Windows Sicherheitsalarm

krümmel · 23.07.2018, 09:45

Hallo,

mir ploppte vorhin eine Seite auf und eine Stimme sprach etwas von einem Windows Sicherheitsalarm.

Ich selber stehe bei sowas aber echt immer auf dem Schlauch....

Daher habe ich mich daran erinnert, dass es ja dieses prächtige Forum gibt und mal geschaut. Es wird empfohlen, Farbar Recovery Stan Tool zu benutzen, dieses habe ich gemacht und folgende "Daten" bekommen:

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 21.07.2018
durchgeführt von velsench (Administrator) auf VVELSEN (23-07-2018 09:51:37)
Gestartet von C:\Users\velsench\Downloads
Geladene Profile: velsench (Verfügbare Profile: velsench)
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg32.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
() C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(© 2015 Microsoft Corporation) C:\Users\velsench\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.747\SSScheduler.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe [850648 2013-09-04] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2260808 2013-10-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-12-17] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2018-07-04] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [432776 2018-02-27] (Geek Software GmbH)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [242904 2018-07-18] (AVAST Software)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2268624 2018-04-23] (Corel Corporation)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [124032 2018-04-23] (WinZip Computing)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\Run: [Amazon Music] => C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe [6277952 2014-12-08] ()
HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\Run: [BingSvc] => C:\Users\velsench\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-12-22] (© 2015 Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2018-06-27]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.747\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\velsench\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk [2018-07-23]
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{037179EF-AF4C-41E8-8F09-43527B57BAC1}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{428670D8-52BF-48DF-9EA9-19A60ABA5156}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000 -> {D513BC09-D503-4A2A-9701-4618FF46D71A} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_172\bin\ssv.dll [2018-07-18] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2018-07-18] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2018-03-25] (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_172\bin\jp2ssv.dll [2018-07-18] (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\velsench\AppData\Roaming\Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430 [2018-07-23]
FF Homepage: Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430 -> about:home
FF Extension: (Suchen und neue Registerkarte von Yahoo) - C:\Users\velsench\AppData\Roaming\Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-11-10]
FF Extension: (Avast SafePrice) - C:\Users\velsench\AppData\Roaming\Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430\Extensions\sp@avast.com.xpi [2018-07-19]
FF Extension: (Avast Online Security) - C:\Users\velsench\AppData\Roaming\Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430\Extensions\wrc@avast.com.xpi [2018-07-18]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-07] [Legacy] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: (Citavi Picker) - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2014-12-16] [Legacy] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-10] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.172.2 -> C:\Program Files\Java\jre1.8.0_172\bin\dtplugin\npDeployJava1.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.172.2 -> C:\Program Files\Java\jre1.8.0_172\bin\plugin2\npjp2.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-20] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-18] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default [2018-07-21]
CHR Extension: (Präsentationen) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-18]
CHR Extension: (Docs) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-18]
CHR Extension: (Google Drive) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-07-18]
CHR Extension: (YouTube) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-18]
CHR Extension: (Tabellen) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-18]
CHR Extension: (Avira Browserschutz) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-07-18]
CHR Extension: (Google Docs Offline) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-07-21]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-18]
CHR Extension: (Google Mail) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-07-18]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe [880040 2018-07-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [225384 2018-07-03] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [225384 2018-07-03] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1164808 2018-07-03] (Avira Operations GmbH & Co. KG)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6341888 2018-07-18] (AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [322464 2018-07-18] (AVAST Software)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [428072 2018-07-04] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2054360 2017-12-12] (Microsoft Corporation)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [279952 2014-10-03] (Intel Corporation)
R2 CxAudMsg; C:\Windows\system32\CxAudMsg32.exe [197848 2013-07-25] (Conexant Systems Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [286096 2014-10-03] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.747\McCHSvc.exe [322784 2018-06-18] (McAfee, Inc.)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [432776 2018-02-27] (Geek Software GmbH)
R2 SAService; C:\Windows\system32\SAsrv.exe [447104 2011-09-01] (Conexant Systems, Inc.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [24672 2011-12-15] (Lenovo Corporation)
S3 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [167552 2018-07-18] (AVAST Software)
S3 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriverx.sys [188352 2018-07-18] (AVAST Software)
S3 aswbidsh; C:\Windows\System32\drivers\aswbidshx.sys [164944 2018-07-18] (AVAST Software)
S3 aswblog; C:\Windows\System32\drivers\aswblogx.sys [284328 2018-07-18] (AVAST Software)
S3 aswbuniv; C:\Windows\System32\drivers\aswbunivx.sys [57976 2018-07-18] (AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [189240 2018-07-18] (AVAST Software)
S3 aswHwid; C:\Windows\System32\drivers\aswHwid.sys [42808 2018-07-18] (AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [133680 2018-07-18] (AVAST Software)
S3 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [101056 2018-07-18] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [71848 2018-07-18] (AVAST Software)
S3 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [784120 2018-07-18] (AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [393904 2018-07-18] (AVAST Software)
S3 aswStm; C:\Windows\System32\drivers\aswStm.sys [162704 2018-07-18] (AVAST Software)
S3 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [310784 2018-07-18] (AVAST Software)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3244032 2013-11-20] (Qualcomm Atheros Communications, Inc.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [46440 2017-06-15] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [132448 2018-07-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [147880 2018-07-03] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [35840 2017-03-02] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [59000 2017-03-02] (Avira Operations GmbH & Co. KG)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [330056 2013-10-17] (ELAN Microelectronics Corp.)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [489832 2013-11-21] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [24424 2013-11-21] (Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16880 2014-01-06] (Intel Corporation)
R3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [363504 2014-01-06] (Intel Corporation)
R3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [799216 2014-01-06] (Intel Corporation)
R0 LHDmgr; C:\Windows\System32\DRIVERS\LhdX86.sys [32352 2010-01-15] (Lenovo.)
R3 MEI; C:\Windows\System32\DRIVERS\TeeDriver.sys [85464 2013-09-12] (Intel Corporation)
R3 RSUSBVSTOR; C:\Windows\System32\Drivers\RtsUVStor.sys [244952 2013-08-08] (Realtek Semiconductor Corp.)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [7091416 2013-11-30] (Realtek Semiconductor Corp.)
S4 secdrv; C:\Windows\system32\Drivers\secdrv.sys [14368 1999-09-27] () [Datei ist nicht signiert]
U3 aswbdisk; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-07-23 09:51 - 2018-07-23 09:52 - 000019208 _____ C:\Users\velsench\Downloads\FRST.txt
2018-07-23 09:51 - 2018-07-23 09:51 - 000000000 ____D C:\FRST
2018-07-23 09:50 - 2018-07-23 09:51 - 001773056 _____ (Farbar) C:\Users\velsench\Downloads\FRST.exe
2018-07-18 12:40 - 2018-07-18 12:40 - 000002341 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Werkzeuge Einstellungen.lnk
2018-07-18 12:40 - 2018-07-18 12:40 - 000001927 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk
2018-07-18 12:40 - 2018-07-18 12:40 - 000001827 _____ C:\Users\Public\Desktop\WinZip.lnk
2018-07-18 12:40 - 2018-07-18 12:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2018-07-18 12:40 - 2018-07-18 12:40 - 000000000 ____D C:\Program Files\WinZip
2018-07-18 12:39 - 2018-07-18 12:39 - 000000000 ____D C:\Program Files\Common Files\Oracle
2018-07-18 12:39 - 2018-07-18 12:39 - 000000000 ____D C:\Program Files\Common Files\Java
2018-07-18 12:38 - 2018-07-18 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2018-07-18 12:37 - 2018-07-19 09:19 - 000000000 _____ C:\Windows\system32\last.dump
2018-07-18 11:53 - 2018-07-18 11:53 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-07-18 11:53 - 2018-07-18 11:53 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-07-18 11:51 - 2018-07-21 17:11 - 000000000 ____D C:\Users\velsench\AppData\Local\Google
2018-07-18 11:51 - 2018-07-18 11:52 - 000000000 ____D C:\Program Files\Google
2018-07-18 11:50 - 2018-07-23 08:50 - 000000000 ____D C:\Users\velsench\AppData\Local\AVAST Software
2018-07-18 11:50 - 2018-07-18 11:50 - 000002085 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2018-07-18 11:50 - 2018-07-18 11:50 - 000000000 ____D C:\Users\velsench\AppData\Roaming\AVAST Software
2018-07-18 11:50 - 2018-07-18 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2018-07-18 11:46 - 2018-07-18 11:45 - 000393904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2018-07-18 11:46 - 2018-07-18 11:45 - 000310784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2018-07-18 11:46 - 2018-07-18 11:45 - 000167552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2018-07-18 11:46 - 2018-07-18 11:45 - 000162704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2018-07-18 11:46 - 2018-07-18 11:45 - 000133680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2018-07-18 11:46 - 2018-07-18 11:45 - 000101056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2018-07-18 11:46 - 2018-07-18 11:45 - 000071848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2018-07-18 11:46 - 2018-07-18 11:45 - 000042808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2018-07-18 11:46 - 2018-07-18 11:44 - 000784120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2018-07-18 11:46 - 2018-07-18 11:44 - 000284328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswblogx.sys
2018-07-18 11:46 - 2018-07-18 11:44 - 000189240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2018-07-18 11:46 - 2018-07-18 11:44 - 000188352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2018-07-18 11:46 - 2018-07-18 11:44 - 000164944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidshx.sys
2018-07-18 11:46 - 2018-07-18 11:44 - 000057976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbunivx.sys
2018-07-18 11:45 - 2018-07-18 11:45 - 001142072 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2018-07-18 11:45 - 2018-07-18 11:45 - 000321752 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2018-07-18 11:45 - 2018-07-18 11:45 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-07-18 11:44 - 2018-07-18 11:44 - 000000000 ____D C:\Program Files\AVAST Software
2018-07-18 11:43 - 2018-07-18 12:57 - 000000000 ____D C:\ProgramData\AVAST Software
2018-07-18 11:42 - 2018-07-18 11:42 - 000178320 _____ (AVAST Software) C:\Users\velsench\Downloads\avast_free_antivirus_setup_online.exe
2018-07-06 10:29 - 2018-07-06 10:29 - 001650742 _____ C:\Users\velsench\Desktop\Anlage BfV.pdf
2018-07-05 08:24 - 2018-07-05 08:24 - 000192611 _____ C:\Users\velsench\Desktop\rk-vorstellungsreisen-Juli.pdf
2018-07-05 08:06 - 2018-07-05 08:06 - 000179179 _____ C:\Users\velsench\Downloads\rk-vorstellungsreisen-1.pdf
2018-07-05 07:24 - 2018-07-05 07:24 - 002196126 _____ C:\Users\velsench\Desktop\Reisekosten Juli Berlin.pdf
2018-06-29 11:51 - 2018-06-29 11:51 - 000475143 _____ C:\Users\velsench\Downloads\FLT_RVZU6C1448_0.pdf
2018-06-27 13:43 - 2018-07-18 13:42 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2018-06-27 13:43 - 2018-06-27 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2018-06-25 14:09 - 2018-06-25 14:09 - 000257990 _____ C:\Users\velsench\Downloads\Lageplan_KCB.pdf
2018-06-25 14:09 - 2018-06-25 14:09 - 000160952 _____ C:\Users\velsench\Downloads\Multidoc_Einladung_AWV_allgemein.pdf
2018-06-25 14:02 - 2018-06-25 14:02 - 000465160 _____ C:\Users\velsench\Downloads\RSROQ4.pdf
2018-06-25 14:01 - 2018-06-25 14:01 - 000038707 _____ C:\Users\velsench\Downloads\Datenschutzerklärung.pdf
2018-06-25 14:01 - 2018-06-25 14:01 - 000035065 _____ C:\Users\velsench\Downloads\Einverständniserklärung der Datenverarbeitung.pdf
2018-06-25 14:01 - 2018-06-25 14:01 - 000018571 _____ C:\Users\velsench\Downloads\BfV-Laufbahnausbildung-2019-mD Hier_ Einladung zum schriftlichen Auswahlverfahren.html

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-07-23 08:59 - 2009-07-14 06:34 - 000013760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-23 08:59 - 2009-07-14 06:34 - 000013760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-23 08:55 - 2016-11-17 12:49 - 000000000 ____D C:\Users\velsench\AppData\LocalLow\Mozilla
2018-07-23 08:47 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-07-22 11:11 - 2014-12-13 11:07 - 001622706 _____ C:\Windows\system32\PerfStringBackup.INI
2018-07-22 11:11 - 2009-07-14 10:47 - 000700380 _____ C:\Windows\system32\perfh007.dat
2018-07-22 11:11 - 2009-07-14 10:47 - 000149986 _____ C:\Windows\system32\perfc007.dat
2018-07-22 11:11 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2018-07-18 12:40 - 2015-01-18 19:09 - 000000000 ____D C:\ProgramData\WinZip
2018-07-18 12:39 - 2015-12-22 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-07-18 12:39 - 2014-12-14 12:13 - 000096712 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2018-07-18 12:38 - 2014-12-14 12:21 - 000000000 ____D C:\Program Files\VLC-Player
2018-07-18 12:38 - 2014-12-14 12:13 - 000000000 ____D C:\Program Files\Java
2018-07-13 09:17 - 2014-12-14 11:55 - 000000000 ____D C:\ProgramData\Package Cache
2018-07-12 11:52 - 2015-03-05 10:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2018-07-11 14:01 - 2016-04-24 10:11 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-07-10 16:10 - 2014-12-14 12:12 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2018-07-10 16:10 - 2014-12-14 12:12 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2018-07-10 16:10 - 2014-12-14 12:12 - 000000000 ____D C:\Windows\system32\Macromed
2018-07-08 13:13 - 2016-11-16 12:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-07-08 13:13 - 2014-12-14 12:09 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-07-03 14:44 - 2014-12-14 11:59 - 000147880 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2018-07-03 14:44 - 2014-12-14 11:59 - 000132448 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2018-06-27 13:43 - 2015-11-11 17:27 - 000002051 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2018-06-27 13:43 - 2015-11-11 17:27 - 000000000 ____D C:\Program Files\McAfee Security Scan
2018-06-27 13:43 - 2015-02-06 14:42 - 000000000 ____D C:\ProgramData\McAfee

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-02-02 19:49 - 2017-02-02 19:49 - 000000836 _____ () C:\Users\velsench\AppData\Local\recently-used.xbel

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2018-07-17 13:10

==================== Ende vom FRST.txt ============================

SOWIE:

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version: 21.07.2018
durchgeführt von velsench (23-07-2018 09:53:15)
Gestartet von C:\Users\velsench\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) (2014-12-13 09:04:01)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2261449247-1383935096-2378691013-500 - Administrator - Disabled)
Gast (S-1-5-21-2261449247-1383935096-2378691013-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2261449247-1383935096-2378691013-1002 - Limited - Enabled)
velsench (S-1-5-21-2261449247-1383935096-2378691013-1000 - Administrator - Enabled) => C:\Users\velsench

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 18.011.20055 - Adobe Systems Incorporated)
Adobe Flash Player 30 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 30.0.0.134 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 30.0.0.134 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Amazon Music (HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\Amazon Amazon Music) (Version: 3.7.1.698 - Amazon Services LLC)
ANNO 1503 (HKLM\...\{EBBB1DEF-8878-4CB8-BC0D-1196B30E7527}) (Version:  - )
Anno 1701 (HKLM\...\{A2433A63-5F5D-40E5-B529-9123C2B3E734}) (Version: 1.04.1 - Ubisoft)
Anno 1701 Version 1.04.1 (HKLM\...\{67DBBEAD-91A0-40C8-B34C-BE1026CABBE2}_is1) (Version: 1.04.1 - Ubisoft)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 18.5.2342 - AVAST Software)
Avira (HKLM\...\{0bb4751a-1ff2-4c79-80df-5bab5da63823}) (Version: 1.2.116.18787 - Avira Operations GmbH & Co. KG)
Avira (HKLM\...\{218C5045-A3A1-486C-91F5-A1B4D4772F8D}) (Version: 1.2.116.18787 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.36.211 - Avira Operations GmbH & Co. KG)
Bing Bar (HKLM\...\{3611CA6C-5FCA-4900-A329-6A118123CCFC}) (Version: 7.1.355.0 - Microsoft Corporation)
Citavi 4 (HKLM\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.4.0.28 - Swiss Academic Software)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant)
Dolby Advanced Audio v2 (HKLM\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Energy Management (HKLM\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.9 - Lenovo) Hidden
Energy Management (HKLM\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.9 - Lenovo)
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HP Deskjet 2050 J510 series - Grundlegende Software für das Gerät (HKLM\...\{2B586056-937F-4D0B-A7AF-9D83D9771D97}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2050 J510 series Hilfe (HKLM\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.3.34 - Intel Corporation)
Java 8 Update 171 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java 8 Update 172 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180172F0}) (Version: 8.0.1720.11 - Oracle Corporation)
Lenovo EasyCamera (HKLM\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10252 - Realtek Semiconductor Corp.)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.31.1 - ELAN Microelectronic Corp.)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.747.1 - McAfee, Inc.)
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.5031.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Monkey Island™ Special Edition Collection (HKLM\...\MISEC) (Version: 1.0.0.0 - LucasArts)
Mozilla Firefox 61.0.1 (x86 de) (HKLM\...\Mozilla Firefox 61.0.1 (x86 de)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0.1.6759 - Mozilla)
MyFreeCodec (HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\MyFreeCodec) (Version:  - )
Office 15 Click-to-Run Extensibility Component (HKLM\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5031.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-007E-0000-0000-0000000FF1CE}) (Version: 15.0.5031.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM\...\{90150000-008C-0407-0000-0000000FF1CE}) (Version: 15.0.5031.1000 - Microsoft Corporation) Hidden
PDF24 Creator 8.4.1 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Qualcomm Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39052 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.75.827.2013 - Realtek)
Roll (HKLM\...\RollerCoaster Tycoon Setup) (Version:  - )
Samsung Kies (HKLM\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Sid Meier's Civilization 4 Complete (HKLM\...\{30D1F3D2-54CF-481D-A005-F94B0E98FEEC}) (Version: 1.74 - Firaxis Games)
Studie zur Verbesserung von HP Deskjet 2050 J510 series Produkten (HKLM\...\{7622F0F0-8CAE-4492-97E9-594E63CBD36B}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinZip 22.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2411A}) (Version: 22.5.13114 - Corel Corporation)
Yahoo Search Set (HKLM\...\Yahoo! SearchSet) (Version:  - Yahoo Inc.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader.WinZipExpressForOffice.dll ()
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\FileSyncApi.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-07-18] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-07-18] (AVAST Software)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\AntiVir Desktop\shlext.dll [2018-07-03] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2018-04-23] (WinZip Computing)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-07-18] (AVAST Software)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2018-04-23] (WinZip Computing)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-10-03] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2018-07-18] (AVAST Software)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files\Avira\AntiVir Desktop\shlext.dll [2018-07-03] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshlstb.dll [2018-04-23] (WinZip Computing)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {09040C56-7598-4818-9047-EAA584C3A57A} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-23] (Corel Corporation)
Task: {1EF9870F-B569-42B7-A4C7-4A270F0BBE1C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-07-18] (AVAST Software)
Task: {203CB7F6-B728-499C-85BD-D62D51EB38C0} - System32\Tasks\{A8DF8DBD-C435-4AC1-BE77-5AA8141FA383} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {2438FE3A-8150-473E-BC35-B0BEDA20EC5F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe [2018-07-10] (Adobe Systems Incorporated)
Task: {319C6BE2-75A3-452E-B9A5-1621E1688C3C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {408C40BB-F798-4DC2-86FD-8143B7DC0B07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2018-07-18] (Google Inc.)
Task: {4787C2A2-E21D-4B9E-A328-D151E74C48E8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2018-07-10] (Adobe Systems Incorporated)
Task: {553C5AC9-BCBE-41DD-9D62-44215F731E03} - System32\Tasks\{96CE66BC-ED6C-4804-98B3-5618B7337C33} => C:\Windows\system32\pcalua.exe -a C:\Users\velsench\Downloads\AVM_FRITZ_WLAN_Repeater_310_Assistent.exe -d C:\Users\velsench\Downloads
Task: {58E8A7CC-8A5E-4297-8C1F-D14099F062BA} - System32\Tasks\{5AF8DF5A-293E-41DB-A8F1-3F88E93D0C97} => C:\Windows\system32\pcalua.exe -a C:\Users\velsench\Downloads\RCT-GE.exe -d C:\Users\velsench\Downloads
Task: {6F17DC32-808E-41F9-8494-3CE18437982E} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2018-07-03] (Avira Operations GmbH & Co. KG)
Task: {6F3CBD59-A99D-40A5-9A2F-C303D493DB46} - System32\Tasks\{96D13C53-E40C-4D74-ABC2-CCA2041BA008} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {7596099A-EB6B-405E-9499-69AE0BC9AB46} - System32\Tasks\{E941D7FF-CD73-47CC-82D5-53A618EFB1D5} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {9999F022-20F7-46B3-A98D-0642D980A786} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-23] (Corel Corporation)
Task: {A93A3924-8264-4408-8DAC-D7708A2A7093} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2012-10-02] (Hewlett-Packard Co.)
Task: {ABAA4AE6-A9BA-4BF3-8FD9-51A78EF527A9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {BB4A7946-23D1-4A56-B864-72AB646C6A12} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {D073BC24-DC33-4975-857D-F71ECC666F0B} - System32\Tasks\{DCF1B3B0-95E2-458C-81A1-8AFE3BCA9EFC} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {D873B978-C82A-41B9-86CE-FC28F0ADB858} - System32\Tasks\{C26286FF-2701-49CD-9493-800E9FB9DC70} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {E7E6B34F-58BD-4EBA-B35D-66442192016B} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2018-04-23] (Corel Corporation)
Task: {E86FB655-51E3-4012-BA9E-21221BA94002} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2018-07-18] (Google Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2018-07-18 11:45 - 2018-07-18 11:45 - 000483544 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-07-18 11:49 - 2018-07-18 11:49 - 000928984 _____ () C:\Program Files\AVAST Software\Avast\anen.dll
2018-07-18 11:45 - 2018-07-18 11:45 - 000532696 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-07-18 11:44 - 2018-07-18 11:44 - 000150744 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-07-18 11:45 - 2018-07-18 11:45 - 000985304 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-07-23 08:48 - 2018-07-23 08:48 - 005894800 _____ () C:\Program Files\AVAST Software\Avast\defs\18072300\algo.dll
2014-12-20 13:20 - 2017-01-17 02:17 - 000090304 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2014-12-13 15:48 - 2014-10-03 18:35 - 000413072 _____ () C:\Windows\system32\igfxTray.exe
2015-01-04 23:08 - 2014-12-08 08:27 - 006277952 _____ () C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe
2018-07-18 11:50 - 2018-07-18 11:50 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-07-18 11:44 - 2018-07-18 11:44 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:04 - 2009-06-10 23:39 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\velsench\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: Energy Management => C:\Program Files\Lenovo\Energy Management\Energy Management.exe
MSCONFIG\startupreg: EnergyUtility => C:\Program Files\Lenovo\Energy Management\Utility.exe
MSCONFIG\startupreg: ForteConfig => C:\Program Files\Conexant\ForteConfig\fmapp.exe
MSCONFIG\startupreg: HotKeysCmds => "C:\Windows\system32\hkcmd.exe"
MSCONFIG\startupreg: IgfxTray => "C:\Windows\system32\igfxtray.exe"
MSCONFIG\startupreg: Persistence => "C:\Windows\system32\igfxpers.exe"
MSCONFIG\startupreg: RtsFT => RTFTrack.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{7F4C392B-7C1A-4059-8F90-BCFD1AFE490A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{8F8F8440-4AA8-486E-ABE9-2B23C7D59D43}] => (Allow) C:\Program Files\Winamp\winamp.exe
FirewallRules: [{EB69226F-0A9B-4B5C-B908-FBCAC31A3798}] => (Allow) C:\Program Files\Winamp\winamp.exe
FirewallRules: [{3082DC5B-C855-4A74-A4C5-EBC4E5DD61E6}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [{4D5242F5-BBD8-4E33-872F-CEFFEC0E6433}] => (Allow) C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{483A559E-5E84-43D5-9E58-A6528D172133}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{62666BF0-E565-41B4-9408-9526E056FE69}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{698BC089-16C3-4291-AD7E-95859557E641}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{AA8213DE-BDAF-4BAE-A358-5231EBA1B16C}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{F37E955D-8FFF-4824-A3CA-4B5AEDEA5C3B}C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe] => (Allow) C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe
FirewallRules: [UDP Query User{0682666F-972E-4C90-9E62-ECA2561727BB}C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe] => (Allow) C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe
FirewallRules: [TCP Query User{0E1721C0-7426-4094-9ED8-296D802A8831}C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [UDP Query User{5F8AE1EF-4761-4E8C-ADD5-F820AE6EAC30}C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [{D45DBC68-CB21-4D9A-89FF-8C3EB186F63D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{E099B7D7-A9F1-4B23-84B7-02A0A952CE7B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{F113EB53-0E84-4358-8D3B-34E5A54A757C}C:\program files\ubisoft\anno 1701\anno1701.exe] => (Block) C:\program files\ubisoft\anno 1701\anno1701.exe
FirewallRules: [UDP Query User{84A346E9-8314-40C0-BA98-8137A983B372}C:\program files\ubisoft\anno 1701\anno1701.exe] => (Block) C:\program files\ubisoft\anno 1701\anno1701.exe
FirewallRules: [{178FEA52-41DF-4184-911B-AF2B5D7C3ACE}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{9674098C-A37E-4105-A6B6-DC3827572263}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{D9C3EC19-36FE-4C9A-813B-7FFFA86F7AFD}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (07/23/2018 09:36:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1c28

Startzeit: 01d422520103cdda

Endzeit: 31

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (07/16/2018 08:43:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1b20

Startzeit: 01d41cf37044d4e2

Endzeit: 100

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (07/02/2018 02:54:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 61.0.0.6746 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 35c

Startzeit: 01d4111730dd7d60

Endzeit: 700

Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe

Berichts-ID: e1d2bb62-7df6-11e8-a409-28d24488e3bb

Error: (06/28/2018 08:19:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 61.0.0.6746 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: d5c

Startzeit: 01d40ebaabdc912c

Endzeit: 240

Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe

Berichts-ID: bd07213c-7aff-11e8-9d6b-28d24488e3bb

Error: (06/24/2018 06:08:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1f64

Startzeit: 01d40bca956b1d19

Endzeit: 560

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (06/22/2018 02:32:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1c7c

Startzeit: 01d40a2352cc9d35

Endzeit: 620

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (06/20/2018 03:37:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1990

Startzeit: 01d4089bc04809dd

Endzeit: 4

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (06/19/2018 07:56:10 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 60.0.2.6730 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1420

Startzeit: 01d407168d7231c5

Endzeit: 820

Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe

Berichts-ID: 71e0602f-7385-11e8-82e3-28d24488e3bb


Systemfehler:
=============
Error: (07/23/2018 08:47:40 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/22/2018 07:55:37 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.

Error: (07/22/2018 05:00:26 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/21/2018 11:16:16 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/20/2018 09:20:55 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/19/2018 09:13:10 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/18/2018 10:33:59 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{995C996E-D918-4A8C-A302-45719A6F4EA7}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (07/18/2018 12:29:31 PM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Prozentuale Nutzung des RAM: 77%
Installierter physikalischer RAM: 2722.36 MB
Verfügbarer physikalischer RAM: 607.52 MB
Summe virtueller Speicher: 5443.04 MB
Verfügbarer virtueller Speicher: 2760.12 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:165.62 GB) (Free:57.58 GB) NTFS
Drive d: (Daten) (Fixed) (Total:300.05 GB) (Free:84.86 GB) NTFS

\\?\Volume{0168aa2c-82a6-11e4-9651-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=165.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=300 GB) - (Type=07 NTFS)

==================== Ende vom Addition.txt ============================

Mein Virenscanner hat nichts festgestellt. Daher jetzt die Frage ob ich mir etwas eingefangen habe und wenn Ja, wie man es wieder los wird.

Vielen Dank schon mal

cosinus · 23.07.2018, 10:01

Logs werden hier nicht einfach reingekippt sondern GRUNDSÄTZLICH IN CODE TAGS gepostet!

Avira bitte komplett deinstallieren

Von Avira raten wir schon lange ab, außerdem will ich für eine Analyse und Bereinigung so wenig Störquellen wie nur möglich. Zum Abschluss gibt es Hinweise zur Absicherung deines Windows-Systems.

Wir deinstallieren dann am besten auch gleich weiteren unnötigen oder veralteten Krempel.

Lade Dir bitte von hier

Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
Klicke auf Optionen und wähle als Sprache Deutsch.
Suche im Uninstallerfeld nach den Programmen:

Adobe Acrobat Reader DC - Deutsch

Adobe Flash Player 30 ActiveX

Adobe Flash Player 30 NPAPI

Adobe Shockwave Player 12.3

Avast Free Antivirus

Avira

Avira Antivirus

Java 8 Update 171

McAfee Security Scan Plus

WinZip 22.5

Yahoo Search Set
Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Gib Bescheid wenn das weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!

krümmel · 23.07.2018, 10:46

Hallo Cosinus,

vielen Dank für deine schnelle Antwort und das erstellen der Tags. Da wusste und weiß ich gar nicht wie das geht, daher vielen Dank

Ich habe mit dem Revo Uninstaller jetzt alle von dir erwähnten Programm gelöscht.

