB19123C5EF404267A911305E3A86411BD22E78944FAF2F189382E364CDF2 ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:33:15.0683 0x2c30 HomeNetSvc - ok
22:33:15.0688 0x2c30 [ 8ADD9CA3E0F18CEA11EA6FAED794A228, B46BA885ED8253A253B1C87C331CA145F7F397AF49853038B3F1EDAF81B2C4BA ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
22:33:15.0690 0x2c30 HpSAMD - ok
22:33:15.0724 0x2c30 [ 2413454E305678EA9A486E8DE2E67849, 5E821E909F99BAB782D89A0CDBFAE5474FEA211EB4F626A824D10D733F3FDC67 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
22:33:15.0740 0x2c30 HTTP - ok
22:33:15.0746 0x2c30 [ D3C45F1B5BB3EE772CDA416A4A3EEB9B, 97CD988CF307EBCC34F37F130F4F2C989DD17E70B2498DB1929B566A3387887B ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
22:33:15.0748 0x2c30 HvHost - ok
22:33:15.0753 0x2c30 [ F60F8390B635156593F7493AE898AFB0, AC5E58CDA12072C5FDBFEA0FA009CE2E251D143FC0878B2658ECCCF797B8B0EC ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
22:33:15.0755 0x2c30 hvservice - ok
22:33:15.0759 0x2c30 [ 563F5FC3B46A70A91AB6C8822AC8BF25, 43E647A7752D7444BF306E38571130AB778AA2A6892782C6C1112E47FBEFBC87 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
22:33:15.0760 0x2c30 hwpolicy - ok
22:33:15.0764 0x2c30 [ C082249BC3E972C8A132D9EC6AD9EAD5, D69EEFD97CF5E0BD64D11DE1C331D02A9BE522BB93A40FF32ED434D960B85D39 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
22:33:15.0764 0x2c30 hyperkbd - ok
22:33:15.0769 0x2c30 [ C6C8315E3262FAE460529C6DA2951682, 4ADBFA6601209BF6F5A9797721CBE2011905775CF4E266D7B42F89915D477E95 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
22:33:15.0772 0x2c30 i8042prt - ok
22:33:15.0776 0x2c30 [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
22:33:15.0777 0x2c30 iagpio - ok
22:33:15.0782 0x2c30 [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
22:33:15.0783 0x2c30 iai2c - ok
22:33:15.0789 0x2c30 [ 42962355A7911407026E920E7252E3E5, 4A4016A53ED61354C81C594968339E6F3CCCFF4A64F8F28AD008ED8137E05AD2 ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
22:33:15.0791 0x2c30 iaLPSS2i_GPIO2 - ok
22:33:15.0797 0x2c30 [ BD47B2FEABFA48C6224D43EE9EA9BC06, 304628CA458AA7B1B8B1CFF12074AD75C1CE7BD41820B99607D7FA99A817D007 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
22:33:15.0799 0x2c30 iaLPSS2i_GPIO2_BXT_P - ok
22:33:15.0805 0x2c30 [ 2184CB3A65888F446FCD6DBA9F073F4C, 0B3D63EC7F61BFAD490C123084965A9F38DBFE587AC9DAE6F4E6B68AD8093DB2 ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
22:33:15.0809 0x2c30 iaLPSS2i_I2C - ok
22:33:15.0815 0x2c30 [ 4126F8DA08CE7924A3AE6F7235F85D5F, 668DC1D09496A95F44C07C5C1F6ED7D3EFC6F89523B2744A86B460E5BECAEFB5 ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
22:33:15.0819 0x2c30 iaLPSS2i_I2C_BXT_P - ok
22:33:15.0826 0x2c30 [ E0F6721DD9BA31948CAB9D027C9EE255, 16EBFD26A76803F9157FD49DC3787B8235DE835C5924797B1C7A0B55CAE76B5F ] iaLPSS2_I2C C:\WINDOWS\System32\drivers\iaLPSS2_I2C.sys
22:33:15.0829 0x2c30 iaLPSS2_I2C - ok
22:33:15.0838 0x2c30 [ 6BF4EA53040AAC9D42A6C4603F1EA069, 3951F7CE5E71D07E4CB3B29FDEA33F3B11403D228A12783BE062C1105EC29740 ] iaLPSS2_UART2 C:\WINDOWS\System32\drivers\iaLPSS2_UART2.sys
22:33:15.0843 0x2c30 iaLPSS2_UART2 - ok
22:33:15.0847 0x2c30 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
22:33:15.0848 0x2c30 iaLPSSi_GPIO - ok
22:33:15.0855 0x2c30 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
22:33:15.0858 0x2c30 iaLPSSi_I2C - ok
22:33:15.0889 0x2c30 [ 827933B762F90EB4E7690D4484190D77, 7400FA7CB1FDCC3142D9F56156C41427FB394CA32BC8887D17B1FB2DFC962C34 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
22:33:15.0910 0x2c30 iaStorA - ok
22:33:15.0927 0x2c30 [ D820075D3395BED28FC57AEF8FBA666F, 7589CCCD355D2685C0E6D317AB39F0DB061153E6859A0F53834B001643CFDF57 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
22:33:15.0937 0x2c30 iaStorAV - ok
22:33:15.0948 0x2c30 [ A243E0CE8644378C9A9D015ABC3EDA27, 0C72F6D39DD64A16F54BCE185F4D8E670D386823F6364E9ED284F7F8DE11CBF5 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
22:33:15.0954 0x2c30 iaStorV - ok
22:33:15.0968 0x2c30 [ E16E4FC9F250E48CB2CAD93E59D010E2, EFF558EDD63DB0FD8BA240E94BD5999106233B95BF86BFB99EE9B897F41C542B ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
22:33:15.0976 0x2c30 ibbus - ok
22:33:15.0979 0x2c30 ibtsiva - ok
22:33:15.0997 0x2c30 [ F1298C1E50E68D77FCB76073B058B69F, 0C09A7367FC548CF845AB664A3C2759CBA621372E880D8231CD6A9F766E4F0F4 ] ibtusb C:\WINDOWS\system32\DRIVERS\ibtusb.sys
22:33:16.0007 0x2c30 ibtusb - ok
22:33:16.0015 0x2c30 [ E3061D5ABA80394D29E26EA58AF7F69A, 9BCF1AD2CC9C7E48FD350F9D59797E17F355C840EDE428143764F93716159C20 ] icssvc C:\WINDOWS\System32\tetheringservice.dll
22:33:16.0019 0x2c30 icssvc - ok
22:33:16.0225 0x2c30 [ 6F83F60651AE9D0072E917C3A5C62DEF, FBCB88057A4B6A24AE81A26D3773DF27E16616C57D40DB68F59FEF60E83BCD06 ] igfx C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\igdkmd64.sys
22:33:16.0377 0x2c30 igfx - ok
22:33:16.0398 0x2c30 [ 6973048EDF42A648556FFDF2254B0B17, 25DBFDAB58FF7994FC6205838761F5BEDF03D52B5A06C5F52E23319DA8783913 ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_134ba6ee926e8361\igfxCUIService.exe
22:33:16.0402 0x2c30 igfxCUIService2.0.0.0 - ok
22:33:16.0424 0x2c30 [ E9E4BB312F6B544392F44D513FAA2243, 3E6917BCE9F1AF554D57FED9E76B33F36D92145B0090A5F8F64E2A53EB4C54A4 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
22:33:16.0438 0x2c30 IKEEXT - ok
22:33:16.0442 0x2c30 [ 0E33BC018502E7FDE77C343055D9C626, CD1C60E8EDAA044E03E5776962E091C1288204033A57A799D446F9B058D6AD59 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
22:33:16.0444 0x2c30 IndirectKmd - ok
22:33:16.0533 0x2c30 [ 0A7B8DC3140215FFB92F2432A6C8AE17, 93704F0ADCEC6757C18ECF486AF85E74561D86C99DF690C6E393CD91AD36DA0C ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
22:33:16.0599 0x2c30 IntcAzAudAddService - ok
22:33:16.0623 0x2c30 [ A6087A824507CAB1ED568895F8081950, 53ADFCC6E795D47A7197AC372DB53E4F95B10409E5AFA7A40CC252ADBE84E8F4 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
22:33:16.0636 0x2c30 IntcDAud - ok
22:33:16.0658 0x2c30 [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
22:33:16.0670 0x2c30 Intel(R) Capability Licensing Service TCP IP Interface - ok
22:33:16.0681 0x2c30 [ 8213094EA736A9C575AB0E22AD09B0BA, 12670A466B5AA37283BD4CB481D000DE3AE2A8D1BD159F67A41703A6FE5675EC ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
22:33:16.0686 0x2c30 Intel(R) Security Assist - ok
22:33:16.0691 0x2c30 [ 869C4DB06F3CB5607B9C849289F09B10, E26668C3D61E4A07AE8BE10267E28FC3DFF904562E2EBC3C3B6C857DD4BC8DEC ] Intel(R) WiDi SAM C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe
22:33:16.0692 0x2c30 Intel(R) WiDi SAM - ok
22:33:16.0696 0x2c30 [ 4B7F8A1AAC7172DB6918A0E10E1D78A3, 1E9922AF9B5458F23A379EDCD61B615B6E53BAF8927237C1C7DCC04122CCF417 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
22:33:16.0697 0x2c30 intelide - ok
22:33:16.0701 0x2c30 [ 0A3DBE89C965FFB7C0D0E38834E77B90, 0166BE79228ED6B3D7AA1BACB4F1BB68357DBF70DF778B2F8A3776E374EE690C ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
22:33:16.0703 0x2c30 intelpep - ok
22:33:16.0710 0x2c30 [ 64EC687A811DC4F69DF3816F073352AA, F70942B67448DF9848F32F88D37E1E0C548CE9FEFC4376628D7CBEF62494D8E1 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
22:33:16.0713 0x2c30 intelppm - ok
22:33:16.0717 0x2c30 [ 549C278119FF539C3B219C55B98B0E87, B4C15AB0C77EAB6C5ADEBD014F610BBFC537EAEB0E3960636624001C8A5DE56E ] iorate C:\WINDOWS\system32\drivers\iorate.sys
22:33:16.0719 0x2c30 iorate - ok
22:33:16.0723 0x2c30 [ A0F9F2E87F0C751FE164D90EB44A9B63, BE816F17E43E5F80AC65E913AB7F9E77B8D6B70B90A784CB00C907D3DAFFD4DB ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:33:16.0725 0x2c30 IpFilterDriver - ok
22:33:16.0746 0x2c30 [ 57A93FCF94FAB8C2161335E56C81CD16, 4A642E4FF70DA209074B78EC50B76A024DB5D01B8C9FCC405A64AF0F1A7EA389 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
22:33:16.0762 0x2c30 iphlpsvc - ok
22:33:16.0767 0x2c30 [ 656DDB34996A96539BA6E2843B5F2A77, EDC3F1A2BA38A9655361A20B6C8001984AEB1A530C5385CF6EC0AF595305DBC7 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
22:33:16.0769 0x2c30 IPMIDRV - ok
22:33:16.0776 0x2c30 [ DCC05E5EAA580C97F13B434FAFACED85, 5C6CFD3D9FAEB7274E05F3D19D3AA064624500C616650DE227B849B505662BB4 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
22:33:16.0779 0x2c30 IPNAT - ok
22:33:16.0784 0x2c30 [ 9A6B993A95CCA15502DE3C980508DC44, 370A1A4531A72CFBF331ED274913925A269115A13E3A6B5E1821FB48DD7242AE ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
22:33:16.0786 0x2c30 IpxlatCfgSvc - ok
22:33:16.0791 0x2c30 [ 9035C10C7EB8CF7C87CEA82A62EBB43A, A0DA94E80E503DB3C2877CE1BCDC70B3FCC6861ADFBCCE66C6D2592BD63F27DC ] irda C:\WINDOWS\system32\drivers\irda.sys
22:33:16.0794 0x2c30 irda - ok
22:33:16.0797 0x2c30 [ E7FD479E3298F3C8852A0D2F092BDB35, 07F2E779268EBBF4F32ED1C8423493B36BA823905E71B524C6AEBA0093193307 ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
22:33:16.0798 0x2c30 IRENUM - ok
22:33:16.0801 0x2c30 [ 65B145143F6E5E1B5A213F0D9F4C4C44, 0E390BD8D7B4B9562E8FEE0D109DCE0D9EA823FD2D20B39FFACE3331F30FE5BC ] irmon C:\WINDOWS\System32\irmon.dll
22:33:16.0803 0x2c30 irmon - ok
22:33:16.0805 0x2c30 [ 1DFC3CCA51785254C5604238BB1A5467, 31451A90A91AEE14C6B24F84CB9816E5C77179D411B8B3E8547F538235BEEFB0 ] isaHelperSvc C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
22:33:16.0806 0x2c30 isaHelperSvc - ok
22:33:16.0812 0x2c30 [ 7FE3B3A30FA20F27AF7022A01C2266BA, 8AB924F08ABF1DCB154B6A3BDB7E3E5A863008B5AFF8E3DB9759848774E00E8A ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
22:33:16.0813 0x2c30 isapnp - ok
22:33:16.0821 0x2c30 [ D492648D96A14BA639B76D177B24CD82, D65D2494BAC8A317FD70293E59D039078D1D19FAE20A4EB2665246CAACFF0C6F ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
22:33:16.0826 0x2c30 iScsiPrt - ok
22:33:16.0832 0x2c30 [ 544FB0543707090EFA59C83F33BAC0EE, 52BE037BE0483AF3953B40ADE40B1462F11CF7C42F42B226BD54463E3200559B ] ISH C:\WINDOWS\System32\drivers\ISH.sys
22:33:16.0834 0x2c30 ISH - ok
22:33:16.0839 0x2c30 [ 4F0F84A73442B7AD12EF3C2C645058E0, FD09273E60E60F2213117D747BFBCB411BA7AFF8B97F73DC702A3851217D0257 ] ISH_BusDriver C:\WINDOWS\System32\drivers\ISH_BusDriver.sys
22:33:16.0841 0x2c30 ISH_BusDriver - ok
22:33:16.0848 0x2c30 [ 1D6E77475AF059458AB7E15034EE1F9D, DEB72B8DCD2341373CBB5BD2915EE991E539864C15E30198B8B3638D42228324 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
22:33:16.0851 0x2c30 jhi_service - ok
22:33:16.0856 0x2c30 [ D36B404BF979297C6572AEF98B2594F2, CB2F4E6589936D35D59CA70B39A29D091540EA125BE4B937AF92CEA0C6D0AAEB ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
22:33:16.0858 0x2c30 kbdclass - ok
22:33:16.0862 0x2c30 [ 7E2036A846789D6D6A2EE21915017EE1, 82AF85CA30B440E453F7694C7EDABB5D2DB213AD2FE8620B92667DFB492229A1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
22:33:16.0863 0x2c30 kbdhid - ok
22:33:16.0867 0x2c30 [ 4C054B8E901F41F5743DADE8A29FF256, 1009CC2503E08AFEA849BA83135C2D75C573FC4D6EFB5DBCDCC7ACB17AF83152 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
22:33:16.0868 0x2c30 kdnic - ok
22:33:16.0872 0x2c30 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] KeyIso C:\WINDOWS\system32\lsass.exe
22:33:16.0874 0x2c30 KeyIso - ok
22:33:16.0880 0x2c30 [ BA7A5838866618A4E82FBC05B8923605, 96E898C7768BED66487A00E02B2E50516602BCF54E6648F5528E3334AE8527EB ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
22:33:16.0882 0x2c30 KSecDD - ok
22:33:16.0888 0x2c30 [ 6629CAA1F157088B9EDD1EAD24C6D753, 3E5F3BCB34F4B52BE46B96F9F720FE5FB37A01D4E408875F6BB89F5B5C5A3900 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
22:33:16.0891 0x2c30 KSecPkg - ok
22:33:16.0895 0x2c30 [ 9778205F28DC4F2EFFCC146647FE5CF0, 6B7EFFB08C7757A2830745920A624F89DBD5B323E0A884932FECF06471894F9D ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
22:33:16.0896 0x2c30 ksthunk - ok
22:33:16.0906 0x2c30 [ 08F9C3F7FE3019BF53B1405B1820528F, E90940533F88A33C396E1DF9D186E945F030315FB2201E479F144E27387333CA ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
22:33:16.0913 0x2c30 KtmRm - ok
22:33:16.0921 0x2c30 [ 0DD3C5101AE1AA7E28B4CE5AB190C261, FAFFE2102972798210ED5E766F54C5EED6262354E132E1C24539DAA598895608 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
22:33:16.0929 0x2c30 LanmanServer - ok
22:33:16.0940 0x2c30 [ B82D6C634638534E41748FCEC909E55D, C286EB7B3E780549F77E75B4B9F053861D82EFDCD43B1308848A08D23EFADDCA ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
22:33:16.0946 0x2c30 LanmanWorkstation - ok
22:33:16.0952 0x2c30 [ AF1077E89AD4458EC9B1CABB35595346, 762AE3218B7B05032C4199F0AE9ABCC822C3DF88BBB09536202B6B26A7944024 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
