| |
| |||||||
Log-Analyse und Auswertung: Kriege Malware nicht aus dem System (Firefox/Win 7)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
27.10.2019, 19:29
| #1 |
| |  Kriege Malware nicht aus dem System (Firefox/Win 7) Seit einiger Zeit warnt mich mein GData Virenscanner immer wieder vor der Amazonaws - Adware. ICh habe keine Idee wie ich die Adware von meinem PC bekommen kann. Hier die Log von GData: Startzeit Art Titel Status 2019-10-27 18:15:24 Prüfung von Web-Inhalten Junkware (PUP) gefunden Fertig Virenprüfung von Web-Inhalten Adresse: hxxp://s3.amazonaws.com/jscache/13b978ff36417267e9.js Junkware (PUP): Script.Adware.Injector.OC (Engine B) Status: Der Zugriff wurde verweigert. Engines: Engine A: AVA 25.23790, Engine B: GD 26.16442 BItte um Hilfe - Danke! FRST: FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2019
durchgeführt von Elrond (Administrator) auf IMLADRIS (27-10-2019 18:20:53)
Gestartet von C:\Users\Elrond\Downloads\Viren
Geladene Profile: Elrond (Verfügbare Profile: Elrond)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 8 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(FNet Co., Ltd. -> FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltSur64.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\WebProtection\NativeMessagingWP.exe
(G DATA Software AG -> G Data Software AG) C:\Program Files (x86)\G DATA\TotalSecurity\AVK\AVKWCtlx64.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\TotalSecurity\AVKTray\AVKTray.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\TotalSecurity\Firewall\GDFirewallTray.exe
(G DATA Software AG -> G Data Software AG) C:\Program Files (x86)\G DATA\TotalSecurity\Firewall\GDFwSvcx64.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\TotalSecurity\GUI\GDSC.exe
(Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Logitech, Inc. -> ) C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Logitech, Inc. -> Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
(NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA Technologies Inc. -> VIA)
HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [6311104 2018-11-18] (FNet Co., Ltd. -> FNet Co., Ltd.)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2000-01-01] (VIA Technologies Inc. -> VIA)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-12] (Logitech, Inc. -> Logitech Inc.)
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [2872320 2010-11-21] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [2872320 2010-11-21] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\MountPoints2: I - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\MountPoints2: {501f3d32-d173-11e8-9a9f-bc5ff49f7f1d} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\MountPoints2: {8e4b2d76-6350-11e8-9bbd-bc5ff49f7f1d} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\MountPoints2: {c83d722c-50a1-11e9-8a0a-bc5ff49f7f1d} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\MountPoints2: {efb5c258-62a4-11e8-92a8-bc5ff49f7f1d} - J:\HiSuiteDownLoader.exe
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\MountPoints2: {efb5c262-62a4-11e8-92a8-bc5ff49f7f1d} - I:\HiSuiteDownLoader.exe
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2872320 2010-11-21] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [2872320 2010-11-21] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {03C8941D-B2E4-40A2-902A-0EDFDEEC1A96} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [946112 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {100DF2F6-DC3E-4E7E-9C8F-8E138A2B629E} - \Driver Booster SkipUAC (Elrond) -> Keine Datei <==== ACHTUNG
Task: {12927869-2E0A-4C00-B0FA-AD2D02BF278A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A89611E-8CF0-4F5C-81C9-867CBE1236DE} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [732096 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {212ACF17-2883-47BD-B9F4-41E59715156D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-10-09] (Adobe Inc. -> Adobe)
Task: {29833D99-E9E4-408F-883A-CB1DC73ED230} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {32C9A4B1-5478-4395-B8B6-A2B6E8356B99} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5E5F74AC-E44E-4B54-BA68-9525ACF4A013} - System32\Tasks\IMF_SkipUAC_Elrond => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
Task: {95A63167-C7E1-4A3E-813B-AE5DD60B67DD} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_270_Plugin.exe [1457720 2019-10-09] (Adobe Inc. -> Adobe)
Task: {9842899E-97E3-46AD-A058-CF10C39B07EC} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436672 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9B13F9C9-F11A-454C-B64F-5BB2BF9BF438} - System32\Tasks\Games\UpdateCheck_S-1-5-21-150758865-1222291635-2853659951-1001 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746880 2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Task: {B3072226-EED8-4056-A08B-4CDC9E112446} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984 2011-06-01] (Apple Inc. -> Apple Inc.)
Task: {CC8B7341-481C-4526-A5C1-780C9D6342DE} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [732096 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D16258A1-E722-4C54-874A-ED862B2A02A9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1704384 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DF418B99-BF22-4E9A-A3B1-EBBEF0E4ED51} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Elrond\Downloads\adwcleaner_7.3.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: 127.0.0.1 gdpwmgrlocalhost
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{30F169D0-226A-47F9-8261-0085ADB46A1B}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {95B41279-2842-4EB5-B504-3185793C2704} URL =
SearchScopes: HKU\S-1-5-21-150758865-1222291635-2853659951-1001 -> DefaultScope {95B41279-2842-4EB5-B504-3185793C2704} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-12-03] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-12-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Foxit PhantomPDF Create PDF ToolBar Helper -> {A5DD10F7-5ABB-4EEF-B4C8-6748D44DAF2A} -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2018-07-12] (Foxit Software Incorporated -> )
Toolbar: HKLM-x32 - Foxit PhantomPDF Create PDF ToolBar - {BFD9D8A8-57FF-488A-B919-065EC77CF82F} - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\IEAddin\IEAddin.dll [2018-07-12] (Foxit Software Incorporated -> )
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Windows -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 38ujuteo.default-1343327910059
FF ProfilePath: C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059 [2019-10-27]
FF Homepage: Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059 -> hxxps://www.youtube.com/watch?v=kH9ZDFBI1EU
FF NewTab: Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059 -> hxxp://www.bing.com/?pc=COSP&ptag=D061316-A6B219395BABB4E59ADF&form=CONMHP&conlogo=CT3332005
FF Extension: (AdBlocker Ultimate) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\adblockultimate@adblockultimate.net.xpi [2019-08-28]
FF Extension: (YouTube Download Plus) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\addon@ytdownloader.info.xpi [2019-09-12]
FF Extension: (AdGuard Werbeblocker) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\adguardadblocker@adguard.com.xpi [2019-10-21]
FF Extension: (OneNote Web Clipper) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\Clipper@OneNote.com.xpi [2018-07-04]
FF Extension: (LastPass: Free Password Manager) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\support@lastpass.com.xpi [2019-10-23]
FF Extension: (G DATA WebProtection) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\webprotection@gdata.de.xpi [2019-02-01] [UpdateUrl:hxxps://gdata-a.akamaihd.net/R/CommonUpdate/extensions/webprotection/updates.json]
FF Extension: (Startpage.com — Datenschutz-Suchmaschine) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2019-10-10]
FF Extension: (white leopard gaze) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\{266bd332-6bda-44c7-8171-9721b6d56faa}.xpi [2019-04-25]
FF Extension: (Three Wolf Moon Shirt) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\{50193c98-9eee-4b67-9244-95ced154911d}.xpi [2019-05-14]
FF Extension: (Kein Name) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\38ujuteo.default-1343327910059\Extensions\{b9acc029-d62b-4d23-b921-8e7aea34266a}.xpi [2017-11-15]
FF ProfilePath: C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default [2019-10-27]
FF Homepage: Mozilla\Firefox\Profiles\ie57qi5x.default -> hxxps://www.google.com/
FF NetworkProxy: Mozilla\Firefox\Profiles\ie57qi5x.default -> autoconfig_url", "file:///C:\\DOKUME~1\\Andreas\\LOKALE~1\\Temp\\proxtube.pac"
FF Extension: (YouTubeAnywhere) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default\Extensions\addon@youtubeanywhere.com [2018-05-15] [] [ist nicht signiert]
FF Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default\Extensions\sp@avast.com.xpi [2019-07-09]
FF Extension: (Avast Online Security) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default\Extensions\wrc@avast.com.xpi [2019-07-09]
FF Extension: (WebMail Notifier) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2012-07-25] [] [ist nicht signiert]
FF Extension: (Adblock Plus) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-07-25] [] [ist nicht signiert]
FF Extension: (Download Statusbar) - C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2012-05-10] [] [ist nicht signiert]
FF Extension: (Kein Name) - C:\Dokumente und Einstellungen\Andreas\Anwendungsdaten\Mozilla\Firefox\Profiles\ie57qi5x.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [nicht gefunden]
FF Extension: (Kein Name) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [nicht gefunden]
FF Extension: (Kein Name) - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [nicht gefunden]
FF Extension: (Kein Name) - C:\Dokumente und Einstellungen\Andreas\Anwendungsdaten\Mozilla\Firefox\Profiles\ie57qi5x.default\extensions\firejump@firejump.net [nicht gefunden]
FF Extension: (Kein Name) - C:\Dokumente und Einstellungen\Andreas\Anwendungsdaten\Mozilla\Firefox\Profiles\ie57qi5x.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [nicht gefunden]
FF SearchPlugin: C:\Users\Elrond\AppData\Roaming\Mozilla\Firefox\Profiles\ie57qi5x.default\searchplugins\forestle-de.xml [2012-05-26]
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2018-06-04] []
FF HKLM\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi [2018-06-04]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF HKLM-x32\...\Firefox\Extensions: [FireFoxNew-WebExtensions@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FireFoxNew-WebExtensions@foxitsoftware.com.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_270.dll [2019-10-09] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-12-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-12-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_270.dll [2019-10-09] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-07-17] (Foxit Software Incorporated -> Foxit Corporation)
Chrome:
=======
CHR Profile: C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default [2019-07-09]
CHR Extension: (Präsentationen) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-27]
CHR Extension: (Docs) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-27]
CHR Extension: (Google Drive) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-06-27]
CHR Extension: (YouTube) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-27]
CHR Extension: (Foxit PDF Creator) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\cifnddnffldieaamihfkhkdgnbhfmaci [2019-06-27]
CHR Extension: (Tabellen) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-27]
CHR Extension: (Google Docs Offline) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-06-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-06-27]
CHR Extension: (Google Mail) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-27]
CHR Extension: (Chrome Media Router) - C:\Users\Elrond\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-27]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2018-06-04]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2018-06-04]
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [5931744 2018-11-07] (G DATA Software AG -> G DATA Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\TotalSecurity\AVK\AVKWCtlx64.exe [3682832 2018-09-25] (G DATA Software AG -> G Data Software AG)
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] (NVIDIA Corporation -> )
S3 GDBackupSvc; C:\Program Files (x86)\G DATA\TotalSecurity\AVKBackup\AVKBackupService.exe [5936264 2018-09-25] (G DATA Software AG -> G DATA Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G DATA\TotalSecurity\Firewall\GDFwSvcx64.exe [3799200 2018-10-30] (G DATA Software AG -> G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [1461416 2018-11-06] (G DATA Software AG -> G DATA Software AG)
S3 GDTunerSvc; C:\Program Files (x86)\G DATA\TotalSecurity\AVKTuner\AVKTunerService.exe [5969544 2018-09-25] (G DATA Software AG -> G DATA Software AG)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-08-19] (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert]
S3 myTuningSvc; C:\Program Files (x86)\mytuning utilities 17\SUService64.exe [132088 2017-07-25] (BeanOX UG -> S.A.D. GmbH)
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] (NVIDIA Corporation -> )
S3 TSNxGService; C:\Program Files (x86)\G DATA\TotalSecurity\TSNxG\TSNxGService.exe [262560 2017-12-07] (G DATA Software AG -> G DATA Software)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [36504 2018-08-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2019-05-31] (FNet Co., Ltd. -> FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2018-11-18] (FNet Co., Ltd. -> FNet Co., Ltd.)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [47664 2018-12-24] (G DATA Software AG -> G DATA Software AG)
R3 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [38984 2018-12-24] (G DATA Software AG -> G DATA Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [458288 2018-12-24] (G DATA Software AG -> G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [206880 2018-12-24] (G DATA Software AG -> G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [76960 2018-12-24] (G DATA Software AG -> G DATA Software AG)
S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [60928 2018-08-01] (Microsoft Windows Hardware Compatibility Publisher -> GenesysLogic)
S3 GRD; C:\Windows\system32\drivers\GRD.sys [125640 2019-06-19] (G DATA Software AG -> G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [216728 2018-12-24] (G DATA Software AG -> G Data Software AG)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-08-01] (Martin Malik - REALiX -> REALiX(tm))
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 IMFDownProtect; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFDownProtect.sys [21928 2018-12-06] (IObit Information Technology -> IObit)
S3 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22440 2018-12-06] (IObit Information Technology -> IObit)
S3 IMFForceDelete; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFForceDelete.sys [16216 2018-12-06] (IObit Information Technology -> IObit)
S3 nusb3hub; C:\Windows\system32\drivers\nusb3hub.sys [80384 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 nusb3xhc; C:\Windows\system32\drivers\nusb3xhc.sys [180736 2010-09-30] (Microsoft Windows Hardware Compatibility Publisher -> Renesas Electronics Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [70024 2019-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 optousb; C:\Windows\System32\DRIVERS\optousb.sys [27264 2013-03-11] (Microsoft Windows Hardware Compatibility Publisher -> OPTO ELECTRONICS CO.,LTD.)
R3 optovcm; C:\Windows\System32\DRIVERS\optovcm.sys [34432 2013-03-11] (Microsoft Windows Hardware Compatibility Publisher -> OPTO ELECTRONICS CO.,LTD.)