Wie gehts jetzt weiter?

cosinus · 23.07.2018, 10:52

Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken.

krümmel · 23.07.2018, 11:17

Ok, hab ich gemacht und glaube jetzt auch raus gefunden, wie ich das besser einfüge^^

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version: 21.07.2018
durchgeführt von velsench (23-07-2018 12:14:55)
Gestartet von C:\Users\velsench\Downloads
Microsoft Windows 7 Professional  Service Pack 1 (X86) (2014-12-13 09:04:01)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2261449247-1383935096-2378691013-500 - Administrator - Disabled)
Gast (S-1-5-21-2261449247-1383935096-2378691013-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2261449247-1383935096-2378691013-1002 - Limited - Enabled)
velsench (S-1-5-21-2261449247-1383935096-2378691013-1000 - Administrator - Enabled) => C:\Users\velsench

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Amazon Music (HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\Amazon Amazon Music) (Version: 3.7.1.698 - Amazon Services LLC)
ANNO 1503 (HKLM\...\{EBBB1DEF-8878-4CB8-BC0D-1196B30E7527}) (Version:  - )
Anno 1701 (HKLM\...\{A2433A63-5F5D-40E5-B529-9123C2B3E734}) (Version: 1.04.1 - Ubisoft)
Anno 1701 Version 1.04.1 (HKLM\...\{67DBBEAD-91A0-40C8-B34C-BE1026CABBE2}_is1) (Version: 1.04.1 - Ubisoft)
Bing Bar (HKLM\...\{3611CA6C-5FCA-4900-A329-6A118123CCFC}) (Version: 7.1.355.0 - Microsoft Corporation)
Citavi 4 (HKLM\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.4.0.28 - Swiss Academic Software)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant)
Dolby Advanced Audio v2 (HKLM\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Energy Management (HKLM\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.9 - Lenovo) Hidden
Energy Management (HKLM\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.3.9 - Lenovo)
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HP Deskjet 2050 J510 series - Grundlegende Software für das Gerät (HKLM\...\{2B586056-937F-4D0B-A7AF-9D83D9771D97}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 2050 J510 series Hilfe (HKLM\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.3.34 - Intel Corporation)
Java 8 Update 172 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180172F0}) (Version: 8.0.1720.11 - Oracle Corporation)
Lenovo EasyCamera (HKLM\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10252 - Realtek Semiconductor Corp.)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.31.1 - ELAN Microelectronic Corp.)
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.5031.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\OneDriveSetup.exe) (Version: 17.3.1171.0714 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Monkey Island™ Special Edition Collection (HKLM\...\MISEC) (Version: 1.0.0.0 - LucasArts)
Mozilla Firefox 61.0.1 (x86 de) (HKLM\...\Mozilla Firefox 61.0.1 (x86 de)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0.1.6759 - Mozilla)
MyFreeCodec (HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\MyFreeCodec) (Version:  - )
Office 15 Click-to-Run Extensibility Component (HKLM\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5031.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-007E-0000-0000-0000000FF1CE}) (Version: 15.0.5031.1000 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM\...\{90150000-008C-0407-0000-0000000FF1CE}) (Version: 15.0.5031.1000 - Microsoft Corporation) Hidden
PDF24 Creator 8.4.1 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Qualcomm Atheros Client Installation Program (HKLM\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.39052 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.75.827.2013 - Realtek)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
Roll (HKLM\...\RollerCoaster Tycoon Setup) (Version:  - )
Samsung Kies (HKLM\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.14123.5 - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Sid Meier's Civilization 4 Complete (HKLM\...\{30D1F3D2-54CF-481D-A005-F94B0E98FEEC}) (Version: 1.74 - Firaxis Games)
Studie zur Verbesserung von HP Deskjet 2050 J510 series Produkten (HKLM\...\{7622F0F0-8CAE-4492-97E9-594E63CBD36B}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.666  - Nullsoft, Inc)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\SkyDriveShell.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714_3\FileSyncApi.dll (Microsoft Corporation)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2014-10-03] (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {203CB7F6-B728-499C-85BD-D62D51EB38C0} - System32\Tasks\{A8DF8DBD-C435-4AC1-BE77-5AA8141FA383} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {2438FE3A-8150-473E-BC35-B0BEDA20EC5F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe
Task: {319C6BE2-75A3-452E-B9A5-1621E1688C3C} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {408C40BB-F798-4DC2-86FD-8143B7DC0B07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2018-07-18] (Google Inc.)
Task: {4787C2A2-E21D-4B9E-A328-D151E74C48E8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: {553C5AC9-BCBE-41DD-9D62-44215F731E03} - System32\Tasks\{96CE66BC-ED6C-4804-98B3-5618B7337C33} => C:\Windows\system32\pcalua.exe -a C:\Users\velsench\Downloads\AVM_FRITZ_WLAN_Repeater_310_Assistent.exe -d C:\Users\velsench\Downloads
Task: {58E8A7CC-8A5E-4297-8C1F-D14099F062BA} - System32\Tasks\{5AF8DF5A-293E-41DB-A8F1-3F88E93D0C97} => C:\Windows\system32\pcalua.exe -a C:\Users\velsench\Downloads\RCT-GE.exe -d C:\Users\velsench\Downloads
Task: {6F3CBD59-A99D-40A5-9A2F-C303D493DB46} - System32\Tasks\{96D13C53-E40C-4D74-ABC2-CCA2041BA008} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {7596099A-EB6B-405E-9499-69AE0BC9AB46} - System32\Tasks\{E941D7FF-CD73-47CC-82D5-53A618EFB1D5} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {A93A3924-8264-4408-8DAC-D7708A2A7093} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2012-10-02] (Hewlett-Packard Co.)
Task: {BB4A7946-23D1-4A56-B864-72AB646C6A12} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {D073BC24-DC33-4975-857D-F71ECC666F0B} - System32\Tasks\{DCF1B3B0-95E2-458C-81A1-8AFE3BCA9EFC} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {D873B978-C82A-41B9-86CE-FC28F0ADB858} - System32\Tasks\{C26286FF-2701-49CD-9493-800E9FB9DC70} => C:\Program Files\Microsoft Games\Age of Empires II\empires2.exe
Task: {E86FB655-51E3-4012-BA9E-21221BA94002} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2018-07-18] (Google Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-12-20 13:20 - 2017-01-17 02:17 - 000090304 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2015-01-04 23:08 - 2014-12-08 08:27 - 006277952 _____ () C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe
2014-12-13 15:48 - 2014-10-03 18:35 - 000413072 _____ () C:\Windows\system32\igfxTray.exe

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:04 - 2009-06-10 23:39 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\velsench\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: Energy Management => C:\Program Files\Lenovo\Energy Management\Energy Management.exe
MSCONFIG\startupreg: EnergyUtility => C:\Program Files\Lenovo\Energy Management\Utility.exe
MSCONFIG\startupreg: ForteConfig => C:\Program Files\Conexant\ForteConfig\fmapp.exe
MSCONFIG\startupreg: HotKeysCmds => "C:\Windows\system32\hkcmd.exe"
MSCONFIG\startupreg: IgfxTray => "C:\Windows\system32\igfxtray.exe"
MSCONFIG\startupreg: Persistence => "C:\Windows\system32\igfxpers.exe"
MSCONFIG\startupreg: RtsFT => RTFTrack.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{7F4C392B-7C1A-4059-8F90-BCFD1AFE490A}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{8F8F8440-4AA8-486E-ABE9-2B23C7D59D43}] => (Allow) C:\Program Files\Winamp\winamp.exe
FirewallRules: [{EB69226F-0A9B-4B5C-B908-FBCAC31A3798}] => (Allow) C:\Program Files\Winamp\winamp.exe
FirewallRules: [{3082DC5B-C855-4A74-A4C5-EBC4E5DD61E6}] => (Allow) C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\USBSetup.exe
FirewallRules: [{4D5242F5-BBD8-4E33-872F-CEFFEC0E6433}] => (Allow) C:\Users\velsench\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{483A559E-5E84-43D5-9E58-A6528D172133}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{62666BF0-E565-41B4-9408-9526E056FE69}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{698BC089-16C3-4291-AD7E-95859557E641}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{AA8213DE-BDAF-4BAE-A358-5231EBA1B16C}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{F37E955D-8FFF-4824-A3CA-4B5AEDEA5C3B}C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe] => (Allow) C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe
FirewallRules: [UDP Query User{0682666F-972E-4C90-9E62-ECA2561727BB}C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe] => (Allow) C:\program files\hasbro interactive\rollercoaster tycoon\rct.exe
FirewallRules: [TCP Query User{0E1721C0-7426-4094-9ED8-296D802A8831}C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [UDP Query User{5F8AE1EF-4761-4E8C-ADD5-F820AE6EAC30}C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\velsench\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [{D45DBC68-CB21-4D9A-89FF-8C3EB186F63D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{E099B7D7-A9F1-4B23-84B7-02A0A952CE7B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{F113EB53-0E84-4358-8D3B-34E5A54A757C}C:\program files\ubisoft\anno 1701\anno1701.exe] => (Block) C:\program files\ubisoft\anno 1701\anno1701.exe
FirewallRules: [UDP Query User{84A346E9-8314-40C0-BA98-8137A983B372}C:\program files\ubisoft\anno 1701\anno1701.exe] => (Block) C:\program files\ubisoft\anno 1701\anno1701.exe
FirewallRules: [{D9C3EC19-36FE-4C9A-813B-7FFFA86F7AFD}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (07/23/2018 11:27:50 AM) (Source: YSearchUtilSvc) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/23/2018 09:36:31 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1c28

Startzeit: 01d422520103cdda

Endzeit: 31

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (07/16/2018 08:43:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1b20

Startzeit: 01d41cf37044d4e2

Endzeit: 100

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (07/02/2018 02:54:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 61.0.0.6746 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 35c

Startzeit: 01d4111730dd7d60

Endzeit: 700

Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe

Berichts-ID: e1d2bb62-7df6-11e8-a409-28d24488e3bb

Error: (06/28/2018 08:19:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm firefox.exe, Version 61.0.0.6746 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: d5c

Startzeit: 01d40ebaabdc912c

Endzeit: 240

Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe

Berichts-ID: bd07213c-7aff-11e8-9d6b-28d24488e3bb

Error: (06/24/2018 06:08:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1f64

Startzeit: 01d40bca956b1d19

Endzeit: 560

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (06/22/2018 02:32:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1c7c

Startzeit: 01d40a2352cc9d35

Endzeit: 620

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:

Error: (06/20/2018 03:37:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm iexplore.exe, Version 11.0.9600.18838 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1990

Startzeit: 01d4089bc04809dd

Endzeit: 4

Anwendungspfad: C:\Program Files\Internet Explorer\iexplore.exe

Berichts-ID:


Systemfehler:
=============
Error: (07/23/2018 11:42:41 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/23/2018 11:42:41 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/23/2018 11:34:49 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{9B1F122C-2982-4E91-AA8B-E071D54F2A4D}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (07/23/2018 11:30:16 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "McAfee Security Scan Component Host Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (07/23/2018 08:47:40 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/22/2018 07:55:37 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 20.

Error: (07/22/2018 05:00:26 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.

Error: (07/21/2018 11:16:16 AM) (Source: Microsoft-Windows-WHEA-Logger) (EventID: 18) (User: NT-AUTORITÄT)
Description: Schwerwiegender Hardwarefehler.

Gemeldet von Komponente: Prozessorkern
Fehlerquelle: 3
Fehlertyp: 9
Prozessor-ID: 0

Die Detailansicht dieses Eintrags beinhaltet weitere Informationen.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Prozentuale Nutzung des RAM: 69%
Installierter physikalischer RAM: 2722.36 MB
Verfügbarer physikalischer RAM: 827.98 MB
Summe virtueller Speicher: 5443.04 MB
Verfügbarer virtueller Speicher: 3287.83 MB

==================== Laufwerke ================================

Drive c: (System) (Fixed) (Total:165.62 GB) (Free:59.95 GB) NTFS
Drive d: (Daten) (Fixed) (Total:300.05 GB) (Free:84.86 GB) NTFS

\\?\Volume{0168aa2c-82a6-11e4-9651-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: D9FA2484)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=165.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=300 GB) - (Type=07 NTFS)

==================== Ende vom Addition.txt ============================

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version: 21.07.2018
durchgeführt von velsench (Administrator) auf VVELSEN (23-07-2018 12:13:51)
Gestartet von C:\Users\velsench\Downloads
Geladene Profile: velsench (Verfügbare Profile: velsench)
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg32.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
() C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe
(© 2015 Microsoft Corporation) C:\Users\velsench\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation.) C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.EXE

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe [850648 2013-09-04] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2260808 2013-10-17] (ELAN Microelectronics Corp.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-12-17] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [432776 2018-02-27] (Geek Software GmbH)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [588704 2018-03-28] (Oracle Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\Run: [Amazon Music] => C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe [6277952 2014-12-08] ()
HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\...\Run: [BingSvc] => C:\Users\velsench\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-12-22] (© 2015 Microsoft Corporation)
Startup: C:\Users\velsench\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk [2018-07-23]
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 2050 J510 series.lnk -> C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{037179EF-AF4C-41E8-8F09-43527B57BAC1}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{428670D8-52BF-48DF-9EA9-19A60ABA5156}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKU\S-1-5-21-2261449247-1383935096-2378691013-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2261449247-1383935096-2378691013-1000 -> {D513BC09-D503-4A2A-9701-4618FF46D71A} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&intl=de&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_172\bin\ssv.dll [2018-07-18] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2018-03-25] (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_172\bin\jp2ssv.dll [2018-07-18] (Oracle Corporation)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\7.1.355.0\BingExt.dll [2012-01-25] (Microsoft Corporation.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\velsench\AppData\Roaming\Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430 [2018-07-23]
FF Homepage: Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430 -> about:home
FF Extension: (Suchen und neue Registerkarte von Yahoo) - C:\Users\velsench\AppData\Roaming\Mozilla\Firefox\Profiles\mqtcvnlr.default-1473168708430\Extensions\jid1-16aeif9OQIRKxA@jetpack.xpi [2017-11-10]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-07-07] [Legacy] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: (Citavi Picker) - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2014-12-16] [Legacy] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_30_0_0_134.dll [Keine Datei]
FF Plugin: @java.com/DTPlugin,version=11.172.2 -> C:\Program Files\Java\jre1.8.0_172\bin\dtplugin\npDeployJava1.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.172.2 -> C:\Program Files\Java\jre1.8.0_172\bin\plugin2\npjp2.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-20] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-07-18] (Google Inc.)

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default [2018-07-23]
CHR Extension: (Präsentationen) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-18]
CHR Extension: (Docs) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-18]
CHR Extension: (Google Drive) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-07-18]
CHR Extension: (YouTube) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-18]
CHR Extension: (Tabellen) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-18]
CHR Extension: (Avira Browserschutz) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2018-07-18]
CHR Extension: (Google Docs Offline) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-07-21]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-18]
CHR Extension: (Google Mail) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\velsench\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-07-18]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2054360 2017-12-12] (Microsoft Corporation)
S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [279952 2014-10-03] (Intel Corporation)
R2 CxAudMsg; C:\Windows\system32\CxAudMsg32.exe [197848 2013-07-25] (Conexant Systems Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [286096 2014-10-03] (Intel Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [432776 2018-02-27] (Geek Software GmbH)
R2 SAService; C:\Windows\system32\SAsrv.exe [447104 2011-09-01] (Conexant Systems, Inc.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [X]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.747\McCHSvc.exe" [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 ACPIVPC; C:\Windows\System32\DRIVERS\AcpiVpc.sys [24672 2011-12-15] (Lenovo Corporation)
R3 athr; C:\Windows\System32\DRIVERS\athr.sys [3244032 2013-11-20] (Qualcomm Atheros Communications, Inc.)
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [330056 2013-10-17] (ELAN Microelectronics Corp.)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [489832 2013-11-21] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [24424 2013-11-21] (Intel Corporation)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16880 2014-01-06] (Intel Corporation)
R3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [363504 2014-01-06] (Intel Corporation)
R3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [799216 2014-01-06] (Intel Corporation)
R0 LHDmgr; C:\Windows\System32\DRIVERS\LhdX86.sys [32352 2010-01-15] (Lenovo.)
R3 MEI; C:\Windows\System32\DRIVERS\TeeDriver.sys [85464 2013-09-12] (Intel Corporation)
R3 RSUSBVSTOR; C:\Windows\System32\Drivers\RtsUVStor.sys [244952 2013-08-08] (Realtek Semiconductor Corp.)
R3 rtsuvc; C:\Windows\System32\DRIVERS\rtsuvc.sys [7091416 2013-11-30] (Realtek Semiconductor Corp.)
S4 secdrv; C:\Windows\system32\Drivers\secdrv.sys [14368 1999-09-27] () [Datei ist nicht signiert]
U3 aswbdisk; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-07-23 11:28 - 2018-07-23 11:28 - 000000000 ____D C:\Users\velsench\Documents\Add-in Express
2018-07-23 11:27 - 2018-07-23 11:27 - 000000000 ____D C:\Program Files\Common Files\Oracle
2018-07-23 11:11 - 2018-07-23 11:11 - 000001197 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2018-07-23 11:11 - 2018-07-23 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-07-23 11:11 - 2018-07-23 11:11 - 000000000 ____D C:\Program Files\VS Revo Group
2018-07-23 11:09 - 2018-07-23 11:10 - 007197480 _____ (VS Revo Group ) C:\Users\velsench\Downloads\revosetup205.exe
2018-07-23 09:55 - 2018-07-23 09:55 - 000032618 _____ C:\Users\velsench\Desktop\Addition.txt
2018-07-23 09:55 - 2018-07-23 09:55 - 000029018 _____ C:\Users\velsench\Desktop\FRST.txt
2018-07-23 09:53 - 2018-07-23 09:54 - 000032615 _____ C:\Users\velsench\Downloads\Addition.txt
2018-07-23 09:51 - 2018-07-23 12:14 - 000014184 _____ C:\Users\velsench\Downloads\FRST.txt
2018-07-23 09:51 - 2018-07-23 12:13 - 000000000 ____D C:\FRST
2018-07-23 09:50 - 2018-07-23 09:51 - 001773056 _____ (Farbar) C:\Users\velsench\Downloads\FRST.exe
2018-07-18 12:39 - 2018-07-18 12:39 - 000000000 ____D C:\Program Files\Common Files\Java
2018-07-18 12:38 - 2018-07-18 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2018-07-18 12:37 - 2018-07-19 09:19 - 000000000 _____ C:\Windows\system32\last.dump
2018-07-18 11:53 - 2018-07-18 11:53 - 000002244 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-07-18 11:53 - 2018-07-18 11:53 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-07-18 11:51 - 2018-07-21 17:11 - 000000000 ____D C:\Users\velsench\AppData\Local\Google
2018-07-18 11:51 - 2018-07-18 11:52 - 000000000 ____D C:\Program Files\Google
2018-07-18 11:50 - 2018-07-23 11:26 - 000000000 ____D C:\Users\velsench\AppData\Local\AVAST Software
2018-07-18 11:45 - 2018-07-18 11:45 - 001142072 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2018-07-18 11:45 - 2018-07-18 11:45 - 000000000 ____D C:\Program Files\Common Files\AVAST Software
2018-07-18 11:43 - 2018-07-23 11:26 - 000000000 ____D C:\ProgramData\AVAST Software
2018-07-18 11:42 - 2018-07-18 11:42 - 000178320 _____ (AVAST Software) C:\Users\velsench\Downloads\avast_free_antivirus_setup_online.exe
2018-07-06 10:29 - 2018-07-06 10:29 - 001650742 _____ C:\Users\velsench\Desktop\Anlage BfV.pdf
2018-07-05 08:24 - 2018-07-05 08:24 - 000192611 _____ C:\Users\velsench\Desktop\rk-vorstellungsreisen-Juli.pdf
2018-07-05 08:06 - 2018-07-05 08:06 - 000179179 _____ C:\Users\velsench\Downloads\rk-vorstellungsreisen-1.pdf
2018-07-05 07:24 - 2018-07-05 07:24 - 002196126 _____ C:\Users\velsench\Desktop\Reisekosten Juli Berlin.pdf
2018-06-29 11:51 - 2018-06-29 11:51 - 000475143 _____ C:\Users\velsench\Downloads\FLT_RVZU6C1448_0.pdf
2018-06-25 14:09 - 2018-06-25 14:09 - 000257990 _____ C:\Users\velsench\Downloads\Lageplan_KCB.pdf
2018-06-25 14:09 - 2018-06-25 14:09 - 000160952 _____ C:\Users\velsench\Downloads\Multidoc_Einladung_AWV_allgemein.pdf
2018-06-25 14:02 - 2018-06-25 14:02 - 000465160 _____ C:\Users\velsench\Downloads\RSROQ4.pdf
2018-06-25 14:01 - 2018-06-25 14:01 - 000038707 _____ C:\Users\velsench\Downloads\Datenschutzerklärung.pdf
2018-06-25 14:01 - 2018-06-25 14:01 - 000035065 _____ C:\Users\velsench\Downloads\Einverständniserklärung der Datenverarbeitung.pdf
2018-06-25 14:01 - 2018-06-25 14:01 - 000018571 _____ C:\Users\velsench\Downloads\BfV-Laufbahnausbildung-2019-mD Hier_ Einladung zum schriftlichen Auswahlverfahren.html

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-07-23 11:50 - 2009-07-14 06:34 - 000013760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-07-23 11:50 - 2009-07-14 06:34 - 000013760 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-07-23 11:43 - 2016-11-17 12:49 - 000000000 ____D C:\Users\velsench\AppData\LocalLow\Mozilla
2018-07-23 11:42 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-07-23 11:27 - 2015-12-22 12:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-07-23 11:27 - 2014-12-14 12:13 - 000000000 ____D C:\Program Files\Java
2018-07-23 11:14 - 2014-12-14 12:16 - 000000000 ____D C:\Program Files\Common Files\Adobe
2018-07-23 11:14 - 2014-12-14 12:16 - 000000000 ____D C:\Program Files\Adobe
2018-07-22 11:11 - 2014-12-13 11:07 - 001622706 _____ C:\Windows\system32\PerfStringBackup.INI
2018-07-22 11:11 - 2009-07-14 10:47 - 000700380 _____ C:\Windows\system32\perfh007.dat
2018-07-22 11:11 - 2009-07-14 10:47 - 000149986 _____ C:\Windows\system32\perfc007.dat
2018-07-22 11:11 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2018-07-18 12:39 - 2014-12-14 12:13 - 000096712 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2018-07-18 12:38 - 2014-12-14 12:21 - 000000000 ____D C:\Program Files\VLC-Player
2018-07-10 16:10 - 2014-12-14 12:12 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2018-07-10 16:10 - 2014-12-14 12:12 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2018-07-08 13:13 - 2016-11-16 12:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-07-08 13:13 - 2014-12-14 12:09 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-06-27 13:43 - 2015-02-06 14:42 - 000000000 ____D C:\ProgramData\McAfee

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-02-02 19:49 - 2017-02-02 19:49 - 000000836 _____ () C:\Users\velsench\AppData\Local\recently-used.xbel

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2018-07-17 13:10

==================== Ende vom FRST.txt ============================

cosinus · 23.07.2018, 11:25

Das sieht schonmal besser aus ohne diese depperten Virescanner

Schädlinge suchen mit Kaspersky TDSS-Killer

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

krümmel · 23.07.2018, 11:38

Ok, auch das hab ich jetzt gemacht.

Erstens:

Code:

ATTFilter

12:27:38.0839 0x0cb8  TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
12:27:43.0499 0x0cb8  ============================================================
12:27:43.0499 0x0cb8  Current date / time: 2018/07/23 12:27:43.0499
12:27:43.0499 0x0cb8  SystemInfo:
12:27:43.0499 0x0cb8  
12:27:43.0499 0x0cb8  OS Version: 6.1.7601 ServicePack: 1.0
12:27:43.0499 0x0cb8  Product type: Workstation
12:27:43.0499 0x0cb8  ComputerName: VVELSEN
12:27:43.0499 0x0cb8  UserName: velsench
12:27:43.0499 0x0cb8  Windows directory: C:\Windows
12:27:43.0499 0x0cb8  System windows directory: C:\Windows
12:27:43.0499 0x0cb8  Processor architecture: Intel x86
12:27:43.0499 0x0cb8  Number of processors: 4
12:27:43.0499 0x0cb8  Page size: 0x1000
12:27:43.0499 0x0cb8  Boot type: Normal boot
12:27:43.0499 0x0cb8  CodeIntegrityOptions = 0x00000000
12:27:43.0499 0x0cb8  ============================================================
12:27:46.0799 0x0cb8  KLMD registered as C:\Windows\system32\drivers\59996286.sys
12:27:46.0799 0x0cb8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23915, osProperties = 0x0
12:27:46.0999 0x0cb8  System UUID: {BE806EDE-DC52-851D-5721-C4A6AB7DF798}
12:27:47.0199 0x0cb8  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:27:47.0199 0x0cb8  ============================================================
12:27:47.0199 0x0cb8  \Device\Harddisk0\DR0:
12:27:47.0199 0x0cb8  MBR partitions:
12:27:47.0199 0x0cb8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:27:47.0199 0x0cb8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x14B3B000
12:27:47.0199 0x0cb8  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x14B6D800, BlocksNum 0x25818000
12:27:47.0199 0x0cb8  ============================================================
12:27:47.0239 0x0cb8  C: <-> \Device\Harddisk0\DR0\Partition2
12:27:47.0349 0x0cb8  D: <-> \Device\Harddisk0\DR0\Partition3
12:27:47.0349 0x0cb8  ============================================================
12:27:47.0349 0x0cb8  Initialize success
12:27:47.0349 0x0cb8  ============================================================
12:27:50.0399 0x12e4  ============================================================
12:27:50.0399 0x12e4  Scan started
12:27:50.0399 0x12e4  Mode: Manual; 
12:27:50.0399 0x12e4  ============================================================
12:27:50.0399 0x12e4  KSN ping started
12:27:50.0499 0x12e4  KSN ping finished: true
12:27:53.0259 0x12e4  ================ Scan system memory ========================
12:27:53.0259 0x12e4  System memory - ok
12:27:53.0259 0x12e4  ================ Scan services =============================
12:27:53.0419 0x12e4  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:27:53.0429 0x12e4  1394ohci - ok
12:27:53.0479 0x12e4  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:27:53.0499 0x12e4  ACPI - ok
12:27:53.0509 0x12e4  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:27:53.0509 0x12e4  AcpiPmi - ok
12:27:53.0559 0x12e4  [ 068ACF171CB53993AF9599B6B236EB13, 299619F67E112A65B9B0F81B8CAE81827FD7C03A4A167B6FB697750CAEE424A2 ] ACPIVPC         C:\Windows\system32\DRIVERS\AcpiVpc.sys
12:27:53.0569 0x12e4  ACPIVPC - ok
12:27:53.0569 0x12e4  AdobeFlashPlayerUpdateSvc - ok
12:27:53.0619 0x12e4  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
12:27:53.0619 0x12e4  adp94xx - ok
12:27:53.0659 0x12e4  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
12:27:53.0659 0x12e4  adpahci - ok
12:27:53.0679 0x12e4  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
12:27:53.0679 0x12e4  adpu320 - ok
12:27:53.0719 0x12e4  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:27:53.0719 0x12e4  AeLookupSvc - ok
12:27:53.0779 0x12e4  [ F582FC7976F1248AC5FBD6875C626B41, E65532B4E9924ECFF892C0A62312CBC070BFF7B1C4737E6CF8C4ED638BCD030F ] AFD             C:\Windows\system32\drivers\afd.sys
12:27:53.0789 0x12e4  AFD - ok
12:27:53.0819 0x12e4  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
12:27:53.0819 0x12e4  agp440 - ok
12:27:53.0829 0x12e4  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
12:27:53.0829 0x12e4  aic78xx - ok
12:27:53.0859 0x12e4  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
12:27:53.0869 0x12e4  ALG - ok
12:27:53.0909 0x12e4  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:27:53.0909 0x12e4  aliide - ok
12:27:53.0919 0x12e4  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:27:53.0929 0x12e4  amdagp - ok
12:27:53.0929 0x12e4  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:27:53.0929 0x12e4  amdide - ok
12:27:53.0949 0x12e4  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
12:27:53.0949 0x12e4  AmdK8 - ok
12:27:53.0969 0x12e4  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:27:53.0969 0x12e4  AmdPPM - ok
12:27:54.0009 0x12e4  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:27:54.0009 0x12e4  amdsata - ok
12:27:54.0039 0x12e4  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
12:27:54.0039 0x12e4  amdsbs - ok
12:27:54.0069 0x12e4  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:27:54.0069 0x12e4  amdxata - ok
12:27:54.0109 0x12e4  [ 20D93E913BBE39E50BB10CC7BA651910, FAAC055B7A2D3B8A93EED76636FFCCD3E76AF82B1E2F414432DCBB1AEDB42CCB ] AppID           C:\Windows\system32\drivers\appid.sys
12:27:54.0109 0x12e4  AppID - ok
12:27:54.0139 0x12e4  [ 60D471309978F58FCE00A0C62AF746EA, C10285768838355ED00D313A11B354F03958E21500E637356EBB833AB56097A5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:27:54.0139 0x12e4  AppIDSvc - ok
12:27:54.0189 0x12e4  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
12:27:54.0189 0x12e4  Appinfo - ok
12:27:54.0229 0x12e4  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
12:27:54.0229 0x12e4  AppMgmt - ok
12:27:54.0239 0x12e4  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\DRIVERS\arc.sys
12:27:54.0239 0x12e4  arc - ok
12:27:54.0259 0x12e4  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
12:27:54.0259 0x12e4  arcsas - ok
12:27:54.0359 0x12e4  [ 03FD2243A539C7153EF62CE10D1816F1, BE72DD2CB62B27F6BF0CEC03AE23A7D63876D6442A781E2E595EE3E64C18EBD4 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:27:54.0389 0x12e4  aspnet_state - ok
12:27:54.0439 0x12e4  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:27:54.0449 0x12e4  AsyncMac - ok
12:27:54.0499 0x12e4  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:27:54.0499 0x12e4  atapi - ok
12:27:54.0619 0x12e4  [ FA6DE016AEC5DB4C7ED0A3CF35ABE513, C0C42BEF1B239B15EE13610C36384AF4A445E8609E45953C06114E0CA30E7DAD ] athr            C:\Windows\system32\DRIVERS\athr.sys
12:27:54.0669 0x12e4  athr - ok
12:27:54.0719 0x12e4  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:27:54.0729 0x12e4  AudioEndpointBuilder - ok
12:27:54.0739 0x12e4  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:27:54.0749 0x12e4  Audiosrv - ok
12:27:54.0789 0x12e4  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:27:54.0799 0x12e4  AxInstSV - ok
12:27:54.0839 0x12e4  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
12:27:54.0849 0x12e4  b06bdrv - ok
12:27:54.0879 0x12e4  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
12:27:54.0889 0x12e4  b57nd60x - ok
12:27:54.0969 0x12e4  [ 4BEFF67C1775D353A16A62347E727874, 62363C5E5F4BF049A3E49FADA8CB17269945056ACADB319FDC4F05B74E2553C8 ] BBSvc           C:\Program Files\Microsoft\BingBar\7.1.355.0\BBSvc.exe
12:27:54.0979 0x12e4  BBSvc - ok
12:27:55.0009 0x12e4  [ A6DAAD3EA93DBDBD07FA821BCED133F6, 8F33D4E4B82091D09E62FD5487C88F3DF0DAC31FCBB846183CC4020533A131DE ] BBUpdate        C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.exe
12:27:55.0009 0x12e4  BBUpdate - ok
12:27:55.0029 0x12e4  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
12:27:55.0029 0x12e4  BDESVC - ok
12:27:55.0049 0x12e4  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:27:55.0049 0x12e4  Beep - ok
12:27:55.0119 0x12e4  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
12:27:55.0119 0x12e4  BFE - ok
12:27:55.0149 0x12e4  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
12:27:55.0159 0x12e4  BITS - ok
12:27:55.0179 0x12e4  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:27:55.0179 0x12e4  blbdrive - ok
12:27:55.0219 0x12e4  [ 28AF7D4427868B7CE4C00CAB1864C7F6, AAE5303878AF0F7AA18069A8FCD99639EBC34622B456AF86C5E4F27858196E06 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:27:55.0219 0x12e4  bowser - ok
12:27:55.0239 0x12e4  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:27:55.0239 0x12e4  BrFiltLo - ok
12:27:55.0239 0x12e4  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:27:55.0249 0x12e4  BrFiltUp - ok
12:27:55.0279 0x12e4  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
12:27:55.0279 0x12e4  Browser - ok
12:27:55.0299 0x12e4  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:27:55.0299 0x12e4  Brserid - ok
12:27:55.0319 0x12e4  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:27:55.0319 0x12e4  BrSerWdm - ok
12:27:55.0329 0x12e4  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:27:55.0329 0x12e4  BrUsbMdm - ok
12:27:55.0339 0x12e4  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:27:55.0339 0x12e4  BrUsbSer - ok
12:27:55.0379 0x12e4  [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
12:27:55.0379 0x12e4  BthEnum - ok
12:27:55.0389 0x12e4  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
12:27:55.0389 0x12e4  BTHMODEM - ok
12:27:55.0439 0x12e4  [ F6AA1FE6ECB2C175E9BA14D30C739FD3, F133F29F8AAA5E3AB148E71A5232FD31B1E1EBC350C899369AE8BFD84022F03F ] BthPan          C:\Windows\system32\drivers\bthpan.sys
12:27:55.0439 0x12e4  BthPan - ok
12:27:55.0499 0x12e4  [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
12:27:55.0509 0x12e4  BTHPORT - ok
12:27:55.0549 0x12e4  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
12:27:55.0549 0x12e4  bthserv - ok
12:27:55.0569 0x12e4  [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
12:27:55.0569 0x12e4  BTHUSB - ok
12:27:55.0599 0x12e4  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:27:55.0599 0x12e4  cdfs - ok
12:27:55.0649 0x12e4  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:27:55.0659 0x12e4  cdrom - ok
12:27:55.0699 0x12e4  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:27:55.0699 0x12e4  CertPropSvc - ok
12:27:55.0729 0x12e4  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
12:27:55.0729 0x12e4  circlass - ok
12:27:55.0779 0x12e4  [ 000B58009E5D0962C0A71D6477029A3F, 2696398A42B399AEE9F9F0FB26610BB9F50F9EC784EC80F78FF6DD3D6E892ADA ] CLFS            C:\Windows\system32\CLFS.sys
12:27:55.0789 0x12e4  CLFS - ok
12:27:55.0999 0x12e4  [ 29B2AA41E3BC0366AFCD4D6A71741E29, FDA177184CE9CB3E543CA5B98BA289DF50879736406D5A352FC38AB94F5943B0 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe
12:27:56.0029 0x12e4  ClickToRunSvc - ok
12:27:56.0109 0x12e4  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:27:56.0119 0x12e4  clr_optimization_v2.0.50727_32 - ok
12:27:56.0179 0x12e4  [ 2BA609641FA64BAB02ACD3C0095672F5, FD1FE403864F0564CA4A2F1D7415649B8FFE16F8ED33C4B44ACB21767118AD5F ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:27:56.0249 0x12e4  clr_optimization_v4.0.30319_32 - ok
12:27:56.0279 0x12e4  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:27:56.0279 0x12e4  CmBatt - ok
12:27:56.0309 0x12e4  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:27:56.0309 0x12e4  cmdide - ok
12:27:56.0409 0x12e4  [ 7F7D4B16389CEF932950F6B2604D2601, E7C32734DAA75A00866A0F961C945BF7CC7A29D3A9806041D0046BC9FD3ACC5A ] CNG             C:\Windows\system32\Drivers\cng.sys
12:27:56.0439 0x12e4  CNG - ok
12:27:56.0509 0x12e4  [ 80CEC0751525A938DF3881D3456F6C9C, 7FB2566057864A5A8C1174941E717B5FFE85F206BFD6E4B5D037BD58152140E8 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
12:27:56.0529 0x12e4  CnxtHdAudService - ok
12:27:56.0539 0x12e4  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:27:56.0539 0x12e4  Compbatt - ok
12:27:56.0599 0x12e4  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
12:27:56.0599 0x12e4  CompositeBus - ok
12:27:56.0609 0x12e4  COMSysApp - ok
12:27:56.0679 0x12e4  [ 1154D3FBD01C35A2F9A2073BCB366452, 02F8CBDD8E2F321711528CFFC46E9F0B60CC779C34164E387E2E53DEB518B674 ] cphs            C:\Windows\system32\IntelCpHeciSvc.exe
12:27:56.0699 0x12e4  cphs - ok
12:27:56.0719 0x12e4  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
12:27:56.0719 0x12e4  crcdisk - ok
12:27:56.0779 0x12e4  [ AAE96A2A48C7332310C1C28A1D466761, 7279E23A46353BC3D8A1B949B14F11DA689E73D033CD24C8E82613CCFD76E4EA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:27:56.0779 0x12e4  CryptSvc - ok
12:27:56.0849 0x12e4  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
12:27:56.0859 0x12e4  CSC - ok
12:27:56.0919 0x12e4  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
12:27:56.0929 0x12e4  CscService - ok
12:27:56.0999 0x12e4  [ 54B93481AC986849FC74C05C19EF1163, D363DBB24075E561FFA58560AAAAF7E99394C08A0A56058F7C16C9FCE07B7934 ] CxAudMsg        C:\Windows\system32\CxAudMsg32.exe
12:27:56.0999 0x12e4  CxAudMsg - ok
12:27:57.0059 0x12e4  [ 0395B42B3885269C039C6705D5A49BE3, A87697AFC9D4478DCD0A0053DBE378F3F84961BCF1A911DBB4161EEB350CB064 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:27:57.0069 0x12e4  DcomLaunch - ok
12:27:57.0089 0x12e4  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
12:27:57.0099 0x12e4  defragsvc - ok
12:27:57.0139 0x12e4  [ EA9DBD76CE9254C77BAAB4339DD4C4FB, ECEE6EB8CFE1BD20BC7B6ED29A1624DDC3E22A37A56BA43B9B14E37D4003B72D ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:27:57.0139 0x12e4  DfsC - ok
12:27:57.0189 0x12e4  [ 7A5FB3E4E0D77740D56E516EE6B2DC2B, 5B4636EC04903D2E512AC8FB98A484F7CEBE4EE0A081CF897CD13E8491C0D8CC ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:27:57.0199 0x12e4  dg_ssudbus - ok
12:27:57.0219 0x12e4  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:27:57.0219 0x12e4  Dhcp - ok
12:27:57.0309 0x12e4  [ 58F9BFBAE3C25D1A349DF0C6ECE8F9DF, FF1CFC9B323BCE2CFC06F9B2A98A29396832134FD61A570C1971A7240899E526 ] DiagTrack       C:\Windows\system32\diagtrack.dll
12:27:57.0329 0x12e4  DiagTrack - ok
12:27:57.0349 0x12e4  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
12:27:57.0349 0x12e4  discache - ok
12:27:57.0389 0x12e4  [ B7B470F163002A0D0E381EE45834BF6B, 5B5E204341A6B1689C3F8717C41782B1A077A026F8B19DA3DE08CA44AB1D95B2 ] Disk            C:\Windows\system32\drivers\disk.sys
12:27:57.0399 0x12e4  Disk - ok
12:27:57.0449 0x12e4  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:27:57.0449 0x12e4  Dnscache - ok
12:27:57.0519 0x12e4  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:27:57.0529 0x12e4  dot3svc - ok
12:27:57.0569 0x12e4  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
12:27:57.0579 0x12e4  DPS - ok
12:27:57.0629 0x12e4  [ A3F684B866A7D89AE396276CE7AFD416, 1E4C034B7B106FA403B13842A199D88A33B492A577B58CDDAE0B4706266B9565 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:27:57.0629 0x12e4  drmkaud - ok
12:27:57.0709 0x12e4  [ 897AE9430D037B056CF76A49CF588542, 02767A3CF7AFF9ECF251808DF2B3B4CABFBDF3EF59E15498B0985298991D8B91 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:27:57.0729 0x12e4  DXGKrnl - ok
12:27:57.0749 0x12e4  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
12:27:57.0749 0x12e4  EapHost - ok
12:27:57.0909 0x12e4  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
12:27:57.0959 0x12e4  ebdrv - ok
12:27:58.0009 0x12e4  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] EFS             C:\Windows\System32\lsass.exe
12:27:58.0009 0x12e4  EFS - ok
12:27:58.0089 0x12e4  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:27:58.0109 0x12e4  ehRecvr - ok
12:27:58.0139 0x12e4  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
12:27:58.0139 0x12e4  ehSched - ok
12:27:58.0159 0x12e4  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
12:27:58.0179 0x12e4  elxstor - ok
12:27:58.0209 0x12e4  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:27:58.0209 0x12e4  ErrDev - ok
12:27:58.0249 0x12e4  [ 9048DDC11BA60BEB33DCD0495D9842E0, 22DE4DDA9F74674BCDE20926D33281786F854ED1EEBB3E6CD4EFF063C8C2C57D ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
12:27:58.0259 0x12e4  ETD - ok
12:27:58.0279 0x12e4  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
12:27:58.0289 0x12e4  EventSystem - ok
12:27:58.0339 0x12e4  [ 53E8732CC70CC0991839DF9FC8996E4A, D14F6CAAF1F71647F12C6BDF1CD3EE7ADFAB0B292760AC197B876F0868853A72 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:27:58.0339 0x12e4  exfat - ok
12:27:58.0359 0x12e4  [ 24F422E5D7517FEBDA2324116F1A7BE6, 3D54FFB59F7E4F9CC1189D8808B1F17EE7C4A6DE2A13C74CA5B6A47D5E759C53 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:27:58.0369 0x12e4  fastfat - ok
12:27:58.0419 0x12e4  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
12:27:58.0429 0x12e4  Fax - ok
12:27:58.0439 0x12e4  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:27:58.0439 0x12e4  fdc - ok
12:27:58.0459 0x12e4  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
12:27:58.0459 0x12e4  fdPHost - ok
12:27:58.0459 0x12e4  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:27:58.0459 0x12e4  FDResPub - ok
12:27:58.0479 0x12e4  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:27:58.0479 0x12e4  FileInfo - ok
12:27:58.0489 0x12e4  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:27:58.0489 0x12e4  Filetrace - ok
12:27:58.0509 0x12e4  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:27:58.0509 0x12e4  flpydisk - ok
12:27:58.0529 0x12e4  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:27:58.0539 0x12e4  FltMgr - ok
12:27:58.0599 0x12e4  [ B5259B75BFDE00A5CDFD8D70444C8E3C, 3526602AA212B43351644AFB91E0D9CEFB778461BAAD2331B6BBF76FB14EEE86 ] FontCache       C:\Windows\system32\FntCache.dll
12:27:58.0609 0x12e4  FontCache - ok
12:27:58.0669 0x12e4  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:27:58.0669 0x12e4  FontCache3.0.0.0 - ok
12:27:58.0679 0x12e4  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:27:58.0679 0x12e4  FsDepends - ok
12:27:58.0719 0x12e4  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:27:58.0719 0x12e4  Fs_Rec - ok
12:27:58.0769 0x12e4  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:27:58.0769 0x12e4  fvevol - ok
12:27:58.0789 0x12e4  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
12:27:58.0799 0x12e4  gagp30kx - ok
12:27:58.0839 0x12e4  [ 8DA745095F6B73BB5B8266BF773DA1FA, 3EA614A9B8D4F61704A8754B014C8F6AC60551435BC4D9F2E761955905DA89F3 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:27:58.0849 0x12e4  gpsvc - ok
12:27:58.0939 0x12e4  [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
12:27:58.0949 0x12e4  gupdate - ok
12:27:58.0959 0x12e4  [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
12:27:58.0959 0x12e4  gupdatem - ok
12:27:58.0969 0x12e4  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:27:58.0969 0x12e4  hcw85cir - ok
12:27:59.0029 0x12e4  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:27:59.0049 0x12e4  HdAudAddService - ok
12:27:59.0069 0x12e4  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
12:27:59.0069 0x12e4  HDAudBus - ok
12:27:59.0089 0x12e4  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
12:27:59.0089 0x12e4  HidBatt - ok
12:27:59.0119 0x12e4  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
12:27:59.0119 0x12e4  HidBth - ok
12:27:59.0119 0x12e4  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
12:27:59.0129 0x12e4  HidIr - ok
12:27:59.0149 0x12e4  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
12:27:59.0149 0x12e4  hidserv - ok
12:27:59.0209 0x12e4  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
12:27:59.0209 0x12e4  HidUsb - ok
12:27:59.0249 0x12e4  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:27:59.0249 0x12e4  hkmsvc - ok
12:27:59.0279 0x12e4  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:27:59.0279 0x12e4  HomeGroupListener - ok
12:27:59.0339 0x12e4  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:27:59.0349 0x12e4  HomeGroupProvider - ok
12:27:59.0369 0x12e4  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:27:59.0379 0x12e4  HpSAMD - ok
12:27:59.0439 0x12e4  [ 2F50E2780F16E00369F1311B086C3E42, F3FAE2D965D055810775B7AAE7BF1C4C39961A64E42B345FC604D32F3AC7E7DA ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:27:59.0459 0x12e4  HTTP - ok
12:27:59.0489 0x12e4  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:27:59.0489 0x12e4  hwpolicy - ok
12:27:59.0509 0x12e4  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:27:59.0519 0x12e4  i8042prt - ok
12:27:59.0569 0x12e4  [ 8C1AC5E9DBA9A1AEE5A628A7AFF1A1B4, 4651E5E41D03D29FAEAEA31F2B434E6CD25DDD8A22A379DAFC0A2D77A8EB50FA ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
12:27:59.0579 0x12e4  iaStorA - ok
12:27:59.0689 0x12e4  [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
12:27:59.0689 0x12e4  IAStorDataMgrSvc - ok
12:27:59.0719 0x12e4  [ 6C5EB949D8917A3A6F34463912B8311E, 4B2817CA257DE9B88BA0BFEC50E28BDE9656B9CB5C7E7A62508959AE84105BD6 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
12:27:59.0719 0x12e4  iaStorF - ok
12:27:59.0789 0x12e4  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:27:59.0799 0x12e4  iaStorV - ok
12:27:59.0859 0x12e4  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:27:59.0889 0x12e4  idsvc - ok
12:27:59.0889 0x12e4  IEEtwCollectorService - ok
12:28:00.0039 0x12e4  [ A6F0F319111B3C30A4320AC9A08AB840, A310DB22FF6A808C3A514491A3EF076928AC236E8A5C35BB912C0A12552C587E ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
12:28:00.0099 0x12e4  igfx - ok
12:28:00.0139 0x12e4  [ 302B72C765BB6D341870B84494076399, 147142121DB29D328D6983F6CD930B35F2A3E3A657FD95EADEAAD1A9E33497FF ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
12:28:00.0149 0x12e4  igfxCUIService1.0.0.0 - ok
12:28:00.0169 0x12e4  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
12:28:00.0169 0x12e4  iirsp - ok
12:28:00.0259 0x12e4  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
12:28:00.0279 0x12e4  IKEEXT - ok
12:28:00.0349 0x12e4  [ 96233928F03AC2F825B02B676A53A1E9, DAF70C4154DCA28B3CE8A52AF97DFD7B2EE30A487D0442748FF090AD4EB60D07 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
12:28:00.0369 0x12e4  IntcDAud - ok
12:28:00.0379 0x12e4  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:28:00.0379 0x12e4  intelide - ok
12:28:00.0409 0x12e4  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:28:00.0409 0x12e4  intelppm - ok
12:28:00.0439 0x12e4  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:28:00.0439 0x12e4  IPBusEnum - ok
12:28:00.0449 0x12e4  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:28:00.0449 0x12e4  IpFilterDriver - ok
12:28:00.0489 0x12e4  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:28:00.0499 0x12e4  iphlpsvc - ok
12:28:00.0539 0x12e4  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:28:00.0539 0x12e4  IPMIDRV - ok
12:28:00.0549 0x12e4  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:28:00.0549 0x12e4  IPNAT - ok
12:28:00.0579 0x12e4  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:28:00.0579 0x12e4  IRENUM - ok
12:28:00.0589 0x12e4  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:28:00.0599 0x12e4  isapnp - ok
12:28:00.0639 0x12e4  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:28:00.0659 0x12e4  iScsiPrt - ok
12:28:00.0719 0x12e4  [ 23C245A8CF93E8935EA182427FECBA35, 88A8E3D4D221B729BB0489BDE14D107C921BF74C3A01BBAE5F9044F56923C5E3 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
12:28:00.0719 0x12e4  iusb3hcs - ok
12:28:00.0739 0x12e4  [ 5CA74542CE2511DD84C4B00024E0DBD6, 83D6C368ECE76616B7B0E3C6C94B53C2C34288723F4A654830498988EC93261A ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
12:28:00.0739 0x12e4  iusb3hub - ok
12:28:00.0779 0x12e4  [ 801183FD0E337A1FB15F74BB53563931, 077C68D332ABFDFB9F0B7EA6073BF00A99E1A77A60451232CB252F296F919100 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
12:28:00.0789 0x12e4  iusb3xhc - ok
12:28:00.0819 0x12e4  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
12:28:00.0819 0x12e4  kbdclass - ok
12:28:00.0839 0x12e4  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:28:00.0839 0x12e4  kbdhid - ok
12:28:00.0869 0x12e4  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] KeyIso          C:\Windows\system32\lsass.exe
12:28:00.0869 0x12e4  KeyIso - ok
12:28:00.0919 0x12e4  [ AD7A45E1A91028B0005EDDE9112D9357, E5E930917D2DFB6292613E1C2EF20BF10C2FDB84B91C8F5452DE5A67F2711DFF ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:28:00.0919 0x12e4  KSecDD - ok
12:28:00.0939 0x12e4  [ D598526763D02DE0FB14FF148933F5BC, A50667D3F39043067D6DD123174F816720721E5E763E85C1C1315792E1BD821D ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:28:00.0939 0x12e4  KSecPkg - ok
12:28:00.0959 0x12e4  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:28:00.0969 0x12e4  KtmRm - ok
12:28:01.0009 0x12e4  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:28:01.0009 0x12e4  LanmanServer - ok
12:28:01.0049 0x12e4  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:28:01.0059 0x12e4  LanmanWorkstation - ok
12:28:01.0079 0x12e4  [ 8FF8B5F04AC4D57F9A965BB4DF07813E, E39669D8F4354CDCB7EDFA8722916E2BF6C3778EDDD81D0F6AF6D129B0619BA7 ] LHDmgr          C:\Windows\system32\DRIVERS\LhdX86.sys
12:28:01.0079 0x12e4  LHDmgr - ok
12:28:01.0139 0x12e4  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:28:01.0149 0x12e4  lltdio - ok
12:28:01.0189 0x12e4  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:28:01.0189 0x12e4  lltdsvc - ok
12:28:01.0209 0x12e4  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:28:01.0209 0x12e4  lmhosts - ok
12:28:01.0249 0x12e4  [ 9A84F41E421287A712C90E5384400E4F, B58146F4E9A82F5E5E61AFD542DD6FF649422A3C683D57E67CF861BD06DE5CFD ] LPDSVC          C:\Windows\system32\lpdsvc.dll
12:28:01.0249 0x12e4  LPDSVC - ok
12:28:01.0269 0x12e4  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
12:28:01.0269 0x12e4  LSI_FC - ok
12:28:01.0279 0x12e4  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
12:28:01.0279 0x12e4  LSI_SAS - ok
12:28:01.0299 0x12e4  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:28:01.0299 0x12e4  LSI_SAS2 - ok
12:28:01.0319 0x12e4  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:28:01.0319 0x12e4  LSI_SCSI - ok
12:28:01.0369 0x12e4  [ 4BA509FEF4DB0B683C46821ACDF20B9E, 89545321811222862E4FFF46B33EA9EA4D260C8B478222F754AB53B8406F2EC4 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:28:01.0369 0x12e4  luafv - ok
12:28:01.0649 0x12e4  McComponentHostService - ok
12:28:01.0737 0x12e4  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:28:01.0739 0x12e4  Mcx2Svc - ok
12:28:01.0922 0x12e4  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
12:28:01.0923 0x12e4  megasas - ok
12:28:01.0956 0x12e4  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
12:28:01.0964 0x12e4  MegaSR - ok
12:28:02.0014 0x12e4  [ 113412F2962F700710BB22FCFE266B65, BC7DCC7722A4A1AC9F8D705F8819C9D227696A9538BBF6A52EB7C27969FD3A21 ] MEI             C:\Windows\system32\DRIVERS\TeeDriver.sys
12:28:02.0016 0x12e4  MEI - ok
12:28:02.0080 0x12e4  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
12:28:02.0082 0x12e4  MMCSS - ok
12:28:02.0108 0x12e4  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
12:28:02.0109 0x12e4  Modem - ok
12:28:02.0160 0x12e4  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:28:02.0161 0x12e4  monitor - ok
12:28:02.0237 0x12e4  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:28:02.0238 0x12e4  mouclass - ok
12:28:02.0293 0x12e4  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:28:02.0294 0x12e4  mouhid - ok
12:28:02.0362 0x12e4  [ 9664F55623B43FD85D5642A202976AEE, 9349DADF639BBF7478EFA2398696FEC416554865AD4DEA91BD9A5E7D9F0C3D49 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:28:02.0365 0x12e4  mountmgr - ok
12:28:02.0504 0x12e4  [ 72ED3A6B60BFB1E577C390AE712C5F99, 0F30486944B3819486674DBDECD7A01EAA3BE2844416305AF09029EBDAD49CD2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:28:02.0509 0x12e4  MozillaMaintenance - ok
12:28:02.0541 0x12e4  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:28:02.0544 0x12e4  mpio - ok
12:28:02.0566 0x12e4  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:28:02.0572 0x12e4  mpsdrv - ok
12:28:02.0640 0x12e4  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:28:02.0661 0x12e4  MpsSvc - ok
12:28:02.0699 0x12e4  [ 06AC0310138E4B2C35AF7344D18BC686, FCDB6CC851EC47F92FFF764717A44FF5D5D0E179C215B3C6E77FB9BEA4DE1908 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:28:02.0703 0x12e4  MRxDAV - ok
12:28:02.0750 0x12e4  [ CED9A2CB76D01C817B067DEF638AA26D, 7DB851F68F741464C0BCAF2D67B70312A1E42CEC1500F72C5C9C39440ECF1C9D ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:28:02.0754 0x12e4  mrxsmb - ok
12:28:02.0793 0x12e4  [ 7063F786FEEB116B1E0CCE8FD4D2DCC8, 9023AE7589DE6408F53A7B8BE5657795A80294A4BDF9FFD1808CCD11F3104C16 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:28:02.0799 0x12e4  mrxsmb10 - ok
12:28:02.0820 0x12e4  [ 2A325EC0931F389944A1C012DC6EB23F, E6FD5AAE2D834319287B6D8BFA36F7C5D25BBDCACFA212BF9C52CDE63D91ADEB ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:28:02.0822 0x12e4  mrxsmb20 - ok
12:28:02.0858 0x12e4  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:28:02.0859 0x12e4  msahci - ok
12:28:02.0899 0x12e4  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:28:02.0902 0x12e4  msdsm - ok
12:28:02.0916 0x12e4  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
12:28:02.0920 0x12e4  MSDTC - ok
12:28:02.0934 0x12e4  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:28:02.0935 0x12e4  Msfs - ok
12:28:02.0942 0x12e4  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:28:02.0943 0x12e4  mshidkmdf - ok