22:33:16.0954 0x2c30 lfsvc - ok
22:33:16.0958 0x2c30 [ C0CB3B9F1F92C36B91309FDACCDF918B, 5D40C11388A48323D9D9AC18A950B09E2654092BC2F9DE45779A9354668BA18E ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
22:33:16.0960 0x2c30 LicenseManager - ok
22:33:16.0965 0x2c30 [ FC37745959DFA4871759E4DCC836227A, 8B63F798440FD0A34E2F2940B2598238BC852EF3EFD22147A77AB4BA6FB9E704 ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
22:33:16.0967 0x2c30 lltdio - ok
22:33:16.0975 0x2c30 [ 1797F544956D46966C67A2F7879403A9, D7820D2F8E936FF13D709BA1BD0541AABA8402F38698FE96DAE70B4E7A730835 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
22:33:16.0980 0x2c30 lltdsvc - ok
22:33:16.0984 0x2c30 [ AE561CB0813D4DFA7D3E4471B2B70F5F, 344EA5E02D04098F032353962C1B70B0F578BCCD2843C70D6330B3F967D2FDB5 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
22:33:16.0985 0x2c30 lmhosts - ok
22:33:16.0996 0x2c30 [ 258B7A8D42365472A184C064154F265F, 70FDBE83157C6EABF0223C54A6C57137D52E389D0118BFAD4E2BF11D15507354 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:33:17.0003 0x2c30 LMS - ok
22:33:17.0010 0x2c30 [ 16C9D4D822CCA795A72DC88B25A577CC, AEF93AA4E815F90C1A42D574C6DE7EF31FE69AD7B78B8E1AC7C27304F3CD7959 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
22:33:17.0012 0x2c30 LSI_SAS - ok
22:33:17.0017 0x2c30 [ 920F0CFCED5F28A31B79F1C470649D11, 5A5F390F2FD7C26807E7896E9F8F94EE7E69FE3C4B247BEA515588EB076148EF ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
22:33:17.0019 0x2c30 LSI_SAS2i - ok
22:33:17.0025 0x2c30 [ 0FE63316F1C70A0F759A449FAC64C24B, CF99D62FDA862095BA1EB57DD58CEC070E0552E15B6F454B87D593707132636B ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
22:33:17.0026 0x2c30 LSI_SAS3i - ok
22:33:17.0032 0x2c30 [ 80E82C46B27A923A3744531069B63857, C73A200FC2A009D19F2C26FAC07489EA0F4329CD7A1D80EB3200B19DFC883F8D ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
22:33:17.0034 0x2c30 LSI_SSS - ok
22:33:17.0050 0x2c30 [ A69A59CD52D26443FF728FD52283598C, E416481B23CDADBB9E608E49C9DC9A520D14935E92CA9B63E7763692DB382D7D ] LSM C:\WINDOWS\System32\lsm.dll
22:33:17.0061 0x2c30 LSM - ok
22:33:17.0068 0x2c30 [ 88F5570C04766EE561FF129B2F93030C, A36F7FF563F813EC0F69E5BFB76C58A1C9824F54BA1729C4096E8B7B7C8D90EC ] luafv C:\WINDOWS\system32\drivers\luafv.sys
22:33:17.0070 0x2c30 luafv - ok
22:33:17.0076 0x2c30 [ D365217A6D4528ABB41B40C8FBD227E8, 340129785A5788A8FFE0E1B339A616D290F7504F3658F63E1A3B169B38460FBF ] MapsBroker C:\WINDOWS\System32\moshost.dll
22:33:17.0079 0x2c30 MapsBroker - ok
22:33:17.0090 0x2c30 [ C3EED732789052C98A2613A7E1C37CDA, D71735C8FB772EEB7F3F304CD79D8D774A9A285A94365DE0E635F61357EC9F0F ] mausbhost C:\WINDOWS\System32\drivers\mausbhost.sys
22:33:17.0097 0x2c30 mausbhost - ok
22:33:17.0102 0x2c30 [ 4DCE65116A28488593FF5A6A18B03DB0, AAFA7E7C1C9A38B8CF5CE530F96028191F52B1FDD2790246E413B63CF7C5F02A ] mausbip C:\WINDOWS\System32\drivers\mausbip.sys
22:33:17.0103 0x2c30 mausbip - ok
22:33:17.0110 0x2c30 [ 1CB5F4F5000DB779E8595F771D0095B3, BCA6F37438F17797B472199D1B6E9741CC600C8AE89B748C682D83019A49CF3D ] McAfee SiteAdvisor Service C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
22:33:17.0113 0x2c30 McAfee SiteAdvisor Service - ok
22:33:17.0135 0x2c30 [ 5652BB18EA197B0726CFC04A80E17805, 090F668282A3705108F9548709F121357FFE9CA85F4AE96F76E2F9AB5239EFF8 ] McAPExe C:\Program Files\Common Files\McAfee\VSCore_15_6\McApExe.exe
22:33:17.0149 0x2c30 McAPExe - ok
22:33:17.0168 0x2c30 [ A52ACBECFE7BE36E377A203B969705AE, F42FB19123C5EF404267A911305E3A86411BD22E78944FAF2F189382E364CDF2 ] McBootDelayStartSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:33:17.0178 0x2c30 McBootDelayStartSvc - ok
22:33:17.0216 0x2c30 [ 01B9FF6FA5F8605AE92695C1393CD833, A89709A51FE311CBACE1BFC28492C101E7F2D613481248F815D3FA0DB6900C29 ] mccspsvc C:\Program Files\Common Files\McAfee\CSP\2.3.322.0\\McCSPServiceHost.exe
22:33:17.0245 0x2c30 mccspsvc - ok
22:33:17.0261 0x2c30 [ A52ACBECFE7BE36E377A203B969705AE, F42FB19123C5EF404267A911305E3A86411BD22E78944FAF2F189382E364CDF2 ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:33:17.0270 0x2c30 McMPFSvc - ok
22:33:17.0286 0x2c30 [ A52ACBECFE7BE36E377A203B969705AE, F42FB19123C5EF404267A911305E3A86411BD22E78944FAF2F189382E364CDF2 ] McNaiAnn C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:33:17.0296 0x2c30 McNaiAnn - ok
22:33:17.0324 0x2c30 [ D4AD64832DF34E2C7916088D75B20152, F74E1049EB9ACD8BFDCB88669781E4655B4555E4F699BA57CD641F9058E6A139 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
22:33:17.0343 0x2c30 McODS - ok
22:33:17.0359 0x2c30 [ A52ACBECFE7BE36E377A203B969705AE, F42FB19123C5EF404267A911305E3A86411BD22E78944FAF2F189382E364CDF2 ] mcpltsvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:33:17.0368 0x2c30 mcpltsvc - ok
22:33:17.0383 0x2c30 [ A52ACBECFE7BE36E377A203B969705AE, F42FB19123C5EF404267A911305E3A86411BD22E78944FAF2F189382E364CDF2 ] McProxy C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:33:17.0392 0x2c30 McProxy - ok
22:33:17.0397 0x2c30 [ 0609BF877A2F4DEECC62EEE220AB6242, 393268836EB055669997BD05866487497AFC396C9516DA4C4F143679B1DDCA6E ] megasas C:\WINDOWS\system32\drivers\megasas.sys
22:33:17.0398 0x2c30 megasas - ok
22:33:17.0403 0x2c30 [ EEC64C8D498D121607C7615FDFBEE4D0, B605B9886C1A05C999B005AEA6D0677DF632E2F34F4FF03F09C2E6C05F554D50 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
22:33:17.0404 0x2c30 megasas2i - ok
22:33:17.0420 0x2c30 [ 2B7D3B206833D769218A1F4BE2D73B97, 25901A5E931DC3659993448E59ABC3601B7B0ED9AFEF0F5ECC139D0D0442F73B ] megasr C:\WINDOWS\system32\drivers\megasr.sys
22:33:17.0428 0x2c30 megasr - ok
22:33:17.0435 0x2c30 [ 6ECDA51525C123C55ABC470F2144F925, 7B2E8976F126219AF0953FD641E613A9336CCC80843AF4A37AA71067D55CCBBB ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
22:33:17.0438 0x2c30 MEIx64 - ok
22:33:17.0444 0x2c30 [ 4F708DA590EDBCC124FB79066D44759B, B8DA803299AF5FDE1594CF958EA6B99D4B99E8163438A70A692CA33A96DBF8DE ] MessagingService C:\WINDOWS\System32\MessagingService.dll
22:33:17.0446 0x2c30 MessagingService - ok
22:33:17.0461 0x2c30 [ EB136D55D2EFF95B097B21C986731C71, 79DC083E34FA3389AE2723FE21EF363FEAB070B10CBCD4BC65E69C35EEFD0090 ] mfeaack C:\WINDOWS\system32\drivers\mfeaack.sys
22:33:17.0468 0x2c30 mfeaack - ok
22:33:17.0479 0x2c30 [ 95379C3D106630A610883433D161E0BF, F3C7B2813EC8BEBDD7137FE4BDD720B36515EEFCB5E3412983356CAFE5A3950B ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys
22:33:17.0484 0x2c30 mfeavfk - ok
22:33:17.0489 0x2c30 [ ED3B9CCFC1273DC9B693838F8339CFA0, D3C272D8F7A6A83A4384D68CFD91075DFE7793B0899540B7DC32BB52B8E6FBD2 ] mfeelamk C:\WINDOWS\system32\drivers\mfeelamk.sys
22:33:17.0491 0x2c30 mfeelamk - ok
22:33:17.0499 0x2c30 [ 4EAFB984E9533263B7D2F0C20DA822C1, EE60B94B632690FF9CFC423C7F0D28EE2EAB375430F7E59EBDB12D415763F6FB ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:33:17.0503 0x2c30 mfefire - ok
22:33:17.0516 0x2c30 [ 18B4E8F8D4EEEA3D149D6AC71EA29C9D, 585EEDA20D12D85930F21F3430617E93431ECD8E050C2510F50667E60830F71A ] mfefirek C:\WINDOWS\system32\drivers\mfefirek.sys
22:33:17.0524 0x2c30 mfefirek - ok
22:33:17.0556 0x2c30 [ 8FDB0942E608BBDA952FF16264B04FBE, 0A119F69EAD43EF124C0F7DE35E7015727FE828100F094D83492374CBBE6E8B9 ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys
22:33:17.0569 0x2c30 mfehidk - ok
22:33:17.0580 0x2c30 [ 39B7315698B6F19BC14F2D538EF72981, E94663052849F0A6593C17F5412F1FC21174C225173866B335E534DB4539A8A2 ] mfemms C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
22:33:17.0586 0x2c30 mfemms - ok
22:33:17.0599 0x2c30 [ 8588E8968791103F6B3C9A112ECE54E6, 07FE11FB5FE22016E70FE21CCF217F7F50D0864063F50D4FA6CD141824D0EE2F ] mfencbdc C:\WINDOWS\system32\DRIVERS\mfencbdc.sys
22:33:17.0606 0x2c30 mfencbdc - ok
22:33:17.0612 0x2c30 [ 7D7D891487646DDBB218BAD95D37B955, DBDC4A427A18E830F2FD4457C30B99891332299EAE9323CA3318FF96AD7ECF4A ] mfencrk C:\WINDOWS\system32\DRIVERS\mfencrk.sys
22:33:17.0614 0x2c30 mfencrk - ok
22:33:17.0619 0x2c30 [ 8D0A33D1F3C73A810B6033BB70C5763A, 5031B19B1272C65EF425CDDF1E2687330B322CAD49509A8C2636B0B222F16AD6 ] mfeplk C:\WINDOWS\system32\drivers\mfeplk.sys
22:33:17.0621 0x2c30 mfeplk - ok
22:33:17.0626 0x2c30 [ DA49A90A69B3284FD11B6F02D0209A99, 759380964E6450FF21FB9A2BD23BA0394B005EC332E714D40D47262FCDC6CFE9 ] mfesapsn C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys
22:33:17.0627 0x2c30 mfesapsn - ok
22:33:17.0636 0x2c30 [ 43DB4E36146D076EBD7B864162C8C242, 3A84F17D3FCC9D3E481032A452D0984668AE286FCD9379A4204C1AD048A4BA6A ] mfevtp C:\WINDOWS\system32\mfevtps.exe
22:33:17.0642 0x2c30 mfevtp - ok
22:33:17.0650 0x2c30 [ 8519C4586B5AF01C43DEAAC152A59A8B, BA399101EDD59C6E515D27E91A42EB1E3C58E50C6624043224F64B5CBAEEED53 ] mfewfpk C:\WINDOWS\system32\drivers\mfewfpk.sys
22:33:17.0654 0x2c30 mfewfpk - ok
22:33:17.0674 0x2c30 [ 89257B8D3826B5629CF7F73F97DA44F9, F056D67EC82072BA209FF7942862862FDF562F8C038F3128861C387F8F63B494 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
22:33:17.0686 0x2c30 mlx4_bus - ok
22:33:17.0691 0x2c30 [ 9AE3C0CC0865B1618A3C97744A6A9E9B, BF72AEF0360AC278B36ED31E5BFC2E8F72136B0952490A105CB6929654C97F6C ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
22:33:17.0692 0x2c30 MMCSS - ok
22:33:17.0696 0x2c30 [ 0CD29540C32C2E2E0E3D7E9832752AF3, E64C3F5323C59D53409E33E88989FDD2A38B5B602336FC1D8C3702CA9B5EBFC7 ] Modem C:\WINDOWS\system32\drivers\modem.sys
22:33:17.0697 0x2c30 Modem - ok
22:33:17.0726 0x2c30 [ DB131FDDEE1C581E9926C6E24485F9EC, F1AAA3DF7DB458F05B96358C0E30DAA456F3E92D085E68D81A4E0302E4D900FA ] ModuleCoreService C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
22:33:17.0748 0x2c30 ModuleCoreService - ok
22:33:17.0754 0x2c30 [ 534477FCAFDFCA6B841BFA06BD26BCC5, 96404FDF0BA2127A3BD24319637EC0C8BE8C42618D9FEDF66F41C5F72840D427 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
22:33:17.0755 0x2c30 monitor - ok
22:33:17.0760 0x2c30 [ F5D4E18A70BA069D479154442CDEB60D, 96345E88BC6A50415E112A4B4CFDF3F4306EA049741C5B0A2BFFC142F15EB5CB ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
22:33:17.0761 0x2c30 mouclass - ok
22:33:17.0767 0x2c30 [ 5C09868963B0C076AC3BC7759A46B7B1, 64CD200A8D90CDC31317009636A3BB6574ABF04BCAC903F93C47823C40CC03F6 ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
22:33:17.0768 0x2c30 mouhid - ok
22:33:17.0773 0x2c30 [ 8BF7039787036529B98E50AE86A0E46B, 69C04D012D026A14E2D2A138EDA79227F9BE4BE1892D517DCDB797F2A5AEDB14 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
22:33:17.0776 0x2c30 mountmgr - ok
22:33:17.0782 0x2c30 [ D57B7C101A8216E7769B14645AFEB276, 38BF427F81589173D3CD823A7BD3CA84B0FADD6747467E7AEADB72D1F4E1404B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:33:17.0784 0x2c30 MozillaMaintenance - ok
22:33:17.0789 0x2c30 [ AD118EC95E9EF4D5223D681D8F183567, 395B76626956F5B7992676B9CA57B2CA075F0CDA881E14B3ED07ABE2DC0EEDBC ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
22:33:17.0792 0x2c30 mpsdrv - ok
22:33:17.0813 0x2c30 [ FA53A01517BBA97EA3B71CF5CC2052F4, C6F7CBDFAD629B2D4B6ED6A471708E8DBEB5CD5E0A992848359D3C0A82FDFCBE ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
22:33:17.0827 0x2c30 MpsSvc - ok
22:33:17.0833 0x2c30 [ D14C297933C82B8CB0B5CBBA4DDC830B, 2EF356F5373F16A7AE2421187FC5C150C09452C835229275B7403181D65C210F ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
22:33:17.0836 0x2c30 MRxDAV - ok
22:33:17.0847 0x2c30 [ F2AD1B72C5A6475FB5FF332E1980DF88, 41E24496FBD61C0A333F567DA7C4E38C5A792724FB56448189099F60114749D5 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:33:17.0853 0x2c30 mrxsmb - ok
22:33:17.0862 0x2c30 [ 469DD958B1D8CB09E38BE2298B8C398D, 97CCEFF58D8865B0D27C4E16B082C20FA5279CF01A37F47B5F2DA39B334F0667 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
22:33:17.0867 0x2c30 mrxsmb10 - ok
22:33:17.0875 0x2c30 [ 1FC4802B593494746B6FE3BDAC25E371, 774CC950B46B3E32603D368D9938BFCF60D2BB3C14C3FE8B03CB1E724AAC29EF ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
22:33:17.0878 0x2c30 mrxsmb20 - ok
22:33:17.0885 0x2c30 [ BD12E1941A87671A767447B02C6A51A1, 7FCB3077E827639CE23CC2C6FE997A33F7A702D266C0277AF01453B5ACC0966D ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
22:33:17.0887 0x2c30 MsBridge - ok
22:33:17.0895 0x2c30 [ 41C5D9B52F4A1B30C3F7219D601CF12C, E1C1B1CED19D32FA1B765C7C380B9E749893B2018CF358F448E40DA60CB63166 ] MSDTC C:\WINDOWS\System32\msdtc.exe
22:33:17.0898 0x2c30 MSDTC - ok
22:33:17.0904 0x2c30 [ 92C00BD9616F353CA59A755C33269757, E67F05A4A1C44137CCAC0C7292A7010B5920172ACAE32638600E231F28F33035 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
22:33:17.0907 0x2c30 Msfs - ok