S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [35800 2018-12-06] (IObit Information Technology -> IObit)
S4 secdrv; kein ImagePath
R0 TS4NT; C:\Windows\System32\Drivers\TS4nt.sys [109128 2018-12-24] (G DATA Software AG -> G DATA Software AG)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [700624 2018-08-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
U3 aswbdisk; kein ImagePath
U0 Partizan; system32\drivers\Partizan.sys [X]
S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-10-27 18:19 - 2019-10-27 18:21 - 000000000 ____D C:\FRST
2019-10-27 11:14 - 2019-10-27 11:14 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2019-10-27 11:14 - 2019-10-27 11:14 - 000002503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
2019-10-27 11:14 - 2019-10-27 11:14 - 000002491 _____ C:\Users\Public\Desktop\Safari.lnk
2019-10-27 11:14 - 2019-10-27 11:14 - 000002491 _____ C:\ProgramData\Desktop\Safari.lnk
2019-10-27 11:14 - 2019-10-27 11:14 - 000000000 ____D C:\Windows\system32\Tasks\Apple
2019-10-27 11:14 - 2019-10-27 11:14 - 000000000 ____D C:\Program Files (x86)\Safari
2019-10-27 11:14 - 2019-10-27 11:14 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2019-10-27 11:12 - 2019-10-27 11:12 - 038494576 _____ (Apple Inc.) C:\Users\Elrond\Downloads\safarisetup.exe
2019-10-27 11:11 - 2019-10-27 11:11 - 001353232 _____ C:\Users\Elrond\Downloads\Safari - CHIP-Installer.exe
2019-10-27 10:50 - 2019-10-27 18:20 - 000000000 ____D C:\Users\Elrond\Downloads\Viren
2019-10-27 10:48 - 2019-10-27 10:48 - 000003110 _____ C:\Windows\system32\Tasks\AdwCleaner_onReboot
2019-10-27 10:45 - 2019-10-27 10:47 - 000000000 ____D C:\AdwCleaner
2019-10-26 18:55 - 2019-10-26 18:55 - 007675523 _____ C:\Users\Elrond\Downloads\40+Vitalgesunde+Rezepte+-+GruenUndGesund.pdf
2019-10-19 08:52 - 2019-10-19 08:52 - 000466708 _____ C:\Users\Elrond\Downloads\FLT_4_Y1WH899595_0.pdf
2019-10-17 20:06 - 2019-10-17 20:09 - 000144208 _____ C:\Users\Elrond\Desktop\Körperscan.pdf
2019-10-17 20:05 - 2019-10-17 20:09 - 000000000 ____D C:\Users\Elrond\AppData\Roaming\Foxit Scanner Images
2019-10-13 19:59 - 2019-10-13 20:00 - 000000000 ____D C:\Users\Elrond\Desktop\Turtle
2019-10-09 19:06 - 2019-09-19 05:27 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2019-10-09 19:06 - 2019-09-17 03:32 - 004060896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-10-09 19:06 - 2019-09-17 03:32 - 003966688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-10-09 19:06 - 2019-09-17 03:32 - 000709856 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-10-09 19:06 - 2019-09-17 03:32 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-10-09 19:06 - 2019-09-17 03:31 - 005552864 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-10-09 19:06 - 2019-09-17 03:31 - 001319496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-10-09 19:06 - 2019-09-17 03:31 - 000263904 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-10-09 19:06 - 2019-09-17 03:31 - 000155360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-10-09 19:06 - 2019-09-17 03:31 - 000096992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-10-09 19:06 - 2019-09-17 03:30 - 001670784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000834048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:29 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 001010176 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:28 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 03:04 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-10-09 19:06 - 2019-09-17 03:03 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-10-09 19:06 - 2019-09-17 03:00 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-10-09 19:06 - 2019-09-17 03:00 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-10-09 19:06 - 2019-09-17 03:00 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-10-09 19:06 - 2019-09-17 02:59 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-10-09 19:06 - 2019-09-17 02:59 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-10-09 19:06 - 2019-09-17 02:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-10-09 19:06 - 2019-09-17 02:59 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-10-09 19:06 - 2019-09-17 02:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-10-09 19:06 - 2019-09-17 02:57 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-10-09 19:06 - 2019-09-17 02:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 02:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 02:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 02:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-10-09 19:06 - 2019-09-17 02:56 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-10-09 19:06 - 2019-09-17 02:56 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-10-09 19:06 - 2019-09-17 02:55 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-10-09 19:06 - 2019-09-17 02:53 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-10-09 19:06 - 2019-09-17 02:53 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-10-09 19:06 - 2019-09-17 02:52 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-10-09 19:06 - 2019-09-17 02:52 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-10-09 19:06 - 2019-09-17 02:52 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-10-09 19:06 - 2019-09-17 02:52 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-10-09 19:06 - 2019-09-17 02:51 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-10-09 19:06 - 2019-09-17 02:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-10-09 19:06 - 2019-09-17 02:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-10-09 19:06 - 2019-09-17 02:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-10-09 19:06 - 2019-09-17 02:51 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-10-09 19:06 - 2019-09-17 02:51 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-10-09 19:06 - 2019-09-17 02:51 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-10-09 19:06 - 2019-09-17 01:13 - 000455392 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2019-10-09 19:06 - 2019-09-11 05:56 - 000353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-10-09 19:06 - 2019-09-11 05:56 - 000241152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msltus40.dll
2019-10-09 19:06 - 2019-09-10 03:27 - 000383488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-10-09 19:06 - 2019-09-10 03:27 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-10-09 19:06 - 2019-09-10 03:27 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-10-09 19:06 - 2019-09-10 03:24 - 001281536 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2019-10-09 19:06 - 2019-09-10 03:24 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-10-09 19:06 - 2019-09-10 03:24 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-10-09 19:06 - 2019-09-10 03:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-10-09 19:06 - 2019-09-10 03:24 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2019-10-09 19:06 - 2019-09-10 03:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2019-10-09 19:06 - 2019-09-10 03:00 - 000361472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-10-09 19:06 - 2019-09-10 03:00 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2019-10-09 19:06 - 2019-09-10 03:00 - 000054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-10-09 19:06 - 2019-09-10 03:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2019-10-09 19:06 - 2019-09-10 03:00 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2019-10-09 19:06 - 2019-09-10 02:54 - 003231744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-10-09 19:06 - 2019-09-10 02:53 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-10-09 19:06 - 2019-09-10 02:53 - 000152576 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2019-10-09 19:06 - 2019-09-10 02:53 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-10-09 19:06 - 2019-09-10 02:53 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2019-10-09 19:06 - 2019-09-10 02:52 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2019-10-09 19:06 - 2019-09-10 02:49 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-10-07 15:52 - 2019-10-07 15:52 - 000064982 _____ C:\Users\Elrond\Downloads\richtlinie_progresnrw_markeinfuehrung_anhang.pdf
2019-10-07 15:51 - 2019-10-07 15:51 - 000034860 _____ C:\Users\Elrond\Downloads\richtlinie_progresnrw_markeinfuehrung.pdf
2019-10-07 11:34 - 2019-10-07 11:34 - 002797324 _____ C:\Users\Elrond\Downloads\095_Bauen-fuer-die-Landwirtschaft-2010-2.pdf
2019-10-06 08:22 - 2019-10-06 08:22 - 012109702 _____ C:\Users\Elrond\Downloads\7-70_Umweltkompass_2018.pdf
2019-10-04 19:48 - 2019-10-04 19:48 - 000110191 _____ C:\Users\Elrond\Downloads\dhl-agb-empfangsoptionen-102019.pdf
2019-10-03 19:59 - 2019-10-03 19:59 - 000084126 _____ C:\Users\Elrond\Downloads\4002005701_2019_Mitteilung_vom_01.10.2019_20191003085926.pdf
2019-10-03 19:44 - 2019-09-12 04:53 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-10-03 19:44 - 2019-09-12 04:52 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-10-03 19:44 - 2019-09-12 04:52 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-10-03 19:44 - 2019-09-12 04:44 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-10-03 19:44 - 2019-09-12 04:44 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-10-03 19:44 - 2019-09-12 04:44 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-10-03 19:44 - 2019-09-12 04:44 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-10-03 19:44 - 2019-09-12 04:44 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-10-03 19:44 - 2019-09-12 04:24 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-10-02 22:27 - 2019-10-02 22:27 - 000000000 ____D C:\Users\Elrond\Downloads\EM
2019-09-30 20:12 - 2019-09-30 20:12 - 000000000 ____D C:\Users\Elrond\Downloads\Securvita
2019-09-30 19:51 - 2019-09-30 19:51 - 000070664 _____ C:\Users\Elrond\AppData\Local\GDIPFONTCACHEV1.DAT
2019-09-30 19:51 - 2019-09-30 19:51 - 000058854 _____ C:\Users\Elrond\Desktop\Maya.pdf
2019-09-30 19:51 - 2019-09-30 19:51 - 000054342 _____ C:\Users\Elrond\Desktop\TK-Übungsgruppe.pdf
2019-09-30 19:51 - 2019-09-30 19:51 - 000034880 _____ C:\Users\Elrond\Desktop\Andersweltreise.pdf
==================== Ein Monat (geänderte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-10-27 12:25 - 2018-05-15 20:45 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-27 11:32 - 2009-07-14 05:45 - 000025872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-10-27 11:32 - 2009-07-14 05:45 - 000025872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-10-27 11:30 - 2018-05-15 20:32 - 000000000 ____D C:\Users\Elrond\AppData\LocalLow\Mozilla
2019-10-27 11:29 - 2018-05-16 05:25 - 000699090 _____ C:\Windows\system32\perfh007.dat
2019-10-27 11:29 - 2018-05-16 05:25 - 000149230 _____ C:\Windows\system32\perfc007.dat
2019-10-27 11:29 - 2009-07-14 06:13 - 001619272 _____ C:\Windows\system32\PerfStringBackup.INI
2019-10-27 11:29 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-10-27 11:25 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-10-27 10:47 - 2018-08-01 21:32 - 000000000 ____D C:\Users\Elrond\AppData\LocalLow\IObit
2019-10-27 10:47 - 2018-08-01 21:31 - 000000000 ____D C:\Users\Elrond\AppData\Roaming\IObit
2019-10-27 10:18 - 2018-06-21 08:51 - 000000000 ____D C:\Users\Elrond\AppData\Local\CrashDumps
2019-10-27 10:08 - 2019-02-25 20:36 - 000000000 ____D C:\Users\Elrond\AppData\Local\JDownloader 2.0
2019-10-27 10:02 - 2018-05-25 20:12 - 000000000 ____D C:\Program Files (x86)\Opticon
2019-10-27 09:23 - 2018-05-15 20:32 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-10-27 09:23 - 2018-05-15 20:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-10-24 18:48 - 2018-12-25 08:50 - 000000000 ____D C:\Users\Elrond\Desktop\S & G
2019-10-24 18:42 - 2018-06-05 19:27 - 000000000 ____D C:\Users\Elrond\Desktop\Schüler
2019-10-15 17:23 - 2019-03-15 11:32 - 000000000 ____D C:\Windows\rescache
2019-10-13 21:22 - 2018-07-29 21:38 - 000000000 ____D C:\Users\Elrond\AppData\Roaming\vlc
2019-10-11 18:30 - 2018-07-29 21:38 - 000000000 ____D C:\Users\Elrond\AppData\Roaming\dvdcss
2019-10-10 18:17 - 2019-09-23 14:29 - 000391624 _____ C:\Windows\system32\FNTCACHE.DAT
2019-10-09 22:53 - 2018-05-20 22:18 - 000000000 ____D C:\Windows\system32\MRT
2019-10-09 22:50 - 2018-05-20 22:18 - 127230528 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-10-09 19:08 - 2018-07-19 15:50 - 000004378 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-10-09 19:08 - 2018-06-06 17:00 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-10-09 19:08 - 2018-06-06 17:00 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-10-09 19:08 - 2018-06-06 17:00 - 000004518 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2019-10-09 19:08 - 2018-06-06 17:00 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-10-09 19:08 - 2018-06-06 17:00 - 000000000 ____D C:\Windows\system32\Macromed
2019-10-06 18:51 - 2019-02-10 11:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tipard
2019-10-06 18:51 - 2018-05-15 20:42 - 000000000 ____D C:\Users\Elrond\Downloads\Installiert
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ================
2018-05-16 07:40 - 2018-05-16 07:40 - 000000000 _____ () C:\Users\Elrond\AppData\Roaming\gdfw.log
2018-05-16 07:40 - 2018-05-16 07:40 - 000000779 _____ () C:\Users\Elrond\AppData\Roaming\gdscan.log
==================== FLock ================
2019-10-27 11:11 C:\Users\Elrond\Downloads\Safari - CHIP-Installer.exe
==================== SigCheck ===============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
LastRegBack: 2019-10-20 00:17
==================== Ende von FRST.txt ============================
FRST AdditionFRST Additions Logfile: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-10-2019
durchgeführt von Elrond (27-10-2019 18:22:42)
Gestartet von C:\Users\Elrond\Downloads\Viren
Windows 7 Professional Service Pack 1 (X64) (2018-05-15 19:20:50)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-150758865-1222291635-2853659951-500 - Administrator - Disabled)
Elrond (S-1-5-21-150758865-1222291635-2853659951-1001 - Administrator - Enabled) => C:\Users\Elrond
Gast (S-1-5-21-150758865-1222291635-2853659951-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-150758865-1222291635-2853659951-1002 - Limited - Enabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: G DATA TOTAL SECURITY (Enabled - Up to date) {A9C56A9B-ECCD-57EA-78F6-92511DA1C885}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: G DATA TOTAL SECURITY (Enabled - Up to date) {12A48B7F-CAF7-5864-4246-A92366268238}
FW: G DATA TOTAL SECURITY (Enabled) {91FEEBBE-A6A2-56B2-53A9-3B64E3728FFE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.270 - Adobe)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.94 - NVIDIA Corporation) Hidden
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AstroWorld 8.0 private edition (HKLM-x32\...\AstroWorld 8.0 private edition) (Version: 8.0.0.7 - AstroWorld Int. - Stefan Nitschke -)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP)
Driver Booster 6 (HKLM-x32\...\Driver Booster_is1) (Version: 6.0.2 - IObit)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Foxit PhantomPDF (HKLM-x32\...\{B23B55B8-89D9-11E8-8772-000C296BF2A5}) (Version: 9.2.0.9297 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.2.0.9297 - Foxit Software Inc.)