12:28:02.0954 0x12e4  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:28:02.0955 0x12e4  msisadrv - ok
12:28:02.0980 0x12e4  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:28:02.0985 0x12e4  MSiSCSI - ok
12:28:02.0988 0x12e4  msiserver - ok
12:28:03.0012 0x12e4  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:28:03.0014 0x12e4  MSKSSRV - ok
12:28:03.0030 0x12e4  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:28:03.0032 0x12e4  MSPCLOCK - ok
12:28:03.0042 0x12e4  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:28:03.0043 0x12e4  MSPQM - ok
12:28:03.0061 0x12e4  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:28:03.0066 0x12e4  MsRPC - ok
12:28:03.0080 0x12e4  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
12:28:03.0082 0x12e4  mssmbios - ok
12:28:03.0094 0x12e4  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:28:03.0095 0x12e4  MSTEE - ok
12:28:03.0110 0x12e4  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
12:28:03.0111 0x12e4  MTConfig - ok
12:28:03.0130 0x12e4  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:28:03.0132 0x12e4  Mup - ok
12:28:03.0179 0x12e4  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
12:28:03.0188 0x12e4  napagent - ok
12:28:03.0240 0x12e4  [ 5F2B9CD280C48A8015AD70FCF4DFB758, F50D118BDCE35654CCA153CA2FC9123D014038494FBCBAFE0514D956DCB2D44D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:28:03.0246 0x12e4  NativeWifiP - ok
12:28:03.0299 0x12e4  [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:28:03.0322 0x12e4  NDIS - ok
12:28:03.0336 0x12e4  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:28:03.0337 0x12e4  NdisCap - ok
12:28:03.0359 0x12e4  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:28:03.0360 0x12e4  NdisTapi - ok
12:28:03.0401 0x12e4  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:28:03.0402 0x12e4  Ndisuio - ok
12:28:03.0444 0x12e4  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:28:03.0447 0x12e4  NdisWan - ok
12:28:03.0464 0x12e4  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:28:03.0467 0x12e4  NDProxy - ok
12:28:03.0491 0x12e4  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:28:03.0492 0x12e4  NetBIOS - ok
12:28:03.0539 0x12e4  [ 2E226E666C6E11DC8C850071A90BE2DC, 5BE2ADBBEA0E5C20031FADB85461D6F68788095B6553B4EBC7A031D7EE1995AD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:28:03.0549 0x12e4  NetBT - ok
12:28:03.0559 0x12e4  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] Netlogon        C:\Windows\system32\lsass.exe
12:28:03.0563 0x12e4  Netlogon - ok
12:28:03.0602 0x12e4  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
12:28:03.0609 0x12e4  Netman - ok
12:28:03.0686 0x12e4  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:28:03.0942 0x12e4  NetMsmqActivator - ok
12:28:03.0954 0x12e4  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:28:03.0961 0x12e4  NetPipeActivator - ok
12:28:04.0045 0x12e4  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
12:28:04.0059 0x12e4  netprofm - ok
12:28:04.0066 0x12e4  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:28:04.0070 0x12e4  NetTcpActivator - ok
12:28:04.0077 0x12e4  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:28:04.0081 0x12e4  NetTcpPortSharing - ok
12:28:04.0146 0x12e4  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
12:28:04.0151 0x12e4  nfrd960 - ok
12:28:04.0219 0x12e4  [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:28:04.0233 0x12e4  NlaSvc - ok
12:28:04.0270 0x12e4  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:28:04.0272 0x12e4  Npfs - ok
12:28:04.0311 0x12e4  [ 6937652377C07F86EF195F1BF5423143, 02F109ABC3543296E70541367A7A6103F38704DAF9A5CDBA2D798EF5592CF663 ] nsi             C:\Windows\system32\nsisvc.dll
12:28:04.0314 0x12e4  nsi - ok
12:28:04.0346 0x12e4  [ C68AA651F93450ECA51A60D45A8E266C, 0AF79071CE5007F968D4028158200312F0C6B6A2114CF0990A638DBFE897E009 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:28:04.0347 0x12e4  nsiproxy - ok
12:28:04.0441 0x12e4  [ F2CBF48566BB13240D39543F445460F9, DB86B7E352EACA2306DA25F900AE66BB8F30B43F567A6942C2E54596BADF3B29 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:28:04.0486 0x12e4  Ntfs - ok
12:28:04.0502 0x12e4  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
12:28:04.0503 0x12e4  Null - ok
12:28:04.0520 0x12e4  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:28:04.0523 0x12e4  nvraid - ok
12:28:04.0572 0x12e4  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:28:04.0582 0x12e4  nvstor - ok
12:28:04.0633 0x12e4  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:28:04.0635 0x12e4  nv_agp - ok
12:28:04.0677 0x12e4  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:28:04.0679 0x12e4  ohci1394 - ok
12:28:04.0766 0x12e4  [ BF869F329392C7E76FC959B1206A432F, 909879B7432283C1F6D44843FC5CEB598798EE6560DCD4B4EF8B4935E94FB934 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:28:04.0776 0x12e4  ose - ok
12:28:04.0994 0x12e4  [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:28:05.0155 0x12e4  osppsvc - ok
12:28:05.0205 0x12e4  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:28:05.0221 0x12e4  p2pimsvc - ok
12:28:05.0241 0x12e4  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:28:05.0249 0x12e4  p2psvc - ok
12:28:05.0284 0x12e4  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
12:28:05.0289 0x12e4  Parport - ok
12:28:05.0335 0x12e4  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:28:05.0339 0x12e4  partmgr - ok
12:28:05.0352 0x12e4  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
12:28:05.0353 0x12e4  Parvdm - ok
12:28:05.0388 0x12e4  [ 84752B402BF64CCDDF11816FEDF12DB4, 184DDFCEEE8C5B492415270FC640B8D584B3D79E7BADCE4DE7CDD74CC8C60130 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:28:05.0393 0x12e4  PcaSvc - ok
12:28:05.0411 0x12e4  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
12:28:05.0415 0x12e4  pci - ok
12:28:05.0461 0x12e4  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:28:05.0463 0x12e4  pciide - ok
12:28:05.0487 0x12e4  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
12:28:05.0496 0x12e4  pcmcia - ok
12:28:05.0518 0x12e4  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:28:05.0521 0x12e4  pcw - ok
12:28:05.0641 0x12e4  [ B57E7BC6F646E6D2A1EC2CAF61F58008, 8BEACD67E31F423837148A97C419903209B909983D2CE757A81EE3DA7265FFD6 ] PDF24           C:\Program Files\PDF24\pdf24.exe
12:28:05.0656 0x12e4  PDF24 - ok
12:28:05.0771 0x12e4  [ 0C941A3F148B4228867908F98F394461, 6D5F575F2E796C5EA8F9F3F96F9ACD935E274210A105C9365102B448E9AE2031 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:28:05.0793 0x12e4  PEAUTH - ok
12:28:05.0924 0x12e4  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
12:28:05.0949 0x12e4  PeerDistSvc - ok
12:28:06.0042 0x12e4  [ 09B61B4894B05723BACE59F46EF892D4, 1BEA7E4A38935C2F1DF4AF503704E4B3A19B0E5658D83F5C36013DF0D6F3BC6D ] pla             C:\Windows\system32\pla.dll
12:28:06.0098 0x12e4  pla - ok
12:28:06.0176 0x12e4  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:28:06.0184 0x12e4  PlugPlay - ok
12:28:06.0217 0x12e4  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:28:06.0219 0x12e4  PNRPAutoReg - ok
12:28:06.0242 0x12e4  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:28:06.0250 0x12e4  PNRPsvc - ok
12:28:06.0307 0x12e4  [ A2FEA7E16D8D056D2FF1EE93F9C73FB1, 6BC8C1B37274B50573F3DAC043DBD9B29B93F527290392842CD94910014D0C74 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:28:06.0317 0x12e4  PolicyAgent - ok
12:28:06.0360 0x12e4  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
12:28:06.0365 0x12e4  Power - ok
12:28:06.0397 0x12e4  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:28:06.0400 0x12e4  PptpMiniport - ok
12:28:06.0417 0x12e4  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
12:28:06.0419 0x12e4  Processor - ok
12:28:06.0456 0x12e4  [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:28:06.0461 0x12e4  ProfSvc - ok
12:28:06.0465 0x12e4  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:28:06.0466 0x12e4  ProtectedStorage - ok
12:28:06.0488 0x12e4  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:28:06.0490 0x12e4  Psched - ok
12:28:06.0536 0x12e4  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
12:28:06.0580 0x12e4  ql2300 - ok
12:28:06.0594 0x12e4  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
12:28:06.0598 0x12e4  ql40xx - ok
12:28:06.0621 0x12e4  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
12:28:06.0627 0x12e4  QWAVE - ok
12:28:06.0640 0x12e4  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:28:06.0642 0x12e4  QWAVEdrv - ok
12:28:06.0655 0x12e4  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:28:06.0656 0x12e4  RasAcd - ok
12:28:06.0674 0x12e4  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:28:06.0676 0x12e4  RasAgileVpn - ok
12:28:06.0691 0x12e4  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
12:28:06.0695 0x12e4  RasAuto - ok
12:28:06.0714 0x12e4  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:28:06.0717 0x12e4  Rasl2tp - ok
12:28:06.0759 0x12e4  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
12:28:06.0768 0x12e4  RasMan - ok
12:28:06.0784 0x12e4  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:28:06.0787 0x12e4  RasPppoe - ok
12:28:06.0792 0x12e4  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:28:06.0794 0x12e4  RasSstp - ok
12:28:06.0831 0x12e4  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:28:06.0841 0x12e4  rdbss - ok
12:28:06.0851 0x12e4  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
12:28:06.0851 0x12e4  rdpbus - ok
12:28:06.0881 0x12e4  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:28:06.0891 0x12e4  RDPCDD - ok
12:28:06.0901 0x12e4  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:28:06.0911 0x12e4  RDPDR - ok
12:28:06.0941 0x12e4  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:28:06.0941 0x12e4  RDPENCDD - ok
12:28:06.0961 0x12e4  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:28:06.0961 0x12e4  RDPREFMP - ok
12:28:07.0031 0x12e4  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:28:07.0041 0x12e4  RdpVideoMiniport - ok
12:28:07.0071 0x12e4  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:28:07.0071 0x12e4  RDPWD - ok
12:28:07.0111 0x12e4  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:28:07.0111 0x12e4  rdyboost - ok
12:28:07.0151 0x12e4  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:28:07.0151 0x12e4  RemoteAccess - ok
12:28:07.0171 0x12e4  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:28:07.0181 0x12e4  RemoteRegistry - ok
12:28:07.0211 0x12e4  [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
12:28:07.0211 0x12e4  RFCOMM - ok
12:28:07.0221 0x12e4  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:28:07.0221 0x12e4  RpcEptMapper - ok
12:28:07.0251 0x12e4  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
12:28:07.0251 0x12e4  RpcLocator - ok
12:28:07.0281 0x12e4  [ 0395B42B3885269C039C6705D5A49BE3, A87697AFC9D4478DCD0A0053DBE378F3F84961BCF1A911DBB4161EEB350CB064 ] RpcSs           C:\Windows\system32\rpcss.dll
12:28:07.0281 0x12e4  RpcSs - ok
12:28:07.0311 0x12e4  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:28:07.0311 0x12e4  rspndr - ok
12:28:07.0371 0x12e4  [ FD731DD23A6C846A848BEA67DAEB70CA, 74D0A6626C8CD50585B08AA62976C3D012B8F440A670C9AEEEF71B3D0D484954 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
12:28:07.0381 0x12e4  RSUSBVSTOR - ok
12:28:07.0411 0x12e4  [ 282C64DEE8300FA717844ECC9BA5B27A, 59245166F8ABBA649962E0986090ACA1A1B6BE9767A89E09108BF16F3928B2F1 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
12:28:07.0431 0x12e4  RTL8167 - ok
12:28:07.0681 0x12e4  [ 217FD32F0719C7EB662B989E12363892, 6758EB73A3245A8EF29FB7866A320C7D7E21E700E875A99444CD7A41312CCE04 ] rtsuvc          C:\Windows\system32\DRIVERS\rtsuvc.sys
12:28:07.0921 0x12e4  rtsuvc - ok
12:28:08.0071 0x12e4  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
12:28:08.0181 0x12e4  s3cap - ok
12:28:08.0241 0x12e4  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] SamSs           C:\Windows\system32\lsass.exe
12:28:08.0241 0x12e4  SamSs - ok
12:28:08.0371 0x12e4  [ 07D58D5F7839ABA76118BC037C2C63BD, DD8EE9AFABEA5EBEEA1534B140F50E5170260F59E5542B56EEAA207A58524283 ] SAService       C:\Windows\system32\SAsrv.exe
12:28:08.0381 0x12e4  SAService - ok
12:28:08.0421 0x12e4  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:28:08.0431 0x12e4  sbp2port - ok
12:28:08.0471 0x12e4  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:28:08.0481 0x12e4  SCardSvr - ok
12:28:08.0501 0x12e4  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:28:08.0501 0x12e4  scfilter - ok
12:28:08.0691 0x12e4  [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule        C:\Windows\system32\schedsvc.dll
12:28:08.0711 0x12e4  Schedule - ok
12:28:08.0751 0x12e4  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:28:08.0751 0x12e4  SCPolicySvc - ok
12:28:08.0791 0x12e4  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:28:08.0801 0x12e4  SDRSVC - ok
12:28:08.0841 0x12e4  [ 65EE3435A9131BEE1608F99F16C48E08, BCEA38DBFDF3E4163DF2273EC5C0DF7B7F295C1E23B58AC3D700F8DE5551A282 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:28:08.0851 0x12e4  secdrv - ok
12:28:08.0891 0x12e4  [ 38CBFFED5FC39CDFE6B4014401ED2629, 7BA730E2EDB8387190E45DA2F475BFE42AB3B12319DE088BD8E9F59227EDA4DD ] seclogon        C:\Windows\system32\seclogon.dll
12:28:08.0891 0x12e4  seclogon - ok
12:28:08.0931 0x12e4  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
12:28:08.0931 0x12e4  SENS - ok
12:28:08.0971 0x12e4  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:28:08.0971 0x12e4  SensrSvc - ok
12:28:08.0981 0x12e4  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:28:08.0981 0x12e4  Serenum - ok
12:28:09.0011 0x12e4  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:28:09.0021 0x12e4  Serial - ok
12:28:09.0031 0x12e4  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
12:28:09.0031 0x12e4  sermouse - ok
12:28:09.0081 0x12e4  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:28:09.0091 0x12e4  SessionEnv - ok
12:28:09.0131 0x12e4  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:28:09.0131 0x12e4  sffdisk - ok
12:28:09.0141 0x12e4  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:28:09.0141 0x12e4  sffp_mmc - ok
12:28:09.0161 0x12e4  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:28:09.0161 0x12e4  sffp_sd - ok
12:28:09.0181 0x12e4  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:28:09.0191 0x12e4  sfloppy - ok
12:28:09.0231 0x12e4  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:28:09.0251 0x12e4  SharedAccess - ok
12:28:09.0271 0x12e4  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:28:09.0291 0x12e4  ShellHWDetection - ok
12:28:09.0311 0x12e4  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:28:09.0311 0x12e4  sisagp - ok
12:28:09.0341 0x12e4  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:28:09.0341 0x12e4  SiSRaid2 - ok
12:28:09.0361 0x12e4  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
12:28:09.0371 0x12e4  SiSRaid4 - ok
12:28:09.0401 0x12e4  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:28:09.0401 0x12e4  Smb - ok
12:28:09.0431 0x12e4  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:28:09.0431 0x12e4  SNMPTRAP - ok
12:28:09.0451 0x12e4  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:28:09.0451 0x12e4  spldr - ok
12:28:09.0501 0x12e4  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
12:28:09.0511 0x12e4  Spooler - ok
12:28:09.0641 0x12e4  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
12:28:09.0751 0x12e4  sppsvc - ok
12:28:09.0781 0x12e4  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:28:09.0781 0x12e4  sppuinotify - ok
12:28:09.0831 0x12e4  [ 381C074173702C92080AAD489F1EC6DC, 87814B491D151085C734DA4EAE0B0DD982E084A1BAC0E855F50FB580A7D7FA27 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:28:09.0841 0x12e4  srv - ok
12:28:09.0861 0x12e4  [ FC411046A1391AE7206DD513061C6FDF, 5D544F6EAD5B889194B60642B9C3FA9856BCEFF093E06460C65D026890EB871D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:28:09.0871 0x12e4  srv2 - ok
12:28:09.0901 0x12e4  [ 765C4FFF0E69F7466411C7EC3724188A, D158AD402FB26B3237760F91277716C52203B05A2F4AE16CF06833C776FF19D6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:28:09.0911 0x12e4  srvnet - ok
12:28:09.0931 0x12e4  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:28:09.0931 0x12e4  SSDPSRV - ok
12:28:09.0951 0x12e4  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:28:09.0951 0x12e4  SstpSvc - ok
12:28:09.0991 0x12e4  [ 5EE6503C932CB79B493E4B4D8E23D219, 51DC712611E21F5CF3ED2322A146E167769D082E826B82601471CF782090E8B5 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
12:28:10.0001 0x12e4  ssudmdm - ok
12:28:10.0121 0x12e4  [ 9DA3B55B17B54789AFB8C657D4ACE4D7, 5E4599E682327E3B8097A88A69ED73F96254A29054744D5DFB782054863F131E ] ss_conn_service C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
12:28:10.0161 0x12e4  ss_conn_service - ok
12:28:10.0191 0x12e4  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
12:28:10.0201 0x12e4  stexstor - ok
12:28:10.0251 0x12e4  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
12:28:10.0261 0x12e4  StiSvc - ok
12:28:10.0281 0x12e4  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
12:28:10.0281 0x12e4  storflt - ok
12:28:10.0301 0x12e4  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
12:28:10.0301 0x12e4  StorSvc - ok
12:28:10.0341 0x12e4  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:28:10.0351 0x12e4  storvsc - ok
12:28:10.0361 0x12e4  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\drivers\swenum.sys
12:28:10.0371 0x12e4  swenum - ok
12:28:10.0401 0x12e4  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
12:28:10.0411 0x12e4  swprv - ok
12:28:10.0491 0x12e4  [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain         C:\Windows\system32\sysmain.dll
12:28:10.0531 0x12e4  SysMain - ok
12:28:10.0551 0x12e4  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
12:28:10.0551 0x12e4  TabletInputService - ok
12:28:10.0591 0x12e4  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:28:10.0601 0x12e4  TapiSrv - ok
12:28:10.0671 0x12e4  [ C25848DB4A86839A7EDD1077F62AD980, C0C6AADA83BD21DF1243B2BEBA83AC295F49B5C02B2639EF473BBDD3A31AF4C5 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:28:10.0711 0x12e4  Tcpip - ok
12:28:10.0771 0x12e4  [ C25848DB4A86839A7EDD1077F62AD980, C0C6AADA83BD21DF1243B2BEBA83AC295F49B5C02B2639EF473BBDD3A31AF4C5 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:28:10.0791 0x12e4  TCPIP6 - ok
12:28:10.0831 0x12e4  [ A4BF8BE9D1F7D563C7868AC7B2561545, E3C2FFE53373E5255DC388E0C81CCE965E432EFAF52C85B5B3B3918815114073 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:28:10.0831 0x12e4  tcpipreg - ok
12:28:10.0871 0x12e4  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:28:10.0871 0x12e4  TDPIPE - ok
12:28:10.0901 0x12e4  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:28:10.0901 0x12e4  TDTCP - ok
12:28:10.0951 0x12e4  [ 8F143F86FDD8CF4F7BD25973C5983F9D, D3ECB70C5ACAFB6C07CB2104FBEA3FA965299F1BE84D33334DB0FAAA88F738A5 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:28:10.0951 0x12e4  tdx - ok
12:28:10.0971 0x12e4  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\drivers\termdd.sys
12:28:10.0981 0x12e4  TermDD - ok
12:28:11.0021 0x12e4  [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService     C:\Windows\System32\termsrv.dll
12:28:11.0051 0x12e4  TermService - ok
12:28:11.0061 0x12e4  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
12:28:11.0061 0x12e4  Themes - ok
12:28:11.0071 0x12e4  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
12:28:11.0081 0x12e4  THREADORDER - ok
12:28:11.0091 0x12e4  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
12:28:11.0091 0x12e4  TrkWks - ok
12:28:11.0161 0x12e4  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:28:11.0171 0x12e4  TrustedInstaller - ok
12:28:11.0211 0x12e4  [ 6841C85446F906E4584D43A70484E318, 5B1FD34DC82EC534F4527A4019F3BC910147CA3A54E3F36984C0712307329089 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:28:11.0211 0x12e4  tssecsrv - ok
12:28:11.0251 0x12e4  [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:28:11.0251 0x12e4  TsUsbFlt - ok
12:28:11.0301 0x12e4  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:28:11.0311 0x12e4  tunnel - ok
12:28:11.0331 0x12e4  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
12:28:11.0341 0x12e4  uagp35 - ok
12:28:11.0361 0x12e4  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:28:11.0361 0x12e4  udfs - ok
12:28:11.0381 0x12e4  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:28:11.0381 0x12e4  UI0Detect - ok
12:28:11.0421 0x12e4  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:28:11.0431 0x12e4  uliagpkx - ok
12:28:11.0451 0x12e4  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\drivers\umbus.sys
12:28:11.0451 0x12e4  umbus - ok
12:28:11.0471 0x12e4  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
12:28:11.0471 0x12e4  UmPass - ok
12:28:11.0511 0x12e4  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:28:11.0521 0x12e4  UmRdpService - ok
12:28:11.0531 0x12e4  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
12:28:11.0541 0x12e4  upnphost - ok
12:28:11.0591 0x12e4  [ 87632869F4350B7CE711B356B1936B2B, 9E67211ACFC637F8C6B6AD5BE9CC61B69FEDF73408A1B678818200CFB0A0E585 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
12:28:11.0651 0x12e4  usbccgp - ok
12:28:11.0701 0x12e4  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:28:11.0701 0x12e4  usbcir - ok
12:28:11.0731 0x12e4  [ EF8127E7E612694F4E8FFDA37D9D00E4, 15E05CD77B1411728A314267FCDC1A1B32E5D003DB9E6D216025149AF2006D4E ] usbehci         C:\Windows\system32\drivers\usbehci.sys
12:28:11.0731 0x12e4  usbehci - ok
12:28:11.0831 0x12e4  [ 711E9F7CA6F9A2351F4F97F31004E589, DD9CFE415A95A1BA96A0108B7DD05E07861DFB28E6A08E024C32DAF208B5FB11 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
12:28:11.0841 0x12e4  usbhub - ok
12:28:11.0931 0x12e4  [ 831F708F06CD5BF3933FBDFB388C606D, 9EE74338CF3FFD54B71AECBFD2CCC78512C92860A43663CE9A253150C332D881 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:28:11.0931 0x12e4  usbohci - ok
12:28:11.0971 0x12e4  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:28:11.0981 0x12e4  usbprint - ok
12:28:12.0041 0x12e4  [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:28:12.0051 0x12e4  usbscan - ok
12:28:12.0071 0x12e4  [ 144DA53294922A84FFAA3D90B1453745, A8DC6B534E4526E2226CF6C9D53A4B6B251D2F23728E41737063D24024C5266F ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:28:12.0081 0x12e4  USBSTOR - ok
12:28:12.0101 0x12e4  [ 89BDF895EB76E3EC1C02EEF5AA18928D, 9CF4C787E75D59A713BCA2C1191A2492110B79F298AABC4608745125529D4DE3 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:28:12.0101 0x12e4  usbuhci - ok
12:28:12.0181 0x12e4  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
12:28:12.0181 0x12e4  usbvideo - ok
12:28:12.0211 0x12e4  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
12:28:12.0211 0x12e4  UxSms - ok
12:28:12.0261 0x12e4  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] VaultSvc        C:\Windows\system32\lsass.exe
12:28:12.0261 0x12e4  VaultSvc - ok
12:28:12.0331 0x12e4  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:28:12.0341 0x12e4  vdrvroot - ok
12:28:12.0381 0x12e4  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
12:28:12.0391 0x12e4  vds - ok
12:28:12.0441 0x12e4  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:28:12.0451 0x12e4  vga - ok
12:28:12.0461 0x12e4  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:28:12.0461 0x12e4  VgaSave - ok
12:28:12.0521 0x12e4  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:28:12.0531 0x12e4  vhdmp - ok
12:28:12.0561 0x12e4  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:28:12.0571 0x12e4  viaagp - ok
12:28:12.0601 0x12e4  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
12:28:12.0611 0x12e4  ViaC7 - ok
12:28:12.0641 0x12e4  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:28:12.0641 0x12e4  viaide - ok
12:28:12.0671 0x12e4  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:28:12.0681 0x12e4  vmbus - ok
12:28:12.0701 0x12e4  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
12:28:12.0701 0x12e4  VMBusHID - ok
12:28:12.0711 0x12e4  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:28:12.0711 0x12e4  volmgr - ok
12:28:12.0771 0x12e4  [ 21D83DD717E8D681364A5E44A5459717, 2D938D07132A2D37FB164CA322A93951729D6AF65BA8BAF8493D02B203F13243 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:28:12.0781 0x12e4  volmgrx - ok
12:28:12.0801 0x12e4  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:28:12.0811 0x12e4  volsnap - ok
12:28:12.0831 0x12e4  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
12:28:12.0831 0x12e4  vsmraid - ok
12:28:12.0911 0x12e4  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
12:28:12.0961 0x12e4  VSS - ok
12:28:12.0971 0x12e4  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
12:28:12.0981 0x12e4  vwifibus - ok
12:28:13.0001 0x12e4  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:28:13.0001 0x12e4  vwififlt - ok
12:28:13.0031 0x12e4  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
12:28:13.0041 0x12e4  W32Time - ok
12:28:13.0051 0x12e4  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
12:28:13.0051 0x12e4  WacomPen - ok
12:28:13.0101 0x12e4  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:28:13.0101 0x12e4  WANARP - ok
12:28:13.0101 0x12e4  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:28:13.0101 0x12e4  Wanarpv6 - ok
12:28:13.0151 0x12e4  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
12:28:13.0191 0x12e4  wbengine - ok
12:28:13.0221 0x12e4  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:28:13.0221 0x12e4  WbioSrvc - ok
12:28:13.0271 0x12e4  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:28:13.0291 0x12e4  wcncsvc - ok
12:28:13.0321 0x12e4  [ D9DF5C53DFE502D88A726DD6EFB3CCC3, 2804FA28CEF1A15C1E1BAAB440F7546A497C3B894313521750380F789678BC0C ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:28:13.0331 0x12e4  WcsPlugInService - ok
12:28:13.0341 0x12e4  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
12:28:13.0341 0x12e4  Wd - ok
12:28:13.0421 0x12e4  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:28:13.0441 0x12e4  Wdf01000 - ok
12:28:13.0491 0x12e4  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:28:13.0491 0x12e4  WdiServiceHost - ok
12:28:13.0501 0x12e4  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:28:13.0501 0x12e4  WdiSystemHost - ok
12:28:13.0541 0x12e4  [ DC54D7A40B6E18E5C7F592F836D163FF, 436AF3B94EAE6CBD2516A63235AE1D6EC4F1FCAA0F974A9672BB5AB2A846BB2C ] WebClient       C:\Windows\System32\webclnt.dll
12:28:13.0561 0x12e4  WebClient - ok
12:28:13.0581 0x12e4  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:28:13.0591 0x12e4  Wecsvc - ok
12:28:13.0611 0x12e4  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:28:13.0611 0x12e4  wercplsupport - ok
12:28:13.0671 0x12e4  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
12:28:13.0671 0x12e4  WerSvc - ok
12:28:13.0731 0x12e4  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:28:13.0741 0x12e4  WfpLwf - ok
12:28:13.0761 0x12e4  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:28:13.0761 0x12e4  WIMMount - ok
12:28:13.0861 0x12e4  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:28:13.0921 0x12e4  WinDefend - ok
12:28:13.0931 0x12e4  WinHttpAutoProxySvc - ok
12:28:13.0981 0x12e4  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:28:13.0991 0x12e4  Winmgmt - ok
12:28:14.0061 0x12e4  [ 8949A93520F7008C3B7AD320A0EEA267, F77C6BF73B300347FEB3D02C7A1F98807546D95E10E499D385B7F00D1366CC59 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:28:14.0101 0x12e4  WinRM - ok
12:28:14.0141 0x12e4  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
12:28:14.0141 0x12e4  WinUsb - ok
12:28:14.0211 0x12e4  [ BB5D5249C49DB0D9B08AFB220019E1CF, 5DD01888BC303891FC5690D3F4EA795F185B934D985FC0F48DC30CC0718E5123 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:28:14.0231 0x12e4  Wlansvc - ok
12:28:14.0261 0x12e4  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:28:14.0261 0x12e4  WmiAcpi - ok
12:28:14.0291 0x12e4  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:28:14.0291 0x12e4  wmiApSrv - ok
12:28:14.0371 0x12e4  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:28:14.0401 0x12e4  WMPNetworkSvc - ok
12:28:14.0421 0x12e4  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:28:14.0421 0x12e4  WPCSvc - ok
12:28:14.0461 0x12e4  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:28:14.0471 0x12e4  WPDBusEnum - ok
12:28:14.0511 0x12e4  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:28:14.0511 0x12e4  ws2ifsl - ok
12:28:14.0521 0x12e4  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
12:28:14.0531 0x12e4  wscsvc - ok
12:28:14.0531 0x12e4  WSearch - ok
12:28:14.0651 0x12e4  [ 8E6E93DFE1C8C1732E4B2C843CE4ABA5, 354C2BC424D92AE09EADBCAD92299C392C57AFB543EAC1B0F7675A907E9BCEE5 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:28:14.0711 0x12e4  wuauserv - ok
12:28:14.0761 0x12e4  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:28:14.0761 0x12e4  WudfPf - ok
12:28:14.0781 0x12e4  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:28:14.0791 0x12e4  WUDFRd - ok
12:28:14.0801 0x12e4  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:28:14.0811 0x12e4  wudfsvc - ok
12:28:14.0851 0x12e4  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:28:14.0861 0x12e4  WwanSvc - ok
12:28:14.0891 0x12e4  ================ Scan global ===============================