22:33:17.0912 0x2c30 [ F27EC8F7A0A779276E5DA2E70C2B01EE, A450DB309F84CAFFCE2A720612BDB260D88E9C390D2BC60874D73A55D8567E04 ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
22:33:17.0913 0x2c30 msgpiowin32 - ok
22:33:17.0917 0x2c30 [ CBA955A54C9446CAAD28C76789D3B071, F6CA1BECA35B13B7CCC9FFB325FACF22713F6B81E8A6540C9967A462E425BBEC ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
22:33:17.0917 0x2c30 mshidkmdf - ok
22:33:17.0921 0x2c30 [ E8E568EF60677E4534F387C53EE1B35F, 2E250EE1A9AE8AFDCA5216BED87328B05713386BD7E61C66A74EF021F2AFE7D7 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
22:33:17.0922 0x2c30 mshidumdf - ok
22:33:17.0926 0x2c30 [ 16376B7B0730C04DD1A2C0CC8E09E420, 2F39D3254FD272E277B5496A8C93A7CBFBF80F6004AE0343BE9F09C538975910 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
22:33:17.0927 0x2c30 msisadrv - ok
22:33:17.0933 0x2c30 [ 75FE54E84C1EB0C9C5E09F9FD5928ECC, 971CFEE8FB8364D17CD392E32A32AE57BE6461EAB6C580B52E6D752D4CFDD6B3 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
22:33:17.0936 0x2c30 MSiSCSI - ok
22:33:17.0941 0x2c30 msiserver - ok
22:33:17.0955 0x2c30 [ A52ACBECFE7BE36E377A203B969705AE, F42FB19123C5EF404267A911305E3A86411BD22E78944FAF2F189382E364CDF2 ] MSK80Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:33:17.0964 0x2c30 MSK80Service - ok
22:33:17.0970 0x2c30 [ B26E1C10C8323D2B6ADAF504CD487757, 758DBCDA43D62547ED274D2E09A66B266470C86A89A3BEF387E535DB37A7EA44 ] MSKSSRV C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
22:33:17.0971 0x2c30 MSKSSRV - ok
22:33:17.0977 0x2c30 [ E40B960078A15D4901265D32E071C42D, AC11B8221C8F529FE3CA6FEB99AF699664C86008A732C3A8E6B1CE31C2272454 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
22:33:17.0978 0x2c30 MsLldp - ok
22:33:17.0982 0x2c30 [ B4860AB91DC4E73936F0FF504D6B4B07, 7371093D9EB62218D20F6B8B3C88CBF01932AEA2923ED119962A78BE46E5A939 ] MSPCLOCK C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
22:33:17.0983 0x2c30 MSPCLOCK - ok
22:33:17.0987 0x2c30 [ 8EDC45C3F7F64A51C98B59E24648F74B, 445731F32A37A99FAB3CD5D178A84FB4F835727826211FF18623409D29FF3A1A ] MSPQM C:\WINDOWS\system32\DRIVERS\MSPQM.sys
22:33:17.0988 0x2c30 MSPQM - ok
22:33:18.0000 0x2c30 [ 7DA5FAC2A49D30CA5B7B96B8B26281AC, 168C3AA5C7318184D8F67EA832920FCE64E11D4CC418517D7BDACB9632F0BEA8 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
22:33:18.0007 0x2c30 MsRPC - ok
22:33:18.0015 0x2c30 [ 4369BBFCDDCCE61856DD862C8E5C4E19, 23BA06675997A3A46723D0FC9E3DFEBC17E4149FC67B9DCED3011BBB5B5DCFF9 ] MsSecFlt C:\WINDOWS\system32\drivers\mssecflt.sys
22:33:18.0019 0x2c30 MsSecFlt - ok
22:33:18.0025 0x2c30 [ 7E3365C8BC83DCE88D6226BB5C7170C4, 69D741039CAAFCA93A4CC09CEC14F117527D732A6CF3077AA83E935B03EC3F9C ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
22:33:18.0026 0x2c30 mssmbios - ok
22:33:18.0029 0x2c30 [ 09D51564E49181E9928910D6B91C920E, FB3C918820ACF4506AC49478709B4D4C6489BA0B5113E666C34B916CA5CD6DE7 ] MSTEE C:\WINDOWS\system32\DRIVERS\MSTEE.sys
22:33:18.0030 0x2c30 MSTEE - ok
22:33:18.0034 0x2c30 [ 793AE56A3946EAD5F906C28D294FEFE6, BB563D088084026606C2FBD30A0850BA18363CC173CC6C77272D727CA6C1F9BD ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
22:33:18.0035 0x2c30 MTConfig - ok
22:33:18.0042 0x2c30 [ E35F51C7474A26680627477462715206, 435490915CDD416D666B64C6B4526285EC946E6918CFA85585692B9ED43518B6 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
22:33:18.0045 0x2c30 Mup - ok
22:33:18.0049 0x2c30 [ 74BD1149BF50F1E24934042A3BD17C90, DC4626DC4D629CA7DF336EC7E6435F27D2E252D81945E57F4BF2C981DBCD9B45 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
22:33:18.0051 0x2c30 mvumis - ok
22:33:18.0060 0x2c30 [ F1F6EE6C068CBDB80BAC43A79591F1F2, 39387A25ECFBFDD5B6A43A9A2CA2EC5703D0CCCFFE36C989B0E461B72C242D1C ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
22:33:18.0064 0x2c30 MyWiFiDHCPDNS - ok
22:33:18.0079 0x2c30 [ 39C772E20B8C61858F969E4D60699D89, 32146D265CD315597C48FB233D77DDACB0FEDDB7E800A0F411A67844BB3ACC67 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
22:33:18.0087 0x2c30 NativeWifiP - ok
22:33:18.0105 0x2c30 [ BC80F85C129F12A5F64D6741A120B539, AD410F13BCBDE54F98E353BD4DAF30CC5A0A9990FC4F1AB3623EF3175EEBCAF7 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
22:33:18.0117 0x2c30 NaturalAuthentication - ok
22:33:18.0124 0x2c30 [ F2EA6F3165E154C24C084AC35DD6C3F8, 4F8CB75770945F5A28CC308917A124109F7462CE933695B9CAA3FE2CAE76C445 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
22:33:18.0128 0x2c30 NcaSvc - ok
22:33:18.0137 0x2c30 [ 9B3C6582CFB91BA2A04B1D06D8E2FB98, 431E6B075FD24002724E8A2ED9FB3221AD66D1F1D021B56466187D97E5B43A1F ] NcbService C:\WINDOWS\System32\ncbservice.dll
22:33:18.0144 0x2c30 NcbService - ok
22:33:18.0149 0x2c30 [ 932E2E43078A3D786A46A5428F21B314, 17F1CC3388D80F1E1850063114C1EB72EEA149D9C8FA3501C0F9EB55C9E0C58D ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
22:33:18.0151 0x2c30 NcdAutoSetup - ok
22:33:18.0157 0x2c30 [ 0FFE8AF1B94C5FD54E6ACC6DAE990D31, B67D3CA3460D4700D8B83EFE4B6A7AA940650E84D985484FBAA1EE80F3632133 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
22:33:18.0159 0x2c30 ndfltr - ok
22:33:18.0185 0x2c30 [ E27876B335FEB441DA511030AA85624D, 6B4FA08463166A2B32F317E6FEDE3C22EB8FFA5B2077955A0B2F2184858BDDE7 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
22:33:18.0203 0x2c30 NDIS - ok
22:33:18.0208 0x2c30 [ 4EA73CFDEE4A628D387D95464A131F29, 38A6E2389FA9B20A7AFDF3CFCD13B66489B92D853EE486BF81019F0A36A142E1 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
22:33:18.0210 0x2c30 NdisCap - ok
22:33:18.0215 0x2c30 [ EB127689AF6F24091AB73538A556257F, BC25067D355084D6893E9262750433044C28893BB27A67BF7AF5008742C6D359 ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
22:33:18.0218 0x2c30 NdisImPlatform - ok
22:33:18.0222 0x2c30 [ 73B4C72FB6170A08C64BDA92DE93ECF7, 766BBE659232F0F5EAEE577EE88091FB76175BC52D65B9637126069C97E795D4 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:33:18.0223 0x2c30 NdisTapi - ok
22:33:18.0227 0x2c30 [ 6704F27EB15A5B30AA7FA5A4F4D1FD47, 841F99B3C751F4D4E23C0E7B5C275B4871C1D5EF937A93129DF64DF49F6B6736 ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
22:33:18.0229 0x2c30 Ndisuio - ok
22:33:18.0233 0x2c30 [ FE87CCAA89433FC306A80F15E848F4B2, 3269FDF53DA59057E066D582FCBB96B71C8063B8F488856A9DEA414B4797E43A ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
22:33:18.0235 0x2c30 NdisVirtualBus - ok
22:33:18.0242 0x2c30 [ 94517BC9F29A1B73D377F1BF1C3DCA34, 45A34D7AAA851C643E80C0F61CBF8544B8A2E8E7DAB2D5AB6F3A34FDEE4AB0B3 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
22:33:18.0245 0x2c30 NdisWan - ok
22:33:18.0253 0x2c30 [ 94517BC9F29A1B73D377F1BF1C3DCA34, 45A34D7AAA851C643E80C0F61CBF8544B8A2E8E7DAB2D5AB6F3A34FDEE4AB0B3 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:33:18.0256 0x2c30 ndiswanlegacy - ok
22:33:18.0261 0x2c30 [ AC6AC99075732F5C29DB0004DD5B1AC6, 684EC821EF5C60DA540CA36EC192B09E62440AAD5B13F0F4C23DDC4A9B96F28C ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
22:33:18.0262 0x2c30 ndproxy - ok
22:33:18.0268 0x2c30 [ 9AC090451D92E6081EB89CDA83D74189, D4D442412F112853AA8D88DFB5F695AE4E8E2C361905992537EE53BE675FECE8 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
22:33:18.0271 0x2c30 Ndu - ok
22:33:18.0280 0x2c30 [ A115DDB2C7805C41EEC9A5276FF5764E, FC81D0BE2DAAC6E7161C0FC5C90050022A39AD50E28040D5357C0E1FD6C0B6B5 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
22:33:18.0282 0x2c30 NetAdapterCx - ok
22:33:18.0287 0x2c30 [ F420B6CAB5151A38E4DBBFFB500C11DA, 271F495B261461B8EA847BFDD87C155E6DC1B6236C161B8253A1F023706B1B1D ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
22:33:18.0289 0x2c30 NetBIOS - ok
22:33:18.0301 0x2c30 [ 30C2F67EC84EB11B22011620107E0325, 98088685F457566FD8D13B83A0BF6B06CDC70AC156B67BF87A8A8446C150C1F3 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
22:33:18.0306 0x2c30 NetBT - ok
22:33:18.0310 0x2c30 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] Netlogon C:\WINDOWS\system32\lsass.exe
22:33:18.0313 0x2c30 Netlogon - ok
22:33:18.0320 0x2c30 [ D9FF8CA42C3541F4840693F17143C595, B05FB0B6439B34BD93EE59DC48BBE3D712A7428EFBFE37A887CE8546E57EE68F ] Netman C:\WINDOWS\System32\netman.dll
22:33:18.0325 0x2c30 Netman - ok
22:33:18.0338 0x2c30 [ 96173660A4DD4A56E4B8938A67DAD9B7, F1D8F94625C6461DB89F8D3BDC73748F8A7F3446694BD1F148AF9BE6F17E9543 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
22:33:18.0347 0x2c30 netprofm - ok
22:33:18.0355 0x2c30 [ 79C810D49E6D2825F51B0D7CAA6E2FAD, 19B7FB87FC8CE8FEA456F06D32099ED5B69FE38D2954580D4CEC32998D206E9F ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
22:33:18.0360 0x2c30 NetSetupSvc - ok
22:33:18.0367 0x2c30 [ 4D37150AB4D61598919AB70ACFD1369A, 9ABF73213988ED9AA72B2658F8B91967A24C7CC2049859D86CE9C51A4AB57A84 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:33:18.0370 0x2c30 NetTcpPortSharing - ok
22:33:18.0376 0x2c30 [ 8C03F2F5A9E93AEB08B3AEE51552394A, F95185FB8D5FDEAB39E593488BA6ABCFA9C081BFED05008E0CD95F29B894AFC8 ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
22:33:18.0378 0x2c30 netvsc - ok
22:33:18.0499 0x2c30 [ 3359536A0B74A52F3F892E192B953923, F9A0437AD22E584A813DA0EB344B7E2CCCDC8C953D77C60AE8643881A132F3A4 ] Netwtw04 C:\WINDOWS\System32\drivers\Netwtw04.sys
22:33:18.0598 0x2c30 Netwtw04 - ok
22:33:18.0617 0x2c30 [ 0C124EAC0EF7B3767280C94A8C03615B, D10216726A221C8FBC67C47F4B266C271A7C7A4438F77AC44BB561E0A6EB6D34 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
22:33:18.0625 0x2c30 NgcCtnrSvc - ok
22:33:18.0648 0x2c30 [ 9ECFD7DD594DBEAED3A2889045B2DCBD, 984B10A88E304B805153C49B3D618315926635A270AB34D2976E7AA5AE00E2F4 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
22:33:18.0663 0x2c30 NgcSvc - ok
22:33:18.0675 0x2c30 [ 50F98CD010326B58F09082BACF3123AE, 124446A2905E23BB3F5763E347842F3F511EC44C37C2F85E409F73EC8F53924E ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
22:33:18.0681 0x2c30 NlaSvc - ok
22:33:18.0686 0x2c30 [ 6D8F6A9C53CFB0C49E8251A442B7283F, C3E913E4997C35A9B4C2E613A499F01D15264EAB699B93269B690B2A74A70E9A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
22:33:18.0688 0x2c30 Npfs - ok
22:33:18.0692 0x2c30 [ BABF7E1757D6908941C9F9CBD66A5EF0, 323E743CB26583763A9C5DE64E7E08138CB8D3E2DE0A8BCE9F774E1C7426E7F8 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
22:33:18.0694 0x2c30 npsvctrig - ok
22:33:18.0699 0x2c30 [ A85EB5721C7203AAAAAA04F551960CD9, E61ED728E154799346C749159BFE36FAEB2CE64FC5735F533B910017D66A7EE5 ] nsi C:\WINDOWS\system32\nsisvc.dll
22:33:18.0701 0x2c30 nsi - ok
22:33:18.0706 0x2c30 [ 7A6BA778B48DF9FB7AC231D4FF6E3248, 5959CA59C75D2C4DD8A539CAA8D99EF6A0CB5AA3F0D485B14C8B35911748F1F7 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
22:33:18.0707 0x2c30 nsiproxy - ok
22:33:18.0754 0x2c30 [ 731FD52461C8107E5B19B9AEDBB82BFB, 51B6722B9B2863B4AE23CE6B1DBD8481DA341748196BD482C6C5F4A6959F24F9 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
22:33:18.0792 0x2c30 NTFS - ok
22:33:18.0798 0x2c30 [ 4FFB2D5655D10700D5B8E205C4DB86BD, 69078960669A373F9C2D47AF2ED841619831106B681EBAAEAAE5BD569A54CE6D ] Null C:\WINDOWS\system32\drivers\Null.sys
22:33:18.0799 0x2c30 Null - ok
22:33:18.0803 0x2c30 [ 99EB6376EC2C03CE5F668577651E3454, A783FFBF89A9074E2074ACAF3F55862DF2F05CAFEAF6A2D509DDA665EB0D59CB ] nvdimmn C:\WINDOWS\System32\drivers\nvdimmn.sys
22:33:18.0805 0x2c30 nvdimmn - ok
22:33:18.0810 0x2c30 [ 3DB2E9E207358BFBD09B77B5119ECA5B, 55FED85EFC06B7AB5031D9986E4E4D2FA8841C549081ABBA9F9D9BBAB7852B37 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
22:33:18.0813 0x2c30 nvraid - ok
22:33:18.0820 0x2c30 [ 4C04BFBD4DB2EECCC47F5FA39D65BB6E, 9312DC4F7000991946D92D87DD9D37D70E336629EDBA553BFC79804049E34B73 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
22:33:18.0823 0x2c30 nvstor - ok
22:33:18.0833 0x2c30 [ 0D611DC17E48B6F8DD466A089170D118, E55A78E2CC6A0A5F7B8F0B75DFB2297FBC3B959C4FDEFBEA1C6C4E7706724AEB ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
22:33:18.0839 0x2c30 OneSyncSvc - ok
22:33:18.0847 0x2c30 [ CBC25009133730EB00BFAD4E37A6D387, AC93BEBD1E13336F9A6A4AB699A34127A31EC949A9EC5930B21BA80A3A6AF916 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:33:18.0850 0x2c30 ose - ok
22:33:18.0862 0x2c30 [ F5F10CE848CAF07A12A7B92290DBA38A, AC6AC13B692D07A6853B24A6396F1C3388586FD5D528F79FA3E373428D54D29A ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
22:33:18.0868 0x2c30 p2pimsvc - ok
22:33:18.0880 0x2c30 [ D1A9C22A98A10EB11A190B8FC7C07C6A, 1DE5F07E707DA9D833F105A8D948BBAEF0172DB2147D9A665EC7320F88D57B9E ] p2psvc C:\WINDOWS\system32\p2psvc.dll
22:33:18.0888 0x2c30 p2psvc - ok