G DATA TOTAL SECURITY (HKLM-x32\...\G DATA TOTAL SECURITY) (Version: 25.5.1.21 - G DATA Software AG)
GHome Version 8.1.3.2 (HKLM-x32\...\GHome_is1) (Version: 8.1.3.2 - Michael Suhr & Partner)
GoldWave v5.70 (HKLM-x32\...\GoldWave v5.70) (Version: 5.70 - GoldWave Inc.)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.1.0.309 - Huawei Technologies Co.,Ltd)
Inpaint 4.7 (HKLM-x32\...\{2AEDC172-479F-47AE-8A48-A0524D4AED5B}_is1) (Version: - Teorex)
IObit Malware Fighter 7 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 7.0.2.5254 - IObit)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Mozilla Firefox 70.0 (x64 de) (HKLM\...\Mozilla Firefox 70.0 (x64 de)) (Version: 70.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0 - Mozilla)
mytuning utilities (HKLM-x32\...\{806E4B1E-4C5B-4A39-8914-4569DC957601}) (Version: 17.0.7.61 - S.A.D. Software Vertriebs- und Produktions GmbH)
NVIDIA 3D Vision Controller-Treiber 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{F0C909D7-D643-4628-8C6A-94073139F0CE}) (Version: 4.15.9789 - Apache Software Foundation)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.36 - VIA Technologies, Inc.) Hidden
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
ScanClient 3.4 (HKLM-x32\...\ScanClient_is1) (Version: - GfK SE)
ScanIT-Client 3.3 (HKLM-x32\...\ScanIT-Client_is1) (Version: - GfK SE)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden
Skype Version 8.45 (HKLM-x32\...\Skype_is1) (Version: 8.45 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tipard Musik Converter 9.2.12 (HKLM-x32\...\{AEAE1958-0D0F-4dba-B33E-EE4FD8300672}_is1) (Version: 9.2.12 - Tipard Studio)
Tipard Total Media Converter 9.2.18 (HKLM-x32\...\{792333AA-5387-406a-9356-BECE40894721}_is1) (Version: 9.2.18 - Tipard Studio)
Tipard YouTube Converter 5.0.38 (HKLM-x32\...\{B98BEF8B-482F-4fbc-9067-EC5A5720D8F0}_is1) (Version: 5.0.38 - Tipard Studio)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.36 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
Windows 10-Update-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation)
Wire (HKU\S-1-5-21-150758865-1222291635-2853659951-1001\...\wire) (Version: 3.10.3138 - Wire)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.38 - ASRock Inc.)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ IMFSafeBox] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2019-01-02] (IObit Information Technology -> IObit)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\TotalSecurity\AVK\ShellExt64.dll [2018-09-25] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2019-01-02] (IObit Information Technology -> IObit)
ContextMenuHandlers3: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\TotalSecurity\Shredder\Reisswlf64.dll [2018-09-25] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2019-01-02] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\TotalSecurity\AVK\ShellExt64.dll [2018-09-25] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers6: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-07-12] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2019-01-02] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\TotalSecurity\Shredder\Reisswlf64.dll [2018-09-25] (G DATA Software AG -> G DATA Software AG)
==================== Codecs (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-09-21] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-09-21] (Logitech, Inc. -> Logitech Inc.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2018-06-06 16:59 - 2018-04-30 13:00 - 000075776 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2018-07-21 23:43 - 000000855 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 gdpwmgrlocalhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-150758865-1222291635-2853659951-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Elrond\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe Keine Datei
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe Keine Datei
FirewallRules: [{6A32A29D-AE5D-40D5-A23B-C437818FFECC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EF135C34-E977-4581-91C3-5CE8FE5046A6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5EA097CE-9610-401B-A182-CAF71FF52BF5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4C00AB82-E8F3-4298-B2B7-07F14E981DD7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{00B40465-7A94-46FB-9F4C-F20821070CE7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B119073C-FE1D-435F-B78A-C8A4776CECF3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{522C417B-6483-4C28-B8A5-28F6401AACDF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A40EC490-2336-46B3-B59F-E3CA9F2739A7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{44F5D122-CE09-42A4-A6CA-5DD6178035EB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1CD48764-1C9C-4623-9996-FC197B251FE8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{0244F7E1-7CBA-4498-9DC8-6FAA274B1ED4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{EFB8581D-3DD5-4047-B4C6-230B371C0296}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Driver Booster\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{0888C88A-5BBA-4A25-94A5-A9947DB4BEDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Driver Booster\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{59741BF4-35E1-45E9-A6DA-77E51743FB00}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DBDownloader.exe (Zugriff verweigert) [Datei ist nicht signiert]
FirewallRules: [{5250216A-3E21-4B87-AEA1-CB5C3491990D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\DBDownloader.exe (Zugriff verweigert) [Datei ist nicht signiert]
FirewallRules: [{353DADE2-B0AD-47E4-88D0-9546CF749E3E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\AutoUpdate.exe (IObit Information Technology -> IObit)
FirewallRules: [{11616C31-6494-46BB-A43A-437318429EE1}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.0.2\AutoUpdate.exe (Zugriff verweigert) [Datei ist nicht signiert]
FirewallRules: [{B9549C64-5EEC-4EF6-948F-5E40B3259DD8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8EDBA745-D45F-4760-831A-319E100C29AF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DB56FC9A-FEB3-4D1B-B74E-2E8BA7388221}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{C26A3737-29B5-407D-A2E7-6465455043A1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
==================== Wiederherstellungspunkte =========================
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/27/2019 11:27:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/27/2019 10:18:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ScanIT-Client.exe, Version: 3.4.0.314, Zeitstempel: 0x533bde86
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.24524, Zeitstempel: 0x5d8045ba
Ausnahmecode: 0x0eedfade
Fehleroffset: 0x0000c5af
ID des fehlerhaften Prozesses: 0x1de0
Startzeit der fehlerhaften Anwendung: 0x01d58ca7787e2d35
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\ScanIT-Client\ScanIT-Client.exe
Pfad des fehlerhaften Moduls: C:\Windows\syswow64\KERNELBASE.dll
Berichtskennung: b77ae4a1-f89a-11e9-be84-bc5ff49f7f1d
Error: (10/27/2019 09:25:20 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/26/2019 06:50:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/25/2019 06:01:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/24/2019 06:01:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/23/2019 06:03:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (10/22/2019 07:11:39 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Systemfehler:
=============
Error: (10/27/2019 06:16:27 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (10/27/2019 11:37:04 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (10/27/2019 11:37:04 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.
Error: (10/27/2019 11:32:54 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (10/27/2019 11:32:54 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 70.
Error: (10/27/2019 11:31:33 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (10/27/2019 11:31:33 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (10/27/2019 11:31:33 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Windows Defender:
===================================
Date: 2018-07-04 17:26:19.367
Description:
Beim Aktualisieren der Signaturen wurde von Windows Defender ein Fehler festgestellt.
Neue Signaturversion:1.271.442.0
Vorherige Signaturversion:1.269.1075.0
Aktualisierungsquelle:Benutzer
Signaturtyp:AntiSpyware
Aktualisierungstyp:Delta
Benutzer:NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:1.1.15000.2
Vorherige Modulversion:1.1.14901.4
Fehlercode:0x80070666
Fehlerbeschreibung:Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.
Date: 2018-07-04 17:26:19.366
Description:
Beim Aktualisieren des Moduls wurde von Windows Defender ein Fehler festgestellt.
Neue Modulversion:1.1.15000.2
Vorherige Modulversion:1.1.14901.4
Aktualisierungsquelle:Benutzer
Benutzer:NT-AUTORITÄT\SYSTEM
Fehlercode:0x80070666
Fehlerbeschreibung:Eine andere Version des Produkts ist bereits installiert. Die Installation dieser Version kann nicht fortgesetzt werden. Verwenden Sie die Systemsteuerungsoption "Software", um die vorhandene Version dieses Produkts zu konfigurieren oder zu entfernen.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. P1.40 10/31/2012
Hauptplatine: ASRock N68C-GS FX
Prozessor: AMD Athlon(tm) II X3 450 Processor
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 16383.24 MB
Verfügbarer physikalischer RAM: 9184.21 MB
Summe virtueller Speicher: 32764.63 MB
Verfügbarer virtueller Speicher: 22926.12 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:78.12 GB) (Free:11.6 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: (Extra) (Fixed) (Total:232.88 GB) (Free:220.5 GB) NTFS
Drive e: (Linux/Swap) (Fixed) (Total:9.77 GB) (Free:9.69 GB) NTFS
Drive f: (Ubuntu) (Fixed) (Total:9.77 GB) (Free:9.69 GB) NTFS
Drive g: (Home) (Fixed) (Total:135.23 GB) (Free:135.14 GB) NTFS
Drive h: (WITTEMANN_5) (CDROM) (Total:4.11 GB) (Free:0 GB) UDF
Drive j: () (Removable) (Total:14.83 GB) (Free:13.22 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 0000322F)
Partition 1: (Active) - (Size=78.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=9.8 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=135.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: CCB8DF84)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 14.8 GB) (Disk ID: 029C7BF5)
Partition 1: (Active) - (Size=14.8 GB) - (Type=0C)
==================== Ende von Addition.txt ============================
|
|
27.10.2019, 19:32
| #2 |
| | Tdss 1Code:
ATTFilter 18:32:48.0712 0x12cc TDSS rootkit removing tool 3.1.0.28 Apr 9 2019 21:11:46
18:32:55.0624 0x12cc ============================================================
18:32:55.0624 0x12cc Current date / time: 2019/10/27 18:32:55.0624
18:32:55.0624 0x12cc SystemInfo:
18:32:55.0624 0x12cc
18:32:55.0624 0x12cc OS Version: 6.1.7601 ServicePack: 1.0
18:32:55.0624 0x12cc Product type: Workstation
18:32:55.0624 0x12cc ComputerName: IMLADRIS
18:32:55.0624 0x12cc UserName: Elrond
18:32:55.0624 0x12cc Windows directory: C:\Windows
18:32:55.0624 0x12cc System windows directory: C:\Windows
18:32:55.0624 0x12cc Running under WOW64
18:32:55.0624 0x12cc Processor architecture: Intel x64
18:32:55.0624 0x12cc Number of processors: 3
18:32:55.0624 0x12cc Page size: 0x1000
18:32:55.0624 0x12cc Boot type: Normal boot
18:32:55.0624 0x12cc CodeIntegrityOptions = 0x00000001
18:32:55.0624 0x12cc ============================================================
18:32:55.0717 0x12cc KLMD registered as C:\Windows\system32\drivers\28044496.sys
18:32:55.0717 0x12cc KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.24524, osProperties = 0x1
18:32:55.0866 0x12cc System UUID: {7480177D-7322-2D0A-184A-30B9CCAD2722}
18:32:56.0170 0x12cc Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:32:56.0217 0x12cc Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:32:56.0241 0x12cc Drive \Device\Harddisk2\DR2 - Size: 0x3B6000000 ( 14.84 Gb ), SectorSize: 0x200, Cylinders: 0x791, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:32:56.0241 0x12cc ============================================================
18:32:56.0241 0x12cc \Device\Harddisk0\DR0:
18:32:56.0241 0x12cc MBR partitions:
18:32:56.0241 0x12cc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x9C40000
18:32:56.0241 0x12cc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C40800, BlocksNum 0x1388000
18:32:56.0241 0x12cc \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xAFC8800, BlocksNum 0x1388000
18:32:56.0241 0x12cc \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0xC350800, BlocksNum 0x10E75000
18:32:56.0241 0x12cc \Device\Harddisk1\DR1:
18:32:56.0241 0x12cc MBR partitions:
18:32:56.0241 0x12cc \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C5000
18:32:56.0241 0x12cc \Device\Harddisk2\DR2:
18:32:56.0241 0x12cc MBR partitions:
18:32:56.0241 0x12cc \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x40, BlocksNum 0x1DAFFC0
18:32:56.0241 0x12cc ============================================================
18:32:56.0241 0x12cc C: <-> \Device\Harddisk0\DR0\Partition1
18:32:56.0280 0x12cc D: <-> \Device\Harddisk1\DR1\Partition1
18:32:56.0280 0x12cc E: <-> \Device\Harddisk0\DR0\Partition2
18:32:56.0280 0x12cc F: <-> \Device\Harddisk0\DR0\Partition3
18:32:56.0280 0x12cc G: <-> \Device\Harddisk0\DR0\Partition4
18:32:56.0280 0x12cc ============================================================
18:32:56.0280 0x12cc Initialize success
18:32:56.0280 0x12cc ============================================================
18:33:01.0512 0x1eac ============================================================
18:33:01.0512 0x1eac Scan started
18:33:01.0512 0x1eac Mode: Manual;
18:33:01.0512 0x1eac ============================================================
18:33:01.0512 0x1eac KSN ping started
18:33:01.0637 0x1eac KSN ping finished: true
18:33:02.0356 0x1eac ================ Scan BIOS =================================
18:33:02.0364 0x1eac BIOS info: vendor = American Megatrends Inc., version = P1.40, releaseDate = 10/31/2012
18:33:02.0364 0x1eac Base board info: manufacturer = ASRock, product = N68C-GS FX, version =
18:33:04.0967 0x1eac [ C494C2A9037C434B4C1C645BB605A28A, 911601E32FE341070E3F475AA8A673BE2790DA0AAEBCFB50C4EB3ABE219FA2F2 ] BIOS