krümmel · 23.07.2018, 11:39

Und zweitens:

Code:

ATTFilter

12:28:14.0891 0x12e4  ================ Scan global ===============================
12:28:14.0931 0x12e4  [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
12:28:14.0961 0x12e4  [ 00B034B1F3A4201F01079E8645FD9A84, 1923F55D09052D1A5D4CD56E11E768EF78F951F669B7F93EFB648E14346F5387 ] C:\Windows\system32\winsrv.dll
12:28:14.0971 0x12e4  [ 00B034B1F3A4201F01079E8645FD9A84, 1923F55D09052D1A5D4CD56E11E768EF78F951F669B7F93EFB648E14346F5387 ] C:\Windows\system32\winsrv.dll
12:28:15.0001 0x12e4  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
12:28:15.0051 0x12e4  [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
12:28:15.0061 0x12e4  [ Global ] - ok
12:28:15.0071 0x12e4  ================ Scan MBR ==================================
12:28:15.0071 0x12e4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:28:15.0281 0x12e4  \Device\Harddisk0\DR0 - ok
12:28:15.0281 0x12e4  ================ Scan VBR ==================================
12:28:15.0281 0x12e4  [ 35449AF1CD9D5D6F4712F261FD5B1BFD ] \Device\Harddisk0\DR0\Partition1
12:28:15.0281 0x12e4  \Device\Harddisk0\DR0\Partition1 - ok
12:28:15.0281 0x12e4  [ CA28838259BAA75AFDFC978010E1A021 ] \Device\Harddisk0\DR0\Partition2
12:28:15.0291 0x12e4  \Device\Harddisk0\DR0\Partition2 - ok
12:28:15.0291 0x12e4  [ 75BD53A930A499FD84C2703610083A9F ] \Device\Harddisk0\DR0\Partition3
12:28:15.0291 0x12e4  \Device\Harddisk0\DR0\Partition3 - ok
12:28:15.0291 0x12e4  ================ Scan generic autorun ======================
12:28:15.0391 0x12e4  [ CB0D985C9FD62FF076C3637E4C924B09, 2A089C8FEA897B532A41A5D3352BEEBD5BAB9E3988BA5E0C62B61DF8D9ACA1FF ] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
12:28:15.0421 0x12e4  cAudioFilterAgent - ok
12:28:15.0481 0x12e4  [ 8970A59A838FF1CDC3D62D85823AA61E, 5842DAFD20C1A024CF8984652A08D12DBA1DE15788794D01FF6070D4E24D2479 ] C:\Program Files\CONEXANT\SAII\SACpl.exe
12:28:15.0521 0x12e4  SmartAudio - ok
12:28:15.0641 0x12e4  [ 3F8FA61D65917BCD93BCFA7D65070A81, 00BF427E2FCF1716F9A8DDC76B030F90ECB69673AD29877A917998ABE298B0AB ] C:\Program Files\Elantech\ETDCtrl.exe
12:28:15.0711 0x12e4  ETDCtrl - ok
12:28:15.0811 0x12e4  [ E6A3062BDB2E18EBDEB69CF7F7A3A070, 48AB0CCA0230DCBB47CCC765659E390A4A42AC7303A27B835B9FBB1168AC7BF1 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
12:28:15.0821 0x12e4  IAStorIcon - ok
12:28:15.0891 0x12e4  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
12:28:15.0891 0x12e4  HP Software Update - ok
12:28:15.0941 0x12e4  Sidebar - ok
12:28:16.0001 0x12e4  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
12:28:16.0011 0x12e4  mctadmin - ok
12:28:16.0011 0x12e4  Sidebar - ok
12:28:16.0021 0x12e4  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
12:28:16.0021 0x12e4  mctadmin - ok
12:28:16.0781 0x12e4  [ C7C42AC946E25EC04BC671516A347FF9, 03DCB98F1764862A0DFC1B3A6CD34BA583DA512E8E4556E891A228832C0F8DE1 ] C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe
12:28:16.0941 0x12e4  Amazon Music - ok
12:28:17.0001 0x12e4  [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\velsench\AppData\Local\Microsoft\BingSvc\BingSvc.exe
12:28:17.0011 0x12e4  BingSvc - ok
12:28:17.0011 0x12e4  Waiting for KSN requests completion. In queue: 96
12:28:18.0111 0x12e4  Win FW state via NFP2: enabled ( trusted )
12:28:18.0241 0x12e4  ============================================================
12:28:18.0241 0x12e4  Scan finished
12:28:18.0241 0x12e4  ============================================================
12:28:18.0251 0x08dc  Detected object count: 0
12:28:18.0251 0x08dc  Actual detected object count: 0
12:28:49.0551 0x0b00  ============================================================
12:28:49.0551 0x0b00  Scan started
12:28:49.0551 0x0b00  Mode: Manual; SigCheck; TDLFS; 
12:28:49.0551 0x0b00  ============================================================
12:28:49.0551 0x0b00  KSN ping started
12:28:49.0631 0x0b00  KSN ping finished: true
12:28:50.0101 0x0b00  ================ Scan system memory ========================
12:28:50.0101 0x0b00  System memory - ok
12:28:50.0101 0x0b00  ================ Scan services =============================
12:28:50.0211 0x0b00  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:28:50.0291 0x0b00  1394ohci - ok
12:28:50.0311 0x0b00  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:28:50.0341 0x0b00  ACPI - ok
12:28:50.0371 0x0b00  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:28:50.0431 0x0b00  AcpiPmi - ok
12:28:50.0461 0x0b00  [ 068ACF171CB53993AF9599B6B236EB13, 299619F67E112A65B9B0F81B8CAE81827FD7C03A4A167B6FB697750CAEE424A2 ] ACPIVPC         C:\Windows\system32\DRIVERS\AcpiVpc.sys
12:28:50.0491 0x0b00  ACPIVPC - ok
12:28:50.0501 0x0b00  AdobeFlashPlayerUpdateSvc - ok
12:28:50.0541 0x0b00  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
12:28:50.0571 0x0b00  adp94xx - ok
12:28:50.0601 0x0b00  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
12:28:50.0611 0x0b00  adpahci - ok
12:28:50.0631 0x0b00  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
12:28:50.0641 0x0b00  adpu320 - ok
12:28:50.0681 0x0b00  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:28:50.0701 0x0b00  AeLookupSvc - ok
12:28:50.0741 0x0b00  [ F582FC7976F1248AC5FBD6875C626B41, E65532B4E9924ECFF892C0A62312CBC070BFF7B1C4737E6CF8C4ED638BCD030F ] AFD             C:\Windows\system32\drivers\afd.sys
12:28:50.0771 0x0b00  AFD - ok
12:28:50.0781 0x0b00  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
12:28:50.0791 0x0b00  agp440 - ok
12:28:50.0811 0x0b00  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
12:28:50.0811 0x0b00  aic78xx - ok
12:28:50.0831 0x0b00  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
12:28:50.0861 0x0b00  ALG - ok
12:28:50.0901 0x0b00  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:28:50.0901 0x0b00  aliide - ok
12:28:50.0921 0x0b00  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
12:28:50.0931 0x0b00  amdagp - ok
12:28:50.0931 0x0b00  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:28:50.0941 0x0b00  amdide - ok
12:28:50.0961 0x0b00  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
12:28:50.0991 0x0b00  AmdK8 - ok
12:28:51.0001 0x0b00  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:28:51.0021 0x0b00  AmdPPM - ok
12:28:51.0061 0x0b00  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:28:51.0091 0x0b00  amdsata - ok
12:28:51.0101 0x0b00  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
12:28:51.0111 0x0b00  amdsbs - ok
12:28:51.0121 0x0b00  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:28:51.0131 0x0b00  amdxata - ok
12:28:51.0171 0x0b00  [ 20D93E913BBE39E50BB10CC7BA651910, FAAC055B7A2D3B8A93EED76636FFCCD3E76AF82B1E2F414432DCBB1AEDB42CCB ] AppID           C:\Windows\system32\drivers\appid.sys
12:28:51.0211 0x0b00  AppID - ok
12:28:51.0231 0x0b00  [ 60D471309978F58FCE00A0C62AF746EA, C10285768838355ED00D313A11B354F03958E21500E637356EBB833AB56097A5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:28:51.0251 0x0b00  AppIDSvc - ok
12:28:51.0271 0x0b00  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
12:28:51.0281 0x0b00  Appinfo - ok
12:28:51.0311 0x0b00  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
12:28:51.0341 0x0b00  AppMgmt - ok
12:28:51.0341 0x0b00  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\DRIVERS\arc.sys
12:28:51.0351 0x0b00  arc - ok
12:28:51.0371 0x0b00  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
12:28:51.0381 0x0b00  arcsas - ok
12:28:51.0471 0x0b00  [ 03FD2243A539C7153EF62CE10D1816F1, BE72DD2CB62B27F6BF0CEC03AE23A7D63876D6442A781E2E595EE3E64C18EBD4 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:28:51.0501 0x0b00  aspnet_state - ok
12:28:51.0521 0x0b00  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:28:51.0601 0x0b00  AsyncMac - ok
12:28:51.0641 0x0b00  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:28:51.0651 0x0b00  atapi - ok
12:28:51.0781 0x0b00  [ FA6DE016AEC5DB4C7ED0A3CF35ABE513, C0C42BEF1B239B15EE13610C36384AF4A445E8609E45953C06114E0CA30E7DAD ] athr            C:\Windows\system32\DRIVERS\athr.sys
12:28:51.0871 0x0b00  athr - ok
12:28:51.0921 0x0b00  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:28:51.0951 0x0b00  AudioEndpointBuilder - ok
12:28:51.0961 0x0b00  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:28:51.0981 0x0b00  Audiosrv - ok
12:28:52.0011 0x0b00  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:28:52.0081 0x0b00  AxInstSV - ok
12:28:52.0111 0x0b00  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
12:28:52.0151 0x0b00  b06bdrv - ok
12:28:52.0171 0x0b00  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
12:28:52.0201 0x0b00  b57nd60x - ok
12:28:52.0281 0x0b00  [ 4BEFF67C1775D353A16A62347E727874, 62363C5E5F4BF049A3E49FADA8CB17269945056ACADB319FDC4F05B74E2553C8 ] BBSvc           C:\Program Files\Microsoft\BingBar\7.1.355.0\BBSvc.exe
12:28:52.0291 0x0b00  BBSvc - ok
12:28:52.0321 0x0b00  [ A6DAAD3EA93DBDBD07FA821BCED133F6, 8F33D4E4B82091D09E62FD5487C88F3DF0DAC31FCBB846183CC4020533A131DE ] BBUpdate        C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.exe
12:28:52.0331 0x0b00  BBUpdate - ok
12:28:52.0351 0x0b00  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
12:28:52.0391 0x0b00  BDESVC - ok
12:28:52.0401 0x0b00  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:28:52.0431 0x0b00  Beep - ok
12:28:52.0501 0x0b00  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
12:28:52.0531 0x0b00  BFE - ok
12:28:52.0551 0x0b00  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
12:28:52.0661 0x0b00  BITS - ok
12:28:52.0681 0x0b00  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:28:52.0701 0x0b00  blbdrive - ok
12:28:52.0741 0x0b00  [ 28AF7D4427868B7CE4C00CAB1864C7F6, AAE5303878AF0F7AA18069A8FCD99639EBC34622B456AF86C5E4F27858196E06 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:28:52.0791 0x0b00  bowser - ok
12:28:52.0821 0x0b00  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:28:52.0871 0x0b00  BrFiltLo - ok
12:28:52.0881 0x0b00  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:28:52.0891 0x0b00  BrFiltUp - ok
12:28:52.0941 0x0b00  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
12:28:52.0971 0x0b00  Browser - ok
12:28:52.0991 0x0b00  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:28:53.0021 0x0b00  Brserid - ok
12:28:53.0041 0x0b00  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:28:53.0061 0x0b00  BrSerWdm - ok
12:28:53.0081 0x0b00  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:28:53.0101 0x0b00  BrUsbMdm - ok
12:28:53.0101 0x0b00  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:28:53.0121 0x0b00  BrUsbSer - ok
12:28:53.0151 0x0b00  [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
12:28:53.0201 0x0b00  BthEnum - ok
12:28:53.0221 0x0b00  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
12:28:53.0251 0x0b00  BTHMODEM - ok
12:28:53.0281 0x0b00  [ F6AA1FE6ECB2C175E9BA14D30C739FD3, F133F29F8AAA5E3AB148E71A5232FD31B1E1EBC350C899369AE8BFD84022F03F ] BthPan          C:\Windows\system32\drivers\bthpan.sys
12:28:53.0361 0x0b00  BthPan - ok
12:28:53.0421 0x0b00  [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
12:28:53.0451 0x0b00  BTHPORT - ok
12:28:53.0471 0x0b00  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
12:28:53.0501 0x0b00  bthserv - ok
12:28:53.0511 0x0b00  [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
12:28:53.0521 0x0b00  BTHUSB - ok
12:28:53.0541 0x0b00  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:28:53.0561 0x0b00  cdfs - ok
12:28:53.0601 0x0b00  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:28:53.0611 0x0b00  cdrom - ok
12:28:53.0641 0x0b00  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:28:53.0671 0x0b00  CertPropSvc - ok
12:28:53.0691 0x0b00  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
12:28:53.0721 0x0b00  circlass - ok
12:28:53.0771 0x0b00  [ 000B58009E5D0962C0A71D6477029A3F, 2696398A42B399AEE9F9F0FB26610BB9F50F9EC784EC80F78FF6DD3D6E892ADA ] CLFS            C:\Windows\system32\CLFS.sys
12:28:53.0801 0x0b00  CLFS - ok
12:28:53.0981 0x0b00  [ 29B2AA41E3BC0366AFCD4D6A71741E29, FDA177184CE9CB3E543CA5B98BA289DF50879736406D5A352FC38AB94F5943B0 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe
12:28:54.0031 0x0b00  ClickToRunSvc - ok
12:28:54.0091 0x0b00  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:28:54.0111 0x0b00  clr_optimization_v2.0.50727_32 - ok
12:28:54.0151 0x0b00  [ 2BA609641FA64BAB02ACD3C0095672F5, FD1FE403864F0564CA4A2F1D7415649B8FFE16F8ED33C4B44ACB21767118AD5F ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:28:54.0161 0x0b00  clr_optimization_v4.0.30319_32 - ok
12:28:54.0181 0x0b00  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:28:54.0191 0x0b00  CmBatt - ok
12:28:54.0221 0x0b00  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:28:54.0231 0x0b00  cmdide - ok
12:28:54.0321 0x0b00  [ 7F7D4B16389CEF932950F6B2604D2601, E7C32734DAA75A00866A0F961C945BF7CC7A29D3A9806041D0046BC9FD3ACC5A ] CNG             C:\Windows\system32\Drivers\cng.sys
12:28:54.0351 0x0b00  CNG - ok
12:28:54.0441 0x0b00  [ 80CEC0751525A938DF3881D3456F6C9C, 7FB2566057864A5A8C1174941E717B5FFE85F206BFD6E4B5D037BD58152140E8 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
12:28:54.0481 0x0b00  CnxtHdAudService - ok
12:28:54.0491 0x0b00  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:28:54.0491 0x0b00  Compbatt - ok
12:28:54.0531 0x0b00  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
12:28:54.0571 0x0b00  CompositeBus - ok
12:28:54.0581 0x0b00  COMSysApp - ok
12:28:54.0621 0x0b00  [ 1154D3FBD01C35A2F9A2073BCB366452, 02F8CBDD8E2F321711528CFFC46E9F0B60CC779C34164E387E2E53DEB518B674 ] cphs            C:\Windows\system32\IntelCpHeciSvc.exe
12:28:54.0651 0x0b00  cphs - ok
12:28:54.0661 0x0b00  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
12:28:54.0671 0x0b00  crcdisk - ok
12:28:54.0721 0x0b00  [ AAE96A2A48C7332310C1C28A1D466761, 7279E23A46353BC3D8A1B949B14F11DA689E73D033CD24C8E82613CCFD76E4EA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:28:54.0741 0x0b00  CryptSvc - ok
12:28:54.0791 0x0b00  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
12:28:54.0831 0x0b00  CSC - ok
12:28:54.0901 0x0b00  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
12:28:54.0931 0x0b00  CscService - ok
12:28:54.0971 0x0b00  [ 54B93481AC986849FC74C05C19EF1163, D363DBB24075E561FFA58560AAAAF7E99394C08A0A56058F7C16C9FCE07B7934 ] CxAudMsg        C:\Windows\system32\CxAudMsg32.exe
12:28:54.0981 0x0b00  CxAudMsg - ok
12:28:55.0041 0x0b00  [ 0395B42B3885269C039C6705D5A49BE3, A87697AFC9D4478DCD0A0053DBE378F3F84961BCF1A911DBB4161EEB350CB064 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:28:55.0091 0x0b00  DcomLaunch - ok
12:28:55.0121 0x0b00  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
12:28:55.0151 0x0b00  defragsvc - ok
12:28:55.0191 0x0b00  [ EA9DBD76CE9254C77BAAB4339DD4C4FB, ECEE6EB8CFE1BD20BC7B6ED29A1624DDC3E22A37A56BA43B9B14E37D4003B72D ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:28:55.0231 0x0b00  DfsC - ok
12:28:55.0271 0x0b00  [ 7A5FB3E4E0D77740D56E516EE6B2DC2B, 5B4636EC04903D2E512AC8FB98A484F7CEBE4EE0A081CF897CD13E8491C0D8CC ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:28:55.0291 0x0b00  dg_ssudbus - ok
12:28:55.0311 0x0b00  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:28:55.0351 0x0b00  Dhcp - ok
12:28:55.0421 0x0b00  [ 58F9BFBAE3C25D1A349DF0C6ECE8F9DF, FF1CFC9B323BCE2CFC06F9B2A98A29396832134FD61A570C1971A7240899E526 ] DiagTrack       C:\Windows\system32\diagtrack.dll
12:28:55.0511 0x0b00  DiagTrack - ok
12:28:55.0551 0x0b00  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
12:28:55.0591 0x0b00  discache - ok
12:28:55.0631 0x0b00  [ B7B470F163002A0D0E381EE45834BF6B, 5B5E204341A6B1689C3F8717C41782B1A077A026F8B19DA3DE08CA44AB1D95B2 ] Disk            C:\Windows\system32\drivers\disk.sys
12:28:55.0631 0x0b00  Disk - ok
12:28:55.0681 0x0b00  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:28:55.0731 0x0b00  Dnscache - ok
12:28:55.0771 0x0b00  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:28:55.0811 0x0b00  dot3svc - ok
12:28:55.0841 0x0b00  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
12:28:55.0881 0x0b00  DPS - ok
12:28:55.0911 0x0b00  [ A3F684B866A7D89AE396276CE7AFD416, 1E4C034B7B106FA403B13842A199D88A33B492A577B58CDDAE0B4706266B9565 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:28:55.0931 0x0b00  drmkaud - ok
12:28:55.0981 0x0b00  [ 897AE9430D037B056CF76A49CF588542, 02767A3CF7AFF9ECF251808DF2B3B4CABFBDF3EF59E15498B0985298991D8B91 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:28:56.0011 0x0b00  DXGKrnl - ok
12:28:56.0041 0x0b00  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
12:28:56.0071 0x0b00  EapHost - ok
12:28:56.0191 0x0b00  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
12:28:56.0291 0x0b00  ebdrv - ok
12:28:56.0341 0x0b00  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] EFS             C:\Windows\System32\lsass.exe
12:28:56.0381 0x0b00  EFS - ok
12:28:56.0461 0x0b00  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:28:56.0531 0x0b00  ehRecvr - ok
12:28:56.0561 0x0b00  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
12:28:56.0591 0x0b00  ehSched - ok
12:28:56.0611 0x0b00  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
12:28:56.0631 0x0b00  elxstor - ok
12:28:56.0661 0x0b00  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:28:56.0701 0x0b00  ErrDev - ok
12:28:56.0741 0x0b00  [ 9048DDC11BA60BEB33DCD0495D9842E0, 22DE4DDA9F74674BCDE20926D33281786F854ED1EEBB3E6CD4EFF063C8C2C57D ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
12:28:56.0771 0x0b00  ETD - ok
12:28:56.0811 0x0b00  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
12:28:56.0851 0x0b00  EventSystem - ok
12:28:56.0891 0x0b00  [ 53E8732CC70CC0991839DF9FC8996E4A, D14F6CAAF1F71647F12C6BDF1CD3EE7ADFAB0B292760AC197B876F0868853A72 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:28:56.0921 0x0b00  exfat - ok
12:28:56.0931 0x0b00  [ 24F422E5D7517FEBDA2324116F1A7BE6, 3D54FFB59F7E4F9CC1189D8808B1F17EE7C4A6DE2A13C74CA5B6A47D5E759C53 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:28:56.0961 0x0b00  fastfat - ok
12:28:57.0021 0x0b00  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
12:28:57.0061 0x0b00  Fax - ok
12:28:57.0101 0x0b00  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:28:57.0111 0x0b00  fdc - ok
12:28:57.0121 0x0b00  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
12:28:57.0141 0x0b00  fdPHost - ok
12:28:57.0151 0x0b00  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:28:57.0181 0x0b00  FDResPub - ok
12:28:57.0191 0x0b00  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:28:57.0201 0x0b00  FileInfo - ok
12:28:57.0211 0x0b00  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:28:57.0241 0x0b00  Filetrace - ok
12:28:57.0251 0x0b00  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:28:57.0261 0x0b00  flpydisk - ok
12:28:57.0281 0x0b00  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:28:57.0291 0x0b00  FltMgr - ok
12:28:57.0361 0x0b00  [ B5259B75BFDE00A5CDFD8D70444C8E3C, 3526602AA212B43351644AFB91E0D9CEFB778461BAAD2331B6BBF76FB14EEE86 ] FontCache       C:\Windows\system32\FntCache.dll
12:28:57.0431 0x0b00  FontCache - ok
12:28:57.0481 0x0b00  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:28:57.0501 0x0b00  FontCache3.0.0.0 - ok
12:28:57.0521 0x0b00  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:28:57.0531 0x0b00  FsDepends - ok
12:28:57.0561 0x0b00  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:28:57.0591 0x0b00  Fs_Rec - ok
12:28:57.0641 0x0b00  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:28:57.0671 0x0b00  fvevol - ok
12:28:57.0681 0x0b00  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
12:28:57.0701 0x0b00  gagp30kx - ok
12:28:57.0751 0x0b00  [ 8DA745095F6B73BB5B8266BF773DA1FA, 3EA614A9B8D4F61704A8754B014C8F6AC60551435BC4D9F2E761955905DA89F3 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:28:57.0821 0x0b00  gpsvc - ok
12:28:57.0901 0x0b00  [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
12:28:57.0931 0x0b00  gupdate - ok
12:28:57.0951 0x0b00  [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
12:28:57.0961 0x0b00  gupdatem - ok
12:28:57.0971 0x0b00  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:28:58.0001 0x0b00  hcw85cir - ok
12:28:58.0041 0x0b00  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:28:58.0071 0x0b00  HdAudAddService - ok
12:28:58.0081 0x0b00  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
12:28:58.0111 0x0b00  HDAudBus - ok
12:28:58.0121 0x0b00  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
12:28:58.0141 0x0b00  HidBatt - ok
12:28:58.0161 0x0b00  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
12:28:58.0171 0x0b00  HidBth - ok
12:28:58.0181 0x0b00  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
12:28:58.0201 0x0b00  HidIr - ok
12:28:58.0221 0x0b00  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
12:28:58.0251 0x0b00  hidserv - ok
12:28:58.0291 0x0b00  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
12:28:58.0341 0x0b00  HidUsb - ok
12:28:58.0391 0x0b00  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:28:58.0441 0x0b00  hkmsvc - ok
12:28:58.0451 0x0b00  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:28:58.0481 0x0b00  HomeGroupListener - ok
12:28:58.0521 0x0b00  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:28:58.0541 0x0b00  HomeGroupProvider - ok
12:28:58.0581 0x0b00  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:28:58.0591 0x0b00  HpSAMD - ok
12:28:58.0651 0x0b00  [ 2F50E2780F16E00369F1311B086C3E42, F3FAE2D965D055810775B7AAE7BF1C4C39961A64E42B345FC604D32F3AC7E7DA ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:28:58.0701 0x0b00  HTTP - ok
12:28:58.0741 0x0b00  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:28:58.0761 0x0b00  hwpolicy - ok
12:28:58.0801 0x0b00  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:28:58.0831 0x0b00  i8042prt - ok
12:28:58.0871 0x0b00  [ 8C1AC5E9DBA9A1AEE5A628A7AFF1A1B4, 4651E5E41D03D29FAEAEA31F2B434E6CD25DDD8A22A379DAFC0A2D77A8EB50FA ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
12:28:58.0901 0x0b00  iaStorA - ok
12:28:58.0991 0x0b00  [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
12:28:59.0001 0x0b00  IAStorDataMgrSvc - ok
12:28:59.0021 0x0b00  [ 6C5EB949D8917A3A6F34463912B8311E, 4B2817CA257DE9B88BA0BFEC50E28BDE9656B9CB5C7E7A62508959AE84105BD6 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
12:28:59.0031 0x0b00  iaStorF - ok
12:28:59.0091 0x0b00  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:28:59.0131 0x0b00  iaStorV - ok
12:28:59.0191 0x0b00  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:28:59.0211 0x0b00  idsvc - ok
12:28:59.0211 0x0b00  IEEtwCollectorService - ok
12:28:59.0361 0x0b00  [ A6F0F319111B3C30A4320AC9A08AB840, A310DB22FF6A808C3A514491A3EF076928AC236E8A5C35BB912C0A12552C587E ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
12:28:59.0551 0x0b00  igfx - ok
12:28:59.0571 0x0b00  [ 302B72C765BB6D341870B84494076399, 147142121DB29D328D6983F6CD930B35F2A3E3A657FD95EADEAAD1A9E33497FF ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
12:28:59.0591 0x0b00  igfxCUIService1.0.0.0 - ok
12:28:59.0621 0x0b00  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
12:28:59.0621 0x0b00  iirsp - ok
12:28:59.0701 0x0b00  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
12:28:59.0751 0x0b00  IKEEXT - ok
12:28:59.0801 0x0b00  [ 96233928F03AC2F825B02B676A53A1E9, DAF70C4154DCA28B3CE8A52AF97DFD7B2EE30A487D0442748FF090AD4EB60D07 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
12:28:59.0841 0x0b00  IntcDAud - ok
12:28:59.0851 0x0b00  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:28:59.0871 0x0b00  intelide - ok
12:28:59.0871 0x0b00  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:28:59.0891 0x0b00  intelppm - ok
12:28:59.0911 0x0b00  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:28:59.0941 0x0b00  IPBusEnum - ok
12:28:59.0961 0x0b00  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:28:59.0991 0x0b00  IpFilterDriver - ok
12:29:00.0051 0x0b00  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:29:00.0111 0x0b00  iphlpsvc - ok
12:29:00.0141 0x0b00  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:29:00.0161 0x0b00  IPMIDRV - ok
12:29:00.0181 0x0b00  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:29:00.0221 0x0b00  IPNAT - ok
12:29:00.0231 0x0b00  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:29:00.0271 0x0b00  IRENUM - ok
12:29:00.0281 0x0b00  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:29:00.0291 0x0b00  isapnp - ok
12:29:00.0341 0x0b00  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:29:00.0361 0x0b00  iScsiPrt - ok
12:29:00.0391 0x0b00  [ 23C245A8CF93E8935EA182427FECBA35, 88A8E3D4D221B729BB0489BDE14D107C921BF74C3A01BBAE5F9044F56923C5E3 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
12:29:00.0401 0x0b00  iusb3hcs - ok
12:29:00.0411 0x0b00  [ 5CA74542CE2511DD84C4B00024E0DBD6, 83D6C368ECE76616B7B0E3C6C94B53C2C34288723F4A654830498988EC93261A ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
12:29:00.0431 0x0b00  iusb3hub - ok
12:29:00.0471 0x0b00  [ 801183FD0E337A1FB15F74BB53563931, 077C68D332ABFDFB9F0B7EA6073BF00A99E1A77A60451232CB252F296F919100 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
12:29:00.0511 0x0b00  iusb3xhc - ok
12:29:00.0521 0x0b00  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
12:29:00.0521 0x0b00  kbdclass - ok
12:29:00.0541 0x0b00  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:29:00.0561 0x0b00  kbdhid - ok
12:29:00.0571 0x0b00  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] KeyIso          C:\Windows\system32\lsass.exe
12:29:00.0581 0x0b00  KeyIso - ok
12:29:00.0641 0x0b00  [ AD7A45E1A91028B0005EDDE9112D9357, E5E930917D2DFB6292613E1C2EF20BF10C2FDB84B91C8F5452DE5A67F2711DFF ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:29:00.0661 0x0b00  KSecDD - ok
12:29:00.0691 0x0b00  [ D598526763D02DE0FB14FF148933F5BC, A50667D3F39043067D6DD123174F816720721E5E763E85C1C1315792E1BD821D ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:29:00.0691 0x0b00  KSecPkg - ok
12:29:00.0721 0x0b00  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:29:00.0751 0x0b00  KtmRm - ok
12:29:00.0781 0x0b00  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:29:00.0811 0x0b00  LanmanServer - ok
12:29:00.0851 0x0b00  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:29:00.0881 0x0b00  LanmanWorkstation - ok
12:29:00.0901 0x0b00  [ 8FF8B5F04AC4D57F9A965BB4DF07813E, E39669D8F4354CDCB7EDFA8722916E2BF6C3778EDDD81D0F6AF6D129B0619BA7 ] LHDmgr          C:\Windows\system32\DRIVERS\LhdX86.sys
12:29:00.0911 0x0b00  LHDmgr - ok
12:29:00.0941 0x0b00  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:29:00.0991 0x0b00  lltdio - ok
12:29:01.0021 0x0b00  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:29:01.0061 0x0b00  lltdsvc - ok
12:29:01.0061 0x0b00  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:29:01.0091 0x0b00  lmhosts - ok
12:29:01.0121 0x0b00  [ 9A84F41E421287A712C90E5384400E4F, B58146F4E9A82F5E5E61AFD542DD6FF649422A3C683D57E67CF861BD06DE5CFD ] LPDSVC          C:\Windows\system32\lpdsvc.dll
12:29:01.0151 0x0b00  LPDSVC - ok
12:29:01.0171 0x0b00  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
12:29:01.0171 0x0b00  LSI_FC - ok
12:29:01.0181 0x0b00  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
12:29:01.0191 0x0b00  LSI_SAS - ok
12:29:01.0201 0x0b00  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:29:01.0211 0x0b00  LSI_SAS2 - ok
12:29:01.0221 0x0b00  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:29:01.0231 0x0b00  LSI_SCSI - ok
12:29:01.0271 0x0b00  [ 4BA509FEF4DB0B683C46821ACDF20B9E, 89545321811222862E4FFF46B33EA9EA4D260C8B478222F754AB53B8406F2EC4 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:29:01.0311 0x0b00  luafv - ok
12:29:01.0311 0x0b00  McComponentHostService - ok
12:29:01.0351 0x0b00  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:29:01.0381 0x0b00  Mcx2Svc - ok
12:29:01.0391 0x0b00  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
12:29:01.0401 0x0b00  megasas - ok
12:29:01.0421 0x0b00  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
12:29:01.0431 0x0b00  MegaSR - ok
12:29:01.0471 0x0b00  [ 113412F2962F700710BB22FCFE266B65, BC7DCC7722A4A1AC9F8D705F8819C9D227696A9538BBF6A52EB7C27969FD3A21 ] MEI             C:\Windows\system32\DRIVERS\TeeDriver.sys
12:29:01.0491 0x0b00  MEI - ok
12:29:01.0511 0x0b00  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
12:29:01.0561 0x0b00  MMCSS - ok
12:29:01.0571 0x0b00  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
12:29:01.0601 0x0b00  Modem - ok
12:29:01.0621 0x0b00  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:29:01.0631 0x0b00  monitor - ok
12:29:01.0681 0x0b00  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:29:01.0701 0x0b00  mouclass - ok
12:29:01.0711 0x0b00  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:29:01.0751 0x0b00  mouhid - ok
12:29:01.0781 0x0b00  [ 9664F55623B43FD85D5642A202976AEE, 9349DADF639BBF7478EFA2398696FEC416554865AD4DEA91BD9A5E7D9F0C3D49 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:29:01.0801 0x0b00  mountmgr - ok
12:29:01.0851 0x0b00  [ 72ED3A6B60BFB1E577C390AE712C5F99, 0F30486944B3819486674DBDECD7A01EAA3BE2844416305AF09029EBDAD49CD2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:29:01.0861 0x0b00  MozillaMaintenance - ok
12:29:01.0881 0x0b00  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:29:01.0891 0x0b00  mpio - ok
12:29:01.0911 0x0b00  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:29:01.0931 0x0b00  mpsdrv - ok
12:29:01.0971 0x0b00  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:29:02.0021 0x0b00  MpsSvc - ok
12:29:02.0061 0x0b00  [ 06AC0310138E4B2C35AF7344D18BC686, FCDB6CC851EC47F92FFF764717A44FF5D5D0E179C215B3C6E77FB9BEA4DE1908 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:29:02.0101 0x0b00  MRxDAV - ok
12:29:02.0141 0x0b00  [ CED9A2CB76D01C817B067DEF638AA26D, 7DB851F68F741464C0BCAF2D67B70312A1E42CEC1500F72C5C9C39440ECF1C9D ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:29:02.0181 0x0b00  mrxsmb - ok
12:29:02.0201 0x0b00  [ 7063F786FEEB116B1E0CCE8FD4D2DCC8, 9023AE7589DE6408F53A7B8BE5657795A80294A4BDF9FFD1808CCD11F3104C16 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:29:02.0231 0x0b00  mrxsmb10 - ok
12:29:02.0241 0x0b00  [ 2A325EC0931F389944A1C012DC6EB23F, E6FD5AAE2D834319287B6D8BFA36F7C5D25BBDCACFA212BF9C52CDE63D91ADEB ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:29:02.0251 0x0b00  mrxsmb20 - ok
12:29:02.0291 0x0b00  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:29:02.0291 0x0b00  msahci - ok
12:29:02.0331 0x0b00  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:29:02.0341 0x0b00  msdsm - ok
12:29:02.0361 0x0b00  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
12:29:02.0371 0x0b00  MSDTC - ok
12:29:02.0401 0x0b00  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:29:02.0421 0x0b00  Msfs - ok
12:29:02.0431 0x0b00  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:29:02.0451 0x0b00  mshidkmdf - ok
12:29:02.0461 0x0b00  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:29:02.0471 0x0b00  msisadrv - ok
12:29:02.0491 0x0b00  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:29:02.0531 0x0b00  MSiSCSI - ok
12:29:02.0531 0x0b00  msiserver - ok
12:29:02.0541 0x0b00  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:29:02.0561 0x0b00  MSKSSRV - ok
12:29:02.0571 0x0b00  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:29:02.0611 0x0b00  MSPCLOCK - ok
12:29:02.0621 0x0b00  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:29:02.0651 0x0b00  MSPQM - ok
12:29:02.0661 0x0b00  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:29:02.0671 0x0b00  MsRPC - ok
12:29:02.0691 0x0b00  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
12:29:02.0691 0x0b00  mssmbios - ok
12:29:02.0711 0x0b00  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:29:02.0751 0x0b00  MSTEE - ok
12:29:02.0761 0x0b00  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
12:29:02.0781 0x0b00  MTConfig - ok
12:29:02.0791 0x0b00  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:29:02.0801 0x0b00  Mup - ok
12:29:02.0841 0x0b00  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
12:29:02.0881 0x0b00  napagent - ok