22:33:18.0893 0x2c30 [ 2CC6C325B271C7CA60F374F8F868CB45, 569391CA5DF003ED33CAA89FD38834641023C24F7FAE2261F6DA8ABC5CC9C3C9 ] Parport C:\WINDOWS\System32\drivers\parport.sys
22:33:18.0895 0x2c30 Parport - ok
22:33:18.0901 0x2c30 [ 664B7DDEE982ADF5EAB480C75B9F6218, 1D1403CBD75916B83EEFA9B235E237583C40025C87C13676247F1EAD3F1D33EE ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
22:33:18.0904 0x2c30 partmgr - ok
22:33:18.0925 0x2c30 [ 72ABB842C15A6C3AC3D954308C6BF206, 8F2A69E3BE43BCD2C8A39153062216B5CCEC9FA62205EC8A23FAB209DFAE7062 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
22:33:18.0938 0x2c30 PcaSvc - ok
22:33:18.0950 0x2c30 [ C5B74C6D87E77BC64DEBD1BF57DEB375, AEBC86E404D4E3985D9FBAD9913AC52127DDE7C79062830717CDFEEA4CD7CC0B ] pci C:\WINDOWS\system32\drivers\pci.sys
22:33:18.0956 0x2c30 pci - ok
22:33:18.0960 0x2c30 [ CFB85CB7A6F6926EA0EB96EDFB3C8A91, 7B3A58C165DF231BB202D8A2036272932439864F8EBDC62811E2BEFA8B36FC01 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
22:33:18.0961 0x2c30 pciide - ok
22:33:18.0967 0x2c30 [ 13B7D84B397A90E82682C47A15C3A98D, 7F897DA83209381A8C26B34416899E276256AB587DC4E2B60B185CAC8D1877F0 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
22:33:18.0969 0x2c30 pcmcia - ok
22:33:18.0975 0x2c30 [ 76EA512FD9D4673CF7A57775EE8922E2, 6D2B90616A46BC4F9BB6BACBD78EB33C23834987365C87617AFC2E147871C984 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
22:33:18.0976 0x2c30 pcw - ok
22:33:18.0981 0x2c30 [ 4A88D29869609A39782EF53145E6F7CA, 6200E0B96FD0289D7F95779723E3CABBDEE17EDE5F802CC51E5539F475711027 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
22:33:18.0983 0x2c30 pdc - ok
22:33:19.0009 0x2c30 [ 4F190BA3C9BD2F0277BCBF480F396091, F09613C76350706992B39D7EA9B859D28F00790E5AC17CA7D49C3E270B9D8994 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
22:33:19.0021 0x2c30 PEAUTH - ok
22:33:19.0057 0x2c30 [ F5C8E47E2F7B72ACEA49F7AD2EA60D3B, 184B5C91BF36A03257A38E8FB5FDBEF96AE88F0F5FF2EEEAE7BFC6CA15CC1602 ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
22:33:19.0085 0x2c30 PeerDistSvc - ok
22:33:19.0109 0x2c30 [ 22FDF599BD75859169CDA232F69A8BA8, 5703069E81DB09F29708C40E75A76A32EEB9F10F81F42D14EE93A67A6400AD2B ] PEFService C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
22:33:19.0125 0x2c30 PEFService - ok
22:33:19.0130 0x2c30 [ FE52FF97A094609429FEF098EDC6FB08, 6762ED340048AF61B756CB7B576BE2057768FDB677623D01F2A592727C0E5A00 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
22:33:19.0132 0x2c30 percsas2i - ok
22:33:19.0136 0x2c30 [ FCA143274792F12383C35902E801E83A, 87D93226E32153794993035553C9935D07242631E182460D8ED13650175C0F01 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
22:33:19.0138 0x2c30 percsas3i - ok
22:33:19.0158 0x2c30 [ 4DAD2C73778D41F951B33854936E7BDC, 1421FDA2D083D5923422A038C54603BF798C48DDB7244DBEDA46D537B8CE1534 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
22:33:19.0159 0x2c30 PerfHost - ok
22:33:19.0209 0x2c30 [ 08736D3852ECFF35D6460DF826B340CA, 083D23FEC21C56604AB9A9F0909F37AB3AA68FDBBC609AE79A394A3980E428E6 ] PFNService C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
22:33:19.0240 0x2c30 PFNService - ok
22:33:19.0261 0x2c30 [ B730E963A31B73938A76D7B80666D60D, FADF452637E2EB50CC8C0E75956FE01F029C587F6EF2F8B347213263DE9D3A80 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
22:33:19.0273 0x2c30 PhoneSvc - ok
22:33:19.0280 0x2c30 [ 97D85602B8131C487EB08A36F7343F5E, BEDC106AF06358D40BB034390645A5BFF9C138CFD51B5997D32614741D3D2372 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
22:33:19.0284 0x2c30 PimIndexMaintenanceSvc - ok
22:33:19.0314 0x2c30 [ F9FB601621FF33376F3908C2C27C6EF4, 8689565D4FD1C68826EA0A9C2B44377A2AEC3CD812595F0D32904D8FA5809672 ] pla C:\WINDOWS\system32\pla.dll
22:33:19.0335 0x2c30 pla - ok
22:33:19.0342 0x2c30 [ A2BACEBAC01BE7A6656B454E75C23262, C2C168718A341D48679AC4CA8005BD06E9F1F0D1F7C72D3C30A7A8CE1F665A43 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
22:33:19.0346 0x2c30 PlugPlay - ok
22:33:19.0351 0x2c30 [ 414CA4DCC31D795882B25ADC1DACE779, AFD8D9AA24C64DD9569FDCBE65171810FE27AF24B8DD2941FECE6245EABB6AAC ] pmem C:\WINDOWS\System32\drivers\pmem.sys
22:33:19.0353 0x2c30 pmem - ok
22:33:19.0358 0x2c30 [ D54385DD5A39A5636D1587FC9ECFC337, DEEA5D433CB2DA55AE58C7C5431A1249C94B61606F0A75E4A44D516619060263 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
22:33:19.0359 0x2c30 PNRPAutoReg - ok
22:33:19.0368 0x2c30 [ F5F10CE848CAF07A12A7B92290DBA38A, AC6AC13B692D07A6853B24A6396F1C3388586FD5D528F79FA3E373428D54D29A ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
22:33:19.0375 0x2c30 PNRPsvc - ok
22:33:19.0387 0x2c30 [ 118E91AEE8F6DDAD088F955498CF2487, F4447C64CF1F36432E0FF09B6712DCE61BF28E3499F20C6C69E80D98B42D671E ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
22:33:19.0394 0x2c30 PolicyAgent - ok
22:33:19.0402 0x2c30 [ F6A0B848F75CF55E3980EA0FADCBA317, 11D8B12B4DE867B180965B0F2FD0F362265C518F76FE3351A2B7C9C2FFC5E137 ] Power C:\WINDOWS\system32\umpo.dll
22:33:19.0407 0x2c30 Power - ok
22:33:19.0412 0x2c30 [ D292D7FADCEE481CC64A9DE8FE9C3347, BD870A375E33CD8434CA97FFE9C2F84E58C6CD0EAEEEE8922172CB01F9674B55 ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
22:33:19.0414 0x2c30 PptpMiniport - ok
22:33:19.0468 0x2c30 [ 5404E7A968A26DF03793B6F68536594D, BE5A85581E87EFE4DB43AD17B8D42D3F7F32364AEEC1416DBB94279C4A203FF2 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
22:33:19.0508 0x2c30 PrintNotify - ok
22:33:19.0519 0x2c30 [ D57CF871B3977731A91FE9611A54C7C1, B6C7F685716A88D0978377B83C5320C88EED0CAA44A001849AAFF71E4E0682E7 ] Processor C:\WINDOWS\System32\drivers\processr.sys
22:33:19.0522 0x2c30 Processor - ok
22:33:19.0533 0x2c30 [ 56A7713DE64B16FB309D132E88FDB098, A658C8DCA87442F33B726A9B2060B20393D83B8658D0894C046CAFEAB00E2D8A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
22:33:19.0540 0x2c30 ProfSvc - ok
22:33:19.0546 0x2c30 [ B60431D2A046AD97F8427F6E568370F5, CD488E343585A5AC19D9AAF88BF0BB7EEA1BC48F6DA4A4FBF9BE5A04ECF5040B ] Psched C:\WINDOWS\system32\drivers\pacer.sys
22:33:19.0549 0x2c30 Psched - ok
22:33:19.0558 0x2c30 [ E0DCCA2A78516D155A6485CCA99F0EA5, EAFD24F815ECD6373BEC8E75B24FB54694CB8E4FF430FB6886F9B5B1C1762BFC ] QWAVE C:\WINDOWS\system32\qwave.dll
22:33:19.0563 0x2c30 QWAVE - ok
22:33:19.0567 0x2c30 [ A2B0F46FBA2521E7E732BDBDB1238515, 7F0FEFB09770BF5889D6C2219F68399C962A3F1071E70C4951B6FDAE196CF041 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
22:33:19.0569 0x2c30 QWAVEdrv - ok
22:33:19.0573 0x2c30 [ EA9EB06EFC325CD2ACF5DF2F26A4894E, 32AC7EDB42CDA736E2AD9AB67795735F16234D9BD80D56FDAE5B8B3C3C1CC26F ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:33:19.0574 0x2c30 RasAcd - ok
22:33:19.0580 0x2c30 [ 4E9379389D0A851DD19D130C8FAEFBD0, 279A25EF8949A5BAF311CA75493A5F89F74A02711EF875F67D0A95849B409C00 ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
22:33:19.0582 0x2c30 RasAgileVpn - ok
22:33:19.0589 0x2c30 [ 3E8CB44832FE3F96047187291523CDA1, 999A10D4D50CD2C39309FDC04A9F4CB0959BA061AE9305D4DF7F00F37F3813F9 ] RasAuto C:\WINDOWS\System32\rasauto.dll
22:33:19.0593 0x2c30 RasAuto - ok
22:33:19.0598 0x2c30 [ 5279EC98F6218D29EADDFECCC0D80E9A, 6F376FC3BEFA9F521635192177962AF1F41173502EC067896B7C2A5FB71E7A3B ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
22:33:19.0599 0x2c30 Rasl2tp - ok
22:33:19.0619 0x2c30 [ AC6A0AE3B33EE783717820458882F91C, EA503A90DBC31FB6B5D047D59E0F2855880EF3877877AD576579DB5CD8188E4A ] RasMan C:\WINDOWS\System32\rasmans.dll
22:33:19.0634 0x2c30 RasMan - ok
22:33:19.0640 0x2c30 [ D7FF75ED7A48FD60A573C9E959CF4DB5, C67673E2D678527F8C07C9BCC487D385B92282D9D73396CFB01F14F5211CA991 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:33:19.0642 0x2c30 RasPppoe - ok
22:33:19.0646 0x2c30 [ 6A4E45A7F17FA0B4B1B48C550E311944, 1E84A559B7AA5F07E8156D223EFFB1B2B43D1E4E90E561D8DF2C257FFBCFDC0D ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
22:33:19.0648 0x2c30 RasSstp - ok
22:33:19.0658 0x2c30 [ F2C575A9657F7B2E027C6CE7BC8F1A2D, 5D002488CCEDCEBF0542F508FCE47DC9105C67D5685489970048437BD243AC0E ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:33:19.0666 0x2c30 rdbss - ok
22:33:19.0673 0x2c30 [ 9414B22E093243636D362BF8C8C12A67, 575CE91AFADD771CBF86377962EDFAF70150BBA575F8DF144FEE6CC1C0FF88E0 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
22:33:19.0674 0x2c30 rdpbus - ok
22:33:19.0680 0x2c30 [ 53A01D3FDB701AC5D9DDE4140227E3D9, 833AF0BAAB49B58C71C684D2AA20B900C27E19DDCE5E15355C7ABAAB33BC7673 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
22:33:19.0683 0x2c30 RDPDR - ok
22:33:19.0691 0x2c30 [ DF32ED51DC0C3F6F3B1C4CEF71B8B426, DBEAD271B5DE6439E3106BDDB8B1E47D7BA47AE203CF3E1F8924CE02FDCA6E0B ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
22:33:19.0692 0x2c30 RdpVideoMiniport - ok
22:33:19.0702 0x2c30 [ 2369A5B651308E0C3458143976E9B03B, 0EDE99F7E2A7668E90C2FCA11D4BCE0676FBEA2CCFB57A004827CE5FE96D1584 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
22:33:19.0706 0x2c30 rdyboost - ok
22:33:19.0741 0x2c30 [ 3581FB9529035F8EC6DB681664CA70B1, 0C7BCD6A3B4248683C52B69F0B373D5929C2375F9BBF6CA80C480A8E7446A30C ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
22:33:19.0765 0x2c30 ReFS - ok
22:33:19.0787 0x2c30 [ 79E1ADE19D8B7C56EF29D098EAF57AD0, 295D0F04359A00849759976710F6CB83DB96E5007946930EA19865620EA3EFE7 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
22:33:19.0801 0x2c30 ReFSv1 - ok
22:33:19.0809 0x2c30 [ B91EE7363FDC2B0CB1C5E6190B46F7DC, 650EE0262F2EE242D99A5BE013A64F76CA3537274C0B9313F9BD7741ACF38017 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
22:33:19.0812 0x2c30 RegSrvc - ok
22:33:19.0825 0x2c30 [ D91C597DE82E1500525945E1FFF24B0F, 3F5837A743715FB2CCBFC9458FBE010AED170B46515925D4C7C59BBAC792F695 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:33:19.0834 0x2c30 RemoteAccess - ok
|
|
18.06.2017, 00:20
| #11 |
| | supremo - Zugriff und hier der 2. Teil von TDSSKiller: Code:
ATTFilter 22:33:19.0841 0x2c30 [ 19D1072193DAF71C97E5A05FC7673BB3, 313C3762CCC490C20B5561A78E6002E7A52F0142B370F17849DD4AB2F0AF6513 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:33:19.0845 0x2c30 RemoteRegistry - ok
22:33:19.0860 0x2c30 [ A12D167F73C3E285AC623BCA62B3A8BC, 6E8213808C22C0688BD40721FBBBAA88BFEFA1BD304BC19AA015FC541CA5BF84 ] RetailDemo C:\WINDOWS\system32\RDXService.dll
22:33:19.0871 0x2c30 RetailDemo - ok
22:33:19.0878 0x2c30 [ 5F44B0167AA65BFFC778227725CB258C, 00027F82639C7E054CF42179A26B5D43FD789C943979EF3F29BC364319A2D306 ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
22:33:19.0881 0x2c30 RFCOMM - ok
22:33:19.0887 0x2c30 [ D31B2CD9458D2E212A5F24D56D2FB8D5, D8EC0BDB9D143C050A48217C57AA1BA6D60EEFEF67A98441064BD8FD339987DD ] RmSvc C:\WINDOWS\System32\RMapi.dll
22:33:19.0891 0x2c30 RmSvc - ok
22:33:19.0896 0x2c30 [ C79F1F7C8A5FCBE90E3C833299AA1F59, 7969E79B2095BDA144AA369DE21F49C9FAD272B5864B2F0FD28CB28D148F2AD6 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
22:33:19.0899 0x2c30 RpcEptMapper - ok
22:33:19.0903 0x2c30 [ 1CE6928C1587F9760F7C3A036786CAE8, 3E4F5371E0DDDBA612BF61891D17D691DCAFB2E1010BBD84737FBD98DA8C03DE ] RpcLocator C:\WINDOWS\system32\locator.exe
22:33:19.0905 0x2c30 RpcLocator - ok
22:33:19.0928 0x2c30 [ 0E79A4C76CAAA0CFE9CA42C13E5AA086, C4D90EDA54216CC7897128D39517E4E18195BF28254796C6D0684E2C7DB90642 ] RpcSs C:\WINDOWS\system32\rpcss.dll
22:33:19.0945 0x2c30 RpcSs - ok
22:33:19.0951 0x2c30 [ E87EECED9287C275B6CF30EB598B1D77, D0C5D4E37A3FAD422C0ECFFAB53904D9FD5385129DE2BC5AF75D91CD016EA6AC ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
22:33:19.0954 0x2c30 rspndr - ok
22:33:19.0962 0x2c30 [ A8FBDF79F7BFF18AC1E55D41EE6A5030, 9319649ABA8649A6DAB4A2F3D9968AE5C13D786F6950B91A0E06BB044CB0F6ED ] rtop C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
22:33:19.0967 0x2c30 rtop - ok
22:33:20.0028 0x2c30 [ 7C5AD06EAA0ACE84B459D409121D0140, 2FABDEEA53E64938D4B6A29B932E106D19E3678B6069B43BA508C0BADD3D9DD7 ] rtsuvc C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
22:33:20.0071 0x2c30 rtsuvc - ok
22:33:20.0078 0x2c30 [ 6308366D3CDEA5F427CFF4BCF0081B4E, ABB91A41C09A1607C66BD380FD0A3EECAAF9AD534856CCC78DE1A4E450ADB07F ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
22:33:20.0079 0x2c30 s3cap - ok
22:33:20.0083 0x2c30 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] SamSs C:\WINDOWS\system32\lsass.exe
22:33:20.0085 0x2c30 SamSs - ok
22:33:20.0092 0x2c30 [ 33B2DC5C2F19DA89F862484E23D9833D, 1C3BD1804767D087BE1510EEDCE94FFAC096922C821A123DB1BACDA5777246A7 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
22:33:20.0094 0x2c30 sbp2port - ok