18:33:04.0967 0x1eac BIOS - ok
18:33:04.0967 0x1eac ================ Scan system memory ========================
18:33:04.0975 0x1eac System memory - ok
18:33:04.0975 0x1eac ================ Scan services =============================
18:33:05.0022 0x1eac [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:33:05.0030 0x1eac 1394ohci - ok
18:33:05.0045 0x1eac [ DCA5495CA17AEB2F4FD8AC60812C3999, 20A3FC0349294584C340C76D674EE5CA37BA69C886DDA6886CBCCFA437A51BD8 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:33:05.0053 0x1eac ACPI - ok
18:33:05.0061 0x1eac [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:33:05.0061 0x1eac AcpiPmi - ok
18:33:05.0092 0x1eac [ E55B0A0789ED372E2E9A245E8ECD3332, E5DA31F2BC4FD226632F967AD73CC6BBBD79292049D934B669B16DFA5FF5E5D6 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:33:05.0100 0x1eac AdobeFlashPlayerUpdateSvc - ok
18:33:05.0116 0x1eac [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:33:05.0124 0x1eac adp94xx - ok
18:33:05.0139 0x1eac [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:33:05.0147 0x1eac adpahci - ok
18:33:05.0155 0x1eac [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:33:05.0163 0x1eac adpu320 - ok
18:33:05.0170 0x1eac [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:33:05.0170 0x1eac AeLookupSvc - ok
18:33:05.0186 0x1eac [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\Windows\system32\drivers\afd.sys
18:33:05.0194 0x1eac AFD - ok
18:33:05.0202 0x1eac [ A964EADDD5D1F4374775E112C8859F20, 1F2DA3AF95C734DCB363F7D14CDC0690B8E2AB3A4C92CE56A23C49B5B9D1D655 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:33:05.0202 0x1eac agp440 - ok
18:33:05.0209 0x1eac [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
18:33:05.0209 0x1eac ALG - ok
18:33:05.0217 0x1eac [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
18:33:05.0217 0x1eac aliide - ok
18:33:05.0225 0x1eac [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
18:33:05.0225 0x1eac amdide - ok
18:33:05.0233 0x1eac [ 1F9ACF07DF1FF5C262FDA1114DAEBD5E, FD49F99CE8ADFF4CCDB166B621E9259CE36E526908BA12DBB0D0638AB7F1508E ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:33:05.0233 0x1eac AmdK8 - ok
18:33:05.0241 0x1eac [ 8A67741BFA4E99E7A7E194AEB2F79594, 93B63A7D2C1902150DEDAE0A22CCA1D66861C7BB1771FEFE339B86905DCB9852 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
18:33:05.0241 0x1eac AmdPPM - ok
18:33:05.0249 0x1eac [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:33:05.0249 0x1eac amdsata - ok
18:33:05.0256 0x1eac [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:33:05.0264 0x1eac amdsbs - ok
18:33:05.0264 0x1eac [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:33:05.0272 0x1eac amdxata - ok
18:33:05.0272 0x1eac [ D58BE1EAEA17DD6387F388AE520006B3, B5C5A02319FFBE42648F48FE747F521D60C06036933F7E07114CC941F1324C28 ] AppID C:\Windows\system32\drivers\appid.sys
18:33:05.0280 0x1eac AppID - ok
18:33:05.0280 0x1eac [ 6C0A9F6792B3979422F1FC7AB22C3551, 48BB8FA7D700D41CB72A708BEC1B94925676319E13076906C653138B6DF6A1EF ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:33:05.0280 0x1eac AppIDSvc - ok
18:33:05.0288 0x1eac [ CAAABF1708F5F6CD5FEF1D1938B8A0C4, 2E0A5B01D2DB21F9960D347678973655BA8A02F08C96AAD1A125BC11BDAC0705 ] Appinfo C:\Windows\System32\appinfo.dll
18:33:05.0295 0x1eac Appinfo - ok
18:33:05.0303 0x1eac [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
18:33:05.0303 0x1eac AppMgmt - ok
18:33:05.0311 0x1eac [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
18:33:05.0311 0x1eac arc - ok
18:33:05.0319 0x1eac [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:33:05.0327 0x1eac arcsas - ok
18:33:05.0351 0x1eac [ 2BE5C30079D9D06D756BBF0B8C4CC33F, 3C06F950ADE76519DF438322900416D66E5801003721FA8EB9DDD37EBF6CA218 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:33:05.0351 0x1eac aspnet_state - ok
18:33:05.0359 0x1eac [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:33:05.0368 0x1eac AsyncMac - ok
18:33:05.0373 0x1eac [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
18:33:05.0375 0x1eac atapi - ok
18:33:05.0395 0x1eac [ A585E162EBD575CC66801709458A7921, FF8D2B38A925358F24C5C582101F1667208AD15774202E74365FE30E27544214 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:33:05.0411 0x1eac AudioEndpointBuilder - ok
18:33:05.0426 0x1eac [ A585E162EBD575CC66801709458A7921, FF8D2B38A925358F24C5C582101F1667208AD15774202E74365FE30E27544214 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:33:05.0442 0x1eac AudioSrv - ok
18:33:05.0583 0x1eac [ 0A315098102B13D74D701A09DF7D40FA, 748AAA166A936C1AF67307DE63D334124DDCC4CA4D8D93E522748F25230099F6 ] AVKProxy C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
18:33:05.0684 0x1eac AVKProxy - ok
18:33:05.0786 0x1eac [ 4A39C595B451E8D98E03F29562DA7C0E, 1744E6DA05DAF0E03F0712D5484B23D242AFB503602FCD16EDF8FCDF7F79E51D ] AVKWCtl C:\Program Files (x86)\G DATA\TotalSecurity\AVK\AVKWCtlx64.exe
18:33:05.0848 0x1eac AVKWCtl - ok
18:33:05.0864 0x1eac [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:33:05.0864 0x1eac AxInstSV - ok
18:33:05.0887 0x1eac [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:33:05.0895 0x1eac b06bdrv - ok
18:33:05.0903 0x1eac [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:33:05.0911 0x1eac b57nd60a - ok
18:33:05.0918 0x1eac [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
18:33:05.0926 0x1eac BDESVC - ok
18:33:05.0926 0x1eac [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
18:33:05.0926 0x1eac Beep - ok
18:33:05.0950 0x1eac [ E3ED6C06462FDDE33100F7E45E8F5213, 71AA528F8912106FDAD83175A7529CF94B5B19093D2C63C25FAC198587286F87 ] BFE C:\Windows\System32\bfe.dll
18:33:05.0965 0x1eac BFE - ok
18:33:05.0989 0x1eac [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
18:33:06.0007 0x1eac BITS - ok
18:33:06.0015 0x1eac [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:33:06.0017 0x1eac blbdrive - ok
18:33:06.0023 0x1eac [ D7E5C916557268B3DCC9E7DAD58E7727, 439D76346E8762BA7D7F91B09580EFE8354F1A650F3B59101A3BEE2328D8F562 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:33:06.0025 0x1eac bowser - ok
18:33:06.0033 0x1eac [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
18:33:06.0033 0x1eac BrFiltLo - ok
18:33:06.0041 0x1eac [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
18:33:06.0041 0x1eac BrFiltUp - ok
18:33:06.0048 0x1eac [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
18:33:06.0048 0x1eac Browser - ok
18:33:06.0064 0x1eac [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:33:06.0064 0x1eac Brserid - ok
18:33:06.0072 0x1eac [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:33:06.0072 0x1eac BrSerWdm - ok
18:33:06.0080 0x1eac [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:33:06.0080 0x1eac BrUsbMdm - ok
18:33:06.0087 0x1eac [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:33:06.0087 0x1eac BrUsbSer - ok
18:33:06.0095 0x1eac [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:33:06.0095 0x1eac BTHMODEM - ok
18:33:06.0103 0x1eac [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
18:33:06.0111 0x1eac bthserv - ok
18:33:06.0119 0x1eac [ B861DF1DC9CA9259934DBAC5E069681B, BA3AB966509CF07DE26FB9F8CBEA21F4771FC1677767824813F4F8B80E33C072 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:33:06.0119 0x1eac cdfs - ok
18:33:06.0126 0x1eac [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:33:06.0126 0x1eac cdrom - ok
18:33:06.0134 0x1eac [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
18:33:06.0134 0x1eac CertPropSvc - ok
18:33:06.0142 0x1eac [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
18:33:06.0142 0x1eac circlass - ok
18:33:06.0158 0x1eac [ 78CA84A35D09888E1FF21973E6E709C1, 9B2F03CCF816546591D8C4DC951D07D156C5CFA2B94EB6996ABB1EF261AFDBEB ] CLFS C:\Windows\system32\CLFS.sys
18:33:06.0166 0x1eac CLFS - ok
18:33:06.0173 0x1eac [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:33:06.0173 0x1eac clr_optimization_v2.0.50727_32 - ok
18:33:06.0181 0x1eac [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:33:06.0189 0x1eac clr_optimization_v2.0.50727_64 - ok
18:33:06.0205 0x1eac [ E92174C5B9610D580C6BAAE75A4DB9C8, 03049649E81BDABBCF1F9A544C064B5ECFF2CB31CD5C8DB41FC598078B906936 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:33:06.0205 0x1eac clr_optimization_v4.0.30319_32 - ok
18:33:06.0212 0x1eac [ 578F1BA9228FA9C270B1A4DDCC77EB2F, A1057FC68625811E785B11B04E4EA7EE4F3EC805F72FC62D02BAEB5D5BFD2428 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:33:06.0212 0x1eac clr_optimization_v4.0.30319_64 - ok
18:33:06.0220 0x1eac [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
18:33:06.0220 0x1eac CmBatt - ok
18:33:06.0228 0x1eac [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:33:06.0228 0x1eac cmdide - ok
18:33:06.0244 0x1eac [ 9DE8D00626F01DBD1879A6655D7A752D, 7624FEAEC4FBB2FAC484DA295FB748136BB331032FC58B426A45802F55F5C24D ] CNG C:\Windows\system32\Drivers\cng.sys
18:33:06.0251 0x1eac CNG - ok
18:33:06.0259 0x1eac [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:33:06.0259 0x1eac Compbatt - ok
18:33:06.0259 0x1eac [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:33:06.0267 0x1eac CompositeBus - ok
18:33:06.0267 0x1eac COMSysApp - ok
18:33:06.0275 0x1eac [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:33:06.0275 0x1eac crcdisk - ok
18:33:06.0291 0x1eac [ 2F10C8ECB51E41C9993B90204F3A5F5E, FF50F28544FDAB545971FFA7113BD7967CCAE6CD83858ECF7346C6A0DDE9672A ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:33:06.0291 0x1eac CryptSvc - ok
18:33:06.0306 0x1eac [ 80BC9D418607974E4940EBC42F69BC8D, 83F1C21DCBAC4CCD970DD820C169C31DE97BD8A42D3384454B0D9C9A6053A297 ] CSC C:\Windows\system32\drivers\csc.sys
18:33:06.0322 0x1eac CSC - ok
18:33:06.0337 0x1eac [ C593B028F399934C0A739AD7438B21BF, 8A288BD3F333ABBA9D96BD88E62B0BA782C7DF6027AC65DC2375800035655F9F ] CscService C:\Windows\System32\cscsvc.dll
18:33:06.0353 0x1eac CscService - ok
18:33:06.0369 0x1eac [ 6903B7516D5A766E4690CF6F31A20F7F, 198347E3194B08E0ED3E22FCDFB085D1342EA2BCD2287D4F675106E4F09EF602 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:33:06.0384 0x1eac DcomLaunch - ok
18:33:06.0392 0x1eac [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
18:33:06.0400 0x1eac defragsvc - ok
18:33:06.0408 0x1eac [ 63705A08981F7EDD376241D6E0A9C2AC, 6965D64D164A4DBBC328D2611EE38A71D3FA66A6438AFC6E4830DC37ABC28729 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:33:06.0408 0x1eac DfsC - ok
18:33:06.0423 0x1eac [ 92286CCC501A4F588B2FAB8D1B6A236C, 9B96B92D9874DC8C24BD2B9DBB1C179175B36892B98C6638DCA0D5FA48D55A80 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:33:06.0431 0x1eac Dhcp - ok
18:33:06.0462 0x1eac [ 7DF76667FA6276EE94F3BEAA8105E1B3, 199934460BED7F8A655EF70677CFED68F5F8091B22F834216B0B2B41B876721D ] DiagTrack C:\Windows\system32\diagtrack.dll
18:33:06.0486 0x1eac DiagTrack - ok
18:33:06.0494 0x1eac [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
18:33:06.0494 0x1eac discache - ok
18:33:06.0501 0x1eac [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
18:33:06.0509 0x1eac Disk - ok
18:33:06.0509 0x1eac [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
18:33:06.0517 0x1eac dmvsc - ok
18:33:06.0525 0x1eac [ EEEFC204476D5C44E4F6802F55697179, 0B67D193FF6389BE207F584F4D0C4C0B8BC9F4206851991AD270D894B95E314E ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:33:06.0525 0x1eac Dnscache - ok
18:33:06.0541 0x1eac [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
18:33:06.0548 0x1eac dot3svc - ok
18:33:06.0556 0x1eac [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
18:33:06.0556 0x1eac DPS - ok
18:33:06.0564 0x1eac [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:33:06.0564 0x1eac drmkaud - ok
18:33:06.0587 0x1eac [ E5D015CBF87B514F822D2E782B3D883D, 63215A6036CF1AA8487449E6BE9EE2DB5252ABCFF5C7E61CE9B905B5C92340AD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:33:06.0611 0x1eac DXGKrnl - ok
18:33:06.0619 0x1eac [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
18:33:06.0619 0x1eac EapHost - ok
18:33:06.0697 0x1eac [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:33:06.0751 0x1eac ebdrv - ok
18:33:06.0767 0x1eac [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] EFS C:\Windows\System32\lsass.exe
18:33:06.0767 0x1eac EFS - ok
18:33:06.0791 0x1eac [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:33:06.0798 0x1eac ehRecvr - ok
18:33:06.0806 0x1eac [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
18:33:06.0814 0x1eac ehSched - ok
18:33:06.0830 0x1eac [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:33:06.0837 0x1eac elxstor - ok
18:33:06.0845 0x1eac [ 9002EED07FD7FCFF6B8C5C06B454AC19, 0FCEF7D930316FF267841009DF83F29A7D9CD6ED710128F493EC15EC99D9ACD6 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:33:06.0845 0x1eac ErrDev - ok
18:33:06.0861 0x1eac [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
18:33:06.0869 0x1eac EventSystem - ok
18:33:06.0884 0x1eac [ 173F4A590EAD80CAAAD4DB346DF8DC89, 907C894E5141F7C461B5A86147CEAD9D655DCACCEE7CB698FB0E653C985B2F78 ] exfat C:\Windows\system32\drivers\exfat.sys
18:33:06.0884 0x1eac exfat - ok
18:33:06.0892 0x1eac [ 87E0E4B0B83A77017D5A91A72C10986D, 7112DD76A8EE96E50B48DF23211E229EA30E550358105F3554ECF46666939B16 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:33:06.0900 0x1eac fastfat - ok
18:33:06.0916 0x1eac [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
18:33:06.0931 0x1eac Fax - ok
18:33:06.0939 0x1eac [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
18:33:06.0939 0x1eac fdc - ok
18:33:06.0947 0x1eac [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
18:33:06.0947 0x1eac fdPHost - ok
18:33:06.0955 0x1eac [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
18:33:06.0955 0x1eac FDResPub - ok
18:33:06.0962 0x1eac [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:33:06.0962 0x1eac FileInfo - ok
18:33:06.0970 0x1eac [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:33:06.0970 0x1eac Filetrace - ok
18:33:06.0970 0x1eac [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
18:33:06.0978 0x1eac flpydisk - ok
18:33:06.0986 0x1eac [ DC591A7A196E99EFB5A48D708CB989FD, 1C34C0A4AEEE977D290EF5E79C3B13B1F1F18E051F49815013D360F62458D82A ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:33:06.0994 0x1eac FltMgr - ok