12:29:02.0911 0x0b00  [ 5F2B9CD280C48A8015AD70FCF4DFB758, F50D118BDCE35654CCA153CA2FC9123D014038494FBCBAFE0514D956DCB2D44D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:29:02.0951 0x0b00  NativeWifiP - ok
12:29:03.0031 0x0b00  [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:29:03.0081 0x0b00  NDIS - ok
12:29:03.0101 0x0b00  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:29:03.0151 0x0b00  NdisCap - ok
12:29:03.0161 0x0b00  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:29:03.0181 0x0b00  NdisTapi - ok
12:29:03.0221 0x0b00  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:29:03.0241 0x0b00  Ndisuio - ok
12:29:03.0281 0x0b00  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:29:03.0311 0x0b00  NdisWan - ok
12:29:03.0321 0x0b00  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:29:03.0351 0x0b00  NDProxy - ok
12:29:03.0351 0x0b00  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:29:03.0381 0x0b00  NetBIOS - ok
12:29:03.0431 0x0b00  [ 2E226E666C6E11DC8C850071A90BE2DC, 5BE2ADBBEA0E5C20031FADB85461D6F68788095B6553B4EBC7A031D7EE1995AD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:29:03.0461 0x0b00  NetBT - ok
12:29:03.0471 0x0b00  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] Netlogon        C:\Windows\system32\lsass.exe
12:29:03.0481 0x0b00  Netlogon - ok
12:29:03.0511 0x0b00  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
12:29:03.0541 0x0b00  Netman - ok
12:29:03.0581 0x0b00  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:03.0591 0x0b00  NetMsmqActivator - ok
12:29:03.0591 0x0b00  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:03.0601 0x0b00  NetPipeActivator - ok
12:29:03.0631 0x0b00  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
12:29:03.0661 0x0b00  netprofm - ok
12:29:03.0661 0x0b00  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:03.0671 0x0b00  NetTcpActivator - ok
12:29:03.0681 0x0b00  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:29:03.0691 0x0b00  NetTcpPortSharing - ok
12:29:03.0701 0x0b00  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
12:29:03.0701 0x0b00  nfrd960 - ok
12:29:03.0761 0x0b00  [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:29:03.0811 0x0b00  NlaSvc - ok
12:29:03.0821 0x0b00  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:29:03.0851 0x0b00  Npfs - ok
12:29:03.0881 0x0b00  [ 6937652377C07F86EF195F1BF5423143, 02F109ABC3543296E70541367A7A6103F38704DAF9A5CDBA2D798EF5592CF663 ] nsi             C:\Windows\system32\nsisvc.dll
12:29:03.0921 0x0b00  nsi - ok
12:29:03.0951 0x0b00  [ C68AA651F93450ECA51A60D45A8E266C, 0AF79071CE5007F968D4028158200312F0C6B6A2114CF0990A638DBFE897E009 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:29:03.0991 0x0b00  nsiproxy - ok
12:29:04.0081 0x0b00  [ F2CBF48566BB13240D39543F445460F9, DB86B7E352EACA2306DA25F900AE66BB8F30B43F567A6942C2E54596BADF3B29 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:29:04.0131 0x0b00  Ntfs - ok
12:29:04.0141 0x0b00  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
12:29:04.0171 0x0b00  Null - ok
12:29:04.0181 0x0b00  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:29:04.0191 0x0b00  nvraid - ok
12:29:04.0231 0x0b00  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:29:04.0241 0x0b00  nvstor - ok
12:29:04.0271 0x0b00  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:29:04.0281 0x0b00  nv_agp - ok
12:29:04.0321 0x0b00  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:29:04.0341 0x0b00  ohci1394 - ok
12:29:04.0401 0x0b00  [ BF869F329392C7E76FC959B1206A432F, 909879B7432283C1F6D44843FC5CEB598798EE6560DCD4B4EF8B4935E94FB934 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:29:04.0431 0x0b00  ose - ok
12:29:04.0631 0x0b00  [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:29:04.0841 0x0b00  osppsvc - ok
12:29:04.0871 0x0b00  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:29:04.0911 0x0b00  p2pimsvc - ok
12:29:04.0941 0x0b00  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:29:04.0951 0x0b00  p2psvc - ok
12:29:04.0991 0x0b00  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
12:29:05.0001 0x0b00  Parport - ok
12:29:05.0041 0x0b00  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:29:05.0071 0x0b00  partmgr - ok
12:29:05.0081 0x0b00  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
12:29:05.0111 0x0b00  Parvdm - ok
12:29:05.0151 0x0b00  [ 84752B402BF64CCDDF11816FEDF12DB4, 184DDFCEEE8C5B492415270FC640B8D584B3D79E7BADCE4DE7CDD74CC8C60130 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:29:05.0191 0x0b00  PcaSvc - ok
12:29:05.0211 0x0b00  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
12:29:05.0221 0x0b00  pci - ok
12:29:05.0261 0x0b00  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:29:05.0261 0x0b00  pciide - ok
12:29:05.0281 0x0b00  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
12:29:05.0291 0x0b00  pcmcia - ok
12:29:05.0301 0x0b00  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:29:05.0311 0x0b00  pcw - ok
12:29:05.0371 0x0b00  [ B57E7BC6F646E6D2A1EC2CAF61F58008, 8BEACD67E31F423837148A97C419903209B909983D2CE757A81EE3DA7265FFD6 ] PDF24           C:\Program Files\PDF24\pdf24.exe
12:29:05.0391 0x0b00  PDF24 - ok
12:29:05.0441 0x0b00  [ 0C941A3F148B4228867908F98F394461, 6D5F575F2E796C5EA8F9F3F96F9ACD935E274210A105C9365102B448E9AE2031 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:29:05.0481 0x0b00  PEAUTH - ok
12:29:05.0521 0x0b00  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
12:29:05.0561 0x0b00  PeerDistSvc - ok
12:29:05.0651 0x0b00  [ 09B61B4894B05723BACE59F46EF892D4, 1BEA7E4A38935C2F1DF4AF503704E4B3A19B0E5658D83F5C36013DF0D6F3BC6D ] pla             C:\Windows\system32\pla.dll
12:29:05.0721 0x0b00  pla - ok
12:29:05.0781 0x0b00  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:29:05.0821 0x0b00  PlugPlay - ok
12:29:05.0851 0x0b00  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:29:05.0871 0x0b00  PNRPAutoReg - ok
12:29:05.0901 0x0b00  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:29:05.0921 0x0b00  PNRPsvc - ok
12:29:05.0981 0x0b00  [ A2FEA7E16D8D056D2FF1EE93F9C73FB1, 6BC8C1B37274B50573F3DAC043DBD9B29B93F527290392842CD94910014D0C74 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:29:06.0031 0x0b00  PolicyAgent - ok
12:29:06.0071 0x0b00  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
12:29:06.0091 0x0b00  Power - ok
12:29:06.0121 0x0b00  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:29:06.0151 0x0b00  PptpMiniport - ok
12:29:06.0161 0x0b00  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
12:29:06.0171 0x0b00  Processor - ok
12:29:06.0201 0x0b00  [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:29:06.0221 0x0b00  ProfSvc - ok
12:29:06.0221 0x0b00  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:29:06.0231 0x0b00  ProtectedStorage - ok
12:29:06.0251 0x0b00  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:29:06.0281 0x0b00  Psched - ok
12:29:06.0321 0x0b00  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
12:29:06.0351 0x0b00  ql2300 - ok
12:29:06.0371 0x0b00  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
12:29:06.0381 0x0b00  ql40xx - ok
12:29:06.0411 0x0b00  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
12:29:06.0431 0x0b00  QWAVE - ok
12:29:06.0451 0x0b00  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:29:06.0471 0x0b00  QWAVEdrv - ok
12:29:06.0481 0x0b00  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:29:06.0521 0x0b00  RasAcd - ok
12:29:06.0551 0x0b00  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:29:06.0571 0x0b00  RasAgileVpn - ok
12:29:06.0591 0x0b00  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
12:29:06.0631 0x0b00  RasAuto - ok
12:29:06.0641 0x0b00  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:29:06.0671 0x0b00  Rasl2tp - ok
12:29:06.0711 0x0b00  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
12:29:06.0751 0x0b00  RasMan - ok
12:29:06.0771 0x0b00  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:29:06.0801 0x0b00  RasPppoe - ok
12:29:06.0811 0x0b00  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:29:06.0831 0x0b00  RasSstp - ok
12:29:06.0871 0x0b00  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:29:06.0891 0x0b00  rdbss - ok
12:29:06.0901 0x0b00  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
12:29:06.0911 0x0b00  rdpbus - ok
12:29:06.0941 0x0b00  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:29:06.0961 0x0b00  RDPCDD - ok
12:29:06.0981 0x0b00  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:29:07.0021 0x0b00  RDPDR - ok
12:29:07.0031 0x0b00  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:29:07.0061 0x0b00  RDPENCDD - ok
12:29:07.0071 0x0b00  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:29:07.0091 0x0b00  RDPREFMP - ok
12:29:07.0151 0x0b00  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:29:07.0231 0x0b00  RdpVideoMiniport - ok
12:29:07.0281 0x0b00  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:29:07.0331 0x0b00  RDPWD - ok
12:29:07.0381 0x0b00  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:29:07.0411 0x0b00  rdyboost - ok
12:29:07.0451 0x0b00  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:29:07.0501 0x0b00  RemoteAccess - ok
12:29:07.0521 0x0b00  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:29:07.0551 0x0b00  RemoteRegistry - ok
12:29:07.0571 0x0b00  [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
12:29:07.0591 0x0b00  RFCOMM - ok
12:29:07.0601 0x0b00  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:29:07.0631 0x0b00  RpcEptMapper - ok
12:29:07.0651 0x0b00  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
12:29:07.0661 0x0b00  RpcLocator - ok
12:29:07.0681 0x0b00  [ 0395B42B3885269C039C6705D5A49BE3, A87697AFC9D4478DCD0A0053DBE378F3F84961BCF1A911DBB4161EEB350CB064 ] RpcSs           C:\Windows\system32\rpcss.dll
12:29:07.0701 0x0b00  RpcSs - ok
12:29:07.0721 0x0b00  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:29:07.0781 0x0b00  rspndr - ok
12:29:07.0821 0x0b00  [ FD731DD23A6C846A848BEA67DAEB70CA, 74D0A6626C8CD50585B08AA62976C3D012B8F440A670C9AEEEF71B3D0D484954 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
12:29:07.0831 0x0b00  RSUSBVSTOR - ok
12:29:07.0851 0x0b00  [ 282C64DEE8300FA717844ECC9BA5B27A, 59245166F8ABBA649962E0986090ACA1A1B6BE9767A89E09108BF16F3928B2F1 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
12:29:07.0871 0x0b00  RTL8167 - ok
12:29:08.0091 0x0b00  [ 217FD32F0719C7EB662B989E12363892, 6758EB73A3245A8EF29FB7866A320C7D7E21E700E875A99444CD7A41312CCE04 ] rtsuvc          C:\Windows\system32\DRIVERS\rtsuvc.sys
12:29:08.0351 0x0b00  rtsuvc - ok
12:29:08.0421 0x0b00  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
12:29:08.0461 0x0b00  s3cap - ok
12:29:08.0471 0x0b00  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] SamSs           C:\Windows\system32\lsass.exe
12:29:08.0491 0x0b00  SamSs - ok
12:29:08.0551 0x0b00  [ 07D58D5F7839ABA76118BC037C2C63BD, DD8EE9AFABEA5EBEEA1534B140F50E5170260F59E5542B56EEAA207A58524283 ] SAService       C:\Windows\system32\SAsrv.exe
12:29:08.0581 0x0b00  SAService - ok
12:29:08.0591 0x0b00  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:29:08.0601 0x0b00  sbp2port - ok
12:29:08.0621 0x0b00  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:29:08.0651 0x0b00  SCardSvr - ok
12:29:08.0671 0x0b00  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:29:08.0691 0x0b00  scfilter - ok
12:29:08.0761 0x0b00  [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule        C:\Windows\system32\schedsvc.dll
12:29:08.0831 0x0b00  Schedule - ok
12:29:08.0861 0x0b00  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:29:08.0891 0x0b00  SCPolicySvc - ok
12:29:08.0921 0x0b00  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:29:08.0961 0x0b00  SDRSVC - ok
12:29:08.0981 0x0b00  [ 65EE3435A9131BEE1608F99F16C48E08, BCEA38DBFDF3E4163DF2273EC5C0DF7B7F295C1E23B58AC3D700F8DE5551A282 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:29:08.0981 0x0b00  secdrv - detected UnsignedFile.Multi.Generic ( 1 )
12:29:09.0031 0x0b00  secdrv ( UnsignedFile.Multi.Generic ) - warning
12:29:09.0031 0x0b00  Force sending object to P2P due to detect: secdrv
12:29:09.0211 0x0b00  Object send P2P result: true
12:29:09.0391 0x0b00  [ 38CBFFED5FC39CDFE6B4014401ED2629, 7BA730E2EDB8387190E45DA2F475BFE42AB3B12319DE088BD8E9F59227EDA4DD ] seclogon        C:\Windows\system32\seclogon.dll
12:29:09.0421 0x0b00  seclogon - ok
12:29:09.0441 0x0b00  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
12:29:09.0481 0x0b00  SENS - ok
12:29:09.0491 0x0b00  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:29:09.0511 0x0b00  SensrSvc - ok
12:29:09.0531 0x0b00  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:29:09.0541 0x0b00  Serenum - ok
12:29:09.0561 0x0b00  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:29:09.0581 0x0b00  Serial - ok
12:29:09.0601 0x0b00  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
12:29:09.0621 0x0b00  sermouse - ok
12:29:09.0661 0x0b00  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:29:09.0691 0x0b00  SessionEnv - ok
12:29:09.0731 0x0b00  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:29:09.0751 0x0b00  sffdisk - ok
12:29:09.0761 0x0b00  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:29:09.0771 0x0b00  sffp_mmc - ok
12:29:09.0781 0x0b00  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:29:09.0801 0x0b00  sffp_sd - ok
12:29:09.0811 0x0b00  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:29:09.0821 0x0b00  sfloppy - ok
12:29:09.0851 0x0b00  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:29:09.0881 0x0b00  SharedAccess - ok
12:29:09.0891 0x0b00  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:29:09.0921 0x0b00  ShellHWDetection - ok
12:29:09.0941 0x0b00  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
12:29:09.0941 0x0b00  sisagp - ok
12:29:09.0951 0x0b00  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:29:09.0961 0x0b00  SiSRaid2 - ok
12:29:09.0981 0x0b00  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
12:29:09.0981 0x0b00  SiSRaid4 - ok
12:29:10.0001 0x0b00  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:29:10.0031 0x0b00  Smb - ok
12:29:10.0041 0x0b00  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:29:10.0061 0x0b00  SNMPTRAP - ok
12:29:10.0071 0x0b00  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:29:10.0081 0x0b00  spldr - ok
12:29:10.0131 0x0b00  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
12:29:10.0171 0x0b00  Spooler - ok
12:29:10.0311 0x0b00  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
12:29:10.0451 0x0b00  sppsvc - ok
12:29:10.0481 0x0b00  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:29:10.0501 0x0b00  sppuinotify - ok
12:29:10.0541 0x0b00  [ 381C074173702C92080AAD489F1EC6DC, 87814B491D151085C734DA4EAE0B0DD982E084A1BAC0E855F50FB580A7D7FA27 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:29:10.0571 0x0b00  srv - ok
12:29:10.0601 0x0b00  [ FC411046A1391AE7206DD513061C6FDF, 5D544F6EAD5B889194B60642B9C3FA9856BCEFF093E06460C65D026890EB871D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:29:10.0621 0x0b00  srv2 - ok
12:29:10.0651 0x0b00  [ 765C4FFF0E69F7466411C7EC3724188A, D158AD402FB26B3237760F91277716C52203B05A2F4AE16CF06833C776FF19D6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:29:10.0691 0x0b00  srvnet - ok
12:29:10.0721 0x0b00  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:29:10.0751 0x0b00  SSDPSRV - ok
12:29:10.0761 0x0b00  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:29:10.0781 0x0b00  SstpSvc - ok
12:29:10.0821 0x0b00  [ 5EE6503C932CB79B493E4B4D8E23D219, 51DC712611E21F5CF3ED2322A146E167769D082E826B82601471CF782090E8B5 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
12:29:10.0831 0x0b00  ssudmdm - ok
12:29:10.0951 0x0b00  [ 9DA3B55B17B54789AFB8C657D4ACE4D7, 5E4599E682327E3B8097A88A69ED73F96254A29054744D5DFB782054863F131E ] ss_conn_service C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
12:29:10.0981 0x0b00  ss_conn_service - ok
12:29:11.0011 0x0b00  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
12:29:11.0011 0x0b00  stexstor - ok
12:29:11.0061 0x0b00  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
12:29:11.0091 0x0b00  StiSvc - ok
12:29:11.0101 0x0b00  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
12:29:11.0111 0x0b00  storflt - ok
12:29:11.0141 0x0b00  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
12:29:11.0171 0x0b00  StorSvc - ok
12:29:11.0191 0x0b00  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:29:11.0201 0x0b00  storvsc - ok
12:29:11.0211 0x0b00  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\drivers\swenum.sys
12:29:11.0221 0x0b00  swenum - ok
12:29:11.0251 0x0b00  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
12:29:11.0281 0x0b00  swprv - ok
12:29:11.0341 0x0b00  [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain         C:\Windows\system32\sysmain.dll
12:29:11.0401 0x0b00  SysMain - ok
12:29:11.0421 0x0b00  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
12:29:11.0441 0x0b00  TabletInputService - ok
12:29:11.0481 0x0b00  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:29:11.0511 0x0b00  TapiSrv - ok
12:29:11.0591 0x0b00  [ C25848DB4A86839A7EDD1077F62AD980, C0C6AADA83BD21DF1243B2BEBA83AC295F49B5C02B2639EF473BBDD3A31AF4C5 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:29:11.0621 0x0b00  Tcpip - ok
12:29:11.0671 0x0b00  [ C25848DB4A86839A7EDD1077F62AD980, C0C6AADA83BD21DF1243B2BEBA83AC295F49B5C02B2639EF473BBDD3A31AF4C5 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:29:11.0701 0x0b00  TCPIP6 - ok
12:29:11.0731 0x0b00  [ A4BF8BE9D1F7D563C7868AC7B2561545, E3C2FFE53373E5255DC388E0C81CCE965E432EFAF52C85B5B3B3918815114073 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:29:11.0761 0x0b00  tcpipreg - ok
12:29:11.0791 0x0b00  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:29:11.0811 0x0b00  TDPIPE - ok
12:29:11.0851 0x0b00  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:29:11.0871 0x0b00  TDTCP - ok
12:29:11.0921 0x0b00  [ 8F143F86FDD8CF4F7BD25973C5983F9D, D3ECB70C5ACAFB6C07CB2104FBEA3FA965299F1BE84D33334DB0FAAA88F738A5 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:29:11.0961 0x0b00  tdx - ok
12:29:11.0981 0x0b00  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\drivers\termdd.sys
12:29:11.0981 0x0b00  TermDD - ok
12:29:12.0051 0x0b00  [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService     C:\Windows\System32\termsrv.dll
12:29:12.0091 0x0b00  TermService - ok
12:29:12.0101 0x0b00  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
12:29:12.0121 0x0b00  Themes - ok
12:29:12.0131 0x0b00  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
12:29:12.0161 0x0b00  THREADORDER - ok
12:29:12.0171 0x0b00  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
12:29:12.0201 0x0b00  TrkWks - ok
12:29:12.0271 0x0b00  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:29:12.0321 0x0b00  TrustedInstaller - ok
12:29:12.0351 0x0b00  [ 6841C85446F906E4584D43A70484E318, 5B1FD34DC82EC534F4527A4019F3BC910147CA3A54E3F36984C0712307329089 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:29:12.0381 0x0b00  tssecsrv - ok
12:29:12.0421 0x0b00  [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:29:12.0451 0x0b00  TsUsbFlt - ok
12:29:12.0481 0x0b00  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:29:12.0541 0x0b00  tunnel - ok
12:29:12.0561 0x0b00  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
12:29:12.0561 0x0b00  uagp35 - ok
12:29:12.0581 0x0b00  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:29:12.0611 0x0b00  udfs - ok
12:29:12.0631 0x0b00  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:29:12.0641 0x0b00  UI0Detect - ok
12:29:12.0671 0x0b00  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:29:12.0681 0x0b00  uliagpkx - ok
12:29:12.0691 0x0b00  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\drivers\umbus.sys
12:29:12.0711 0x0b00  umbus - ok
12:29:12.0731 0x0b00  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
12:29:12.0761 0x0b00  UmPass - ok
12:29:12.0801 0x0b00  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:29:12.0831 0x0b00  UmRdpService - ok
12:29:12.0851 0x0b00  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
12:29:12.0891 0x0b00  upnphost - ok
12:29:12.0941 0x0b00  [ 87632869F4350B7CE711B356B1936B2B, 9E67211ACFC637F8C6B6AD5BE9CC61B69FEDF73408A1B678818200CFB0A0E585 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
12:29:12.0971 0x0b00  usbccgp - ok
12:29:13.0011 0x0b00  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:29:13.0061 0x0b00  usbcir - ok
12:29:13.0081 0x0b00  [ EF8127E7E612694F4E8FFDA37D9D00E4, 15E05CD77B1411728A314267FCDC1A1B32E5D003DB9E6D216025149AF2006D4E ] usbehci         C:\Windows\system32\drivers\usbehci.sys
12:29:13.0111 0x0b00  usbehci - ok
12:29:13.0131 0x0b00  [ 711E9F7CA6F9A2351F4F97F31004E589, DD9CFE415A95A1BA96A0108B7DD05E07861DFB28E6A08E024C32DAF208B5FB11 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
12:29:13.0151 0x0b00  usbhub - ok
12:29:13.0171 0x0b00  [ 831F708F06CD5BF3933FBDFB388C606D, 9EE74338CF3FFD54B71AECBFD2CCC78512C92860A43663CE9A253150C332D881 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:29:13.0191 0x0b00  usbohci - ok
12:29:13.0211 0x0b00  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:29:13.0221 0x0b00  usbprint - ok
12:29:13.0261 0x0b00  [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:29:13.0291 0x0b00  usbscan - ok
12:29:13.0331 0x0b00  [ 144DA53294922A84FFAA3D90B1453745, A8DC6B534E4526E2226CF6C9D53A4B6B251D2F23728E41737063D24024C5266F ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:29:13.0371 0x0b00  USBSTOR - ok
12:29:13.0381 0x0b00  [ 89BDF895EB76E3EC1C02EEF5AA18928D, 9CF4C787E75D59A713BCA2C1191A2492110B79F298AABC4608745125529D4DE3 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:29:13.0401 0x0b00  usbuhci - ok
12:29:13.0431 0x0b00  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
12:29:13.0461 0x0b00  usbvideo - ok
12:29:13.0481 0x0b00  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
12:29:13.0521 0x0b00  UxSms - ok
12:29:13.0541 0x0b00  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] VaultSvc        C:\Windows\system32\lsass.exe
12:29:13.0551 0x0b00  VaultSvc - ok
12:29:13.0581 0x0b00  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:29:13.0591 0x0b00  vdrvroot - ok
12:29:13.0651 0x0b00  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
12:29:13.0701 0x0b00  vds - ok
12:29:13.0721 0x0b00  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:29:13.0741 0x0b00  vga - ok
12:29:13.0741 0x0b00  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:29:13.0771 0x0b00  VgaSave - ok
12:29:13.0811 0x0b00  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:29:13.0821 0x0b00  vhdmp - ok
12:29:13.0841 0x0b00  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
12:29:13.0851 0x0b00  viaagp - ok
12:29:13.0861 0x0b00  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
12:29:13.0881 0x0b00  ViaC7 - ok
12:29:13.0891 0x0b00  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:29:13.0901 0x0b00  viaide - ok
12:29:13.0921 0x0b00  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:29:13.0931 0x0b00  vmbus - ok
12:29:13.0941 0x0b00  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
12:29:13.0951 0x0b00  VMBusHID - ok
12:29:13.0971 0x0b00  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:29:13.0981 0x0b00  volmgr - ok
12:29:14.0021 0x0b00  [ 21D83DD717E8D681364A5E44A5459717, 2D938D07132A2D37FB164CA322A93951729D6AF65BA8BAF8493D02B203F13243 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:29:14.0041 0x0b00  volmgrx - ok
12:29:14.0071 0x0b00  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:29:14.0081 0x0b00  volsnap - ok
12:29:14.0091 0x0b00  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
12:29:14.0101 0x0b00  vsmraid - ok
12:29:14.0161 0x0b00  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
12:29:14.0201 0x0b00  VSS - ok
12:29:14.0211 0x0b00  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
12:29:14.0231 0x0b00  vwifibus - ok
12:29:14.0241 0x0b00  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:29:14.0271 0x0b00  vwififlt - ok
12:29:14.0301 0x0b00  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
12:29:14.0331 0x0b00  W32Time - ok
12:29:14.0341 0x0b00  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
12:29:14.0351 0x0b00  WacomPen - ok
12:29:14.0391 0x0b00  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:29:14.0431 0x0b00  WANARP - ok
12:29:14.0431 0x0b00  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:29:14.0451 0x0b00  Wanarpv6 - ok
12:29:14.0491 0x0b00  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
12:29:14.0541 0x0b00  wbengine - ok
12:29:14.0551 0x0b00  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:29:14.0581 0x0b00  WbioSrvc - ok
12:29:14.0621 0x0b00  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:29:14.0641 0x0b00  wcncsvc - ok
12:29:14.0671 0x0b00  [ D9DF5C53DFE502D88A726DD6EFB3CCC3, 2804FA28CEF1A15C1E1BAAB440F7546A497C3B894313521750380F789678BC0C ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:29:14.0721 0x0b00  WcsPlugInService - ok
12:29:14.0741 0x0b00  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
12:29:14.0751 0x0b00  Wd - ok
12:29:14.0821 0x0b00  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:29:14.0851 0x0b00  Wdf01000 - ok
12:29:14.0901 0x0b00  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:29:14.0931 0x0b00  WdiServiceHost - ok
12:29:14.0931 0x0b00  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:29:14.0941 0x0b00  WdiSystemHost - ok
12:29:14.0981 0x0b00  [ DC54D7A40B6E18E5C7F592F836D163FF, 436AF3B94EAE6CBD2516A63235AE1D6EC4F1FCAA0F974A9672BB5AB2A846BB2C ] WebClient       C:\Windows\System32\webclnt.dll
12:29:15.0001 0x0b00  WebClient - ok
12:29:15.0021 0x0b00  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:29:15.0051 0x0b00  Wecsvc - ok
12:29:15.0071 0x0b00  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:29:15.0091 0x0b00  wercplsupport - ok
12:29:15.0101 0x0b00  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
12:29:15.0141 0x0b00  WerSvc - ok
12:29:15.0151 0x0b00  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:29:15.0181 0x0b00  WfpLwf - ok
12:29:15.0191 0x0b00  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:29:15.0201 0x0b00  WIMMount - ok
12:29:15.0301 0x0b00  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:29:15.0331 0x0b00  WinDefend - ok
12:29:15.0341 0x0b00  WinHttpAutoProxySvc - ok
12:29:15.0381 0x0b00  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:29:15.0411 0x0b00  Winmgmt - ok
12:29:15.0521 0x0b00  [ 8949A93520F7008C3B7AD320A0EEA267, F77C6BF73B300347FEB3D02C7A1F98807546D95E10E499D385B7F00D1366CC59 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:29:15.0601 0x0b00  WinRM - ok
12:29:15.0641 0x0b00  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
12:29:15.0661 0x0b00  WinUsb - ok
12:29:15.0721 0x0b00  [ BB5D5249C49DB0D9B08AFB220019E1CF, 5DD01888BC303891FC5690D3F4EA795F185B934D985FC0F48DC30CC0718E5123 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:29:15.0751 0x0b00  Wlansvc - ok
12:29:15.0781 0x0b00  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:29:15.0791 0x0b00  WmiAcpi - ok
12:29:15.0811 0x0b00  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:29:15.0821 0x0b00  wmiApSrv - ok
12:29:15.0931 0x0b00  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:29:15.0981 0x0b00  WMPNetworkSvc - ok
12:29:16.0011 0x0b00  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:29:16.0041 0x0b00  WPCSvc - ok
12:29:16.0091 0x0b00  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:29:16.0121 0x0b00  WPDBusEnum - ok
12:29:16.0141 0x0b00  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:29:16.0191 0x0b00  ws2ifsl - ok
12:29:16.0201 0x0b00  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
12:29:16.0221 0x0b00  wscsvc - ok
12:29:16.0221 0x0b00  WSearch - ok
12:29:16.0301 0x0b00  [ 8E6E93DFE1C8C1732E4B2C843CE4ABA5, 354C2BC424D92AE09EADBCAD92299C392C57AFB543EAC1B0F7675A907E9BCEE5 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:29:16.0371 0x0b00  wuauserv - ok
12:29:16.0401 0x0b00  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:29:16.0431 0x0b00  WudfPf - ok
12:29:16.0451 0x0b00  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:29:16.0481 0x0b00  WUDFRd - ok
12:29:16.0491 0x0b00  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:29:16.0501 0x0b00  wudfsvc - ok
12:29:16.0541 0x0b00  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:29:16.0581 0x0b00  WwanSvc - ok
12:29:16.0581 0x0b00  ================ Scan global ===============================
12:29:16.0621 0x0b00  [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
12:29:16.0671 0x0b00  [ 00B034B1F3A4201F01079E8645FD9A84, 1923F55D09052D1A5D4CD56E11E768EF78F951F669B7F93EFB648E14346F5387 ] C:\Windows\system32\winsrv.dll
12:29:16.0691 0x0b00  [ 00B034B1F3A4201F01079E8645FD9A84, 1923F55D09052D1A5D4CD56E11E768EF78F951F669B7F93EFB648E14346F5387 ] C:\Windows\system32\winsrv.dll
12:29:16.0711 0x0b00  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
12:29:16.0751 0x0b00  [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
12:29:16.0761 0x0b00  [ Global ] - ok
12:29:16.0761 0x0b00  ================ Scan MBR ==================================
12:29:16.0761 0x0b00  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:29:17.0021 0x0b00  \Device\Harddisk0\DR0 - ok
12:29:17.0021 0x0b00  ================ Scan VBR ==================================
12:29:17.0021 0x0b00  [ 35449AF1CD9D5D6F4712F261FD5B1BFD ] \Device\Harddisk0\DR0\Partition1
12:29:17.0031 0x0b00  \Device\Harddisk0\DR0\Partition1 - ok
12:29:17.0031 0x0b00  [ CA28838259BAA75AFDFC978010E1A021 ] \Device\Harddisk0\DR0\Partition2
12:29:17.0031 0x0b00  \Device\Harddisk0\DR0\Partition2 - ok
12:29:17.0041 0x0b00  [ 75BD53A930A499FD84C2703610083A9F ] \Device\Harddisk0\DR0\Partition3
12:29:17.0041 0x0b00  \Device\Harddisk0\DR0\Partition3 - ok
12:29:17.0041 0x0b00  ================ Scan generic autorun ======================
12:29:17.0161 0x0b00  [ CB0D985C9FD62FF076C3637E4C924B09, 2A089C8FEA897B532A41A5D3352BEEBD5BAB9E3988BA5E0C62B61DF8D9ACA1FF ] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
12:29:17.0181 0x0b00  cAudioFilterAgent - ok
12:29:17.0241 0x0b00  [ 8970A59A838FF1CDC3D62D85823AA61E, 5842DAFD20C1A024CF8984652A08D12DBA1DE15788794D01FF6070D4E24D2479 ] C:\Program Files\CONEXANT\SAII\SACpl.exe
12:29:17.0281 0x0b00  SmartAudio - detected UnsignedFile.Multi.Generic ( 1 )
12:29:17.0281 0x0b00  Detect skipped due to KSN trusted
12:29:17.0281 0x0b00  SmartAudio - ok
12:29:17.0361 0x0b00  [ 3F8FA61D65917BCD93BCFA7D65070A81, 00BF427E2FCF1716F9A8DDC76B030F90ECB69673AD29877A917998ABE298B0AB ] C:\Program Files\Elantech\ETDCtrl.exe
12:29:17.0411 0x0b00  ETDCtrl - ok
12:29:17.0471 0x0b00  [ E6A3062BDB2E18EBDEB69CF7F7A3A070, 48AB0CCA0230DCBB47CCC765659E390A4A42AC7303A27B835B9FBB1168AC7BF1 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
12:29:17.0491 0x0b00  IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
12:29:17.0491 0x0b00  Detect skipped due to KSN trusted
12:29:17.0491 0x0b00  IAStorIcon - ok
12:29:17.0541 0x0b00  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
12:29:17.0561 0x0b00  HP Software Update - ok
12:29:17.0581 0x0b00  Sidebar - ok
12:29:17.0611 0x0b00  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
12:29:17.0631 0x0b00  mctadmin - ok
12:29:17.0631 0x0b00  Sidebar - ok
12:29:17.0641 0x0b00  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
12:29:17.0651 0x0b00  mctadmin - ok
12:29:17.0911 0x0b00  [ C7C42AC946E25EC04BC671516A347FF9, 03DCB98F1764862A0DFC1B3A6CD34BA583DA512E8E4556E891A228832C0F8DE1 ] C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe
12:29:18.0051 0x0b00  Amazon Music - ok
12:29:18.0111 0x0b00  [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\velsench\AppData\Local\Microsoft\BingSvc\BingSvc.exe
12:29:18.0141 0x0b00  BingSvc - ok
12:29:18.0151 0x0b00  Win FW state via NFP2: enabled ( trusted )
12:29:18.0241 0x0b00  ============================================================
12:29:18.0241 0x0b00  Scan finished
12:29:18.0241 0x0b00  ============================================================
12:29:18.0251 0x0220  Detected object count: 1
12:29:18.0251 0x0220  Actual detected object count: 1
12:29:31.0391 0x0220  secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
12:29:31.0391 0x0220  secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:29:48.0371 0x14d0  Deinitialize success