22:33:20.0102 0x2c30 [ 6A7F961E0E6382F185809AEC6A97E078, 434E215337453C3973762A2F10806A57F3B296DDD34A948F781B67E374836AF5 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
22:33:20.0107 0x2c30 SCardSvr - ok
22:33:20.0114 0x2c30 [ 45B203A8CD642F72E86690B957B6490D, 29D5733D2A6FF9F051FD74FFDCCDB5272EC8E7734021F5BBF0E9E521E61B150F ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
22:33:20.0118 0x2c30 ScDeviceEnum - ok
22:33:20.0123 0x2c30 [ 5CFEEFCC6FAD1FD09ACCFBD652DDD85B, F90104CC42073ACD48A2FCCEDF58B57D8663223406ECB0A270140A053E9260B3 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
22:33:20.0125 0x2c30 scfilter - ok
22:33:20.0144 0x2c30 [ 5BBFA6CA63E8A5BB8FA2FA84A5562CE2, C74CD0A76473343A8620D26C96F7300026C295EDF61B8A336AB326DFE861678D ] Schedule C:\WINDOWS\system32\schedsvc.dll
22:33:20.0158 0x2c30 Schedule - ok
22:33:20.0164 0x2c30 [ 5C8620FAC0E3C1658C8EF7AD7BB7EA5F, FEBE7FC79FCDF692167D82DE54031FD68BD2941544007EEB3D82C21E7F1C5C83 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
22:33:20.0166 0x2c30 scmbus - ok
22:33:20.0173 0x2c30 [ 0EC94DA356D89CACD89B6E139E4D0A7D, 2F887681FDD5AB787154403E34623B1DFB61C70DAE5E2BFF1565E100F228870B ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
22:33:20.0177 0x2c30 SCPolicySvc - ok
22:33:20.0185 0x2c30 [ 71A494A502F24465317E88E80F6C0C2C, D85F139982804B8419D7CCF01F35CCDDA580BA5276A6261D0662028080F7765B ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
22:33:20.0190 0x2c30 sdbus - ok
22:33:20.0194 0x2c30 [ 464B615872981015AC4FEEBDEA83A063, 5CF491352B267241CA11F08E72E6EA668A595662561892E0D02CCA5B71172E14 ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
22:33:20.0195 0x2c30 SDFRd - ok
22:33:20.0202 0x2c30 [ 847F01FB8504425BB255856A14278A86, 41997D25D12779CA79551988C56FA0A302367076B09A82F620858EDDDBFCE3FF ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
22:33:20.0206 0x2c30 SDRSVC - ok
22:33:20.0212 0x2c30 [ 6BC219F1D9CDE08CEB9084ADB41FBA01, DA8AC3B42A72515A1976961976203A52D4C8636586EB5EF6B466AAF967A6567E ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
22:33:20.0214 0x2c30 sdstor - ok
22:33:20.0219 0x2c30 [ 2AE8505519C7E8A903DD7BE793A79846, 7044B1BC183E028BCFB544489B033F0968F033696F9816F354329ABD26C6EE7E ] seclogon C:\WINDOWS\system32\seclogon.dll
22:33:20.0221 0x2c30 seclogon - ok
22:33:20.0230 0x2c30 [ 112134D19C8F08228D4EC84C16342ED6, F99095458BDD74F1531C4FB7A283D7A3F07BEC33FA8423F26D647EB4C5AAFC2E ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
22:33:20.0237 0x2c30 SecurityHealthService - ok
22:33:20.0262 0x2c30 [ 77FB9BE8EDDCC999D09F2B1A7878A2A9, 589774C006A339FCA9772C37C9103C73C8592E018553804B97F34E2A0069A3F7 ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
22:33:20.0280 0x2c30 SEMgrSvc - ok
22:33:20.0286 0x2c30 [ 25456AF499A0C9C4A93CFAC70BDE9CC2, 885C1A9C8BFA73D9C9C454759DF871237F7C0F28D879E98B4BE0D0113C549B09 ] SENS C:\WINDOWS\System32\sens.dll
22:33:20.0289 0x2c30 SENS - ok
22:33:20.0292 0x2c30 Sense - ok
22:33:20.0319 0x2c30 [ 892C955E1081412942F64679E0DD7A5D, 6A28012270FA1FB3BB279102C67FA5296564630181C887E1EA6EA1F952A30C37 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
22:33:20.0339 0x2c30 SensorDataService - ok
22:33:20.0353 0x2c30 [ 358008CBDE5603F3B56789C977661CE3, 2C81180B27B854F201A683D2C75677660CA54ADC685F86CD414537C60D51FB4A ] SensorService C:\WINDOWS\system32\SensorService.dll
22:33:20.0363 0x2c30 SensorService - ok
22:33:20.0371 0x2c30 [ 5068DAA8F67A62E964C9C9F88B159EA9, 09FCB7A817280957D1AD365EF8B46F666C70957238BF9FBC87D51115E1B0FCB0 ] SensorsHIDClassDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
22:33:20.0374 0x2c30 SensorsHIDClassDriver - ok
22:33:20.0382 0x2c30 [ 9B3744C26F206F9F90713D93A93C8B6E, D194F668D8BDDDB4356136CACF1FAD46E7566939C624029EF6E28D7A192B8EBF ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
22:33:20.0386 0x2c30 SensrSvc - ok
22:33:20.0391 0x2c30 [ 585329F62195A4B7AAD0A95F6EC89751, E7ADED97ACA8E8E06C368E24702C22D4C2B0B9495DEA24A2DC2A30782099BDCE ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
22:33:20.0393 0x2c30 SerCx - ok
22:33:20.0398 0x2c30 [ C8F4FDA8B3D039D7947344614FF5BFB2, 1A3B88EC59F2A820AFE4F3AC65F7149EAC68672D1F0D729CBB575694005A8911 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
22:33:20.0402 0x2c30 SerCx2 - ok
22:33:20.0405 0x2c30 [ E5B450E4E0DC1591254BF9CCF6C57B40, 958E7378D9BDE1F2EBE736D8D9912D56835A606AABDD042443A35CA37EC70F11 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
22:33:20.0406 0x2c30 Serenum - ok
22:33:20.0413 0x2c30 [ 628D8DD136F92316BFEB58FA005338B7, 0CDA673D31F40EBD07E9F67667DB6077F23DCADE2DD8376AB550575224625D44 ] Serial C:\WINDOWS\System32\drivers\serial.sys
22:33:20.0415 0x2c30 Serial - ok
22:33:20.0421 0x2c30 [ E5BA0B7353ADC5C95AB466D2E4DC89B1, 98F2A22ED892B2610C85EAAAB51DF25939599955A27611FCE9E68C3701CFD4EA ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
22:33:20.0422 0x2c30 sermouse - ok
22:33:20.0438 0x2c30 [ 043D7B39E693C610036BD56DF30EF440, 329D29CE1CB5F502B7DFCBE24878CA61EC56787A1B02195E19499701B194DE08 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
22:33:20.0445 0x2c30 SessionEnv - ok
22:33:20.0449 0x2c30 [ 15CFCC4692DA8887B977CE5FC5181084, 31D86E122E35AB9E7275F2B0573EE98770BBE517ED3B9CCED97F4969C9A619F9 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
22:33:20.0450 0x2c30 sfloppy - ok
22:33:20.0464 0x2c30 [ 87B083252816171A17F833CBCB7AA85E, 200AB93CEF384791DC9B04D2AF17877CA10595B2CEDF4B9505E367A2382C4AB7 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:33:20.0473 0x2c30 SharedAccess - ok
22:33:20.0488 0x2c30 [ 4293E11951DEAAFB3924AB1DAB1FAC08, 644974816DDF690B26F369E48533D654A5B298BCA993EE53EACB5C00E52E5243 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:33:20.0498 0x2c30 ShellHWDetection - ok
22:33:20.0506 0x2c30 [ 7CA2E9B6EDC87FCCA9C49D3D9BE62B65, 3FE1A2DD8581BF8D29EA2000424EB992BCA8E00986F107C22489D006F729D2E3 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
22:33:20.0511 0x2c30 shpamsvc - ok
22:33:20.0516 0x2c30 [ 2339F6B45E1D863B1D327F3AFD75A675, 03304ADC42EF6E8F671C8AA78A0D3E40408D870FBF2DA2B31A1727F86EF8F213 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
22:33:20.0517 0x2c30 SiSRaid2 - ok
22:33:20.0524 0x2c30 [ F520D50AD7266ED31D25DF4C8EA6BC2D, F68CF9EFB8319E59A8D9C24A36A198185DD79CBACD14510F5450F0024F0CD4D3 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
22:33:20.0525 0x2c30 SiSRaid4 - ok
22:33:20.0530 0x2c30 [ 70A2FD5F5B7B1A5E1146BE45E4DFB75D, 598824F06BBC2E37B9A6474411637C73233C8D2E13AE963C3229279A8519A9D3 ] smphost C:\WINDOWS\System32\smphost.dll
22:33:20.0532 0x2c30 smphost - ok
22:33:20.0547 0x2c30 [ CB001810FD0C56F1D57229D023A84AE8, E423B53EE3A3710D6F45CD14C8BA5EF8E955344C8477385D470E6687FC661A75 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
22:33:20.0558 0x2c30 SmsRouter - ok
22:33:20.0565 0x2c30 [ 9977AFF389C0C32DE419226564886E09, 453ABAB020E3ACD04A45BD05B224C182A47534C23023C4E1AD1903E5377B3CCF ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
22:33:20.0567 0x2c30 SNMPTRAP - ok
22:33:20.0581 0x2c30 [ 2334ED0B61CAE7E7B1B454674206CDAC, 4EAA11805C2282E0306A381CF56E4B28D83C68BA1B401BFD512AE70C05C8A4CD ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
22:33:20.0590 0x2c30 spaceport - ok
22:33:20.0595 0x2c30 [ F3F0B8CAC1F3E6C3382EAFCE762475AD, 9F2EB373FB9216CDA71965979EE5E18F3AFDD26FF7E0C09DD7C3D880205C2554 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
22:33:20.0596 0x2c30 SpatialGraphFilter - ok
22:33:20.0601 0x2c30 [ 83E82B0E292DCDE4C75B9241BF0FB300, 494D2FD4CD082CC416CA5FF1ABE06BDC65A769F371CF0E18AD25C380B45AEE32 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
22:33:20.0603 0x2c30 SpbCx - ok
22:33:20.0622 0x2c30 [ 10CD42898C9E4849193E78A87337B2E9, 7C4FCB36EE1AF92C6962F14AE6DEF2CB154468EC3963DCDB9BDF8398C98B475B ] spectrum C:\WINDOWS\system32\spectrum.exe
22:33:20.0636 0x2c30 spectrum - ok
22:33:20.0653 0x2c30 [ 29D813B5D84BC2C26BBC607CAA57A675, 2C4D5F4E2F7B6580E22ABF67690B0D32CAF5063DEA79E6F57E565782973F3990 ] Spooler C:\WINDOWS\System32\spoolsv.exe
22:33:20.0665 0x2c30 Spooler - ok
22:33:20.0746 0x2c30 [ E910861720DE6EDFB5CC6158CE3C7E17, 526BA8EEB9EE5312FEC39753D728E05F49AD81132346A354C95D4D4938001E2B ] sppsvc C:\WINDOWS\system32\sppsvc.exe
22:33:20.0810 0x2c30 sppsvc - ok
22:33:20.0826 0x2c30 [ 36EAC4FE629FC036632F13EC14788FD1, 6AEE37816306FE46FA99EADB23E98CE6A6674C11ED847F1F5575926E26B09F9A ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
22:33:20.0833 0x2c30 srv - ok
22:33:20.0851 0x2c30 [ A84B05C7C2A233497BE1D518A662C326, 85B291B6783AD48F2111B46050311A553BE6D6A7C3D90861DC010FA65730D2B5 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
22:33:20.0862 0x2c30 srv2 - ok
22:33:20.0871 0x2c30 [ 0351B28EEDFBD6C8CC69A7224A098CFA, D1D08D63F773CAEEA66585D090C073C0748AE96A2AAE8487E4B8BA54F7E59558 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
22:33:20.0875 0x2c30 srvnet - ok
22:33:20.0882 0x2c30 [ E95A6C339AE68515897B2E4C6B0842CA, 29DD7E83CD68432EAE4A7ED92CDA40AA52028F5FBB52152F0A1C752B572C2684 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
22:33:20.0888 0x2c30 SSDPSRV - ok
22:33:20.0896 0x2c30 [ FBD45746B2EDEECA10CCA6A861F8049B, 34383B0A07A93E0FA89CA32CD45AC5061F73723B2A9E0BF4AF93A53F70F1678E ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
22:33:20.0901 0x2c30 SstpSvc - ok
22:33:20.0993 0x2c30 [ F1A5AC00B8CD7E28BBC8DD7E60D48B65, AC185DD46A8B63500DDE74C2446F6409B0B4612068C33B4B7C30E43F389908DF ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
22:33:21.0069 0x2c30 StateRepository - ok
22:33:21.0079 0x2c30 [ D40C589F80EB1C511263D0547C0259AE, A0236F6BB515AE006CC4C9F40FCCE250407888757A3646BB4BCB59EF8EEF1311 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
22:33:21.0080 0x2c30 stexstor - ok
22:33:21.0095 0x2c30 [ F83F43CD328E6CEEAAC27612F3EB1FF5, E3D35E5154CD228301806706E6EADCA36E9113EAF44BC06E3C43B2E902187326 ] stisvc C:\WINDOWS\System32\wiaservc.dll
22:33:21.0106 0x2c30 stisvc - ok
22:33:21.0113 0x2c30 [ 576A818562069B1E091CC719C143AED2, 48880CF4D33033E9A6024C2A0AD673AFBCE400C74574913F8E24717BA6BADE7C ] storahci C:\WINDOWS\system32\drivers\storahci.sys
22:33:21.0115 0x2c30 storahci - ok
22:33:21.0120 0x2c30 [ E5F703788DFA05411F1469E96838F438, A7E8D2DC23E23EA52B068C71D9387E69FF49798A27CE0243A994A2B1B09FA042 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
22:33:21.0121 0x2c30 storflt - ok
22:33:21.0126 0x2c30 [ 0D0128244FF55EAD3F878D3FE542DBA5, 4FCFA1B2113E07264A71A22298CA6E9FDC2AB722E0AE184A8F5656C18113A858 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
22:33:21.0128 0x2c30 stornvme - ok
22:33:21.0134 0x2c30 [ 3A62FF78619258E6126C5C4B4CC82C8E, C72CC295680B35E0EEE5A5310E0241E2FFE0E540BFAA49C35C06AA882229C1CD ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
22:33:21.0136 0x2c30 storqosflt - ok
22:33:21.0154 0x2c30 [ 212CB512B785E218667CCA56C4BFD71D, 5FD4CFEE5AB2187D928632076E6AD5C2C53D66884479C4D34930DCFCA3CCEE34 ] StorSvc C:\WINDOWS\system32\storsvc.dll
22:33:21.0166 0x2c30 StorSvc - ok
22:33:21.0171 0x2c30 [ C6097966F8EA3B288070CDF7C3C8C3E8, D12C4AF3E54DCE1E5DC9C8AA0E83420F481DC0165A7F7845083A85BABC102D37 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
22:33:21.0172 0x2c30 storufs - ok
22:33:21.0177 0x2c30 [ 3DC3B17E92DA02E36B4138733DF6C1AC, 398F20B6D6DAF6DA950C149F63F3B23864E1478119BFE53218C220CEADEC800D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
22:33:21.0178 0x2c30 storvsc - ok
22:33:21.0182 0x2c30 [ D284AB2CA6C30317D142D38CE1F848BE, 4C9EAE174F5C673CA550C9382E85CE7DAF5DC9965495BAB09078B634A4CDD4FB ] svsvc C:\WINDOWS\system32\svsvc.dll
22:33:21.0185 0x2c30 svsvc - ok
22:33:21.0188 0x2c30 [ 2BC4D0EBC2467FE90302AE0AFAF23768, CF8BCC9CA1FBA8407FD044613A2497BEEC641DE463B076F0ED1FA7674C202ADE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
22:33:21.0189 0x2c30 swenum - ok
22:33:21.0226 0x2c30 [ 5DFE2889AD54D52AF7BB0FF8CF48C983, 8928CCBF33F3ABDD2D034BE5E6E8AF982B0420FBA3701032F4E70B9083FE2C7C ] swg3kser00 C:\WINDOWS\system32\DRIVERS\swg3kser00.sys
22:33:21.0230 0x2c30 swg3kser00 - ok
22:33:21.0241 0x2c30 [ 5DFE2889AD54D52AF7BB0FF8CF48C983, 8928CCBF33F3ABDD2D034BE5E6E8AF982B0420FBA3701032F4E70B9083FE2C7C ] swg3kser03 C:\WINDOWS\System32\drivers\swg3kser03.sys
22:33:21.0245 0x2c30 swg3kser03 - ok
22:33:21.0265 0x2c30 [ A73FA1F7FCF45802F35E6B7B5C18447D, 5AB3E67DEE0F8CC3648D6A52C1EB3D59B5721645BC87F4B84862DA5DEA334EA6 ] SwiService C:\Program Files (x86)\Sierra Wireless Inc\Utils\SWIService.exe
22:33:21.0277 0x2c30 SwiService - ok
22:33:21.0312 0x2c30 [ 13985DA558FBCBFD9108A2CACB5FE494, DD457A73E82147AA90C36D695A47E862FF90D96FB1E22760FAB5780F7C332A46 ] swprv C:\WINDOWS\System32\swprv.dll
22:33:21.0321 0x2c30 swprv - ok