18:33:06.0994 0x1eac [ 508401A63E6B1CBF0B9C9A011498731F, F636B0A9C0EB6AE7EC04E5C5FD8A0578AEB76A1B0D974F355BCE6B6091901725 ] FNETTBOH_305 C:\Windows\system32\drivers\FNETTBOH_305.SYS
18:33:07.0001 0x1eac FNETTBOH_305 - ok
18:33:07.0001 0x1eac [ E341178C116DAC6A3A764587E68DFA7B, 91B4C79057908A622666FF069CF1C7ECA42952A6587432F5E99E33E8B19D29AF ] FNETURPX C:\Windows\system32\drivers\FNETURPX.SYS
18:33:07.0009 0x1eac FNETURPX - ok
18:33:07.0041 0x1eac [ 0257F78DEF3E60080CA0AAD885EE4DBE, A64CA302DB668B5502ADED14A9EBD3B0F1B816F78918181D8CAEF133119AA94A ] FontCache C:\Windows\system32\FntCache.dll
18:33:07.0057 0x1eac FontCache - ok
18:33:07.0065 0x1eac [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:33:07.0073 0x1eac FontCache3.0.0.0 - ok
18:33:07.0088 0x1eac [ 76FCBFD0C78DE110468B356F85EC6DB3, 38C71EF8C194982CA352D5B30F78F6FE6C2BC4CD3B8C318A90139332AEBEE073 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
18:33:07.0096 0x1eac ForceWare Intelligent Application Manager (IAM) - ok
18:33:07.0104 0x1eac [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:33:07.0104 0x1eac FsDepends - ok
18:33:07.0112 0x1eac [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:33:07.0112 0x1eac Fs_Rec - ok
18:33:07.0120 0x1eac [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:33:07.0127 0x1eac fvevol - ok
18:33:07.0135 0x1eac [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:33:07.0135 0x1eac gagp30kx - ok
18:33:07.0268 0x1eac [ 4CDB0CF2E3C97CDC4EA80E1B6AEF3207, 0A2B38263DF17E8F6241EE1DCCFD494FFE39D83393E9117FA87A6509B35F88D6 ] GDBackupSvc C:\Program Files (x86)\G DATA\TotalSecurity\AVKBackup\AVKBackupService.exe
18:33:07.0370 0x1eac GDBackupSvc - ok
18:33:07.0463 0x1eac [ 7EB1606CE5C20997BEA863295D8C7A0A, D8349B8D4AC678C6EE0333AF489B313E0D655018487C54E86B0B655428C3397C ] GDFwSvc C:\Program Files (x86)\G DATA\TotalSecurity\Firewall\GDFwSvcx64.exe
18:33:07.0535 0x1eac GDFwSvc - ok
18:33:07.0550 0x1eac [ 7BA96CE390CCC17F1A4E00A811746871, ABE677D2DE35AEBB1866B02AC48346BD8F50661268E55CC07B7DC09DFA268877 ] GDKBB C:\Windows\system32\drivers\GDKBB64.sys
18:33:07.0550 0x1eac GDKBB - ok
18:33:07.0558 0x1eac [ FC20CC3F6B87E9C26B01D8A6DDE6D847, C62B802E217160996073CDEBE7010C1C89FE26B89A09FF9F236642CDEDF2D19B ] GDKBFlt C:\Windows\system32\drivers\GDKBFlt64.sys
18:33:07.0558 0x1eac GDKBFlt - ok
18:33:07.0574 0x1eac [ 0B08A18EE71677042D171016BE2290A3, 51B923E0C29AD54041DA312687D222BF2F41D988CFB0EA29033BE4515EE0BDAE ] GDMnIcpt C:\Windows\system32\drivers\MiniIcpt.sys
18:33:07.0582 0x1eac GDMnIcpt - ok
18:33:07.0597 0x1eac [ 8DCD85752D5145A3DBE152452F543664, 0A85E7EB09F11D013AFB68801CBDECF604323E93AF34418A2954B885A708EF80 ] GDPkIcpt C:\Windows\system32\drivers\PktIcpt.sys
18:33:07.0597 0x1eac GDPkIcpt - ok
18:33:07.0636 0x1eac [ 3BCEE10FF6D06841FCD8B38D3185329E, 5C47CCA624E2C7F51542EEA5D25FA42C6471D2629F09CE8CDB7BD3994BA990F5 ] GDScan C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
18:33:07.0660 0x1eac GDScan - ok
18:33:07.0809 0x1eac [ DCD2D789422DB64D9A975D8BD0C205B8, 7CCE6D836E03913CB451D7A8290B1DE7E6B32B2D832C42999CF377DEA2E09CEE ] GDTunerSvc C:\Program Files (x86)\G DATA\TotalSecurity\AVKTuner\AVKTunerService.exe
18:33:07.0911 0x1eac GDTunerSvc - ok
18:33:07.0926 0x1eac [ 4849FCCC12639989BA9645E37BF5D81C, 9BE61DE49FB3DB385AEBEA752CF85B6FDAD4CB2A7AB0B4A2766F88575163C390 ] gdwfpcd C:\Windows\system32\drivers\gdwfpcd64.sys
18:33:07.0926 0x1eac gdwfpcd - ok
18:33:07.0934 0x1eac [ 2D15E93C8836D8F834695419E33EAB38, 86CC7FC465512BE3B957DAA9C95F1063A22FABF59F130D0F18360B92A077D105 ] GeneStor C:\Windows\system32\DRIVERS\GeneStor.sys
18:33:07.0942 0x1eac GeneStor - ok
18:33:07.0958 0x1eac [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
18:33:07.0973 0x1eac gpsvc - ok
18:33:07.0989 0x1eac [ 7F2DEAC8C1F91EA86FD0E50A340C3348, 5FB43B9AEC482AF95E71E11E9A96E65BDE9D1A25F9B42EE7051866D2A3EF0098 ] GRD C:\Windows\system32\drivers\GRD.sys
18:33:07.0989 0x1eac GRD - ok
18:33:07.0997 0x1eac [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:33:07.0997 0x1eac hcw85cir - ok
18:33:08.0004 0x1eac [ 9AF4A0ACD548D31C46EDA7DD7EFE6139, A29FF1DEEADA0E1A958E9453A41D3C05441D3E70ADE6D9BAC28C7CB83735DAAA ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:33:08.0012 0x1eac HdAudAddService - ok
18:33:08.0020 0x1eac [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:33:08.0028 0x1eac HDAudBus - ok
18:33:08.0028 0x1eac [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
18:33:08.0036 0x1eac HidBatt - ok
18:33:08.0036 0x1eac [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:33:08.0043 0x1eac HidBth - ok
18:33:08.0043 0x1eac [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
18:33:08.0051 0x1eac HidIr - ok
18:33:08.0051 0x1eac [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
18:33:08.0059 0x1eac hidserv - ok
18:33:08.0059 0x1eac [ F3169EF73866BA0F98B505E5B5D8D811, C4F86BF848AF239D930D0A287B5099825DE89002A05E95CB60A7E7D8D4B0ED9E ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:33:08.0059 0x1eac HidUsb - ok
18:33:08.0067 0x1eac [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:33:08.0075 0x1eac hkmsvc - ok
18:33:08.0083 0x1eac [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:33:08.0090 0x1eac HomeGroupListener - ok
18:33:08.0098 0x1eac [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:33:08.0098 0x1eac HomeGroupProvider - ok
18:33:08.0114 0x1eac [ D986361A94F2FBD521144C5457543F51, C43E20118C8C51D57E74CA30CBC64E8DD9F84A5F3765E42FECDB56990AA1B4F7 ] HookCentre C:\Windows\system32\drivers\HookCentre.sys
18:33:08.0114 0x1eac HookCentre - ok
18:33:08.0122 0x1eac [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:33:08.0122 0x1eac HpSAMD - ok
18:33:08.0145 0x1eac [ 93C367EA831FB39DEE3BA96539A187FB, 8B912152CA8B89B4429278F93163481BAA07E2D940EE61CE1B7AD178AB13E105 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:33:08.0161 0x1eac HTTP - ok
18:33:08.0168 0x1eac [ 9CEE2BBB060DC4B7062BE4461774A7A0, BBE3AEE1B5FF27871E6E2F3BFAF17C5DB646A9491576E348D3BDE93C17F05D18 ] HuaweiHiSuiteService64.exe C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
18:33:08.0176 0x1eac HuaweiHiSuiteService64.exe - ok
18:33:08.0208 0x1eac [ EF558A02D734A1403583E95CCEEC2487, F0D052DAF48A62E4A90D067BFCB5EE9563804DE68D0EA82E0E11C8D16AD19D29 ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
18:33:08.0208 0x1eac HWiNFO32 - ok
18:33:08.0215 0x1eac [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:33:08.0215 0x1eac hwpolicy - ok
18:33:08.0223 0x1eac [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:33:08.0223 0x1eac i8042prt - ok
18:33:08.0239 0x1eac [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:33:08.0247 0x1eac iaStorV - ok
18:33:08.0278 0x1eac [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:33:08.0286 0x1eac idsvc - ok
18:33:08.0293 0x1eac [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:33:08.0293 0x1eac iirsp - ok
18:33:08.0325 0x1eac [ 25AF7D5C819F19D7C97F4A9607F2609A, 70142B97F1087E20758AFECF5A7AB2EC1FDBBF68019A3BEC6C49F168650FEFC8 ] IKEEXT C:\Windows\System32\ikeext.dll
18:33:08.0340 0x1eac IKEEXT - ok
18:33:08.0348 0x1eac [ 7A4E36E091087C3580EFBA7471743744, 069A067CE95ED1AA91DF64FF2B47E02A172176E10907892EEA000BE638FD23EB ] IMFDownProtect C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFDownProtect.sys
18:33:08.0348 0x1eac IMFDownProtect - ok
18:33:08.0356 0x1eac [ 82FAED95796DA0E45A47E6C82B17234D, 83C898E3AFE6A400B688E97795603057A1BDB0671FF8C9C140BE52474B08450A ] IMFFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys
18:33:08.0356 0x1eac IMFFilter - ok
18:33:08.0356 0x1eac [ 97DD9A83C8D94B78AC58A896F6CC18F0, 8DEF7B7DD3A3D752CE596574D9A9020AC28977431FF2085973D2A36F60FF76E6 ] IMFForceDelete C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFForceDelete.sys
18:33:08.0364 0x1eac IMFForceDelete - ok
18:33:08.0372 0x1eac [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
18:33:08.0372 0x1eac intelide - ok
18:33:08.0372 0x1eac [ FF4EA6C23A8F2EEEEBA612D137E154E0, E56924FCC378B12B59FD2E331368179CC7DA9ED4E2B6EA7A819A7B6E5577411D ] intelppm C:\Windows\system32\drivers\intelppm.sys
18:33:08.0379 0x1eac intelppm - ok
18:33:08.0379 0x1eac [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:33:08.0387 0x1eac IPBusEnum - ok
18:33:08.0395 0x1eac [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:33:08.0395 0x1eac IpFilterDriver - ok
18:33:08.0411 0x1eac [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:33:08.0426 0x1eac iphlpsvc - ok
18:33:08.0434 0x1eac [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:33:08.0434 0x1eac IPMIDRV - ok
18:33:08.0442 0x1eac [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:33:08.0442 0x1eac IPNAT - ok
18:33:08.0450 0x1eac [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:33:08.0450 0x1eac IRENUM - ok
18:33:08.0450 0x1eac [ 7E1DBF664ED3F203B1D3770E8586589D, 94B880B2B76C42B13F074F099BCFFD0FB41FF5F5A5C1790A2602066A25612956 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:33:08.0458 0x1eac isapnp - ok
18:33:08.0465 0x1eac [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:33:08.0473 0x1eac iScsiPrt - ok
18:33:08.0473 0x1eac [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:33:08.0481 0x1eac kbdclass - ok
18:33:08.0481 0x1eac [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:33:08.0489 0x1eac kbdhid - ok
18:33:08.0489 0x1eac [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] KeyIso C:\Windows\system32\lsass.exe
18:33:08.0489 0x1eac KeyIso - ok
18:33:08.0497 0x1eac [ D96B11F8C763060BDA0CAB64D3C2C1EE, FF7F39E1D33D162528AC0258477F62717D864DF50DCAF8457855C4B61FD69721 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:33:08.0497 0x1eac KSecDD - ok
18:33:08.0504 0x1eac [ 14BA4CC0F3560A4DD99336AF14038AB9, DE12621F55114F17493D49355E8315FE364CCCA012F08C00735B6CE4D46CA789 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:33:08.0512 0x1eac KSecPkg - ok
18:33:08.0520 0x1eac [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:33:08.0520 0x1eac ksthunk - ok
18:33:08.0528 0x1eac [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
18:33:08.0536 0x1eac KtmRm - ok
18:33:08.0551 0x1eac [ E42D4FDE2190BF6E55471F7F34BFAC66, 707AD0155F8356CB1E09C7C8ADB626C0DEC722F8FD4AAF5CDBDAEAB6D4239333 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:33:08.0559 0x1eac LanmanServer - ok
18:33:08.0559 0x1eac [ 01C95A8CAE16CCF1EA1181395C872B9F, 0BB846AFC7335BB0CD52735AE32E0BCD5075865900C356493DC159795E8C8181 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:33:08.0567 0x1eac LanmanWorkstation - ok
18:33:08.0575 0x1eac [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:33:08.0575 0x1eac lltdio - ok
18:33:08.0590 0x1eac [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:33:08.0598 0x1eac lltdsvc - ok
18:33:08.0598 0x1eac [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:33:08.0598 0x1eac lmhosts - ok
18:33:08.0614 0x1eac [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:33:08.0614 0x1eac LSI_FC - ok
18:33:08.0622 0x1eac [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:33:08.0622 0x1eac LSI_SAS - ok
18:33:08.0629 0x1eac [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:33:08.0629 0x1eac LSI_SAS2 - ok
18:33:08.0637 0x1eac [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:33:08.0637 0x1eac LSI_SCSI - ok
18:33:08.0645 0x1eac [ 33F4F8FA5A6978602AF6CA8F2B6C3F10, EDD5D993283F3FF2F8E09751815B992E800BDBB147385E303DEC26E120410C56 ] luafv C:\Windows\system32\drivers\luafv.sys
18:33:08.0653 0x1eac luafv - ok
18:33:08.0661 0x1eac [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:33:08.0668 0x1eac LVRS64 - ok
18:33:08.0778 0x1eac [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
18:33:08.0856 0x1eac LVUVC64 - ok
18:33:08.0872 0x1eac [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:33:08.0872 0x1eac Mcx2Svc - ok
18:33:08.0879 0x1eac [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
18:33:08.0879 0x1eac megasas - ok
18:33:08.0895 0x1eac [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:33:08.0895 0x1eac MegaSR - ok
18:33:08.0903 0x1eac [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
18:33:08.0911 0x1eac MMCSS - ok
18:33:08.0911 0x1eac [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
18:33:08.0911 0x1eac Modem - ok
18:33:08.0918 0x1eac [ 0E8EBD8E54DB14F14412B90AD4B099BF, 5D6513AFB31B0907D84C79869660C578203281ACD221B970B69E16295F26D749 ] monitor C:\Windows\system32\drivers\monitor.sys
18:33:08.0918 0x1eac monitor - ok
18:33:08.0926 0x1eac [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
18:33:08.0926 0x1eac mouclass - ok
18:33:08.0934 0x1eac [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:33:08.0934 0x1eac mouhid - ok
18:33:08.0942 0x1eac [ D250A7B69B0BDC151F5F7B9C9FC78074, 6B6C8205A88FC1E4BB2669FA1433EC9B0CD23F2CC818E1F64FDC9802E5744579 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:33:08.0942 0x1eac mountmgr - ok
18:33:08.0950 0x1eac [ F95BF4A610D88AA5AB77E6DD47973ADF, EB7D67C5A17A2D13AA43309CADC1229B4AD24BF4E057E7B02897B264E1906C61 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:33:08.0958 0x1eac MozillaMaintenance - ok
18:33:08.0965 0x1eac [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
18:33:08.0973 0x1eac mpio - ok
18:33:08.0973 0x1eac [ 3F829492638A86A3C4E0BB06778F0C23, A5B5FBE06E407C892E4668D53CC3F49BC6C7ACA12ED7AFB69FAC1C133003A890 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:33:08.0981 0x1eac mpsdrv - ok
18:33:09.0004 0x1eac [ C7A8706D5536D9BE35396C0116CAA8EE, AFB6B40B5CBA4F54C6AB3F82534CCA9D393C466EC5E3981CEBB33CB111C405D0 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:33:09.0020 0x1eac MpsSvc - ok
18:33:09.0028 0x1eac [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:33:09.0028 0x1eac MRxDAV - ok
18:33:09.0036 0x1eac [ 6042F3A3CE512D895844D733F70C34AD, D87D37FEBB88589D3515BCDD924456D0AE2735BF3B54AB9CD5D3C9C37CB1F8B4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:33:09.0043 0x1eac mrxsmb - ok
18:33:09.0051 0x1eac [ 985C9103BCE319E4E7C798CF55B2ED76, 7792A682519F14BD92788FA3A3665A407A4A62BECF7D665CCD620329002FEDBA ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:33:09.0059 0x1eac mrxsmb10 - ok
18:33:09.0067 0x1eac [ D88D50A3234EBC718C94CEFB48C3C0C5, 7E2089014CD35D00164912A7117827ED3D00AF317F3FE2FCF3EDABC7ADAB1205 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:33:09.0067 0x1eac mrxsmb20 - ok