cosinus · 23.07.2018, 11:56

Zitat:

12:27:50.0399 0x12e4 Scan started
12:27:50.0399 0x12e4 Mode: Manual;

Und Anleitung nicht richtig gelesen

Du musst den tdsskiller schon richtig einstellen.

krümmel · 23.07.2018, 12:06

Code:

ATTFilter

13:02:10.0591 0x0858  TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
13:02:14.0507 0x0858  ============================================================
13:02:14.0507 0x0858  Current date / time: 2018/07/23 13:02:14.0507
13:02:14.0507 0x0858  SystemInfo:
13:02:14.0507 0x0858  
13:02:14.0507 0x0858  OS Version: 6.1.7601 ServicePack: 1.0
13:02:14.0507 0x0858  Product type: Workstation
13:02:14.0507 0x0858  ComputerName: VVELSEN
13:02:14.0507 0x0858  UserName: velsench
13:02:14.0507 0x0858  Windows directory: C:\Windows
13:02:14.0507 0x0858  System windows directory: C:\Windows
13:02:14.0507 0x0858  Processor architecture: Intel x86
13:02:14.0507 0x0858  Number of processors: 4
13:02:14.0507 0x0858  Page size: 0x1000
13:02:14.0507 0x0858  Boot type: Normal boot
13:02:14.0507 0x0858  CodeIntegrityOptions = 0x00000000
13:02:14.0507 0x0858  ============================================================
13:02:17.0611 0x0858  KLMD registered as C:\Windows\system32\drivers\13303484.sys
13:02:17.0611 0x0858  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23915, osProperties = 0x0
13:02:17.0798 0x0858  System UUID: {BE806EDE-DC52-851D-5721-C4A6AB7DF798}
13:02:17.0986 0x0858  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:02:17.0986 0x0858  ============================================================
13:02:17.0986 0x0858  \Device\Harddisk0\DR0:
13:02:17.0986 0x0858  MBR partitions:
13:02:17.0986 0x0858  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:02:17.0986 0x0858  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x14B3B000
13:02:17.0986 0x0858  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x14B6D800, BlocksNum 0x25818000
13:02:17.0986 0x0858  ============================================================
13:02:18.0001 0x0858  C: <-> \Device\Harddisk0\DR0\Partition2
13:02:18.0079 0x0858  D: <-> \Device\Harddisk0\DR0\Partition3
13:02:18.0079 0x0858  ============================================================
13:02:18.0079 0x0858  Initialize success
13:02:18.0079 0x0858  ============================================================
13:02:49.0357 0x129c  ============================================================
13:02:49.0357 0x129c  Scan started
13:02:49.0357 0x129c  Mode: Manual; SigCheck; TDLFS; 
13:02:49.0357 0x129c  ============================================================
13:02:49.0357 0x129c  KSN ping started
13:02:49.0420 0x129c  KSN ping finished: true
13:02:50.0418 0x129c  ================ Scan system memory ========================
13:02:50.0418 0x129c  System memory - ok
13:02:50.0418 0x129c  ================ Scan services =============================
13:02:50.0590 0x129c  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
13:02:50.0621 0x129c  1394ohci - ok
13:02:50.0652 0x129c  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:02:50.0668 0x129c  ACPI - ok
13:02:50.0683 0x129c  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
13:02:50.0683 0x129c  AcpiPmi - ok
13:02:50.0746 0x129c  [ 068ACF171CB53993AF9599B6B236EB13, 299619F67E112A65B9B0F81B8CAE81827FD7C03A4A167B6FB697750CAEE424A2 ] ACPIVPC         C:\Windows\system32\DRIVERS\AcpiVpc.sys
13:02:50.0746 0x129c  ACPIVPC - ok
13:02:50.0746 0x129c  AdobeFlashPlayerUpdateSvc - ok
13:02:50.0808 0x129c  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
13:02:50.0824 0x129c  adp94xx - ok
13:02:50.0839 0x129c  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
13:02:50.0855 0x129c  adpahci - ok
13:02:50.0870 0x129c  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
13:02:50.0886 0x129c  adpu320 - ok
13:02:50.0917 0x129c  [ 39AEAECE9F42407F176FE130D790BFBE, 19010DF87BDC1884268098CC04B4B15ECB710C94054A57157C0F9B7A795BDB28 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
13:02:50.0933 0x129c  AeLookupSvc - ok
13:02:50.0980 0x129c  [ F582FC7976F1248AC5FBD6875C626B41, E65532B4E9924ECFF892C0A62312CBC070BFF7B1C4737E6CF8C4ED638BCD030F ] AFD             C:\Windows\system32\drivers\afd.sys
13:02:50.0995 0x129c  AFD - ok
13:02:51.0011 0x129c  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
13:02:51.0026 0x129c  agp440 - ok
13:02:51.0042 0x129c  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
13:02:51.0058 0x129c  aic78xx - ok
13:02:51.0089 0x129c  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
13:02:51.0104 0x129c  ALG - ok
13:02:51.0151 0x129c  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
13:02:51.0151 0x129c  aliide - ok
13:02:51.0182 0x129c  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
13:02:51.0182 0x129c  amdagp - ok
13:02:51.0182 0x129c  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
13:02:51.0198 0x129c  amdide - ok
13:02:51.0214 0x129c  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
13:02:51.0214 0x129c  AmdK8 - ok
13:02:51.0229 0x129c  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
13:02:51.0245 0x129c  AmdPPM - ok
13:02:51.0276 0x129c  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:02:51.0292 0x129c  amdsata - ok
13:02:51.0307 0x129c  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
13:02:51.0323 0x129c  amdsbs - ok
13:02:51.0338 0x129c  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:02:51.0338 0x129c  amdxata - ok
13:02:51.0370 0x129c  [ 20D93E913BBE39E50BB10CC7BA651910, FAAC055B7A2D3B8A93EED76636FFCCD3E76AF82B1E2F414432DCBB1AEDB42CCB ] AppID           C:\Windows\system32\drivers\appid.sys
13:02:51.0385 0x129c  AppID - ok
13:02:51.0416 0x129c  [ 60D471309978F58FCE00A0C62AF746EA, C10285768838355ED00D313A11B354F03958E21500E637356EBB833AB56097A5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:02:51.0432 0x129c  AppIDSvc - ok
13:02:51.0463 0x129c  [ 5EDA6BA186D1B05D5EF4E96F81F3F3EF, B815998ED90E4AC8F4394992082E1F05076CA07C868A15E616C291DCAAF8A000 ] Appinfo         C:\Windows\System32\appinfo.dll
13:02:51.0526 0x129c  Appinfo - ok
13:02:51.0572 0x129c  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
13:02:51.0588 0x129c  AppMgmt - ok
13:02:51.0588 0x129c  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\DRIVERS\arc.sys
13:02:51.0604 0x129c  arc - ok
13:02:51.0619 0x129c  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
13:02:51.0635 0x129c  arcsas - ok
13:02:51.0728 0x129c  [ 03FD2243A539C7153EF62CE10D1816F1, BE72DD2CB62B27F6BF0CEC03AE23A7D63876D6442A781E2E595EE3E64C18EBD4 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
13:02:51.0744 0x129c  aspnet_state - ok
13:02:51.0791 0x129c  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
13:02:51.0838 0x129c  AsyncMac - ok
13:02:51.0900 0x129c  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
13:02:51.0900 0x129c  atapi - ok
13:02:52.0025 0x129c  [ FA6DE016AEC5DB4C7ED0A3CF35ABE513, C0C42BEF1B239B15EE13610C36384AF4A445E8609E45953C06114E0CA30E7DAD ] athr            C:\Windows\system32\DRIVERS\athr.sys
13:02:52.0150 0x129c  athr - ok
13:02:52.0212 0x129c  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:02:52.0243 0x129c  AudioEndpointBuilder - ok
13:02:52.0243 0x129c  [ 4F1E405154D2E68E6ACC3FE07DE02E93, 83FAB4E92B87E8C46BF39DD7556D2F7DCE0AD1E4C9C09ED12C428B82FAD03BDE ] Audiosrv        C:\Windows\System32\Audiosrv.dll
13:02:52.0274 0x129c  Audiosrv - ok
13:02:52.0306 0x129c  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:02:52.0321 0x129c  AxInstSV - ok
13:02:52.0352 0x129c  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
13:02:52.0384 0x129c  b06bdrv - ok
13:02:52.0399 0x129c  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
13:02:52.0415 0x129c  b57nd60x - ok
13:02:52.0477 0x129c  [ 4BEFF67C1775D353A16A62347E727874, 62363C5E5F4BF049A3E49FADA8CB17269945056ACADB319FDC4F05B74E2553C8 ] BBSvc           C:\Program Files\Microsoft\BingBar\7.1.355.0\BBSvc.exe
13:02:52.0493 0x129c  BBSvc - ok
13:02:52.0508 0x129c  [ A6DAAD3EA93DBDBD07FA821BCED133F6, 8F33D4E4B82091D09E62FD5487C88F3DF0DAC31FCBB846183CC4020533A131DE ] BBUpdate        C:\Program Files\Microsoft\BingBar\7.1.355.0\SeaPort.exe
13:02:52.0524 0x129c  BBUpdate - ok
13:02:52.0555 0x129c  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
13:02:52.0586 0x129c  BDESVC - ok
13:02:52.0602 0x129c  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
13:02:52.0633 0x129c  Beep - ok
13:02:52.0711 0x129c  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
13:02:52.0758 0x129c  BFE - ok
13:02:52.0805 0x129c  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
13:02:52.0867 0x129c  BITS - ok
13:02:52.0883 0x129c  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
13:02:52.0898 0x129c  blbdrive - ok
13:02:52.0945 0x129c  [ 28AF7D4427868B7CE4C00CAB1864C7F6, AAE5303878AF0F7AA18069A8FCD99639EBC34622B456AF86C5E4F27858196E06 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:02:52.0945 0x129c  bowser - ok
13:02:52.0992 0x129c  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:02:53.0023 0x129c  BrFiltLo - ok
13:02:53.0023 0x129c  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:02:53.0054 0x129c  BrFiltUp - ok
13:02:53.0086 0x129c  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
13:02:53.0117 0x129c  Browser - ok
13:02:53.0148 0x129c  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
13:02:53.0164 0x129c  Brserid - ok
13:02:53.0195 0x129c  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
13:02:53.0210 0x129c  BrSerWdm - ok
13:02:53.0226 0x129c  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
13:02:53.0242 0x129c  BrUsbMdm - ok
13:02:53.0257 0x129c  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
13:02:53.0273 0x129c  BrUsbSer - ok
13:02:53.0304 0x129c  [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
13:02:53.0320 0x129c  BthEnum - ok
13:02:53.0335 0x129c  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
13:02:53.0351 0x129c  BTHMODEM - ok
13:02:53.0382 0x129c  [ F6AA1FE6ECB2C175E9BA14D30C739FD3, F133F29F8AAA5E3AB148E71A5232FD31B1E1EBC350C899369AE8BFD84022F03F ] BthPan          C:\Windows\system32\drivers\bthpan.sys
13:02:53.0413 0x129c  BthPan - ok
13:02:53.0476 0x129c  [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
13:02:53.0522 0x129c  BTHPORT - ok
13:02:53.0569 0x129c  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
13:02:53.0585 0x129c  bthserv - ok
13:02:53.0600 0x129c  [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
13:02:53.0616 0x129c  BTHUSB - ok
13:02:53.0647 0x129c  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:02:53.0678 0x129c  cdfs - ok
13:02:53.0725 0x129c  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
13:02:53.0741 0x129c  cdrom - ok
13:02:53.0803 0x129c  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
13:02:53.0834 0x129c  CertPropSvc - ok
13:02:53.0866 0x129c  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
13:02:53.0881 0x129c  circlass - ok
13:02:53.0928 0x129c  [ 000B58009E5D0962C0A71D6477029A3F, 2696398A42B399AEE9F9F0FB26610BB9F50F9EC784EC80F78FF6DD3D6E892ADA ] CLFS            C:\Windows\system32\CLFS.sys
13:02:53.0944 0x129c  CLFS - ok
13:02:54.0100 0x129c  [ 29B2AA41E3BC0366AFCD4D6A71741E29, FDA177184CE9CB3E543CA5B98BA289DF50879736406D5A352FC38AB94F5943B0 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe
13:02:54.0178 0x129c  ClickToRunSvc - ok
13:02:54.0256 0x129c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:02:54.0256 0x129c  clr_optimization_v2.0.50727_32 - ok
13:02:54.0318 0x129c  [ 2BA609641FA64BAB02ACD3C0095672F5, FD1FE403864F0564CA4A2F1D7415649B8FFE16F8ED33C4B44ACB21767118AD5F ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:02:54.0334 0x129c  clr_optimization_v4.0.30319_32 - ok
13:02:54.0334 0x129c  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
13:02:54.0349 0x129c  CmBatt - ok
13:02:54.0380 0x129c  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
13:02:54.0380 0x129c  cmdide - ok
13:02:54.0474 0x129c  [ 7F7D4B16389CEF932950F6B2604D2601, E7C32734DAA75A00866A0F961C945BF7CC7A29D3A9806041D0046BC9FD3ACC5A ] CNG             C:\Windows\system32\Drivers\cng.sys
13:02:54.0505 0x129c  CNG - ok
13:02:54.0599 0x129c  [ 80CEC0751525A938DF3881D3456F6C9C, 7FB2566057864A5A8C1174941E717B5FFE85F206BFD6E4B5D037BD58152140E8 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
13:02:54.0661 0x129c  CnxtHdAudService - ok
13:02:54.0677 0x129c  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
13:02:54.0677 0x129c  Compbatt - ok
13:02:54.0724 0x129c  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
13:02:54.0739 0x129c  CompositeBus - ok
13:02:54.0755 0x129c  COMSysApp - ok
13:02:54.0802 0x129c  [ 1154D3FBD01C35A2F9A2073BCB366452, 02F8CBDD8E2F321711528CFFC46E9F0B60CC779C34164E387E2E53DEB518B674 ] cphs            C:\Windows\system32\IntelCpHeciSvc.exe
13:02:54.0817 0x129c  cphs - ok
13:02:54.0833 0x129c  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
13:02:54.0848 0x129c  crcdisk - ok
13:02:54.0895 0x129c  [ AAE96A2A48C7332310C1C28A1D466761, 7279E23A46353BC3D8A1B949B14F11DA689E73D033CD24C8E82613CCFD76E4EA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:02:54.0911 0x129c  CryptSvc - ok
13:02:54.0973 0x129c  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
13:02:55.0004 0x129c  CSC - ok
13:02:55.0051 0x129c  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
13:02:55.0082 0x129c  CscService - ok
13:02:55.0129 0x129c  [ 54B93481AC986849FC74C05C19EF1163, D363DBB24075E561FFA58560AAAAF7E99394C08A0A56058F7C16C9FCE07B7934 ] CxAudMsg        C:\Windows\system32\CxAudMsg32.exe
13:02:55.0145 0x129c  CxAudMsg - ok
13:02:55.0192 0x129c  [ 0395B42B3885269C039C6705D5A49BE3, A87697AFC9D4478DCD0A0053DBE378F3F84961BCF1A911DBB4161EEB350CB064 ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:02:55.0223 0x129c  DcomLaunch - ok
13:02:55.0270 0x129c  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
13:02:55.0301 0x129c  defragsvc - ok
13:02:55.0394 0x129c  [ EA9DBD76CE9254C77BAAB4339DD4C4FB, ECEE6EB8CFE1BD20BC7B6ED29A1624DDC3E22A37A56BA43B9B14E37D4003B72D ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
13:02:55.0410 0x129c  DfsC - ok
13:02:55.0504 0x129c  [ 7A5FB3E4E0D77740D56E516EE6B2DC2B, 5B4636EC04903D2E512AC8FB98A484F7CEBE4EE0A081CF897CD13E8491C0D8CC ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
13:02:55.0519 0x129c  dg_ssudbus - ok
13:02:55.0628 0x129c  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:02:55.0660 0x129c  Dhcp - ok
13:02:55.0800 0x129c  [ 58F9BFBAE3C25D1A349DF0C6ECE8F9DF, FF1CFC9B323BCE2CFC06F9B2A98A29396832134FD61A570C1971A7240899E526 ] DiagTrack       C:\Windows\system32\diagtrack.dll
13:02:55.0862 0x129c  DiagTrack - ok
13:02:55.0925 0x129c  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
13:02:55.0940 0x129c  discache - ok
13:02:56.0003 0x129c  [ B7B470F163002A0D0E381EE45834BF6B, 5B5E204341A6B1689C3F8717C41782B1A077A026F8B19DA3DE08CA44AB1D95B2 ] Disk            C:\Windows\system32\drivers\disk.sys
13:02:56.0003 0x129c  Disk - ok
13:02:56.0050 0x129c  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:02:56.0096 0x129c  Dnscache - ok
13:02:56.0159 0x129c  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:02:56.0206 0x129c  dot3svc - ok
13:02:56.0268 0x129c  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
13:02:56.0315 0x129c  DPS - ok
13:02:56.0377 0x129c  [ A3F684B866A7D89AE396276CE7AFD416, 1E4C034B7B106FA403B13842A199D88A33B492A577B58CDDAE0B4706266B9565 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
13:02:56.0393 0x129c  drmkaud - ok
13:02:56.0486 0x129c  [ 897AE9430D037B056CF76A49CF588542, 02767A3CF7AFF9ECF251808DF2B3B4CABFBDF3EF59E15498B0985298991D8B91 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:02:56.0518 0x129c  DXGKrnl - ok
13:02:56.0533 0x129c  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
13:02:56.0596 0x129c  EapHost - ok
13:02:56.0986 0x129c  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
13:02:57.0110 0x129c  ebdrv - ok
13:02:57.0157 0x129c  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] EFS             C:\Windows\System32\lsass.exe
13:02:57.0188 0x129c  EFS - ok
13:02:57.0266 0x129c  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
13:02:57.0313 0x129c  ehRecvr - ok
13:02:57.0344 0x129c  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
13:02:57.0360 0x129c  ehSched - ok
13:02:57.0376 0x129c  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
13:02:57.0391 0x129c  elxstor - ok
13:02:57.0422 0x129c  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
13:02:57.0422 0x129c  ErrDev - ok
13:02:57.0469 0x129c  [ 9048DDC11BA60BEB33DCD0495D9842E0, 22DE4DDA9F74674BCDE20926D33281786F854ED1EEBB3E6CD4EFF063C8C2C57D ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
13:02:57.0485 0x129c  ETD - ok
13:02:57.0532 0x129c  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
13:02:57.0563 0x129c  EventSystem - ok
13:02:57.0610 0x129c  [ 53E8732CC70CC0991839DF9FC8996E4A, D14F6CAAF1F71647F12C6BDF1CD3EE7ADFAB0B292760AC197B876F0868853A72 ] exfat           C:\Windows\system32\drivers\exfat.sys
13:02:57.0625 0x129c  exfat - ok
13:02:57.0656 0x129c  [ 24F422E5D7517FEBDA2324116F1A7BE6, 3D54FFB59F7E4F9CC1189D8808B1F17EE7C4A6DE2A13C74CA5B6A47D5E759C53 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:02:57.0672 0x129c  fastfat - ok
13:02:57.0734 0x129c  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
13:02:57.0766 0x129c  Fax - ok
13:02:57.0797 0x129c  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
13:02:57.0812 0x129c  fdc - ok
13:02:57.0828 0x129c  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
13:02:57.0859 0x129c  fdPHost - ok
13:02:57.0875 0x129c  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
13:02:57.0906 0x129c  FDResPub - ok
13:02:57.0922 0x129c  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:02:57.0922 0x129c  FileInfo - ok
13:02:57.0937 0x129c  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:02:57.0984 0x129c  Filetrace - ok
13:02:58.0000 0x129c  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
13:02:58.0015 0x129c  flpydisk - ok
13:02:58.0031 0x129c  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:02:58.0046 0x129c  FltMgr - ok
13:02:58.0124 0x129c  [ B5259B75BFDE00A5CDFD8D70444C8E3C, 3526602AA212B43351644AFB91E0D9CEFB778461BAAD2331B6BBF76FB14EEE86 ] FontCache       C:\Windows\system32\FntCache.dll
13:02:58.0202 0x129c  FontCache - ok
13:02:58.0249 0x129c  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:02:58.0249 0x129c  FontCache3.0.0.0 - ok
13:02:58.0265 0x129c  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:02:58.0280 0x129c  FsDepends - ok
13:02:58.0312 0x129c  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:02:58.0312 0x129c  Fs_Rec - ok
13:02:58.0374 0x129c  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:02:58.0390 0x129c  fvevol - ok
13:02:58.0421 0x129c  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
13:02:58.0421 0x129c  gagp30kx - ok
13:02:58.0468 0x129c  [ 8DA745095F6B73BB5B8266BF773DA1FA, 3EA614A9B8D4F61704A8754B014C8F6AC60551435BC4D9F2E761955905DA89F3 ] gpsvc           C:\Windows\System32\gpsvc.dll
13:02:58.0514 0x129c  gpsvc - ok
13:02:58.0608 0x129c  [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
13:02:58.0842 0x129c  gupdate - ok
13:02:58.0858 0x129c  [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
13:02:58.0873 0x129c  gupdatem - ok
13:02:58.0889 0x129c  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
13:02:58.0904 0x129c  hcw85cir - ok
13:02:59.0045 0x129c  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:02:59.0076 0x129c  HdAudAddService - ok
13:02:59.0185 0x129c  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
13:02:59.0232 0x129c  HDAudBus - ok
13:02:59.0248 0x129c  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
13:02:59.0248 0x129c  HidBatt - ok
13:02:59.0263 0x129c  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
13:02:59.0279 0x129c  HidBth - ok
13:02:59.0294 0x129c  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
13:02:59.0310 0x129c  HidIr - ok
13:02:59.0341 0x129c  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
13:02:59.0372 0x129c  hidserv - ok
13:02:59.0419 0x129c  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
13:02:59.0435 0x129c  HidUsb - ok
13:02:59.0482 0x129c  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
13:02:59.0497 0x129c  hkmsvc - ok
13:02:59.0528 0x129c  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:02:59.0560 0x129c  HomeGroupListener - ok
13:02:59.0606 0x129c  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:02:59.0622 0x129c  HomeGroupProvider - ok
13:02:59.0638 0x129c  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:02:59.0653 0x129c  HpSAMD - ok
13:02:59.0716 0x129c  [ 2F50E2780F16E00369F1311B086C3E42, F3FAE2D965D055810775B7AAE7BF1C4C39961A64E42B345FC604D32F3AC7E7DA ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:02:59.0747 0x129c  HTTP - ok
13:02:59.0794 0x129c  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:02:59.0809 0x129c  hwpolicy - ok
13:02:59.0825 0x129c  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
13:02:59.0840 0x129c  i8042prt - ok
13:02:59.0903 0x129c  [ 8C1AC5E9DBA9A1AEE5A628A7AFF1A1B4, 4651E5E41D03D29FAEAEA31F2B434E6CD25DDD8A22A379DAFC0A2D77A8EB50FA ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
13:02:59.0950 0x129c  iaStorA - ok
13:03:00.0043 0x129c  [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
13:03:00.0059 0x129c  IAStorDataMgrSvc - ok
13:03:00.0090 0x129c  [ 6C5EB949D8917A3A6F34463912B8311E, 4B2817CA257DE9B88BA0BFEC50E28BDE9656B9CB5C7E7A62508959AE84105BD6 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
13:03:00.0090 0x129c  iaStorF - ok
13:03:00.0121 0x129c  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:03:00.0137 0x129c  iaStorV - ok
13:03:00.0215 0x129c  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:03:00.0230 0x129c  idsvc - ok
13:03:00.0246 0x129c  IEEtwCollectorService - ok
13:03:00.0418 0x129c  [ A6F0F319111B3C30A4320AC9A08AB840, A310DB22FF6A808C3A514491A3EF076928AC236E8A5C35BB912C0A12552C587E ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
13:03:00.0589 0x129c  igfx - ok
13:03:00.0652 0x129c  [ 302B72C765BB6D341870B84494076399, 147142121DB29D328D6983F6CD930B35F2A3E3A657FD95EADEAAD1A9E33497FF ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
13:03:00.0683 0x129c  igfxCUIService1.0.0.0 - ok
13:03:00.0730 0x129c  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
13:03:00.0730 0x129c  iirsp - ok
13:03:00.0792 0x129c  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
13:03:00.0823 0x129c  IKEEXT - ok
13:03:00.0870 0x129c  [ 96233928F03AC2F825B02B676A53A1E9, DAF70C4154DCA28B3CE8A52AF97DFD7B2EE30A487D0442748FF090AD4EB60D07 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
13:03:00.0886 0x129c  IntcDAud - ok
13:03:00.0901 0x129c  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
13:03:00.0901 0x129c  intelide - ok
13:03:00.0932 0x129c  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
13:03:00.0932 0x129c  intelppm - ok
13:03:00.0964 0x129c  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
13:03:00.0995 0x129c  IPBusEnum - ok
13:03:00.0995 0x129c  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:03:01.0026 0x129c  IpFilterDriver - ok
13:03:01.0073 0x129c  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:03:01.0088 0x129c  iphlpsvc - ok
13:03:01.0120 0x129c  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
13:03:01.0135 0x129c  IPMIDRV - ok
13:03:01.0151 0x129c  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:03:01.0166 0x129c  IPNAT - ok
13:03:01.0198 0x129c  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:03:01.0213 0x129c  IRENUM - ok
13:03:01.0229 0x129c  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:03:01.0229 0x129c  isapnp - ok
13:03:01.0291 0x129c  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
13:03:01.0322 0x129c  iScsiPrt - ok
13:03:01.0369 0x129c  [ 23C245A8CF93E8935EA182427FECBA35, 88A8E3D4D221B729BB0489BDE14D107C921BF74C3A01BBAE5F9044F56923C5E3 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
13:03:01.0369 0x129c  iusb3hcs - ok
13:03:01.0385 0x129c  [ 5CA74542CE2511DD84C4B00024E0DBD6, 83D6C368ECE76616B7B0E3C6C94B53C2C34288723F4A654830498988EC93261A ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
13:03:01.0400 0x129c  iusb3hub - ok
13:03:01.0432 0x129c  [ 801183FD0E337A1FB15F74BB53563931, 077C68D332ABFDFB9F0B7EA6073BF00A99E1A77A60451232CB252F296F919100 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
13:03:01.0447 0x129c  iusb3xhc - ok
13:03:01.0478 0x129c  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
13:03:01.0494 0x129c  kbdclass - ok
13:03:01.0510 0x129c  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
13:03:01.0525 0x129c  kbdhid - ok
13:03:01.0556 0x129c  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] KeyIso          C:\Windows\system32\lsass.exe
13:03:01.0572 0x129c  KeyIso - ok
13:03:01.0619 0x129c  [ AD7A45E1A91028B0005EDDE9112D9357, E5E930917D2DFB6292613E1C2EF20BF10C2FDB84B91C8F5452DE5A67F2711DFF ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:03:01.0619 0x129c  KSecDD - ok
13:03:01.0650 0x129c  [ D598526763D02DE0FB14FF148933F5BC, A50667D3F39043067D6DD123174F816720721E5E763E85C1C1315792E1BD821D ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:03:01.0650 0x129c  KSecPkg - ok
13:03:01.0681 0x129c  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:03:01.0712 0x129c  KtmRm - ok
13:03:01.0744 0x129c  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:03:01.0775 0x129c  LanmanServer - ok
13:03:01.0822 0x129c  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:03:01.0837 0x129c  LanmanWorkstation - ok
13:03:01.0868 0x129c  [ 8FF8B5F04AC4D57F9A965BB4DF07813E, E39669D8F4354CDCB7EDFA8722916E2BF6C3778EDDD81D0F6AF6D129B0619BA7 ] LHDmgr          C:\Windows\system32\DRIVERS\LhdX86.sys
13:03:01.0868 0x129c  LHDmgr - ok
13:03:01.0962 0x129c  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
13:03:01.0993 0x129c  lltdio - ok
13:03:02.0024 0x129c  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:03:02.0056 0x129c  lltdsvc - ok
13:03:02.0071 0x129c  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:03:02.0087 0x129c  lmhosts - ok
13:03:02.0134 0x129c  [ 9A84F41E421287A712C90E5384400E4F, B58146F4E9A82F5E5E61AFD542DD6FF649422A3C683D57E67CF861BD06DE5CFD ] LPDSVC          C:\Windows\system32\lpdsvc.dll
13:03:02.0149 0x129c  LPDSVC - ok
13:03:02.0180 0x129c  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
13:03:02.0180 0x129c  LSI_FC - ok
13:03:02.0196 0x129c  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
13:03:02.0196 0x129c  LSI_SAS - ok
13:03:02.0212 0x129c  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:03:02.0212 0x129c  LSI_SAS2 - ok
13:03:02.0243 0x129c  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:03:02.0243 0x129c  LSI_SCSI - ok
13:03:02.0290 0x129c  [ 4BA509FEF4DB0B683C46821ACDF20B9E, 89545321811222862E4FFF46B33EA9EA4D260C8B478222F754AB53B8406F2EC4 ] luafv           C:\Windows\system32\drivers\luafv.sys
13:03:02.0305 0x129c  luafv - ok
13:03:02.0336 0x129c  McComponentHostService - ok
13:03:02.0383 0x129c  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
13:03:02.0414 0x129c  Mcx2Svc - ok
13:03:02.0430 0x129c  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
13:03:02.0430 0x129c  megasas - ok
13:03:02.0446 0x129c  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
13:03:02.0461 0x129c  MegaSR - ok
13:03:02.0508 0x129c  [ 113412F2962F700710BB22FCFE266B65, BC7DCC7722A4A1AC9F8D705F8819C9D227696A9538BBF6A52EB7C27969FD3A21 ] MEI             C:\Windows\system32\DRIVERS\TeeDriver.sys
13:03:02.0524 0x129c  MEI - ok
13:03:02.0524 0x129c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
13:03:02.0555 0x129c  MMCSS - ok
13:03:02.0570 0x129c  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
13:03:02.0586 0x129c  Modem - ok
13:03:02.0617 0x129c  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
13:03:02.0633 0x129c  monitor - ok
13:03:02.0695 0x129c  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
13:03:02.0711 0x129c  mouclass - ok
13:03:02.0726 0x129c  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
13:03:02.0758 0x129c  mouhid - ok
13:03:02.0804 0x129c  [ 9664F55623B43FD85D5642A202976AEE, 9349DADF639BBF7478EFA2398696FEC416554865AD4DEA91BD9A5E7D9F0C3D49 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:03:02.0820 0x129c  mountmgr - ok
13:03:02.0914 0x129c  [ 72ED3A6B60BFB1E577C390AE712C5F99, 0F30486944B3819486674DBDECD7A01EAA3BE2844416305AF09029EBDAD49CD2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:03:02.0914 0x129c  MozillaMaintenance - ok
13:03:02.0929 0x129c  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
13:03:02.0945 0x129c  mpio - ok
13:03:02.0976 0x129c  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:03:02.0992 0x129c  mpsdrv - ok
13:03:03.0070 0x129c  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:03:03.0116 0x129c  MpsSvc - ok
13:03:03.0148 0x129c  [ 06AC0310138E4B2C35AF7344D18BC686, FCDB6CC851EC47F92FFF764717A44FF5D5D0E179C215B3C6E77FB9BEA4DE1908 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:03:03.0179 0x129c  MRxDAV - ok
13:03:03.0210 0x129c  [ CED9A2CB76D01C817B067DEF638AA26D, 7DB851F68F741464C0BCAF2D67B70312A1E42CEC1500F72C5C9C39440ECF1C9D ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:03:03.0241 0x129c  mrxsmb - ok
13:03:03.0272 0x129c  [ 7063F786FEEB116B1E0CCE8FD4D2DCC8, 9023AE7589DE6408F53A7B8BE5657795A80294A4BDF9FFD1808CCD11F3104C16 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:03:03.0288 0x129c  mrxsmb10 - ok
13:03:03.0304 0x129c  [ 2A325EC0931F389944A1C012DC6EB23F, E6FD5AAE2D834319287B6D8BFA36F7C5D25BBDCACFA212BF9C52CDE63D91ADEB ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:03:03.0319 0x129c  mrxsmb20 - ok
13:03:03.0350 0x129c  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
13:03:03.0350 0x129c  msahci - ok
13:03:03.0397 0x129c  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
13:03:03.0397 0x129c  msdsm - ok
13:03:03.0413 0x129c  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
13:03:03.0428 0x129c  MSDTC - ok
13:03:03.0460 0x129c  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:03:03.0491 0x129c  Msfs - ok
13:03:03.0491 0x129c  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:03:03.0506 0x129c  mshidkmdf - ok
13:03:03.0522 0x129c  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:03:03.0538 0x129c  msisadrv - ok
13:03:03.0553 0x129c  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:03:03.0569 0x129c  MSiSCSI - ok
13:03:03.0584 0x129c  msiserver - ok
13:03:03.0600 0x129c  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
13:03:03.0616 0x129c  MSKSSRV - ok
13:03:03.0616 0x129c  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
13:03:03.0647 0x129c  MSPCLOCK - ok
13:03:03.0662 0x129c  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
13:03:03.0678 0x129c  MSPQM - ok
13:03:03.0694 0x129c  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:03:03.0709 0x129c  MsRPC - ok
13:03:03.0725 0x129c  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
13:03:03.0740 0x129c  mssmbios - ok
13:03:03.0756 0x129c  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
13:03:03.0772 0x129c  MSTEE - ok
13:03:03.0787 0x129c  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
13:03:03.0803 0x129c  MTConfig - ok
13:03:03.0818 0x129c  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
13:03:03.0818 0x129c  Mup - ok
13:03:03.0865 0x129c  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
13:03:03.0896 0x129c  napagent - ok
13:03:03.0959 0x129c  [ 5F2B9CD280C48A8015AD70FCF4DFB758, F50D118BDCE35654CCA153CA2FC9123D014038494FBCBAFE0514D956DCB2D44D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:03:03.0990 0x129c  NativeWifiP - ok
13:03:04.0084 0x129c  [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:03:04.0115 0x129c  NDIS - ok
13:03:04.0130 0x129c  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
13:03:04.0146 0x129c  NdisCap - ok
13:03:04.0177 0x129c  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:03:04.0193 0x129c  NdisTapi - ok
13:03:04.0240 0x129c  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
13:03:04.0286 0x129c  Ndisuio - ok
13:03:04.0333 0x129c  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
13:03:04.0364 0x129c  NdisWan - ok
13:03:04.0380 0x129c  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
13:03:04.0396 0x129c  NDProxy - ok
13:03:04.0411 0x129c  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
13:03:04.0442 0x129c  NetBIOS - ok
13:03:04.0489 0x129c  [ 2E226E666C6E11DC8C850071A90BE2DC, 5BE2ADBBEA0E5C20031FADB85461D6F68788095B6553B4EBC7A031D7EE1995AD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:03:04.0505 0x129c  NetBT - ok
13:03:04.0505 0x129c  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] Netlogon        C:\Windows\system32\lsass.exe
13:03:04.0536 0x129c  Netlogon - ok
13:03:04.0567 0x129c  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
13:03:04.0598 0x129c  Netman - ok
13:03:04.0661 0x129c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:04.0676 0x129c  NetMsmqActivator - ok
13:03:04.0692 0x129c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:04.0708 0x129c  NetPipeActivator - ok
13:03:04.0801 0x129c  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
13:03:04.0832 0x129c  netprofm - ok
13:03:04.0848 0x129c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:04.0848 0x129c  NetTcpActivator - ok
13:03:04.0864 0x129c  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
13:03:04.0864 0x129c  NetTcpPortSharing - ok
13:03:04.0895 0x129c  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
13:03:04.0895 0x129c  nfrd960 - ok
13:03:04.0942 0x129c  [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:03:04.0973 0x129c  NlaSvc - ok
13:03:04.0988 0x129c  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:03:05.0004 0x129c  Npfs - ok
13:03:05.0051 0x129c  [ 6937652377C07F86EF195F1BF5423143, 02F109ABC3543296E70541367A7A6103F38704DAF9A5CDBA2D798EF5592CF663 ] nsi             C:\Windows\system32\nsisvc.dll
13:03:05.0066 0x129c  nsi - ok
13:03:05.0098 0x129c  [ C68AA651F93450ECA51A60D45A8E266C, 0AF79071CE5007F968D4028158200312F0C6B6A2114CF0990A638DBFE897E009 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:03:05.0113 0x129c  nsiproxy - ok
13:03:05.0207 0x129c  [ F2CBF48566BB13240D39543F445460F9, DB86B7E352EACA2306DA25F900AE66BB8F30B43F567A6942C2E54596BADF3B29 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
13:03:05.0254 0x129c  Ntfs - ok
13:03:05.0269 0x129c  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
13:03:05.0300 0x129c  Null - ok
13:03:05.0332 0x129c  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:03:05.0332 0x129c  nvraid - ok
13:03:05.0378 0x129c  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:03:05.0394 0x129c  nvstor - ok
13:03:05.0425 0x129c  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
13:03:05.0441 0x129c  nv_agp - ok
13:03:05.0472 0x129c  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
13:03:05.0488 0x129c  ohci1394 - ok
13:03:05.0566 0x129c  [ BF869F329392C7E76FC959B1206A432F, 909879B7432283C1F6D44843FC5CEB598798EE6560DCD4B4EF8B4935E94FB934 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:03:05.0581 0x129c  ose - ok
13:03:05.0800 0x129c  [ EE5756BDA5BE5891270E0CC6CEC44096, EA18073EEE0F461B14C539D49A7DD91D33AB0C503236F67F70A000835FAAC890 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:03:06.0002 0x129c  osppsvc - ok
13:03:06.0049 0x129c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:03:06.0080 0x129c  p2pimsvc - ok
13:03:06.0112 0x129c  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
13:03:06.0127 0x129c  p2psvc - ok
13:03:06.0158 0x129c  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
13:03:06.0174 0x129c  Parport - ok
13:03:06.0221 0x129c  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:03:06.0221 0x129c  partmgr - ok
13:03:06.0236 0x129c  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
13:03:06.0252 0x129c  Parvdm - ok
13:03:06.0299 0x129c  [ 84752B402BF64CCDDF11816FEDF12DB4, 184DDFCEEE8C5B492415270FC640B8D584B3D79E7BADCE4DE7CDD74CC8C60130 ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:03:06.0314 0x129c  PcaSvc - ok
13:03:06.0330 0x129c  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
13:03:06.0346 0x129c  pci - ok
13:03:06.0392 0x129c  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
13:03:06.0392 0x129c  pciide - ok
13:03:06.0408 0x129c  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
13:03:06.0424 0x129c  pcmcia - ok
13:03:06.0439 0x129c  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:03:06.0439 0x129c  pcw - ok
13:03:06.0533 0x129c  [ B57E7BC6F646E6D2A1EC2CAF61F58008, 8BEACD67E31F423837148A97C419903209B909983D2CE757A81EE3DA7265FFD6 ] PDF24           C:\Program Files\PDF24\pdf24.exe
13:03:06.0564 0x129c  PDF24 - ok
13:03:06.0704 0x129c  [ 0C941A3F148B4228867908F98F394461, 6D5F575F2E796C5EA8F9F3F96F9ACD935E274210A105C9365102B448E9AE2031 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:03:06.0736 0x129c  PEAUTH - ok
13:03:06.0829 0x129c  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
13:03:06.0876 0x129c  PeerDistSvc - ok
13:03:07.0016 0x129c  [ 09B61B4894B05723BACE59F46EF892D4, 1BEA7E4A38935C2F1DF4AF503704E4B3A19B0E5658D83F5C36013DF0D6F3BC6D ] pla             C:\Windows\system32\pla.dll
13:03:07.0110 0x129c  pla - ok
13:03:07.0157 0x129c  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:03:07.0188 0x129c  PlugPlay - ok
13:03:07.0219 0x129c  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:03:07.0250 0x129c  PNRPAutoReg - ok
13:03:07.0266 0x129c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:03:07.0282 0x129c  PNRPsvc - ok
13:03:07.0328 0x129c  [ A2FEA7E16D8D056D2FF1EE93F9C73FB1, 6BC8C1B37274B50573F3DAC043DBD9B29B93F527290392842CD94910014D0C74 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:03:07.0375 0x129c  PolicyAgent - ok
13:03:07.0406 0x129c  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
13:03:07.0438 0x129c  Power - ok
13:03:07.0469 0x129c  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
13:03:07.0500 0x129c  PptpMiniport - ok
13:03:07.0516 0x129c  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
13:03:07.0516 0x129c  Processor - ok
13:03:07.0562 0x129c  [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:03:07.0578 0x129c  ProfSvc - ok
13:03:07.0594 0x129c  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:03:07.0625 0x129c  ProtectedStorage - ok
13:03:07.0672 0x129c  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
13:03:07.0703 0x129c  Psched - ok
13:03:07.0734 0x129c  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
13:03:07.0796 0x129c  ql2300 - ok
13:03:07.0828 0x129c  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
13:03:07.0828 0x129c  ql40xx - ok
13:03:07.0859 0x129c  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
13:03:07.0890 0x129c  QWAVE - ok
13:03:07.0906 0x129c  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:03:07.0921 0x129c  QWAVEdrv - ok
13:03:07.0952 0x129c  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:03:07.0984 0x129c  RasAcd - ok
13:03:08.0030 0x129c  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
13:03:08.0062 0x129c  RasAgileVpn - ok
13:03:08.0077 0x129c  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
13:03:08.0108 0x129c  RasAuto - ok
13:03:08.0124 0x129c  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
13:03:08.0155 0x129c  Rasl2tp - ok
13:03:08.0202 0x129c  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
13:03:08.0280 0x129c  RasMan - ok
13:03:08.0296 0x129c  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:03:08.0327 0x129c  RasPppoe - ok
13:03:08.0327 0x129c  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
13:03:08.0358 0x129c  RasSstp - ok
13:03:08.0389 0x129c  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:03:08.0420 0x129c  rdbss - ok
13:03:08.0436 0x129c  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
13:03:08.0452 0x129c  rdpbus - ok
13:03:08.0483 0x129c  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
13:03:08.0498 0x129c  RDPCDD - ok
13:03:08.0530 0x129c  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
13:03:08.0561 0x129c  RDPDR - ok
13:03:08.0576 0x129c  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
13:03:08.0623 0x129c  RDPENCDD - ok
13:03:08.0639 0x129c  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
13:03:08.0654 0x129c  RDPREFMP - ok
13:03:08.0764 0x129c  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:03:08.0826 0x129c  RdpVideoMiniport - ok
13:03:08.0888 0x129c  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
13:03:08.0966 0x129c  RDPWD - ok
13:03:09.0060 0x129c  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:03:09.0091 0x129c  rdyboost - ok
13:03:09.0122 0x129c  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:03:09.0154 0x129c  RemoteAccess - ok
13:03:09.0200 0x129c  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:03:09.0232 0x129c  RemoteRegistry - ok
13:03:09.0278 0x129c  [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
13:03:09.0294 0x129c  RFCOMM - ok
13:03:09.0341 0x129c  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:03:09.0403 0x129c  RpcEptMapper - ok
13:03:09.0434 0x129c  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
13:03:09.0450 0x129c  RpcLocator - ok
13:03:09.0481 0x129c  [ 0395B42B3885269C039C6705D5A49BE3, A87697AFC9D4478DCD0A0053DBE378F3F84961BCF1A911DBB4161EEB350CB064 ] RpcSs           C:\Windows\system32\rpcss.dll
13:03:09.0512 0x129c  RpcSs - ok
13:03:09.0559 0x129c  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
13:03:09.0606 0x129c  rspndr - ok
13:03:09.0653 0x129c  [ FD731DD23A6C846A848BEA67DAEB70CA, 74D0A6626C8CD50585B08AA62976C3D012B8F440A670C9AEEEF71B3D0D484954 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
13:03:09.0668 0x129c  RSUSBVSTOR - ok
13:03:09.0715 0x129c  [ 282C64DEE8300FA717844ECC9BA5B27A, 59245166F8ABBA649962E0986090ACA1A1B6BE9767A89E09108BF16F3928B2F1 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
13:03:09.0762 0x129c  RTL8167 - ok
13:03:10.0043 0x129c  [ 217FD32F0719C7EB662B989E12363892, 6758EB73A3245A8EF29FB7866A320C7D7E21E700E875A99444CD7A41312CCE04 ] rtsuvc          C:\Windows\system32\DRIVERS\rtsuvc.sys
13:03:10.0324 0x129c  rtsuvc - ok
13:03:10.0386 0x129c  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
13:03:10.0417 0x129c  s3cap - ok
13:03:10.0433 0x129c  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] SamSs           C:\Windows\system32\lsass.exe
13:03:10.0464 0x129c  SamSs - ok
13:03:10.0526 0x129c  [ 07D58D5F7839ABA76118BC037C2C63BD, DD8EE9AFABEA5EBEEA1534B140F50E5170260F59E5542B56EEAA207A58524283 ] SAService       C:\Windows\system32\SAsrv.exe
13:03:10.0558 0x129c  SAService - ok
13:03:10.0604 0x129c  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:03:10.0636 0x129c  sbp2port - ok
13:03:10.0667 0x129c  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:03:10.0729 0x129c  SCardSvr - ok
13:03:10.0745 0x129c  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:03:10.0792 0x129c  scfilter - ok
13:03:10.0932 0x129c  [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule        C:\Windows\system32\schedsvc.dll
13:03:10.0979 0x129c  Schedule - ok
13:03:11.0010 0x129c  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:03:11.0041 0x129c  SCPolicySvc - ok
13:03:11.0072 0x129c  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:03:11.0119 0x129c  SDRSVC - ok
13:03:11.0150 0x129c  [ 65EE3435A9131BEE1608F99F16C48E08, BCEA38DBFDF3E4163DF2273EC5C0DF7B7F295C1E23B58AC3D700F8DE5551A282 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
13:03:11.0150 0x129c  secdrv - detected UnsignedFile.Multi.Generic ( 1 )
13:03:11.0322 0x129c  secdrv ( UnsignedFile.Multi.Generic ) - warning