22:33:21.0326 0x2c30 [ 15A8D329C386DB999BB66D81D0C8DC63, 4298AD0F863CF1163818FE45D927568E955EE60452F0E54B9F4FF6D763F63AF3 ] SynRMIHID C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys
22:33:21.0328 0x2c30 SynRMIHID - ok
22:33:21.0332 0x2c30 [ 572F81CF08972D53BAFFC2A110A2A586, D9AF8EBB31CE097849F93FC8C0F06178B2E1CA8C48D08BBDD85174CCD64A16D6 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
22:33:21.0335 0x2c30 Synth3dVsc - ok
22:33:21.0349 0x2c30 [ 31B21E773FE6CF73582C83EC8DE26554, 32EB2F128640D7D1CBF49403C90C71A567B3CED5D73DDD2571AACFE7CE56EAB5 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:33:21.0359 0x2c30 SynTP - ok
22:33:21.0371 0x2c30 [ 7BC21702387861A745B510F5C0332721, 657AD81116BFDC2F34A6155025EA9DE799CE8C3868CF8B623A7C64856A51AADF ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
22:33:21.0375 0x2c30 SynTPEnhService - ok
22:33:21.0396 0x2c30 [ 7C29BBF63178BB6788AD1C2B231150A5, 5114AC1260C5447D3B21C7C56D825C1E77FCE388C5630D0200C8256F69EFA6B4 ] SysMain C:\WINDOWS\system32\sysmain.dll
22:33:21.0412 0x2c30 SysMain - ok
22:33:21.0422 0x2c30 [ 97E0FD613D031EAA73E8AD259169AC22, E86E9B9C18AF2E79D7CF80B177A12D89418CDBD3CBB74307809DD0377408DB82 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
22:33:21.0428 0x2c30 SystemEventsBroker - ok
22:33:21.0434 0x2c30 [ 7750219DFABC38261575B6CEFBF84EC6, 50DF85E34AF7C1343281AD0EF34FD94AB0E279DA5C61976ABA0135B8F013C543 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
22:33:21.0439 0x2c30 TabletInputService - ok
22:33:21.0448 0x2c30 [ C1C6A802C2A9A57029D4347E251F4D18, 9F75B7F003C829FFDB2CDC98231D32FE988754D23873048FA4F6EB82ED1DCED4 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:33:21.0454 0x2c30 TapiSrv - ok
22:33:21.0504 0x2c30 [ D8D7A91B56DEF4A771A4414E9F07D138, 47712749937D945B15181F79D3FBD0151C021E0F4030E152CED88C96F1D072E6 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
22:33:21.0542 0x2c30 Tcpip - ok
22:33:21.0594 0x2c30 [ D8D7A91B56DEF4A771A4414E9F07D138, 47712749937D945B15181F79D3FBD0151C021E0F4030E152CED88C96F1D072E6 ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
22:33:21.0632 0x2c30 Tcpip6 - ok
22:33:21.0642 0x2c30 [ 1C35A5C62D110346379C55E39A3D547C, 5BDBD593AB51ECA5A6B703E86F300E3B2B153E128BEB9A006ABD827AE726BD62 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
22:33:21.0643 0x2c30 tcpipreg - ok
22:33:21.0650 0x2c30 [ 892AB2637603A5E9507C39E61101C3C3, 04B06BBEFC033BC9395123AE623E0BB3A241F05AA93EA2625CF2DBE1B3FFD1B6 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
22:33:21.0653 0x2c30 tdx - ok
22:33:21.0657 0x2c30 [ 96A35CDBA661D41C5A3914257CA1D200, 691ABBAA99C673E7D0B81D811BCC60976C3EC050F2B39B35B87A3BCC211F119A ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
22:33:21.0658 0x2c30 terminpt - ok
22:33:21.0680 0x2c30 [ 0B5C6D1683CDE89B3488326C60EA6EF2, 3B822CF005FA3002F27FF9BF39E7E133987230DA3481CFCF99F3B2B6B373A718 ] TermService C:\WINDOWS\System32\termsrv.dll
22:33:21.0696 0x2c30 TermService - ok
22:33:21.0702 0x2c30 [ 6568EF1B30101979107055B7E515EE58, A318082E5FDD79C9F85E8C00A78EBFA0EC44B1046976E85633DC7BD123DA38B9 ] Themes C:\WINDOWS\system32\themeservice.dll
22:33:21.0705 0x2c30 Themes - ok
22:33:21.0715 0x2c30 [ 2ABC11CFC2F03A919AF78A6E3E29C570, 54D91F89993A0FF090E2213EED92DE3659DCB693FBDA5932E31C6D6D7CFC8E80 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
22:33:21.0721 0x2c30 TieringEngineService - ok
22:33:21.0735 0x2c30 [ 8949EED671F531E7B4A0FD7333CCC125, 2D55A1B4FD6843A11383BB71D0409943CA0C47350153F3EDAAA3CADFA4A3504A ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
22:33:21.0745 0x2c30 tiledatamodelsvc - ok
22:33:21.0754 0x2c30 [ E59D4F92FE11B47AB727C6D192CC977F, 1DA06663889A20A1B22DDF90E5C99A5668023C0B89E252F3E820C0D1964B1948 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
22:33:21.0758 0x2c30 TimeBrokerSvc - ok
22:33:21.0782 0x2c30 [ C83505A5CC15E39D6C6D7B3C20187E5C, A6AB47C041A7C99CB0D5EA706CC31B3D88DC83BAF5AF7E59F651F9D7068D94B2 ] TokenBroker C:\WINDOWS\System32\TokenBroker.dll
22:33:21.0799 0x2c30 TokenBroker - ok
22:33:21.0807 0x2c30 [ F76A92975340DAA99939DA297D677EA8, 51DA87E921BBA21BF39D7D9B691CEF8B1D2BCE2BBB0BA5B3C12B7E98CB5C702E ] TPM C:\WINDOWS\System32\drivers\tpm.sys
22:33:21.0810 0x2c30 TPM - ok
22:33:21.0817 0x2c30 [ 85E0D4431D61675A94EA99C9E1F56436, 9FA750703E04D20A62DBB0185CBDD70AFC4573FB65F86E61AAF7CF7A7D8E1E3E ] TrkWks C:\WINDOWS\System32\trkwks.dll
22:33:21.0820 0x2c30 TrkWks - ok
22:33:21.0825 0x2c30 [ F21A69013A67B372675F523262AC1E33, C3F910E375C0F4B7FFA6F6D755622FF6B0CAE36DF691C938DE177C94815FE3C8 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
22:33:21.0827 0x2c30 TrustedInstaller - ok
22:33:21.0835 0x2c30 [ 9856BCCD1CD5DE4D17E8DBBA7CEFC688, F4B532DCE6F4728092848FE7B2FC05AB921EC7B3FDD7E62AB40EE0029C008398 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
22:33:21.0837 0x2c30 TsUsbFlt - ok
22:33:21.0840 0x2c30 [ 837AD2B941E721BCCEB7EF137E2DEE18, 84BE22616A50467B1957434C8BD19C8B0FC3B21CD77FFB8E16A09347CEAE0F4E ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
22:33:21.0842 0x2c30 TsUsbGD - ok
22:33:21.0848 0x2c30 [ 5DED9E34D133F4A363652CDB595D83F3, E8CFE5DF737D7C2A576B2D6D508977E1F6961122D541DF82AA581C7B3B1C384B ] tsusbhub C:\WINDOWS\system32\drivers\tsusbhub.sys
22:33:21.0851 0x2c30 tsusbhub - ok
22:33:21.0857 0x2c30 [ B3142C6118703E98EB0510CF7B43D0F2, 40FDCBAA2AD93026AD479BF8C1B4EE7A4E2E65590608B6B1C5DEB3C4716E5C03 ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
22:33:21.0860 0x2c30 tunnel - ok
22:33:21.0866 0x2c30 [ B097B77121A057AB6D70C647636978D4, 10F78A18AC898CDD0FA91D6FA29B8B45C6D8F6CE65B064C39256EB20FC6CD085 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
22:33:21.0869 0x2c30 tzautoupdate - ok
22:33:21.0875 0x2c30 [ B4C846ABD462558D45CA578C855759C3, E0F0DD39A6C101C2209CA46EF2B5A5F4559843C9EE37CC08ED78D9E124A566D2 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
22:33:21.0876 0x2c30 UASPStor - ok
22:33:21.0882 0x2c30 [ 5C2C0296D9EE7DC92A3F14642FBE656D, 94A7D549EC53C71095AD8DE4DB8F846D1DB3438FE2679E41DCAE62C34C0654DD ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
22:33:21.0884 0x2c30 UcmCx0101 - ok
22:33:21.0890 0x2c30 [ 8BB64E04CD97AD8C68543181D93E2AFC, FBA2FB9A9906721BAD42CDFFCCE0234AF3F72B83E2571E526801F19173B7C9CE ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
22:33:21.0893 0x2c30 UcmTcpciCx0101 - ok
22:33:21.0898 0x2c30 [ 5A7CE114C8DA9060F32633F81A5625E5, B49163951B380827ADBF13D336D5BDC1EEE90A70058019928A603AA1C24D8EB7 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
22:33:21.0900 0x2c30 UcmUcsi - ok
22:33:21.0907 0x2c30 [ 5D4EAF3D0911338CB8FDB088386D6DCA, 1AC5B494C39570E66C4D4F867C6B8E37C174FB5D67C2865B07247122F60F8895 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
22:33:21.0911 0x2c30 Ucx01000 - ok
22:33:21.0916 0x2c30 [ 384E1F0D84B465820416338E52FE7C2B, 8F82778332EA1199987BA569536CBED8FEAF5E9D920321B0C9DFCBDDD91EEA35 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
22:33:21.0917 0x2c30 UdeCx - ok
22:33:21.0927 0x2c30 [ C82BE75239D412057C9E3DB1785680C6, AE712E40440F5725DA41C95C3E558B5E9ABB17C55B70297DD40D7D1BDA7CE45D ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
22:33:21.0932 0x2c30 udfs - ok
22:33:21.0936 0x2c30 [ CCDF6EFF952BF3BF34DC17600F479397, 2A2009B3C4BD1A44F1C6E334CB0A7DD02443BCE1EB48837C1C70A2A04CC7C54A ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
22:33:21.0937 0x2c30 UEFI - ok
22:33:21.0943 0x2c30 [ 244A80A1A881E2B9303A0364AAB33F16, 3C58D5D5B1AF6AB598E6450817381E7D6B8700151B66DCDAD6002E73BD0EDF27 ] UevAgentDriver C:\WINDOWS\system32\drivers\UevAgentDriver.sys
22:33:21.0944 0x2c30 UevAgentDriver - ok
22:33:21.0970 0x2c30 [ 5F1DA3635C2F6B74EBFDEBFC747B63B5, 1B456B777C5099A67E405FEF20B5CBCB24C6FCE9ED7A5A421C6574618364FD47 ] UevAgentService C:\WINDOWS\system32\AgentService.exe
22:33:21.0988 0x2c30 UevAgentService - ok
22:33:21.0997 0x2c30 [ 00BEF71C45FD6B06E7525E7B31EFA88C, C0BDE8CB41BF9A34E395EA86756637E4CD6B88EF1C842364ECA639948D6CD59A ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
22:33:22.0002 0x2c30 Ufx01000 - ok
22:33:22.0007 0x2c30 [ 9450AB15C30CF7D1F23C8A42E778C3A2, E62455008ED5B7220AEE62E0F459A67E26FB2878349ABA5AAF0164C2E7A8C0E9 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
22:33:22.0009 0x2c30 UfxChipidea - ok
22:33:22.0016 0x2c30 [ CEE12C7A689BDF448715024A7E0EB9C3, EC48E1469800E34A71C8A97A6F2F0B7C67385BCB8438844E6967DE0A82E39B94 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
22:33:22.0018 0x2c30 ufxsynopsys - ok
22:33:22.0025 0x2c30 [ 5A2F610B31CC3FD23D3E20C1D5F1EF52, D470B7C1CAE066C2DCDBA47001913FB1A7C9CC5B200FB8324DB896B641C1A132 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
22:33:22.0028 0x2c30 UI0Detect - ok
22:33:22.0033 0x2c30 [ F39ED750EDF5948FA8CD99D1F4EC9372, AE42AE50DE09F26D3CA4ACDCD5ECABD59D26926707030F0532A885266FE83EF9 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
22:33:22.0035 0x2c30 umbus - ok
22:33:22.0039 0x2c30 [ 55984D4E64C2F8E4223542CBCC15EDEB, ECBC832FBBA6AFCAEDEBB2728FA4A6DDCF52A6421929E72CA29B61CDBED840DF ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
22:33:22.0039 0x2c30 UmPass - ok
22:33:22.0048 0x2c30 [ FBEF4641E3E08A03CA84AF5C393CA86B, 9A14A0FB645AB6DD0B49F3A14FBF38FECC65796F2503324E93994113CC7AD52F ] UmRdpService C:\WINDOWS\System32\umrdp.dll
22:33:22.0054 0x2c30 UmRdpService - ok
22:33:22.0079 0x2c30 [ 3699DED879B2FF8FC1ECE91489109796, 05B1283256F6CA6AF3ABBE003360BF0BAB3400223092E7E9F0822120BF576BD2 ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
22:33:22.0097 0x2c30 UnistoreSvc - ok
22:33:22.0114 0x2c30 [ BBB6BDBE5ADCE6F87F70623D5A1EC5BC, E8BD5804FF82417890A9D1A44096B174E81A8C7AD3059B1F0C62740E0B39D137 ] upnphost C:\WINDOWS\System32\upnphost.dll
22:33:22.0122 0x2c30 upnphost - ok
22:33:22.0126 0x2c30 [ 4D23214CB8B1C36B82061280EB8FDAB3, 387C01A7F9D8F89ED894EDF894AAAF8830DD7C90DF2F12A2CB4C4E9C7CB773BE ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
22:33:22.0127 0x2c30 UrsChipidea - ok
22:33:22.0133 0x2c30 [ 4329D880DB96B504F0DDC991A7374CCD, 1486BEF2C03ED281B24A17D3C18FEA2360E37A6B46D1A67D4690CD871B0A13DA ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
22:33:22.0135 0x2c30 UrsCx01000 - ok
22:33:22.0139 0x2c30 [ 93FAD0AC5879F274FA248A49E3F3EA33, D936F408E23040B33F30AB3B43D8B8BB9F3CCF2549E821F4C47357987AFF386F ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
22:33:22.0140 0x2c30 UrsSynopsys - ok
22:33:22.0147 0x2c30 [ 6B09AA6A04C8261E787B6523229E7159, F97BED424E988AC6272D51025FD0D3180E89BAF0FFC83DAB609774D6269B353A ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
22:33:22.0151 0x2c30 usbccgp - ok
22:33:22.0156 0x2c30 [ ECE3AD18B4C22ED0C4AB1A2AD9AC32C8, 2062D400305075E886CF2C9D710A1C48B3F4AD48E7A75A77C66547357E96CB6E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
22:33:22.0158 0x2c30 usbcir - ok
22:33:22.0163 0x2c30 [ F8BCB536866474C6D8008F4C69B778A1, F86F4330DE2F50D48559C1ED46168ADB8F6AA7C8FE3834FFE00085C1783C5750 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
22:33:22.0166 0x2c30 usbehci - ok
22:33:22.0178 0x2c30 [ 1F723DA014062DBF3288B408A7611845, 0CCC9360259E6FBC510BBF69AE991A53A92516023AAC32C60A44BD3B43371C66 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
22:33:22.0186 0x2c30 usbhub - ok
22:33:22.0200 0x2c30 [ C3F953D10C486D6A190AF548B3CF7DC9, B0FB45B3045D499A44853A9D4CFD39C9D92873FC0A62A3D76B6149E601DFECD8 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
22:33:22.0209 0x2c30 USBHUB3 - ok
22:33:22.0215 0x2c30 [ BE6ED98FD0D3FE5FB11762AD7CCD6C96, 54C6C929CA55EA6770474F7E230190FC7574C1FA52437B564B3B5FA4D6106D8A ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
22:33:22.0216 0x2c30 usbohci - ok
22:33:22.0220 0x2c30 [ CEE43CD5357DB8786CE6E2C430841AE4, 50F4629AE488A12D18EFFAD486D2F95545049AB1F6A3248BA44D2132EEC9A653 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
22:33:22.0221 0x2c30 usbprint - ok
22:33:22.0226 0x2c30 [ 99F0738B320B7A8D11351A32F68AA5F1, DAA887C31E3F56245C15F04044C12B6E832FA7E837F4107376A6F8D8E3A99FEC ] usbser C:\WINDOWS\System32\drivers\usbser.sys
22:33:22.0227 0x2c30 usbser - ok
22:33:22.0233 0x2c30 [ 67E26F56CF7EACCBD9C9F75343A3D7C2, 210FA280897CCCB2458E9E683A8B4CA8A5DF9606B54F8B9CE05CA4AA6FD810AB ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
22:33:22.0236 0x2c30 USBSTOR - ok
22:33:22.0240 0x2c30 [ 7BA802C9F73A84B75BB22538ADA495BE, 7D97E6305168C4CA86AB9BD5B63300156DFE97032251CB83DB1D4C4DB9C28DC8 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
22:33:22.0241 0x2c30 usbuhci - ok
22:33:22.0253 0x2c30 [ 50E70B3A95138AA4A30B095270EE0DE6, 9B7072C36230102A089C4A6DFE1980CD9DB28E566EF02830600DEBAF3AAD31C7 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