18:33:09.0075 0x1eac [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
18:33:09.0075 0x1eac msahci - ok
18:33:09.0083 0x1eac [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:33:09.0083 0x1eac msdsm - ok
18:33:09.0090 0x1eac [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
18:33:09.0098 0x1eac MSDTC - ok
18:33:09.0106 0x1eac [ 45BD105115AF4C040383FEA51F04BD06, 3E0FDFF5FE65053B7DA9630F0244C3E65FEB687C214333456D545EAF0AF1C325 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:33:09.0106 0x1eac Msfs - ok
18:33:09.0114 0x1eac [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:33:09.0114 0x1eac mshidkmdf - ok
18:33:09.0122 0x1eac [ 0F7F6C886C308976DB01EFE81084A77F, FAB0D03DFB66224700423165422D03FF249F998737A942D32C63BDBBF60ABBC2 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:33:09.0122 0x1eac msisadrv - ok
18:33:09.0129 0x1eac [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:33:09.0129 0x1eac MSiSCSI - ok
18:33:09.0137 0x1eac msiserver - ok
18:33:09.0145 0x1eac [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:33:09.0145 0x1eac MSKSSRV - ok
18:33:09.0145 0x1eac [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:33:09.0153 0x1eac MSPCLOCK - ok
18:33:09.0153 0x1eac [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:33:09.0153 0x1eac MSPQM - ok
18:33:09.0168 0x1eac [ 6D998E05CBEF595C38FCECC8DDAAAA86, BA844687D503EC9D9DA26762CE5C3B7BB48D324355DDF5EAA2A66E8D97006B9A ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:33:09.0176 0x1eac MsRPC - ok
18:33:09.0184 0x1eac [ A5D45B7B91F95F825EB5ABD3A6B262EF, C27C7E89205255CDE6A785C0141F3533E8572D0AFC4B9F73855565BF9F746E04 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:33:09.0184 0x1eac mssmbios - ok
18:33:09.0192 0x1eac [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:33:09.0192 0x1eac MSTEE - ok
18:33:09.0192 0x1eac [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
18:33:09.0192 0x1eac MTConfig - ok
18:33:09.0200 0x1eac [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
18:33:09.0200 0x1eac Mup - ok
18:33:09.0215 0x1eac [ D69262765A6E89272510E221EEE3CCFF, 98F1D99BA8CC9BC25D7FED130A58621BE73A8DD22AA026374D791C46B7990E3E ] myTuningSvc C:\Program Files (x86)\mytuning utilities 17\SUService64.exe
18:33:09.0215 0x1eac myTuningSvc - ok
18:33:09.0231 0x1eac [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
18:33:09.0239 0x1eac napagent - ok
18:33:09.0254 0x1eac [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:33:09.0262 0x1eac NativeWifiP - ok
18:33:09.0286 0x1eac [ CBE5C2A3353A367734989E335D6AF194, E8927AD1202AC5E523717AC4ADB2345D31A00B304FA56056B27043792237CFEC ] NDIS C:\Windows\system32\drivers\ndis.sys
18:33:09.0301 0x1eac NDIS - ok
18:33:09.0309 0x1eac [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:33:09.0309 0x1eac NdisCap - ok
18:33:09.0317 0x1eac [ E8179074C0166D83BD8366169137669E, 44A3BCA1772F42CF0580C6BB0B48D106C678D0BB471DB6D81BC9C52895C9C16A ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:33:09.0317 0x1eac NdisTapi - ok
18:33:09.0325 0x1eac [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:33:09.0325 0x1eac Ndisuio - ok
18:33:09.0333 0x1eac [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:33:09.0340 0x1eac NdisWan - ok
18:33:09.0340 0x1eac [ D0FE24076ED3BA7B54D6E9819F8215A8, 42962676E322DCD9112740E6C43C8E49B8F9D998D7733645947771598FD3DD22 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:33:09.0340 0x1eac NDProxy - ok
18:33:09.0348 0x1eac [ 2E19EB10185992AB08BC3688AACA4CE2, D9E3A5CFE8887B7F66239000116723FAA119107870A6FB65FD6F108CE5C9D9EB ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:33:09.0348 0x1eac NetBIOS - ok
18:33:09.0364 0x1eac [ 0805034EA6F5273D4CB130D726AA5450, 3662B56226CF79A19174F3644D1902A4EE90CCBB86890B902DC387F3DFB492E7 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:33:09.0364 0x1eac NetBT - ok
18:33:09.0372 0x1eac [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] Netlogon C:\Windows\system32\lsass.exe
18:33:09.0372 0x1eac Netlogon - ok
18:33:09.0387 0x1eac [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
18:33:09.0395 0x1eac Netman - ok
18:33:09.0411 0x1eac [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:33:09.0418 0x1eac NetMsmqActivator - ok
18:33:09.0418 0x1eac [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:33:09.0426 0x1eac NetPipeActivator - ok
18:33:09.0442 0x1eac [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
18:33:09.0450 0x1eac netprofm - ok
18:33:09.0458 0x1eac [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:33:09.0458 0x1eac NetTcpActivator - ok
18:33:09.0465 0x1eac [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:33:09.0473 0x1eac NetTcpPortSharing - ok
18:33:09.0473 0x1eac [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:33:09.0481 0x1eac nfrd960 - ok
18:33:09.0489 0x1eac [ 93DEDBE8E24F31962755E6AA4AC2D7B0, 368B3F48F230514F496CE24339EC8943A87A6BB9815912AE192B73837AB3E3B7 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:33:09.0497 0x1eac NlaSvc - ok
18:33:09.0504 0x1eac [ B6B896FA19D091233BC23DB828A556F1, 28F2655C002E73D1D223C0D4D61C481F189E08F6E8935D5DE6C6CC6520E828A4 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:33:09.0504 0x1eac Npfs - ok
18:33:09.0504 0x1eac [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi C:\Windows\system32\nsisvc.dll
18:33:09.0512 0x1eac nsi - ok
18:33:09.0512 0x1eac [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:33:09.0512 0x1eac nsiproxy - ok
18:33:09.0528 0x1eac [ 13C0D9CBA38FFA6D0C9E721B5E7212A0, 41F38AA6111FCE5D0CF63E7CC289645C7B51BCD353690700B8ECBFC03CF51FA9 ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
18:33:09.0528 0x1eac nSvcIp - ok
18:33:09.0575 0x1eac [ 1D728E2DA93EE1F7766DE97D0BEEFC57, 077C85AF6D788F1323648F5DD8B5873B06CD62B4AC33577453D01B16738BEFDE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:33:09.0606 0x1eac Ntfs - ok
18:33:09.0614 0x1eac [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
18:33:09.0614 0x1eac Null - ok
18:33:09.0622 0x1eac [ 786DB821BFD57C0551DBBE4F75384A7D, F956D636F834F2BA5F019E187FDB9CC33940363C75A60E53CD81310A4DB6A6AB ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
18:33:09.0622 0x1eac nusb3hub - ok
18:33:09.0629 0x1eac [ DAA8005CAF745042BB427A1ED7433354, 3019002F174783B76D5D8AA47F7A465B7FEC7C14235B70E5C9277FE534839226 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
18:33:09.0637 0x1eac nusb3xhc - ok
18:33:09.0645 0x1eac [ DE17C68FE82A90B681D323AB33E3BEF7, CA77E90B5E5AFA67C64E6FD9A0E8A46F9D7EDFAD55E50E9B47FE724351AF4271 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
18:33:09.0661 0x1eac NvContainerLocalSystem - ok
18:33:09.0676 0x1eac [ DE17C68FE82A90B681D323AB33E3BEF7, CA77E90B5E5AFA67C64E6FD9A0E8A46F9D7EDFAD55E50E9B47FE724351AF4271 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
18:33:09.0684 0x1eac NvContainerNetworkService - ok
18:33:09.0700 0x1eac [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
18:33:09.0708 0x1eac NVENETFD - ok
18:33:09.0715 0x1eac [ 815F0AB48BD5A6F72EB711E40372BE45, B6A5D436637CBC2BD8652520E6E58F89874510335AEAEFED7DBEBB902CD501D8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:33:09.0723 0x1eac NVHDA - ok
18:33:10.0098 0x1eac [ 7EB24095EE77767ECC51B2E2660A8488, 135169633F6EAA56E1FD93033F3DF09254CAFB166A9E1F075E772FFA975311C1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:33:10.0440 0x1eac nvlddmkm - ok
18:33:10.0663 0x1eac [ 0AD267A4674805B61A5D7B911D2A978A, FD4A80BD4BBBC0D820E363EB1566FF878DE4097F2CCA2AC1BEDF75DE343F60E7 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
18:33:10.0668 0x1eac NVNET - ok
18:33:10.0681 0x1eac [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:33:10.0684 0x1eac nvraid - ok
18:33:10.0699 0x1eac [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:33:10.0703 0x1eac nvstor - ok
18:33:10.0713 0x1eac [ 71B6ECD3C56FBF12FB1968DA3953B703, 47E39FBC336C9BFC159AA0FF9D8DEE950724ABB782102858E397A7EF87112584 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
18:33:10.0718 0x1eac nvstor64 - ok
18:33:10.0727 0x1eac [ C1E4298F14EDD4465EDB86E638B45153, A3514A1465A3A4011EC0FA3F295336C15D9135DED6C72B58ADB30A9B48C3B6F8 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
18:33:10.0728 0x1eac NvStreamKms - ok
18:33:10.0748 0x1eac [ 74058793EF08A7BFA0F95B7BE2A515AD, 28511469F236564A88A98662502E28F29A0F407A0657640E02A9197115221C5E ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
18:33:10.0755 0x1eac NvTelemetryContainer - ok
18:33:10.0763 0x1eac [ 0C8042CA2D71370AF5684B9F7C171CD6, 8932E489C2DCF9E016E7BFAF64FB47DCBC4635A2F79AB48A31B725AA9480F018 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
18:33:10.0763 0x1eac nvvad_WaveExtensible - ok
18:33:10.0771 0x1eac [ FE9178D6C9A4BDE30A43B66AD8F3B70A, 17D22CF02B4121EFD4526F30B16371A084F5F41B8746F9359BAD4C29D7DEB715 ] nvvhci C:\Windows\system32\DRIVERS\nvvhci.sys
18:33:10.0771 0x1eac nvvhci - ok
18:33:10.0779 0x1eac [ 6E1B8F7B9A0363AD0B3779BAB2E8E417, 5CDFC63B7A946E040FAA82DFEDE016F8DD228247A8C36813441413DF901E46B0 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:33:10.0779 0x1eac nv_agp - ok
18:33:10.0787 0x1eac [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:33:10.0787 0x1eac ohci1394 - ok
18:33:10.0794 0x1eac [ 1BBF2FBF7A845198165A43E42413E6AE, 54A7142D109046152540F182FAF7153A5C34A45750823BE34F1370019284F926 ] optousb C:\Windows\system32\DRIVERS\optousb.sys
18:33:10.0794 0x1eac optousb - ok
18:33:10.0802 0x1eac [ 8A2C2B28D0A1E81214FC03BCBCF1322A, D9FDEF3FCB85FA6E04E4DAC983D771F1557E4C42DF01E54D1645BD371B1ED978 ] optovcm C:\Windows\system32\DRIVERS\optovcm.sys
18:33:10.0802 0x1eac optovcm - ok
18:33:10.0810 0x1eac [ 7EA6044AB974F06410A51FCC7856B8BB, EC0C9505B42C123E506A175ECCDD2FB2D84F2DEFDF50624B2F1CC7BDB76AE193 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:33:10.0818 0x1eac p2pimsvc - ok
18:33:10.0833 0x1eac [ 79DB2B358BF0B152F15D1C5A525233BD, 374D9E8D7FBBC3EB14BDC651378120FCB075A36404F1E76A3F291F89CD5C3362 ] p2psvc C:\Windows\system32\p2psvc.dll
18:33:10.0850 0x1eac p2psvc - ok
18:33:10.0858 0x1eac [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:33:10.0858 0x1eac Parport - ok
18:33:10.0866 0x1eac Partizan - ok
18:33:10.0874 0x1eac [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:33:10.0874 0x1eac partmgr - ok
18:33:10.0881 0x1eac [ 5EF9936FC08352660CFDF17F2BE39BA1, 65D4628478BA3DDB19758B3EBE638B8A083D78CAE3E3550AC5E0129BBE8B6268 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:33:10.0889 0x1eac PcaSvc - ok
18:33:10.0897 0x1eac [ A1AD4E64D923498F9D03641E77176F52, 81D661290154EE5FA883F79549B9557D7A42BE85C48487C0E4241E5EEFBCA180 ] pci C:\Windows\system32\drivers\pci.sys
18:33:10.0905 0x1eac pci - ok
18:33:10.0905 0x1eac [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
18:33:10.0913 0x1eac pciide - ok
18:33:10.0920 0x1eac [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:33:10.0928 0x1eac pcmcia - ok
18:33:10.0928 0x1eac [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
18:33:10.0936 0x1eac pcw - ok
18:33:10.0952 0x1eac [ 70C2C4D9EB212093F3F88F5247AF057E, 3A82D82B4C35EDC86CA326A5D8D03654ED8692400FC78D8129DFEDA8C3B331CB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:33:10.0959 0x1eac PEAUTH - ok
18:33:10.0999 0x1eac [ C59E17D5E30972ECA28A72004795AEA7, 24CE4698F578BB6BE51101BA083C5E4A6A1AA449439C125BA3E5793E54260525 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:33:11.0030 0x1eac PeerDistSvc - ok
18:33:11.0053 0x1eac [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:33:11.0053 0x1eac PerfHost - ok
18:33:11.0115 0x1eac [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla C:\Windows\system32\pla.dll
18:33:11.0142 0x1eac pla - ok
18:33:11.0163 0x1eac [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:33:11.0171 0x1eac PlugPlay - ok
18:33:11.0178 0x1eac [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:33:11.0181 0x1eac PNRPAutoReg - ok
18:33:11.0196 0x1eac [ 7EA6044AB974F06410A51FCC7856B8BB, EC0C9505B42C123E506A175ECCDD2FB2D84F2DEFDF50624B2F1CC7BDB76AE193 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:33:11.0204 0x1eac PNRPsvc - ok
18:33:11.0221 0x1eac [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:33:11.0250 0x1eac PolicyAgent - ok
18:33:11.0262 0x1eac [ F249779586148090EF90EFC697E4FE97, AD0ECD98307595C3C0D4397A8C87327198F4E7C8003063D36E28023016168CEC ] Power C:\Windows\system32\umpo.dll
18:33:11.0267 0x1eac Power - ok
18:33:11.0275 0x1eac [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:33:11.0304 0x1eac PptpMiniport - ok
18:33:11.0310 0x1eac [ 25B69B39183984F07EE1D73041CABF70, BD655EA1827A8E53D43F439E12B0B6BFCA1EEBCAA23CE6FD47F89F897673A10C ] Processor C:\Windows\system32\drivers\processr.sys
18:33:11.0312 0x1eac Processor - ok
18:33:11.0322 0x1eac [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
18:33:11.0333 0x1eac ProfSvc - ok
18:33:11.0339 0x1eac [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:33:11.0341 0x1eac ProtectedStorage - ok
18:33:11.0349 0x1eac [ 4CE827A5433451551E99C2C1D20E4A43, B2E0806BB5C32A9126584941EE92526BFD45BB9EE18D7E598A2FFE7AAB495930 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:33:11.0362 0x1eac Psched - ok
18:33:11.0405 0x1eac [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:33:11.0433 0x1eac ql2300 - ok
18:33:11.0443 0x1eac [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:33:11.0446 0x1eac ql40xx - ok
18:33:11.0457 0x1eac [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
18:33:11.0462 0x1eac QWAVE - ok
18:33:11.0470 0x1eac [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:33:11.0472 0x1eac QWAVEdrv - ok
18:33:11.0476 0x1eac [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:33:11.0477 0x1eac RasAcd - ok
18:33:11.0485 0x1eac [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:33:11.0489 0x1eac RasAgileVpn - ok
18:33:11.0497 0x1eac [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
18:33:11.0500 0x1eac RasAuto - ok
18:33:11.0509 0x1eac [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:33:11.0512 0x1eac Rasl2tp - ok
18:33:11.0526 0x1eac [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
18:33:11.0537 0x1eac RasMan - ok
18:33:11.0544 0x1eac [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:33:11.0547 0x1eac RasPppoe - ok
18:33:11.0557 0x1eac [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:33:11.0560 0x1eac RasSstp - ok