Code:

ATTFilter

13:03:11.0322 0x129c  secdrv ( UnsignedFile.Multi.Generic ) - warning
13:03:11.0478 0x129c  [ 38CBFFED5FC39CDFE6B4014401ED2629, 7BA730E2EDB8387190E45DA2F475BFE42AB3B12319DE088BD8E9F59227EDA4DD ] seclogon        C:\Windows\system32\seclogon.dll
13:03:11.0525 0x129c  seclogon - ok
13:03:11.0556 0x129c  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
13:03:11.0587 0x129c  SENS - ok
13:03:11.0618 0x129c  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:03:11.0650 0x129c  SensrSvc - ok
13:03:11.0665 0x129c  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
13:03:11.0665 0x129c  Serenum - ok
13:03:11.0696 0x129c  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
13:03:11.0712 0x129c  Serial - ok
13:03:11.0743 0x129c  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
13:03:11.0759 0x129c  sermouse - ok
13:03:11.0821 0x129c  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
13:03:11.0868 0x129c  SessionEnv - ok
13:03:11.0899 0x129c  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
13:03:11.0915 0x129c  sffdisk - ok
13:03:11.0930 0x129c  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
13:03:11.0946 0x129c  sffp_mmc - ok
13:03:11.0962 0x129c  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
13:03:11.0977 0x129c  sffp_sd - ok
13:03:12.0008 0x129c  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
13:03:12.0008 0x129c  sfloppy - ok
13:03:12.0055 0x129c  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:03:12.0086 0x129c  SharedAccess - ok
13:03:12.0102 0x129c  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:03:12.0133 0x129c  ShellHWDetection - ok
13:03:12.0149 0x129c  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
13:03:12.0164 0x129c  sisagp - ok
13:03:12.0196 0x129c  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:03:12.0196 0x129c  SiSRaid2 - ok
13:03:12.0211 0x129c  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
13:03:12.0227 0x129c  SiSRaid4 - ok
13:03:12.0258 0x129c  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
13:03:12.0274 0x129c  Smb - ok
13:03:12.0305 0x129c  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:03:12.0336 0x129c  SNMPTRAP - ok
13:03:12.0352 0x129c  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
13:03:12.0352 0x129c  spldr - ok
13:03:12.0398 0x129c  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
13:03:12.0445 0x129c  Spooler - ok
13:03:12.0570 0x129c  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
13:03:12.0695 0x129c  sppsvc - ok
13:03:12.0742 0x129c  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
13:03:12.0773 0x129c  sppuinotify - ok
13:03:12.0820 0x129c  [ 381C074173702C92080AAD489F1EC6DC, 87814B491D151085C734DA4EAE0B0DD982E084A1BAC0E855F50FB580A7D7FA27 ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:03:12.0851 0x129c  srv - ok
13:03:12.0866 0x129c  [ FC411046A1391AE7206DD513061C6FDF, 5D544F6EAD5B889194B60642B9C3FA9856BCEFF093E06460C65D026890EB871D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:03:12.0898 0x129c  srv2 - ok
13:03:12.0944 0x129c  [ 765C4FFF0E69F7466411C7EC3724188A, D158AD402FB26B3237760F91277716C52203B05A2F4AE16CF06833C776FF19D6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:03:12.0976 0x129c  srvnet - ok
13:03:12.0991 0x129c  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:03:13.0022 0x129c  SSDPSRV - ok
13:03:13.0054 0x129c  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:03:13.0069 0x129c  SstpSvc - ok
13:03:13.0132 0x129c  [ 5EE6503C932CB79B493E4B4D8E23D219, 51DC712611E21F5CF3ED2322A146E167769D082E826B82601471CF782090E8B5 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
13:03:13.0132 0x129c  ssudmdm - ok
13:03:13.0241 0x129c  [ 9DA3B55B17B54789AFB8C657D4ACE4D7, 5E4599E682327E3B8097A88A69ED73F96254A29054744D5DFB782054863F131E ] ss_conn_service C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
13:03:13.0272 0x129c  ss_conn_service - ok
13:03:13.0303 0x129c  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
13:03:13.0319 0x129c  stexstor - ok
13:03:13.0350 0x129c  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
13:03:13.0381 0x129c  StiSvc - ok
13:03:13.0397 0x129c  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
13:03:13.0397 0x129c  storflt - ok
13:03:13.0428 0x129c  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
13:03:13.0444 0x129c  StorSvc - ok
13:03:13.0506 0x129c  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
13:03:13.0506 0x129c  storvsc - ok
13:03:13.0537 0x129c  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\drivers\swenum.sys
13:03:13.0537 0x129c  swenum - ok
13:03:13.0568 0x129c  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
13:03:13.0600 0x129c  swprv - ok
13:03:13.0693 0x129c  [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain         C:\Windows\system32\sysmain.dll
13:03:13.0771 0x129c  SysMain - ok
13:03:13.0787 0x129c  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
13:03:13.0802 0x129c  TabletInputService - ok
13:03:13.0849 0x129c  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:03:13.0880 0x129c  TapiSrv - ok
13:03:13.0958 0x129c  [ C25848DB4A86839A7EDD1077F62AD980, C0C6AADA83BD21DF1243B2BEBA83AC295F49B5C02B2639EF473BBDD3A31AF4C5 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:03:14.0021 0x129c  Tcpip - ok
13:03:14.0083 0x129c  [ C25848DB4A86839A7EDD1077F62AD980, C0C6AADA83BD21DF1243B2BEBA83AC295F49B5C02B2639EF473BBDD3A31AF4C5 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
13:03:14.0130 0x129c  TCPIP6 - ok
13:03:14.0161 0x129c  [ A4BF8BE9D1F7D563C7868AC7B2561545, E3C2FFE53373E5255DC388E0C81CCE965E432EFAF52C85B5B3B3918815114073 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:03:14.0192 0x129c  tcpipreg - ok
13:03:14.0224 0x129c  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
13:03:14.0255 0x129c  TDPIPE - ok
13:03:14.0286 0x129c  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
13:03:14.0302 0x129c  TDTCP - ok
13:03:14.0364 0x129c  [ 8F143F86FDD8CF4F7BD25973C5983F9D, D3ECB70C5ACAFB6C07CB2104FBEA3FA965299F1BE84D33334DB0FAAA88F738A5 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:03:14.0380 0x129c  tdx - ok
13:03:14.0395 0x129c  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\drivers\termdd.sys
13:03:14.0395 0x129c  TermDD - ok
13:03:14.0458 0x129c  [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService     C:\Windows\System32\termsrv.dll
13:03:14.0504 0x129c  TermService - ok
13:03:14.0504 0x129c  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
13:03:14.0520 0x129c  Themes - ok
13:03:14.0536 0x129c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
13:03:14.0567 0x129c  THREADORDER - ok
13:03:14.0582 0x129c  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
13:03:14.0629 0x129c  TrkWks - ok
13:03:14.0692 0x129c  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:03:14.0707 0x129c  TrustedInstaller - ok
13:03:14.0754 0x129c  [ 6841C85446F906E4584D43A70484E318, 5B1FD34DC82EC534F4527A4019F3BC910147CA3A54E3F36984C0712307329089 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
13:03:14.0770 0x129c  tssecsrv - ok
13:03:14.0801 0x129c  [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:03:14.0832 0x129c  TsUsbFlt - ok
13:03:14.0879 0x129c  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
13:03:14.0926 0x129c  tunnel - ok
13:03:14.0926 0x129c  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
13:03:14.0941 0x129c  uagp35 - ok
13:03:14.0957 0x129c  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:03:14.0988 0x129c  udfs - ok
13:03:15.0019 0x129c  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:03:15.0019 0x129c  UI0Detect - ok
13:03:15.0066 0x129c  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
13:03:15.0082 0x129c  uliagpkx - ok
13:03:15.0097 0x129c  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\drivers\umbus.sys
13:03:15.0113 0x129c  umbus - ok
13:03:15.0128 0x129c  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
13:03:15.0160 0x129c  UmPass - ok
13:03:15.0206 0x129c  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
13:03:15.0222 0x129c  UmRdpService - ok
13:03:15.0238 0x129c  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
13:03:15.0284 0x129c  upnphost - ok
13:03:15.0316 0x129c  [ 87632869F4350B7CE711B356B1936B2B, 9E67211ACFC637F8C6B6AD5BE9CC61B69FEDF73408A1B678818200CFB0A0E585 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
13:03:15.0347 0x129c  usbccgp - ok
13:03:15.0394 0x129c  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
13:03:15.0440 0x129c  usbcir - ok
13:03:15.0456 0x129c  [ EF8127E7E612694F4E8FFDA37D9D00E4, 15E05CD77B1411728A314267FCDC1A1B32E5D003DB9E6D216025149AF2006D4E ] usbehci         C:\Windows\system32\drivers\usbehci.sys
13:03:15.0503 0x129c  usbehci - ok
13:03:15.0534 0x129c  [ 711E9F7CA6F9A2351F4F97F31004E589, DD9CFE415A95A1BA96A0108B7DD05E07861DFB28E6A08E024C32DAF208B5FB11 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
13:03:15.0565 0x129c  usbhub - ok
13:03:15.0581 0x129c  [ 831F708F06CD5BF3933FBDFB388C606D, 9EE74338CF3FFD54B71AECBFD2CCC78512C92860A43663CE9A253150C332D881 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
13:03:15.0596 0x129c  usbohci - ok
13:03:15.0628 0x129c  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
13:03:15.0643 0x129c  usbprint - ok
13:03:15.0690 0x129c  [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
13:03:15.0706 0x129c  usbscan - ok
13:03:15.0799 0x129c  [ 144DA53294922A84FFAA3D90B1453745, A8DC6B534E4526E2226CF6C9D53A4B6B251D2F23728E41737063D24024C5266F ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:03:16.0002 0x129c  USBSTOR - ok
13:03:16.0064 0x129c  [ 89BDF895EB76E3EC1C02EEF5AA18928D, 9CF4C787E75D59A713BCA2C1191A2492110B79F298AABC4608745125529D4DE3 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
13:03:16.0096 0x129c  usbuhci - ok
13:03:16.0127 0x129c  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
13:03:16.0158 0x129c  usbvideo - ok
13:03:16.0189 0x129c  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
13:03:16.0236 0x129c  UxSms - ok
13:03:16.0252 0x129c  [ C9744493B99249CA8BEDE9190EB58344, 0A9EDD80C4D1ADC974BCB622773673A284D2AF81F8D9195B6E2B5B9CB5D326E0 ] VaultSvc        C:\Windows\system32\lsass.exe
13:03:16.0267 0x129c  VaultSvc - ok
13:03:16.0314 0x129c  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:03:16.0314 0x129c  vdrvroot - ok
13:03:16.0361 0x129c  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
13:03:16.0408 0x129c  vds - ok
13:03:16.0439 0x129c  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
13:03:16.0454 0x129c  vga - ok
13:03:16.0454 0x129c  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
13:03:16.0486 0x129c  VgaSave - ok
13:03:16.0517 0x129c  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
13:03:16.0532 0x129c  vhdmp - ok
13:03:16.0564 0x129c  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
13:03:16.0564 0x129c  viaagp - ok
13:03:16.0579 0x129c  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
13:03:16.0595 0x129c  ViaC7 - ok
13:03:16.0642 0x129c  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
13:03:16.0642 0x129c  viaide - ok
13:03:16.0657 0x129c  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
13:03:16.0673 0x129c  vmbus - ok
13:03:16.0688 0x129c  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
13:03:16.0704 0x129c  VMBusHID - ok
13:03:16.0720 0x129c  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:03:16.0735 0x129c  volmgr - ok
13:03:16.0766 0x129c  [ 21D83DD717E8D681364A5E44A5459717, 2D938D07132A2D37FB164CA322A93951729D6AF65BA8BAF8493D02B203F13243 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:03:16.0782 0x129c  volmgrx - ok
13:03:16.0798 0x129c  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:03:16.0813 0x129c  volsnap - ok
13:03:16.0829 0x129c  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
13:03:16.0844 0x129c  vsmraid - ok
13:03:16.0907 0x129c  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
13:03:16.0969 0x129c  VSS - ok
13:03:17.0000 0x129c  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
13:03:17.0016 0x129c  vwifibus - ok
13:03:17.0047 0x129c  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
13:03:17.0063 0x129c  vwififlt - ok
13:03:17.0110 0x129c  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
13:03:17.0141 0x129c  W32Time - ok
13:03:17.0156 0x129c  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
13:03:17.0172 0x129c  WacomPen - ok
13:03:17.0219 0x129c  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
13:03:17.0250 0x129c  WANARP - ok
13:03:17.0250 0x129c  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:03:17.0266 0x129c  Wanarpv6 - ok
13:03:17.0312 0x129c  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
13:03:17.0375 0x129c  wbengine - ok
13:03:17.0406 0x129c  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:03:17.0437 0x129c  WbioSrvc - ok
13:03:17.0468 0x129c  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:03:17.0500 0x129c  wcncsvc - ok
13:03:17.0531 0x129c  [ D9DF5C53DFE502D88A726DD6EFB3CCC3, 2804FA28CEF1A15C1E1BAAB440F7546A497C3B894313521750380F789678BC0C ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:03:17.0546 0x129c  WcsPlugInService - ok
13:03:17.0562 0x129c  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
13:03:17.0562 0x129c  Wd - ok
13:03:17.0624 0x129c  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:03:17.0656 0x129c  Wdf01000 - ok
13:03:17.0702 0x129c  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:03:17.0734 0x129c  WdiServiceHost - ok
13:03:17.0734 0x129c  [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:03:17.0749 0x129c  WdiSystemHost - ok
13:03:17.0796 0x129c  [ DC54D7A40B6E18E5C7F592F836D163FF, 436AF3B94EAE6CBD2516A63235AE1D6EC4F1FCAA0F974A9672BB5AB2A846BB2C ] WebClient       C:\Windows\System32\webclnt.dll
13:03:17.0812 0x129c  WebClient - ok
13:03:17.0843 0x129c  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:03:17.0890 0x129c  Wecsvc - ok
13:03:17.0890 0x129c  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:03:17.0921 0x129c  wercplsupport - ok
13:03:17.0968 0x129c  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
13:03:17.0999 0x129c  WerSvc - ok
13:03:18.0030 0x129c  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
13:03:18.0061 0x129c  WfpLwf - ok
13:03:18.0077 0x129c  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:03:18.0092 0x129c  WIMMount - ok
13:03:18.0155 0x129c  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
13:03:18.0217 0x129c  WinDefend - ok
13:03:18.0248 0x129c  WinHttpAutoProxySvc - ok
13:03:18.0295 0x129c  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:03:18.0326 0x129c  Winmgmt - ok
13:03:18.0389 0x129c  [ 8949A93520F7008C3B7AD320A0EEA267, F77C6BF73B300347FEB3D02C7A1F98807546D95E10E499D385B7F00D1366CC59 ] WinRM           C:\Windows\system32\WsmSvc.dll
13:03:18.0451 0x129c  WinRM - ok
13:03:18.0498 0x129c  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
13:03:18.0514 0x129c  WinUsb - ok
13:03:18.0560 0x129c  [ BB5D5249C49DB0D9B08AFB220019E1CF, 5DD01888BC303891FC5690D3F4EA795F185B934D985FC0F48DC30CC0718E5123 ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:03:18.0607 0x129c  Wlansvc - ok
13:03:18.0638 0x129c  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
13:03:18.0654 0x129c  WmiAcpi - ok
13:03:18.0685 0x129c  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:03:18.0701 0x129c  wmiApSrv - ok
13:03:18.0779 0x129c  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
13:03:18.0857 0x129c  WMPNetworkSvc - ok
13:03:18.0872 0x129c  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
13:03:18.0888 0x129c  WPCSvc - ok
13:03:18.0919 0x129c  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:03:18.0950 0x129c  WPDBusEnum - ok
13:03:18.0982 0x129c  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:03:19.0013 0x129c  ws2ifsl - ok
13:03:19.0028 0x129c  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
13:03:19.0044 0x129c  wscsvc - ok
13:03:19.0060 0x129c  WSearch - ok
13:03:19.0138 0x129c  [ 8E6E93DFE1C8C1732E4B2C843CE4ABA5, 354C2BC424D92AE09EADBCAD92299C392C57AFB543EAC1B0F7675A907E9BCEE5 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:03:19.0216 0x129c  wuauserv - ok
13:03:19.0247 0x129c  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:03:19.0278 0x129c  WudfPf - ok
13:03:19.0294 0x129c  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:03:19.0325 0x129c  WUDFRd - ok
13:03:19.0340 0x129c  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:03:19.0356 0x129c  wudfsvc - ok
13:03:19.0403 0x129c  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:03:19.0434 0x129c  WwanSvc - ok
13:03:19.0465 0x129c  ================ Scan global ===============================
13:03:19.0496 0x129c  [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
13:03:19.0543 0x129c  [ 00B034B1F3A4201F01079E8645FD9A84, 1923F55D09052D1A5D4CD56E11E768EF78F951F669B7F93EFB648E14346F5387 ] C:\Windows\system32\winsrv.dll
13:03:19.0543 0x129c  [ 00B034B1F3A4201F01079E8645FD9A84, 1923F55D09052D1A5D4CD56E11E768EF78F951F669B7F93EFB648E14346F5387 ] C:\Windows\system32\winsrv.dll
13:03:19.0574 0x129c  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
13:03:19.0621 0x129c  [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
13:03:19.0621 0x129c  [ Global ] - ok
13:03:19.0621 0x129c  ================ Scan MBR ==================================
13:03:19.0621 0x129c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:03:19.0871 0x129c  \Device\Harddisk0\DR0 - ok
13:03:19.0871 0x129c  ================ Scan VBR ==================================
13:03:19.0871 0x129c  [ 35449AF1CD9D5D6F4712F261FD5B1BFD ] \Device\Harddisk0\DR0\Partition1
13:03:19.0871 0x129c  \Device\Harddisk0\DR0\Partition1 - ok
13:03:19.0886 0x129c  [ CA28838259BAA75AFDFC978010E1A021 ] \Device\Harddisk0\DR0\Partition2
13:03:19.0886 0x129c  \Device\Harddisk0\DR0\Partition2 - ok
13:03:19.0886 0x129c  [ 75BD53A930A499FD84C2703610083A9F ] \Device\Harddisk0\DR0\Partition3
13:03:19.0886 0x129c  \Device\Harddisk0\DR0\Partition3 - ok
13:03:19.0886 0x129c  ================ Scan generic autorun ======================
13:03:19.0980 0x129c  [ CB0D985C9FD62FF076C3637E4C924B09, 2A089C8FEA897B532A41A5D3352BEEBD5BAB9E3988BA5E0C62B61DF8D9ACA1FF ] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent.exe
13:03:20.0011 0x129c  cAudioFilterAgent - ok
13:03:20.0074 0x129c  [ 8970A59A838FF1CDC3D62D85823AA61E, 5842DAFD20C1A024CF8984652A08D12DBA1DE15788794D01FF6070D4E24D2479 ] C:\Program Files\CONEXANT\SAII\SACpl.exe
13:03:20.0136 0x129c  SmartAudio - detected UnsignedFile.Multi.Generic ( 1 )
13:03:20.0230 0x129c  Detect skipped due to KSN trusted
13:03:20.0230 0x129c  SmartAudio - ok
13:03:20.0339 0x129c  [ 3F8FA61D65917BCD93BCFA7D65070A81, 00BF427E2FCF1716F9A8DDC76B030F90ECB69673AD29877A917998ABE298B0AB ] C:\Program Files\Elantech\ETDCtrl.exe
13:03:20.0417 0x129c  ETDCtrl - ok
13:03:20.0495 0x129c  [ E6A3062BDB2E18EBDEB69CF7F7A3A070, 48AB0CCA0230DCBB47CCC765659E390A4A42AC7303A27B835B9FBB1168AC7BF1 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
13:03:20.0526 0x129c  IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
13:03:20.0620 0x129c  Detect skipped due to KSN trusted
13:03:20.0620 0x129c  IAStorIcon - ok
13:03:20.0698 0x129c  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
13:03:20.0698 0x129c  HP Software Update - ok
13:03:20.0713 0x129c  Sidebar - ok
13:03:20.0744 0x129c  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
13:03:20.0760 0x129c  mctadmin - ok
13:03:20.0760 0x129c  Sidebar - ok
13:03:20.0776 0x129c  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
13:03:20.0791 0x129c  mctadmin - ok
13:03:21.0571 0x129c  [ C7C42AC946E25EC04BC671516A347FF9, 03DCB98F1764862A0DFC1B3A6CD34BA583DA512E8E4556E891A228832C0F8DE1 ] C:\Users\velsench\AppData\Local\Amazon Music\Amazon Music Helper.exe
13:03:21.0758 0x129c  Amazon Music - ok
13:03:21.0821 0x129c  [ CC436BB2A26391F3DEBE316F6FB0474F, 2DA63827AD1449CA5F2888ADFA9645F1EAF8B39D26EC214441EE80F3A56E6E72 ] C:\Users\velsench\AppData\Local\Microsoft\BingSvc\BingSvc.exe
13:03:21.0836 0x129c  BingSvc - ok
13:03:21.0836 0x129c  Waiting for KSN requests completion. In queue: 93
13:03:22.0991 0x129c  Win FW state via NFP2: enabled ( trusted )
13:03:23.0100 0x129c  ============================================================
13:03:23.0100 0x129c  Scan finished
13:03:23.0100 0x129c  ============================================================
13:03:23.0116 0x11d4  Detected object count: 1
13:03:23.0116 0x11d4  Actual detected object count: 1
13:03:29.0387 0x11d4  secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
13:03:29.0387 0x11d4  secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip

cosinus · 23.07.2018, 12:08

Adware/Junkware/Toolbars entfernen

Alte Versionen von adwCleaner vorher löschen, danach neu runterladen auf den Desktop!
Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren!

adwCleaner v7.x

Downloade Dir bitte AdwCleaner auf deinen Desktop (Bebilderte Anleitung).

Schließe alle offenen Programme und Browser.
Starte die adwcleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Einstellungen, scrolle nach unten und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- Tracing Schlüssel löschen
- Prefetch-Dateien löschen
- Proxy wiederherstellen
- IE-Policies wiederherstellen
- Chrome-Policies wiederherstellen
- Winsock wiederherstellen
Klicke nun auf Dashboard, dann auf Jetzt scannen und warte bis der Suchlauf abgeschlossen ist.
Klicke nun auf Bereinigen & Reparieren und bestätige mit Jetzt bereinigen.

WICHTIG:
Sollte AdwCleaner nichts finden, klicke auf Grundlegende Reparatur ausführen und anschließend auf Jetzt bereinigen.
Nach dem Neustart öffnet sich AdwCleaner automatisch. Klicke auf Log-Datei ansehen.
Poste mir deren Inhalt der Log-Datei mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt. (xx = fortlaufende Nummer).

krümmel · 23.07.2018, 12:27

Ok, auch das habe ich gemacht:

Code:

ATTFilter

# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build:    07-17-2018
# Database: 2018-07-19.5
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    07-23-2018
# Duration: 00:00:03
# OS:       Windows 7 Professional
# Cleaned:  13
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Deleted       C:\Program Files\myfree codec
Deleted       C:\Windows\System32\config\systemprofile\AppData\Local\YSearchUtil
Deleted       C:\Users\velsench\AppData\Local\YSearchUtil

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Deleted       HKCU\Software\Myfree Codec
Deleted       HKLM\Software\Myfree Codec
Deleted       HKLM\Software\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.izito.de
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\izito.de
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\pckeeper.software
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\land.pckeeper.software

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

Deleted       Search and New Tab by Yahoo

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2323 octets] - [23/07/2018 13:21:34]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

cosinus · 23.07.2018, 12:35

adwcleaner bitte zwecks Kontrolle wiederholen

krümmel · 23.07.2018, 12:39

Getan.

Es wurden keine Bedrohungen gefunden

cosinus · 23.07.2018, 12:45

Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken.

23.07.2018, 10:52	#4
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows Sicherheitsalarm Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken. __________________ Logfiles bitte immer in CODE-Tags posten

23.07.2018, 12:35	#13
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows Sicherheitsalarm adwcleaner bitte zwecks Kontrolle wiederholen __________________ Logfiles bitte immer in CODE-Tags posten

23.07.2018, 12:45	#15
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows Sicherheitsalarm Ich brauche neue FRST-Logs . Haken setzen bei addition.txt dann auf Untersuchen klicken. __________________ Logfiles bitte immer in CODE-Tags posten

Windows Sicherheitsalarm

Log-Analyse und Auswertung: Windows Sicherheitsalarm