22:33:22.0258 0x2c30 USBXHCI - ok
22:33:22.0291 0x2c30 [ 3156FFFB2B3BF5375814F777D343AD9F, C4E63043EB9D9227CDD487608AF9BA25C755D85E5FF8E63C2079D68CCC79E4BB ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
22:33:22.0315 0x2c30 UserDataSvc - ok
22:33:22.0339 0x2c30 [ C0E60CC6D48013728C7E4168D61A0B39, CA283312E9669BCC74A3B5E6332502D1CAA7148C049B94AF3996F3C7CD2676EF ] UserManager C:\WINDOWS\System32\usermgr.dll
22:33:22.0353 0x2c30 UserManager - ok
22:33:22.0370 0x2c30 [ 86FF5780D885B09F3C4CD62145470CB1, B0070E3567A7F8E993F2650E251026DF0A4FA0D3F5258C4F88D9819F9B9EC395 ] UsoSvc C:\WINDOWS\system32\usocore.dll
22:33:22.0382 0x2c30 UsoSvc - ok
22:33:22.0387 0x2c30 [ EABFCDA6E996F8A32DC1B302F7683BB2, 5FF2BA89D9A7BDE78C40866F15EC576527699ADD0F120E1A8388C4404A69F0E8 ] VaultSvc C:\WINDOWS\system32\lsass.exe
22:33:22.0389 0x2c30 VaultSvc - ok
22:33:22.0394 0x2c30 [ C1EC9211C7759D2487FD30934AA3EE96, 6914BB8B44550DFE75E5A3772E93ADF8459EB621CA400BDD9B7E3185A09B6F9A ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
22:33:22.0395 0x2c30 vdrvroot - ok
22:33:22.0412 0x2c30 [ 374CD93271184F04988FDC1C25B3E855, 09727093C5F7B258867C16D41F7F9835BF549CC339288BFE01A8F34AC7E93E23 ] vds C:\WINDOWS\System32\vds.exe
22:33:22.0423 0x2c30 vds - ok
22:33:22.0431 0x2c30 [ C83F3BC00651448DB127D497CF955089, 31B8838CEED08E7D5DD8635A805A8010798BD9B10A3775FAFDB576FBD7303D39 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
22:33:22.0435 0x2c30 VerifierExt - ok
22:33:22.0453 0x2c30 [ 0E12F5F6B1C813D17AFDA197C4394423, B0AFDFE0E12633C6D984DA366197BE09ED2649BAFF525FA0DE84701E5B335DB9 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
22:33:22.0463 0x2c30 vhdmp - ok
22:33:22.0470 0x2c30 [ 1AD096A5C00E522398D0092D875A8CB6, 6959FCD6DD2115CD293DBD4BCD6D1BA0AE4F7495A9BBB48F7388384EEABB38E9 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
22:33:22.0471 0x2c30 vhf - ok
22:33:22.0477 0x2c30 [ EE9A22CFD9AEDD7B52F98B0272494609, F668131BABD048857F011A471936B52EDF0F2A42CB6000ACB4E0E43F88782AAD ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
22:33:22.0479 0x2c30 vmbus - ok
22:33:22.0484 0x2c30 [ BFBD0895926FD98A03AD6BB845B569B7, 5B7913ACD6CC132B2F36B079BC5F897C21884A7F21046B8996CC3D74C4B6DA4C ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
22:33:22.0485 0x2c30 VMBusHID - ok
22:33:22.0489 0x2c30 [ C123C97D351C56C75FE5335AB18255EE, 67315E332E863E5C233BA113826A5DEEE08C1A0A3358E6AC21F25DC5EAC86D07 ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
22:33:22.0490 0x2c30 vmgid - ok
22:33:22.0501 0x2c30 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
22:33:22.0507 0x2c30 vmicguestinterface - ok
22:33:22.0516 0x2c30 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
22:33:22.0521 0x2c30 vmicheartbeat - ok
22:33:22.0529 0x2c30 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
22:33:22.0536 0x2c30 vmickvpexchange - ok
22:33:22.0547 0x2c30 [ F8F380ABEAFBC589FF6D2D96267C1210, 0CFA3D9E88D984BAFED8E08102BF4DC4077856C6C8C1EBD8D4C4D0D49B673F44 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
22:33:22.0554 0x2c30 vmicrdv - ok
22:33:22.0564 0x2c30 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
22:33:22.0569 0x2c30 vmicshutdown - ok
22:33:22.0578 0x2c30 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
22:33:22.0584 0x2c30 vmictimesync - ok
22:33:22.0592 0x2c30 [ A9C889CFDDE704A15CDC639C3D6662B6, 9EE41886D9E8DFDB512B821EAFE1857E83A3C3318EB852A2C110DB8184346AA9 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
22:33:22.0597 0x2c30 vmicvmsession - ok
22:33:22.0606 0x2c30 [ F8F380ABEAFBC589FF6D2D96267C1210, 0CFA3D9E88D984BAFED8E08102BF4DC4077856C6C8C1EBD8D4C4D0D49B673F44 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
22:33:22.0611 0x2c30 vmicvss - ok
22:33:22.0617 0x2c30 [ 0AB9C264F13E2A070A8CF10EDD099ED2, 2E7EB4EE8DCBBCA497CC0E7F4BE057627E9702B6FAF56A7DBCA1325236C880EC ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
22:33:22.0619 0x2c30 volmgr - ok
22:33:22.0628 0x2c30 [ 6EE608257C1137A25B402EF8FC77E83A, 3AE684EBA32563468AD917155C93220F938460A699FBFC3DB8436F83C0C54209 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
22:33:22.0634 0x2c30 volmgrx - ok
22:33:22.0644 0x2c30 [ E3429DBBEA3965BB96E24B16EF4A2551, 0CEE2DEF75C6761DA67AFD3BBF8DEEB1331796719EB84D658B3E517DEC824B49 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
22:33:22.0650 0x2c30 volsnap - ok
22:33:22.0655 0x2c30 [ 86E790B503C771E674C7DF8FFCBFEFDB, 634B27C4FA363A2165D3D6929D3B22F41EE06198C579A70D446A48830924467B ] volume C:\WINDOWS\system32\drivers\volume.sys
22:33:22.0656 0x2c30 volume - ok
22:33:22.0661 0x2c30 [ B25589A0892E6DF8CC07E5CB48BFC954, DA29974426EFD4472A3828FA0EF31AD3860AA8068AB66B5F4BE6A412BC3E73E9 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
22:33:22.0663 0x2c30 vpci - ok
22:33:22.0670 0x2c30 [ AA4466A47D2CA7ECE3DCF5256017DCC3, 83414BFBD3DF1CB7417F0F55709E8180D97FA20A74581C34EAAFF667FBEBFD93 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
22:33:22.0673 0x2c30 vsmraid - ok
22:33:22.0712 0x2c30 [ 0BB73BF6FDDD19DE3DE9377EA95E4C64, 74B6E612F9E009A5E43B603BCAD854F3711F6C8A7ED0328B1E3A9B2D4C9EA342 ] VSS C:\WINDOWS\system32\vssvc.exe
22:33:22.0736 0x2c30 VSS - ok
22:33:22.0745 0x2c30 [ 98BB6C9AD39D8F2E883093F28282FAEC, 63F4036A1DB23C20AAEEC1CA8ABDE9B46FA09A55EA4E5DB0C0B5D6D58ABAD62F ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
22:33:22.0750 0x2c30 VSTXRAID - ok
22:33:22.0755 0x2c30 [ B47026E109828102266CBE2F5F9AD113, 28C76B34C48BACEA267A208CC758BB55539323B16300E869AE71B6A99A849AB5 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
22:33:22.0756 0x2c30 vwifibus - ok
22:33:22.0761 0x2c30 [ 799ECD541A9B2764B36A22A095885365, E255E74682927D662294AA3F88FDA211EEE603466EB264E8941C3BACC6A0E530 ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
22:33:22.0763 0x2c30 vwififlt - ok
22:33:22.0768 0x2c30 [ 82CA088A33517D1C8571D6850CC13D7E, 0401A08EAF36DB393B74FE8693C60F62EDE10BBC9300C76812C7D01B6AE9A051 ] vwifimp C:\WINDOWS\System32\drivers\vwifimp.sys
22:33:22.0769 0x2c30 vwifimp - ok
22:33:22.0783 0x2c30 [ E75460AC4E936BFC0703021DB0BB17B8, D9985C3206B503659FD2F4EE7FD0B9AF8CB2DE821BFD68B13C9E3BD9CE5AEF6B ] W32Time C:\WINDOWS\system32\w32time.dll
22:33:22.0792 0x2c30 W32Time - ok
22:33:22.0796 0x2c30 [ F0F477541F7AF67CC05DA1CF4921A500, F7DD2F49B61C484596DE3893683B1172A138386BD71F54BFCF37A31005C7368F ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
22:33:22.0798 0x2c30 WacomPen - ok
22:33:22.0809 0x2c30 [ A0957CBC1C054A87EE7A65A994102A96, CB6339F3F67D0E33C26E6756F88869574B84426B20C907E094F83B9DC5E36A3E ] WalletService C:\WINDOWS\system32\WalletService.dll
22:33:22.0817 0x2c30 WalletService - ok
22:33:22.0822 0x2c30 [ FDD16EF9177A8A2EF08A7FA3D3EFAA13, 148F34CBEEF0CE87103C76294AE5BE318F990A5FE7A5EDE6F47D85361248582B ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:33:22.0824 0x2c30 wanarp - ok
22:33:22.0827 0x2c30 [ FDD16EF9177A8A2EF08A7FA3D3EFAA13, 148F34CBEEF0CE87103C76294AE5BE318F990A5FE7A5EDE6F47D85361248582B ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:33:22.0829 0x2c30 wanarpv6 - ok
22:33:22.0861 0x2c30 [ EA0524A2A01792796EC80AE2FE08307A, 68CC0F3451C6797222411C276376C7741C96C45E628DD77FB1FB17C10DC0EA8A ] wbengine C:\WINDOWS\system32\wbengine.exe
22:33:22.0884 0x2c30 wbengine - ok
22:33:22.0906 0x2c30 [ 5E3E24AA72FA75D6322C7286917BEB4A, 97D0CF00873A5A70C1B4A73AD41F4053B22810DA37FF2E8528D510216311FEE1 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
22:33:22.0920 0x2c30 WbioSrvc - ok
22:33:22.0927 0x2c30 [ 2B7CCCFBB166100842D31440228588CF, FC0BE611C5497A0579E7D8F268BBE1BD520A8A764F112C7C5CC631767B683B79 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
22:33:22.0930 0x2c30 wcifs - ok
22:33:22.0950 0x2c30 [ E00FE13E415C97C60E5A418965372A74, E74EBE34D3056F52231C7B12E6294AED1C4F02219E853D5E70AA05D823C800D5 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
22:33:22.0963 0x2c30 Wcmsvc - ok
22:33:22.0977 0x2c30 [ 2C396871F724DDF871A2EF4CADE5151D, 8CAD8A393F0CC447432E1BED21A691E25356F7DBC06E3887138A6F86CB1D656D ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
22:33:22.0986 0x2c30 wcncsvc - ok
22:33:22.0991 0x2c30 [ 1737BEF60CA384423CE4B32AF1C2BFFC, D61353D3B2EAEDFDCBB5DB3AD27E76396CC7755AFF01233307EAA1967493DE63 ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
22:33:22.0993 0x2c30 wcnfs - ok
22:33:22.0998 0x2c30 [ 38130C1C5FE0E08820EE57E1B087B659, 3705AA4699D4C402C0BBC5BC4E1EE67CB4A4B9C27702E88952A76891C3A3F496 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
22:33:23.0000 0x2c30 WdBoot - ok
22:33:23.0020 0x2c30 [ 0C6CBF3490EE5F0D62B5820568CA30B8, 97EDEC84DA72A900D7740B8763DDDAB600628F3F1E1DDE1212383C2E60FDC77C ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
22:33:23.0034 0x2c30 Wdf01000 - ok
22:33:23.0043 0x2c30 [ F7B6CB0F9ECD28848E2BDACEAB0D9204, B64D91A36600AEBE656F0514AF8653C294DE88054FE6DBB7B1A6D0A23D2A5131 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
22:33:23.0048 0x2c30 WdFilter - ok
22:33:23.0056 0x2c30 [ 501CB5E6999B7336BE5D0D401013D251, D4581E4FD8BE65D611E763AE88D2982A785036B2A93F2A00D3A3A395AB2AD5B3 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
22:33:23.0060 0x2c30 WdiServiceHost - ok
22:33:23.0065 0x2c30 [ 501CB5E6999B7336BE5D0D401013D251, D4581E4FD8BE65D611E763AE88D2982A785036B2A93F2A00D3A3A395AB2AD5B3 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
22:33:23.0068 0x2c30 WdiSystemHost - ok
22:33:23.0086 0x2c30 [ 2974422E31DBC953A585A065EF736948, B2E689579C12B1A8B2CB4F04875157E894CE747DF56A9B7083E04A8C9B85EAC5 ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
22:33:23.0097 0x2c30 wdiwifi - ok
22:33:23.0104 0x2c30 [ 82A4F22C884B4BAE8B531640859F9871, 1C662557F671FA680E7CC2FC565B198470E421778BD03749CD05B2928568C430 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
22:33:23.0106 0x2c30 WdNisDrv - ok
22:33:23.0109 0x2c30 WdNisSvc - ok
22:33:23.0119 0x2c30 [ 9066FE8EAB91E15437CB3C43757F2A65, 1F8B3D8C90C7862CCAB91D170F49E7F1D58FABAFA1C8DDDE1796404D1DD98707 ] WebClient C:\WINDOWS\System32\webclnt.dll
22:33:23.0124 0x2c30 WebClient - ok
22:33:23.0133 0x2c30 [ F322B8E6C5614E7975C8BF34B7A6710E, 299816001856E8C91BFBB9C48D87B7ACBD5A39F6A65147F5AE6EDB3065A893E9 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
22:33:23.0137 0x2c30 Wecsvc - ok
22:33:23.0142 0x2c30 [ 04CA184EB5743DE5A2CCEEF2DB2DA8B3, E16921496F57B78A152A103F8D58601C9687360048A6CB51E76A96E3B64CC0FA ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
22:33:23.0145 0x2c30 WEPHOSTSVC - ok
22:33:23.0151 0x2c30 [ BA78F20F7FD7709EA3AAAD91F8535EDA, D1DFBFCBBB8D4D992FBF3B340DB6A2F5DDC7E55F52E1100297EA2004FF752A2B ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
22:33:23.0154 0x2c30 wercplsupport - ok
22:33:23.0161 0x2c30 [ E5AE3B23620126483B957BDFF38FE7B7, 306AAA0B37F3914FE590A5DBFBF640C79173150C006BC7A6CF1683D85C0AFC5F ] WerSvc C:\WINDOWS\System32\WerSvc.dll
22:33:23.0166 0x2c30 WerSvc - ok
22:33:23.0179 0x2c30 [ 51D61CA3CED9A0C4E5501EEDBD48039F, 95F9CC67537DEABE501B59351624F02126BC9B9DBB72016423FF997090A2128B ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
22:33:23.0189 0x2c30 WFDSConMgrSvc - ok
22:33:23.0197 0x2c30 [ 3C8F0ABD00E197101DCF43FEF8FB0D76, AF5C68B85EE1503ACD4AEA1D997F816C34293A77791D59A605DC18450B4906DE ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
22:33:23.0200 0x2c30 WFPLWFS - ok
22:33:23.0206 0x2c30 [ 2DEB40D6837956CE08A8F9EB3ECA5A01, B40D23E54CDF6BE05D6C5DA536BF6D998E79EDE9C391A42452F9F69EE206EA1E ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
22:33:23.0209 0x2c30 WiaRpc - ok
22:33:23.0215 0x2c30 [ 75014BF6510D4C6C69EEE5B7743A52AF, 11AEEF4D52C35E5A7006713836ECF1198A53CD02736E792B1C698144CA1363F0 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
22:33:23.0216 0x2c30 WIMMount - ok
22:33:23.0219 0x2c30 WinDefend - ok
22:33:23.0227 0x2c30 [ C8EBCFED8FD2CDF725E44AF93016621E, A0B76E55CC535A0F1D79C3C0EC59753086EAB669EC7ADA4F97656DCAD2A69448 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
22:33:23.0229 0x2c30 WindowsTrustedRT - ok
22:33:23.0234 0x2c30 [ D318557F9D7CA3836104F0B8ECB1F32E, 6850BBFB4F65167B052F3CA22FD72E9188A14FD2A9CC085861B4BC40CBA34249 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
22:33:23.0235 0x2c30 WindowsTrustedRTProxy - ok
22:33:23.0253 0x2c30 [ 61F0D6574577499FB43D9F4870B08A7F, 757ACD4F292C43B04B6428D84A7147DE8E565716D94B6B02F288F3B5E2D1C135 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
22:33:23.0267 0x2c30 WinHttpAutoProxySvc - ok
22:33:23.0272 0x2c30 [ 31DDF1D001336B2DCE7DF24E99EF1D04, A1FCABF4A263BFAE042FE7A9F6C15FD9B3D8E985278C32AE8975ECE79B341277 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