18:33:11.0573 0x1eac [ 6DB20EF6CAD4356B785A061071FA4ECC, FAB7B6A1FEB6C7861D3655058EB55013A255C5FA569ED20F257626A2E5F121CF ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:33:11.0580 0x1eac rdbss - ok
18:33:11.0586 0x1eac [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:33:11.0587 0x1eac rdpbus - ok
18:33:11.0593 0x1eac [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:33:11.0594 0x1eac RDPCDD - ok
18:33:11.0605 0x1eac [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:33:11.0617 0x1eac RDPDR - ok
18:33:11.0622 0x1eac [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:33:11.0623 0x1eac RDPENCDD - ok
18:33:11.0629 0x1eac [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:33:11.0631 0x1eac RDPREFMP - ok
18:33:11.0641 0x1eac [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:33:11.0645 0x1eac RDPWD - ok
18:33:11.0656 0x1eac [ F4287A980C0AA41DE3073F053E5EA73C, 04A386884DE32C6813486FD2D8FD9B9B275758CE5354459D8862A60E7F134833 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:33:11.0661 0x1eac rdyboost - ok
18:33:11.0671 0x1eac [ 427B15BE9E1A6C143C72C007324E3AAD, 8AB51CE0DE213EED3C3E8251DBE53993F34697E58A7B9693059FB0D58BA93D44 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
18:33:11.0671 0x1eac RegFilter - ok
18:33:11.0679 0x1eac [ 0301EEE83B03229F555C6F8025FB5540, 3ABBA482E59FF9FC831A0FEA75A8C937BAE5077108A0EB3F89205C72FEDC2CD9 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:33:11.0687 0x1eac RemoteAccess - ok
18:33:11.0695 0x1eac [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:33:11.0695 0x1eac RemoteRegistry - ok
18:33:11.0710 0x1eac [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:33:11.0710 0x1eac RpcEptMapper - ok
18:33:11.0722 0x1eac [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
18:33:11.0724 0x1eac RpcLocator - ok
18:33:11.0743 0x1eac [ 6903B7516D5A766E4690CF6F31A20F7F, 198347E3194B08E0ED3E22FCDFB085D1342EA2BCD2287D4F675106E4F09EF602 ] RpcSs C:\Windows\system32\rpcss.dll
18:33:11.0757 0x1eac RpcSs - ok
18:33:11.0765 0x1eac [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:33:11.0767 0x1eac rspndr - ok
18:33:11.0772 0x1eac [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:33:11.0773 0x1eac s3cap - ok
18:33:11.0779 0x1eac [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] SamSs C:\Windows\system32\lsass.exe
18:33:11.0782 0x1eac SamSs - ok
18:33:11.0790 0x1eac [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:33:11.0797 0x1eac sbp2port - ok
18:33:11.0806 0x1eac [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:33:11.0811 0x1eac SCardSvr - ok
18:33:11.0817 0x1eac [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:33:11.0822 0x1eac scfilter - ok
18:33:11.0853 0x1eac [ F8EA90B3EB37EDD78E58C1AD2160136B, 4C0584083A1036400A1C30EEA47D0AF7C4D2ECF314F81DB1EF8F302B97B83796 ] Schedule C:\Windows\system32\schedsvc.dll
18:33:11.0875 0x1eac Schedule - ok
18:33:11.0883 0x1eac [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:33:11.0886 0x1eac SCPolicySvc - ok
18:33:11.0895 0x1eac [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:33:11.0900 0x1eac SDRSVC - ok
18:33:11.0907 0x1eac secdrv - ok
18:33:11.0914 0x1eac [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
18:33:11.0916 0x1eac seclogon - ok
18:33:11.0922 0x1eac [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
18:33:11.0925 0x1eac SENS - ok
18:33:11.0931 0x1eac [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:33:11.0934 0x1eac SensrSvc - ok
18:33:11.0941 0x1eac [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:33:11.0942 0x1eac Serenum - ok
18:33:11.0952 0x1eac [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:33:11.0955 0x1eac Serial - ok
18:33:11.0960 0x1eac [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:33:11.0961 0x1eac sermouse - ok
18:33:11.0979 0x1eac [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
18:33:11.0983 0x1eac SessionEnv - ok
18:33:11.0990 0x1eac [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:33:11.0992 0x1eac sffdisk - ok
18:33:11.0997 0x1eac [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:33:11.0998 0x1eac sffp_mmc - ok
18:33:12.0002 0x1eac [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:33:12.0005 0x1eac sffp_sd - ok
18:33:12.0011 0x1eac [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:33:12.0013 0x1eac sfloppy - ok
18:33:12.0028 0x1eac [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:33:12.0036 0x1eac SharedAccess - ok
18:33:12.0051 0x1eac [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:33:12.0065 0x1eac ShellHWDetection - ok
18:33:12.0073 0x1eac [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:33:12.0075 0x1eac SiSRaid2 - ok
18:33:12.0081 0x1eac [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:33:12.0083 0x1eac SiSRaid4 - ok
18:33:12.0095 0x1eac [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:33:12.0105 0x1eac Smb - ok
18:33:12.0115 0x1eac [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:33:12.0118 0x1eac SNMPTRAP - ok
18:33:12.0123 0x1eac [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
18:33:12.0130 0x1eac spldr - ok
18:33:12.0153 0x1eac [ 8003D39B386EDCCFB08DC21AACC0683A, 99D6A4DBE810335A69AE3053DC4B6AAC267639AD7F9C568431FA0714F6E71F30 ] Spooler C:\Windows\System32\spoolsv.exe
18:33:12.0177 0x1eac Spooler - ok
18:33:12.0289 0x1eac [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
18:33:12.0381 0x1eac sppsvc - ok
18:33:12.0395 0x1eac [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:33:12.0414 0x1eac sppuinotify - ok
18:33:12.0429 0x1eac [ 79D017CDDC5DF89881B3B72557C0240B, D60F73DA7128563E323EA2CE3F728A92431C286E44132C713217114C0A28D838 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:33:12.0442 0x1eac srv - ok
18:33:12.0458 0x1eac [ DF2E40970AF016F1393CDF61AAF1974E, B4AC50C18352E4E28BECFD2469C0D481071C13C611809B4038523DB1ADB272BF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:33:12.0466 0x1eac srv2 - ok
18:33:12.0476 0x1eac [ 826EB12B7B309392D501D208EA3F9708, AA4B7532DF402E414839277451B680B05C4E431D71D540226418BC4C44965C79 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:33:12.0480 0x1eac srvnet - ok
18:33:12.0493 0x1eac [ B242E32E9DD37D54061FD96AC97D935E, 76B2F89425EFBC05331829C4F1679C64DC866C474E79FFD100535F87026C2DAD ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:33:12.0514 0x1eac SSDPSRV - ok
18:33:12.0525 0x1eac [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:33:12.0534 0x1eac SstpSvc - ok
18:33:12.0606 0x1eac [ 908159333F4B12DF5F5624EB300A73BE, 253208904C4E0A17ADCAD044B78225F7B50646ECFB63E0FA50CC91CC1F939782 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:33:12.0671 0x1eac Steam Client Service - ok
18:33:12.0681 0x1eac [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:33:12.0682 0x1eac stexstor - ok
18:33:12.0701 0x1eac [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
18:33:12.0714 0x1eac stisvc - ok
18:33:12.0725 0x1eac [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:33:12.0727 0x1eac storflt - ok
18:33:12.0732 0x1eac [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
18:33:12.0735 0x1eac StorSvc - ok
18:33:12.0741 0x1eac [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:33:12.0744 0x1eac storvsc - ok
18:33:12.0749 0x1eac SWDUMon - ok
18:33:12.0756 0x1eac [ 2888219D7E85BA0635CC98AEA7599CF4, FA8D454AE42AC38B04647B3E46541625A3AB51146EBEC5B1674717E347C03A0D ] swenum C:\Windows\system32\drivers\swenum.sys
18:33:12.0757 0x1eac swenum - ok
18:33:12.0774 0x1eac [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
18:33:12.0785 0x1eac swprv - ok
18:33:12.0860 0x1eac [ 15CF7B24AA64FE958CAEA00274838B1C, 820F7CF1CCD036A1871D728C1CC80D9E9BB5E3BD5D9C7BC822B1711D8DB79707 ] SysMain C:\Windows\system32\sysmain.dll
18:33:12.0905 0x1eac SysMain - ok
18:33:12.0920 0x1eac [ AD359C53941A6AC57FB935E7E9F1D16E, 6D53065ECE8E928CC045E16B7618D866C121EBA6C6CBDADC97C2B0DC8D8CF9FC ] TabletInputService C:\Windows\System32\TabSvc.dll
18:33:12.0929 0x1eac TabletInputService - ok
18:33:12.0942 0x1eac [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
18:33:12.0951 0x1eac TapiSrv - ok
18:33:12.0958 0x1eac [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
18:33:12.0962 0x1eac TBS - ok
18:33:13.0020 0x1eac [ 80DA51C2F7DAFB900512F15DB6ADEC5A, 6FA4C00B223DE451D7D2DB283F7B4C0865877E23BF0DEDAD9A5E460168D9B739 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:33:13.0070 0x1eac Tcpip - ok
18:33:13.0121 0x1eac [ 80DA51C2F7DAFB900512F15DB6ADEC5A, 6FA4C00B223DE451D7D2DB283F7B4C0865877E23BF0DEDAD9A5E460168D9B739 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:33:13.0153 0x1eac TCPIP6 - ok
18:33:13.0165 0x1eac [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:33:13.0166 0x1eac tcpipreg - ok
18:33:13.0173 0x1eac [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:33:13.0175 0x1eac TDPIPE - ok
18:33:13.0180 0x1eac [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:33:13.0181 0x1eac TDTCP - ok
18:33:13.0189 0x1eac [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:33:13.0191 0x1eac tdx - ok
18:33:13.0198 0x1eac [ 2E7A1415FE48EAC714E960CB3D1DD54B, 9DBF881D300267D8654F205C22FB1391DCEA777942D136D69D8F6ACB0F8FC354 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:33:13.0200 0x1eac TermDD - ok
18:33:13.0228 0x1eac [ CC84B48075B91118C497610F577D006A, 13AA977E6211DF364CF9446DA1272D698E5493EB384A5CA36C04CCD3FB695201 ] TermService C:\Windows\System32\termsrv.dll
18:33:13.0251 0x1eac TermService - ok
18:33:13.0267 0x1eac [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
18:33:13.0272 0x1eac Themes - ok
18:33:13.0279 0x1eac [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
18:33:13.0282 0x1eac THREADORDER - ok
18:33:13.0292 0x1eac [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
18:33:13.0297 0x1eac TrkWks - ok
18:33:13.0309 0x1eac [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:33:13.0313 0x1eac TrustedInstaller - ok
18:33:13.0322 0x1eac [ B4E764C19CD65256CE03F29C4183046E, 3DC2A1EA551C1511E94BA073CFCAF74FC8E776900329E3D91043A90E37FB1076 ] TS4NT C:\Windows\system32\Drivers\TS4nt.sys
18:33:13.0325 0x1eac TS4NT - ok
18:33:13.0340 0x1eac [ F3F18DA6FF07708115634DD07A80422D, 8C8D6486A9BFB635E6587C1A195C3FC7C85D7E93B199792076F571E08A58F54A ] TSNxGService C:\Program Files (x86)\G DATA\TotalSecurity\TSNxG\TSNxGService.exe
18:33:13.0346 0x1eac TSNxGService - ok
18:33:13.0351 0x1eac [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:33:13.0354 0x1eac tssecsrv - ok
18:33:13.0360 0x1eac [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:33:13.0362 0x1eac TsUsbFlt - ok
18:33:13.0367 0x1eac [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
18:33:13.0369 0x1eac TsUsbGD - ok
18:33:13.0376 0x1eac [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:33:13.0379 0x1eac tunnel - ok
18:33:13.0384 0x1eac [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:33:13.0387 0x1eac uagp35 - ok
18:33:13.0400 0x1eac [ F0C176C907539FBBA54F8C1DC1C6320D, 86EB7BB27391AE973B0CC5678D9452B05D1E9493206958DB2EE63BBD18339242 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:33:13.0407 0x1eac udfs - ok
18:33:13.0417 0x1eac [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:33:13.0420 0x1eac UI0Detect - ok
18:33:13.0428 0x1eac [ 1FD0CC5121FC0590FC19B196AB6EFF4B, 9BF894CF6BDEB094E0F24C7F44BCB27D1F5F8DB53AE41E4C0A8A70E0082392EF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:33:13.0429 0x1eac uliagpkx - ok
18:33:13.0435 0x1eac [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:33:13.0437 0x1eac umbus - ok
18:33:13.0441 0x1eac [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
18:33:13.0444 0x1eac UmPass - ok
18:33:13.0454 0x1eac [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
18:33:13.0459 0x1eac UmRdpService - ok
18:33:13.0473 0x1eac [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
18:33:13.0481 0x1eac upnphost - ok
18:33:13.0489 0x1eac [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:33:13.0492 0x1eac usbaudio - ok
18:33:13.0499 0x1eac [ E6DFE1F33B1250A6E26EA6F6CE10B09C, BCA9E05BDBFC8D5B7095DE2F5CCE4C40E2CA5BA8D983039500A8D016723CA763 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:33:13.0500 0x1eac usbccgp - ok
18:33:13.0508 0x1eac [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:33:13.0510 0x1eac usbcir - ok
18:33:13.0516 0x1eac [ 234F9E56606CE5D1549DE7D4CCA4DE0C, 6BC996A27AEA91DD82B3E9492889D38E3A5B98404AD0C018DA091E1450998AA7 ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:33:13.0518 0x1eac usbehci - ok
18:33:13.0531 0x1eac [ 0A33C9EC6822B24E26687F1EC6346922, 44295855AC7DCD098EA4A2379B9896F347147FCB02E2DCC82F2064FB31D2E7A5 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:33:13.0538 0x1eac usbhub - ok
18:33:13.0543 0x1eac [ 9C456BFD0FF50CB5B7ECDA7B7529F63B, 70AADB0702BEB00243CA315D7898F484898A58E58A6935185FBF091A78B2218E ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:33:13.0545 0x1eac usbohci - ok
18:33:13.0550 0x1eac [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:33:13.0551 0x1eac usbprint - ok
18:33:13.0559 0x1eac [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:33:13.0560 0x1eac usbscan - ok
18:33:13.0567 0x1eac [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:33:13.0570 0x1eac USBSTOR - ok
18:33:13.0576 0x1eac [ 3C1D50EBDC6F531C0AA905D71956E106, E32EB5DAD87235E40568DB1BD80EAE16C9AF55606BEF5FAB25B0EF503369493E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:33:13.0578 0x1eac usbuhci - ok
18:33:13.0586 0x1eac [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:33:13.0590 0x1eac usbvideo - ok
18:33:13.0596 0x1eac [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
18:33:13.0598 0x1eac UxSms - ok
18:33:13.0604 0x1eac [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] VaultSvc C:\Windows\system32\lsass.exe
18:33:13.0606 0x1eac VaultSvc - ok
18:33:13.0612 0x1eac [ 5E83F6FA86407F4FA3A347B31C28CB9B, B94ED30529DC202FDB451C5F72878362D59B1E84C6844653FE722B3FA5B629F0 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:33:13.0613 0x1eac vdrvroot - ok
18:33:13.0629 0x1eac [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
18:33:13.0641 0x1eac vds - ok
18:33:13.0647 0x1eac [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:33:13.0648 0x1eac vga - ok
18:33:13.0653 0x1eac [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:33:13.0656 0x1eac VgaSave - ok