22:33:23.0273 0x2c30 WinMad - ok
22:33:23.0285 0x2c30 [ 9A26F7834706A6D8C8824EB08FD7C362, 750F6A0759D70BE481C70FE4BB21D18E756A8F0C23A014C2CE1E7729A1E625FE ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
22:33:23.0289 0x2c30 Winmgmt - ok
22:33:23.0297 0x2c30 [ 2E1A614EFB0523E20860AE7978DDA0A4, E13564690F9977747CA676D3843B467506447F060A5FF6676835A9C7A30BA409 ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
22:33:23.0301 0x2c30 WinNat - ok
22:33:23.0354 0x2c30 [ 27DAA9AA3E03C1068678D5659461BB32, AFDED6D671C430F296C9EAA73590111D6A8A9FA93DFE0595B90467FFE28EFB35 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
22:33:23.0395 0x2c30 WinRM - ok
22:33:23.0409 0x2c30 [ 03858B18BB6DF6A400D9FC5153FD28A8, C7AD69B022AEFDDDAFB74CCCDF20AF9CCDBA0097634BBBD07A2EFBA5922560C1 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
22:33:23.0411 0x2c30 WINUSB - ok
22:33:23.0416 0x2c30 [ 0BF4A43CF1F3A4D50AFA4561C3B4628D, 2D0B4E7004C8AC8A9EE07E6D5241BF32395CA142BF3B03FA9CF00BC6720A6AC7 ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
22:33:23.0418 0x2c30 WinVerbs - ok
22:33:23.0434 0x2c30 [ 11DDD4C9BDF095A5F5B5ACA98FBBF7A2, CFA76C197987CC9EBFE4AC2AD6FE9A9620819B50E9DD423BCE13F7DB5DA641D8 ] wisvc C:\WINDOWS\system32\flightsettings.dll
22:33:23.0445 0x2c30 wisvc - ok
22:33:23.0493 0x2c30 [ E624376E7E7D9AC203113140D9E618A2, 3553D343665194492E38B8C437DE429CEAC135D69EC0CB951BA3E3A7549F673E ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
22:33:23.0530 0x2c30 WlanSvc - ok
22:33:23.0575 0x2c30 [ 2393C4DB3DF3D19B0B920AD607098E79, D632671247DE3808D9C5B36A3FF173C86BB3AD274D03C851BCD417CE62B3820D ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
22:33:23.0606 0x2c30 wlidsvc - ok
22:33:23.0636 0x2c30 [ E5AB2E0B4F766E34AFC768D9769A24D7, 0DE04B2F43B9DCC92F9215B1058EE4ABA228B9986051CF39959555C12DF017B3 ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
22:33:23.0655 0x2c30 wlpasvc - ok
22:33:23.0666 0x2c30 [ E5B1E4C843633D1ED4B0AF861F7185ED, 6DEEA1AF0A83988BE5AE0427D203B5133DA6F39C93BC8823EF633DA88EE6D41B ] wmbclass C:\WINDOWS\System32\drivers\wmbclass.sys
22:33:23.0670 0x2c30 wmbclass - ok
22:33:23.0675 0x2c30 [ 0D6E1347A891607759340B1E55BA2A77, 033DF14920A581FE7E21C6930280AE159B5634F2FEAF79423E8D0B7D46500048 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
22:33:23.0676 0x2c30 WmiAcpi - ok
22:33:23.0685 0x2c30 [ F7B122E8A238354DE344B77216E8D9AC, 3C4F864655CFF786B33333E643AA929B2D2B01ECD56EEEEADE7CEAB38249DA3B ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
22:33:23.0688 0x2c30 wmiApSrv - ok
22:33:23.0692 0x2c30 WMPNetworkSvc - ok
22:33:23.0701 0x2c30 [ 1AE1076034392218EE89D2744EC2A071, 695C28E2697B12BBD919687176CE082E94887A5D8B6229F163A26F6EDF401C4C ] Wof C:\WINDOWS\system32\drivers\Wof.sys
22:33:23.0705 0x2c30 Wof - ok
22:33:23.0745 0x2c30 [ D571821EDAA1F23EB521314FB9AA1C88, 7F16E6915060BD5FABE0805284631F92EEC11234579D09C3CEDDBF73D312E7F5 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
22:33:23.0775 0x2c30 workfolderssvc - ok
22:33:23.0786 0x2c30 [ 2AD9CC8445F0E1A8900A9DE123643CD2, A5928B26722DFBB201A32DEF48B25D4BF291815EA68CF50CBE79EEA9260A71E3 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
22:33:23.0789 0x2c30 WPDBusEnum - ok
22:33:23.0795 0x2c30 [ 1FD80CBB192A20375F3664639DEB57B5, 7A4789D4B2F8E289726E1C723DC00D5AC1F8C5E00FB2879C9D0E6DDC97D2B1A6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
22:33:23.0796 0x2c30 WpdUpFltr - ok
22:33:23.0804 0x2c30 [ 3369EF007E43B88EAC8F1789B43D4393, 347F9F7DF980BB739895EDFE72E2E595EF56634330DC63DAA36403AB232B5B5A ] WpnService C:\WINDOWS\system32\WpnService.dll
22:33:23.0811 0x2c30 WpnService - ok
22:33:23.0818 0x2c30 [ 41403B9466EDA80FACD7713478A56DF8, A71BF9C7A2483FE1F660AC9688FCB38BA2310F16A69EB117C948458364953F34 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
22:33:23.0821 0x2c30 WpnUserService - ok
22:33:23.0827 0x2c30 [ DAF4451760B46CB383D287C4FAFFE97D, 658AFE31EF50E934FEDD2E7048257DBFE9E6DE5F1ACDC658B21737391CF1CC5A ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
22:33:23.0829 0x2c30 ws2ifsl - ok
22:33:23.0837 0x2c30 [ D4A0661AB0FE542460CA76BFB4FAA2D6, 149F0A0720C47BFFCA68165A46382E5CBB273F48483DBB598CEA320801664718 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
22:33:23.0842 0x2c30 wscsvc - ok
22:33:23.0847 0x2c30 WSearch - ok
22:33:23.0896 0x2c30 [ 05BEDBBEEAAC22F98FCA529FAC659582, E4D2FFF98034E2E7FE0478AB9C8D677CA932349A976DFC0C2B65DB15C71354B4 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
22:33:23.0932 0x2c30 wuauserv - ok
22:33:23.0941 0x2c30 [ 455609BF60DA3B57EEAB863DEFCCF14D, F55271C42B7AFD17D01275703719C1F52C21996DB82AC78A70A8A8B62370623B ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
22:33:23.0943 0x2c30 WudfPf - ok
22:33:23.0951 0x2c30 [ 5068DAA8F67A62E964C9C9F88B159EA9, 09FCB7A817280957D1AD365EF8B46F666C70957238BF9FBC87D51115E1B0FCB0 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
22:33:23.0955 0x2c30 WUDFRd - ok
22:33:23.0960 0x2c30 [ 9EFE23CA208BF4B613FF4A6028DFAB10, 483D8D8DA578BF3EA5617EAB42457543EC6F97C1977BDD8ABFDF854AE3AAFD35 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
22:33:23.0964 0x2c30 wudfsvc - ok
22:33:23.0972 0x2c30 [ 5068DAA8F67A62E964C9C9F88B159EA9, 09FCB7A817280957D1AD365EF8B46F666C70957238BF9FBC87D51115E1B0FCB0 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
22:33:23.0976 0x2c30 WUDFWpdFs - ok
22:33:23.0983 0x2c30 [ 5068DAA8F67A62E964C9C9F88B159EA9, 09FCB7A817280957D1AD365EF8B46F666C70957238BF9FBC87D51115E1B0FCB0 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
22:33:23.0986 0x2c30 WUDFWpdMtp - ok
22:33:24.0016 0x2c30 [ 3EEF7185E0974D9AB2D65CA3214132CF, 44DB1D11B6B1D180F59AB3FE4D7235F7F2FD709A853F6A64E8E379FFFD16CD3C ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
22:33:24.0037 0x2c30 WwanSvc - ok
22:33:24.0048 0x2c30 [ FC0147AB34C7CDB2D8A1B29C207F2CD1, 737D40A4BE35AD13C091D8E320FAD3FD7C0C7E41C8B50E48D3C2151712A55718 ] xbgm C:\WINDOWS\System32\xbgmsvc.dll
22:33:24.0054 0x2c30 xbgm - ok
22:33:24.0075 0x2c30 [ 8C7C5945C3545CA767BE111D78C15314, 5A938679DA3EDA2D9CA7034908DFEFCC7DAADB10DFD0CF4ECE882FF536D1BFA2 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
22:33:24.0092 0x2c30 XblAuthManager - ok
22:33:24.0117 0x2c30 [ A8BD191F46CC58E45637CB3E262CF0F2, CA65524427ECDB5E1138A5F8E885566064E507BA60FC31E0D9D17B9556CC9ADC ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
22:33:24.0134 0x2c30 XblGameSave - ok
22:33:24.0143 0x2c30 [ B10655A4C2EFDC25483D670EF52A4854, 2D9DC81AE73FDFE7F4E395BEC8E806E6BAD8DE0470027EEEC256AC4A4B7C7AA4 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
22:33:24.0148 0x2c30 xboxgip - ok
22:33:24.0153 0x2c30 [ E099DED5C602AE4A7ECCF7CD4B1D2E33, 7FDAFFE13B87A8E6AA8721F8905FFF6EF04CAB93009F68EDA862B57EBB04514F ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
22:33:24.0155 0x2c30 XboxGipSvc - ok
22:33:24.0178 0x2c30 [ EF83C2EF7F152DFDC6D9F1AEC6FBE66F, 21D4FCD12F9D40D066F05936131A4F7BAB301DD800C85921476EC182B9D27D0B ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
22:33:24.0194 0x2c30 XboxNetApiSvc - ok
22:33:24.0200 0x2c30 [ 2E50A379A8E4F6C5D85E87C26C08D329, ADA0C344FE58A3772FFF7417268160E488741C5B2F08CA12ED587AB7F75756F6 ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
22:33:24.0202 0x2c30 xinputhid - ok
22:33:24.0284 0x2c30 [ 65308E8DDBCA0A3D7A72E3404E194319, 93D51235D4CB50F3C73DE006843CB98B8940F92BBB84365443C9A31DEB2426A6 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
22:33:24.0337 0x2c30 ZeroConfigService - ok
22:33:24.0340 0x2c30 ================ Scan global ===============================
22:33:24.0347 0x2c30 [ EEA8447A2E39A39F66C74BA66C421F92, 7FFC5294E0D0438E7450ED36947AB04D0C84DF4E1C9F2D49340D3BA586FFFAB2 ] C:\WINDOWS\system32\basesrv.dll
22:33:24.0352 0x2c30 [ A5AE05D3674CBA5DD28C5580E238B059, 5298CF9CEB84FBDC7CAD9969CAFE7D9FFFCA625D50F8BDF877FCEAE8426375F7 ] C:\WINDOWS\system32\winsrv.dll
22:33:24.0358 0x2c30 [ 7DD72CBE412C9567661F4B1CE9631FC1, 8D914805CBDAF448C8C132C4C3FEB1D90804F4F485180F7364A75EC5655A4DDB ] C:\WINDOWS\system32\sxssrv.dll
22:33:24.0372 0x2c30 [ 800D00D1A7ADA9E341CACDF287347584, 70AD5A458203B35F227F3F6B4783D00424C96AA9E29DB3090CEC8C00E62CD8E5 ] C:\WINDOWS\system32\services.exe
22:33:24.0381 0x2c30 [ Global ] - ok
22:33:24.0382 0x2c30 ================ Scan MBR ==================================
22:33:24.0383 0x2c30 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
22:33:24.0391 0x2c30 \Device\Harddisk0\DR0 - ok
22:33:24.0392 0x2c30 ================ Scan VBR ==================================
22:33:24.0394 0x2c30 [ 6D3E9535031659C6001C776869CE871C ] \Device\Harddisk0\DR0\Partition1
22:33:24.0395 0x2c30 \Device\Harddisk0\DR0\Partition1 - ok
22:33:24.0398 0x2c30 [ 4619F32C661A095DB87590739674D199 ] \Device\Harddisk0\DR0\Partition2
22:33:24.0398 0x2c30 \Device\Harddisk0\DR0\Partition2 - ok
22:33:24.0401 0x2c30 [ 429C60638B07A28A1DD20AED297D6887 ] \Device\Harddisk0\DR0\Partition3
22:33:24.0402 0x2c30 \Device\Harddisk0\DR0\Partition3 - ok
22:33:24.0405 0x2c30 [ FC5D571E794D0497EFF41A3225657126 ] \Device\Harddisk0\DR0\Partition4
22:33:24.0406 0x2c30 \Device\Harddisk0\DR0\Partition4 - ok
22:33:24.0407 0x2c30 ================ Scan generic autorun ======================
22:33:24.0407 0x2c30 SecurityHealth - ok
22:33:24.0681 0x2c30 [ 56CFB4B633E7563CFE1338AD79BE356E, 5666F222B720E11BC00DBB02FE27C0B9CABD6DCCD369643BCCC83331357A3CCB ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:33:24.0931 0x2c30 RTHDVCPL - ok
22:33:24.0972 0x2c30 [ 539BD77CE72FFD737623CB373AEB0ACE, E279863953441E245000F8A9C7E87C992D6028E1DB3D9811B23F9F6E01ABD0B9 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:33:25.0003 0x2c30 RtHDVBg_MAXX6 - ok
22:33:25.0019 0x2c30 [ A6A2B490AB783ECFAA22AB2D88600F89, 140DF63219BE08AF1F72FBEEAC002E300D4358654A39FBB6F4C3B11465BD3A77 ] C:\WINDOWS\RTSCM64.EXE
22:33:25.0024 0x2c30 RtsCM - ok
22:33:25.0028 0x2c30 [ 29BE4BF178364EB3F9B6628132DE4F64, D37B9C2F066D1A7F93BE035BA8DA39D6F8B93BC0081B357A4CF739F1FD62538F ] C:\Program Files\Fujitsu\Utils\FjStrtAp.exe
22:33:25.0029 0x2c30 FjStrtAp - ok
22:33:25.0031 0x2c30 RTKUGUI - ok
22:33:25.0036 0x2c30 [ F872881D01964F0BFC8FBAC671091820, 1361EE4FBAAA4844921304597E6FDFD10BC320375E9C54985E1835864C98D0E0 ] C:\Program Files (x86)\Fujitsu\DeskUpdate\DeskUpdateNotifier.exe
22:33:25.0038 0x2c30 DeskUpdateNotifier - ok
22:33:25.0044 0x2c30 [ 2CFE8D06673D92DD500DBC0659DCD645, DE0B926DE0001921D755465460D3F357246B8623057DC630509AA7D86EC01A1C ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
22:33:25.0048 0x2c30 IMSS - ok
22:33:25.0060 0x2c30 [ 09F2D3D3D170076CF2B291C1E53B5591, 4F955FDD66661ECE9B39503C19D6B3D3CD84815161B18C43FC2EDD8343E10E90 ] C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
22:33:25.0069 0x2c30 YouCam Service6 - ok
22:33:25.0083 0x2c30 [ 395CB6E8C67BFB1063AD86987909C184, 15F3BA6DF6D0C5C8FB9FF0AB661A5A652F26BAB7A0FB0DB47874069522400B16 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
22:33:25.0093 0x2c30 SunJavaUpdateSched - ok
22:33:25.0465 0x2c30 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
22:33:25.0796 0x2c30 OneDriveSetup - ok
22:33:26.0160 0x2c30 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
22:33:26.0432 0x2c30 OneDriveSetup - ok
22:33:26.0480 0x2c30 [ 00F30FDFDE3E276C1A731C2DF951D67E, 018E6933882FCC41EE96E198E6F7ECEFB53EC650B1044A58876B26EDE011158B ] C:\Users\svenw\AppData\Local\Microsoft\OneDrive\OneDrive.exe
22:33:26.0500 0x2c30 OneDrive - ok
22:33:26.0503 0x2c30 Waiting for KSN requests completion. In queue: 296
22:33:27.0206 0x49ac Object required for P2P: [ 56CFB4B633E7563CFE1338AD79BE356E ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:33:27.0516 0x2c30 Waiting for KSN requests completion. In queue: 11
22:33:27.0536 0x49ac Object send P2P result: true
22:33:28.0558 0x2c30 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.11.15063.332 ), 0x60100 ( disabled : updated )
22:33:28.0558 0x2c30 AV detected via SS2: McAfee VirusScan, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 15.4.0.0 ), 0x51000 ( enabled : updated )
22:33:28.0560 0x2c30 FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 15.4.0.0 ), 0x51010 ( enabled )
22:33:28.0690 0x2c30 ============================================================
22:33:28.0690 0x2c30 Scan finished
22:33:28.0690 0x2c30 ============================================================
22:33:28.0715 0x01d4 Detected object count: 0
22:33:28.0715 0x01d4 Actual detected object count: 0
22:34:22.0530 0x1208 Deinitialize success
|
|
| Themen zu supremo - Zugriff |
| dubiose, forum, hilfe, opfer, supremo-logmeinrescue-mircosoft support call, würde, zugrif, zugriff |
Linear-Darstellung