18:33:13.0665 0x1eac [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:33:13.0668 0x1eac vhdmp - ok
18:33:13.0693 0x1eac [ D1182A6D3CE8A992A76C8E0285CEEBB4, 9D2412692A3100141BADF6AD327C916B0F1B38A541DF2041EDF117D92D9BD44F ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:33:13.0707 0x1eac VIAHdAudAddService - ok
18:33:13.0713 0x1eac [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
18:33:13.0714 0x1eac viaide - ok
18:33:13.0720 0x1eac [ D1E8B98B9A85436FC425A9CD66754A29, EF94BF8FB7090E8320D601A5A1470B9C6BBDC569CE856A3DBE592F632CCF37F6 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
18:33:13.0724 0x1eac VIAKaraokeService - ok
18:33:13.0735 0x1eac [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:33:13.0748 0x1eac vmbus - ok
18:33:13.0752 0x1eac [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:33:13.0754 0x1eac VMBusHID - ok
18:33:13.0760 0x1eac [ 0C62F898EF24366F20C822226057FD9E, 3FFA3A750DF36D12A66221C34D42CEFDA9106117B687F01BC14210F65C3B56C0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:33:13.0762 0x1eac volmgr - ok
18:33:13.0776 0x1eac [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:33:13.0784 0x1eac volmgrx - ok
18:33:13.0797 0x1eac [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:33:13.0804 0x1eac volsnap - ok
18:33:13.0813 0x1eac [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:33:13.0817 0x1eac vsmraid - ok
18:33:13.0860 0x1eac [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
18:33:13.0890 0x1eac VSS - ok
18:33:13.0898 0x1eac [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:33:13.0900 0x1eac vwifibus - ok
18:33:13.0913 0x1eac [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
18:33:13.0923 0x1eac W32Time - ok
18:33:13.0932 0x1eac [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:33:13.0934 0x1eac WacomPen - ok
18:33:13.0944 0x1eac [ 6CB845761069BB2722A2C6979F493AFB, EB5A3480DDAAE53F41D3AB869D2CABBC1FF1F40B855A69A1E61D4C045891995C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:33:13.0946 0x1eac WANARP - ok
18:33:13.0952 0x1eac [ 6CB845761069BB2722A2C6979F493AFB, EB5A3480DDAAE53F41D3AB869D2CABBC1FF1F40B855A69A1E61D4C045891995C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:33:13.0954 0x1eac Wanarpv6 - ok
18:33:13.0997 0x1eac [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
18:33:14.0026 0x1eac wbengine - ok
18:33:14.0042 0x1eac [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:33:14.0050 0x1eac WbioSrvc - ok
18:33:14.0070 0x1eac [ 79E3903FD75A22386326B542F17A2563, 3CCCE0BCDE12240BE7E108A8C0A959A33C8462A0DE8510F28FA0107C4A9A1F05 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:33:14.0082 0x1eac wcncsvc - ok
18:33:14.0088 0x1eac [ 35050F01D00E7E72A2449EB6F9ABF8B4, CF45943E14D2418E83CF4DC836D3AFE4ED61186B6B9DA25EF745DC6FBB07FAC5 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:33:14.0091 0x1eac WcsPlugInService - ok
18:33:14.0099 0x1eac [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
18:33:14.0100 0x1eac Wd - ok
18:33:14.0126 0x1eac [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:33:14.0152 0x1eac Wdf01000 - ok
18:33:14.0162 0x1eac [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:33:14.0169 0x1eac WdiServiceHost - ok
18:33:14.0175 0x1eac [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:33:14.0179 0x1eac WdiSystemHost - ok
18:33:14.0190 0x1eac [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
18:33:14.0197 0x1eac WebClient - ok
18:33:14.0208 0x1eac [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:33:14.0215 0x1eac Wecsvc - ok
18:33:14.0225 0x1eac [ A5B9B5226168F4DBEDB6444D970CAF7B, 2948C14F0B56B0CDE3AA2D67F5A45A21A6AED56E527773BCDE89DCD021CC520B ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:33:14.0230 0x1eac wercplsupport - ok
18:33:14.0241 0x1eac [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
18:33:14.0245 0x1eac WerSvc - ok
18:33:14.0250 0x1eac [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:33:14.0251 0x1eac WfpLwf - ok
18:33:14.0258 0x1eac [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:33:14.0265 0x1eac WIMMount - ok
18:33:14.0268 0x1eac WinDefend - ok
18:33:14.0281 0x1eac WinHttpAutoProxySvc - ok
18:33:14.0294 0x1eac [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:33:14.0300 0x1eac Winmgmt - ok
18:33:14.0351 0x1eac [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
18:33:14.0418 0x1eac WinRM - ok
18:33:14.0435 0x1eac [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:33:14.0436 0x1eac WinUsb - ok
18:33:14.0461 0x1eac [ 354C045ED623FC6BB22E9BFD675895C9, C48B3A90A59C83E419FDB56760F38AF3457F3AA189613A58234F3093B9E5C153 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:33:14.0499 0x1eac Wlansvc - ok
18:33:14.0507 0x1eac [ 43471A750D4F3918AC92F5131AE252D3, E843AA1555262F521B924BBB1505474757E1BB9540FCCF93BC0BE2059F497C87 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:33:14.0508 0x1eac WmiAcpi - ok
18:33:14.0520 0x1eac [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv
Geändert von cosinus (27.10.2019 um 20:27 Uhr) Grund: code tags |
|
27.10.2019, 19:32
| #3 |
| | Kriege Malware nicht aus dem System (Firefox/Win 7)Code:
ATTFilter TDSS 2
C:\Windows\system32\wbem\WmiApSrv.exe
18:33:14.0524 0x1eac wmiApSrv - ok
18:33:14.0528 0x1eac WMPNetworkSvc - ok
18:33:14.0534 0x1eac [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:33:14.0537 0x1eac WPCSvc - ok
18:33:14.0544 0x1eac [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:33:14.0549 0x1eac WPDBusEnum - ok
18:33:14.0554 0x1eac [ 54AF0724831FF09EC2713CED2032DBD3, A59397F6C2215CE1776BE750C0EA7DD009CB770C3E0760F3BF0995BAB6B0A902 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:33:14.0555 0x1eac ws2ifsl - ok
18:33:14.0562 0x1eac [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
18:33:14.0567 0x1eac wscsvc - ok
18:33:14.0572 0x1eac WSearch - ok
18:33:14.0642 0x1eac [ 2039FC378DCC3A3897C9CCFF0A67874C, 6A8A714DE3CD39C8A02654DB6C9C7184658F5B37A065A18A1F697D280B764600 ] wuauserv C:\Windows\system32\wuaueng.dll
18:33:14.0692 0x1eac wuauserv - ok
18:33:14.0705 0x1eac [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:33:14.0709 0x1eac WudfPf - ok
18:33:14.0719 0x1eac [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:33:14.0722 0x1eac WUDFRd - ok
18:33:14.0730 0x1eac [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:33:14.0735 0x1eac wudfsvc - ok
18:33:14.0747 0x1eac [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:33:14.0753 0x1eac WwanSvc - ok
18:33:14.0760 0x1eac ================ Scan global ===============================
18:33:14.0764 0x1eac [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
18:33:14.0774 0x1eac [ 31FF838929AD7C63F570F192CEE9835B, 8FF4DE7F291C114681D9C0F8D1B1AB28A4FED5034D089615E4F069469D691DE6 ] C:\Windows\system32\winsrv.dll
18:33:14.0787 0x1eac [ 31FF838929AD7C63F570F192CEE9835B, 8FF4DE7F291C114681D9C0F8D1B1AB28A4FED5034D089615E4F069469D691DE6 ] C:\Windows\system32\winsrv.dll
18:33:14.0799 0x1eac [ D52F821BB4EA388A2DD356A58BC4ED98, 4DCE903819C89BA015DE77E315708FCC5E786C549A9610E43952809715F5C370 ] C:\Windows\system32\sxssrv.dll
18:33:14.0812 0x1eac [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
18:33:14.0820 0x1eac [ Global ] - ok
18:33:14.0821 0x1eac ================ Scan MBR ==================================
18:33:14.0825 0x1eac [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:33:14.0905 0x1eac \Device\Harddisk0\DR0 - ok
18:33:14.0907 0x1eac [ EA923EB0EC0060F1451E9AD7B5762CFE ] \Device\Harddisk1\DR1
18:33:14.0967 0x1eac \Device\Harddisk1\DR1 - ok
18:33:14.0972 0x1eac [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk2\DR2
18:33:14.0977 0x1eac \Device\Harddisk2\DR2 - ok
18:33:14.0977 0x1eac ================ Scan VBR ==================================
18:33:14.0980 0x1eac [ 515C1CA3194FB2A98689F621E9A6C71E ] \Device\Harddisk0\DR0\Partition1
18:33:14.0982 0x1eac \Device\Harddisk0\DR0\Partition1 - ok
18:33:14.0985 0x1eac [ 09696D047AA21E0512633788921452E8 ] \Device\Harddisk0\DR0\Partition2
18:33:14.0987 0x1eac \Device\Harddisk0\DR0\Partition2 - ok
18:33:14.0993 0x1eac [ C10B41902BCD39E52057B7939430E58D ] \Device\Harddisk0\DR0\Partition3
18:33:14.0994 0x1eac \Device\Harddisk0\DR0\Partition3 - ok
18:33:14.0998 0x1eac [ E1A61C773D9F0728ECCAC9254B462BFA ] \Device\Harddisk0\DR0\Partition4
18:33:15.0000 0x1eac \Device\Harddisk0\DR0\Partition4 - ok
18:33:15.0011 0x1eac [ BDFBDA854C96D3AC24E1210451D2D39E ] \Device\Harddisk1\DR1\Partition1
18:33:15.0013 0x1eac \Device\Harddisk1\DR1\Partition1 - ok
18:33:15.0018 0x1eac [ 9E6BFD9CD276C941F7CD2C87FE01ADD3 ] \Device\Harddisk2\DR2\Partition1
18:33:15.0018 0x1eac \Device\Harddisk2\DR2\Partition1 - ok
18:33:15.0019 0x1eac ================ Scan generic autorun ======================
18:33:15.0141 0x1eac [ E1E457F60C294A55455856ABCE91B476, C8192FC1304F082D796B58F6C963A2EC57A12340F76933765C7DF7A622CB7BFF ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
18:33:15.0232 0x1eac HDAudDeck - ok
18:33:15.0244 0x1eac AvastUI.exe - ok
18:33:15.0390 0x1eac [ 4B6FB7DE94D91974950976108D2B837E, 8F6FD897DA2DE048020679AE1309922EC41DDA87FB57FB195292A2B8A73665A4 ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
18:33:15.0541 0x1eac XFastUSB - ok
18:33:15.0672 0x1eac [ E1E457F60C294A55455856ABCE91B476, C8192FC1304F082D796B58F6C963A2EC57A12340F76933765C7DF7A622CB7BFF ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
18:33:15.0760 0x1eac HDAudDeck - ok
18:33:15.0777 0x1eac [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
18:33:15.0781 0x1eac LWS - ok
18:33:15.0811 0x1eac [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:33:15.0839 0x1eac Sidebar - ok
18:33:15.0847 0x1eac [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:33:15.0850 0x1eac mctadmin - ok
18:33:15.0880 0x1eac [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:33:15.0900 0x1eac Sidebar - ok
18:33:15.0908 0x1eac [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:33:15.0912 0x1eac mctadmin - ok
18:33:15.0913 0x1eac Waiting for KSN requests completion. In queue: 102
18:33:17.0159 0x1eac AV detected via SS2: G DATA TOTAL SECURITY, C:\Program Files (x86)\G DATA\TotalSecurity\AVK\avkwscpe.exe ( 25.1.0.0 ), 0x41000 ( enabled : updated )
18:33:17.0159 0x1eac FW detected via SS2: G DATA TOTAL SECURITY, C:\Program Files (x86)\G DATA\TotalSecurity\AVK\avkwscpe.exe ( 25.1.0.0 ), 0x41010 ( enabled )
18:33:17.0315 0x1eac ============================================================
18:33:17.0315 0x1eac Scan finished
18:33:17.0315 0x1eac ============================================================
18:33:17.0323 0x12e0 Detected object count: 0
18:33:17.0323 0x12e0 Actual detected object count: 0
18:34:12.0448 0x171c ============================================================
18:34:12.0448 0x171c Scan started
18:34:12.0448 0x171c Mode: Manual; SigCheck; TDLFS;
18:34:12.0448 0x171c ============================================================
18:34:12.0448 0x171c KSN ping started
18:34:12.0518 0x171c KSN ping finished: true
18:34:13.0198 0x171c ================ Scan BIOS =================================
18:34:13.0198 0x171c BIOS info: vendor = American Megatrends Inc., version = P1.40, releaseDate = 10/31/2012
18:34:13.0198 0x171c Base board info: manufacturer = ASRock, product = N68C-GS FX, version =
18:34:15.0834 0x171c [ C494C2A9037C434B4C1C645BB605A28A, 911601E32FE341070E3F475AA8A673BE2790DA0AAEBCFB50C4EB3ABE219FA2F2 ] BIOS
18:34:15.0834 0x171c BIOS - ok
18:34:15.0834 0x171c ================ Scan system memory ========================
18:34:15.0842 0x171c System memory - ok
18:34:15.0842 0x171c ================ Scan services =============================
18:34:15.0889 0x171c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:34:15.0920 0x171c 1394ohci - ok
18:34:15.0928 0x171c [ DCA5495CA17AEB2F4FD8AC60812C3999, 20A3FC0349294584C340C76D674EE5CA37BA69C886DDA6886CBCCFA437A51BD8 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:34:15.0952 0x171c ACPI - ok
18:34:15.0959 0x171c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:34:15.0975 0x171c AcpiPmi - ok
18:34:16.0006 0x171c [ E55B0A0789ED372E2E9A245E8ECD3332, E5DA31F2BC4FD226632F967AD73CC6BBBD79292049D934B669B16DFA5FF5E5D6 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:34:16.0030 0x171c AdobeFlashPlayerUpdateSvc - ok
18:34:16.0045 0x171c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:34:16.0069 0x171c adp94xx - ok
18:34:16.0077 0x171c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:34:16.0100 0x171c adpahci - ok
18:34:16.0108 0x171c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:34:16.0124 0x171c adpu320 - ok
18:34:16.0131 0x171c [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:34:16.0163 0x171c AeLookupSvc - ok
18:34:16.0178 0x171c [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD C:\Windows\system32\drivers\afd.sys
18:34:16.0209 0x171c AFD - ok
18:34:16.0225 0x171c [ A964EADDD5D1F4374775E112C8859F20, 1F2DA3AF95C734DCB363F7D14CDC0690B8E2AB3A4C92CE56A23C49B5B9D1D655 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:34:16.0233 0x171c agp440 - ok
18:34:16.0241 0x171c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
18:34:16.0256 0x171c ALG - ok
18:34:16.0264 0x171c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
18:34:16.0272 0x171c aliide - ok
18:34:16.0280 0x171c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
18:34:16.0288 0x171c amdide - ok
18:34:16.0295 0x171c [ 1F9ACF07DF1FF5C262FDA1114DAEBD5E, FD49F99CE8ADFF4CCDB166B621E9259CE36E526908BA12DBB0D0638AB7F1508E ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:34:16.0311 0x171c AmdK8 - ok
18:34:16.0319 0x171c [ 8A67741BFA4E99E7A7E194AEB2F79594, 93B63A7D2C1902150DEDAE0A22CCA1D66861C7BB1771FEFE339B86905DCB9852 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
18:34:16.0334 0x171c AmdPPM - ok
18:34:16.0342 0x171c [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:34:16.0358 0x171c amdsata - ok
18:34:16.0366 0x171c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
18:34:16.0381 0x171c amdsbs - ok
18:34:16.0381 0x171c [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:34:16.0397 0x171c amdxata - ok
18:34:16.0405 0x171c [ D58BE1EAEA17DD6387F388AE520006B3, B5C5A02319FFBE42648F48FE747F521D60C06036933F7E07114CC941F1324C28 ] AppID C:\Windows\system32\drivers\appid.sys
18:34:16.0428 0x171c AppID - ok
18:34:16.0436 0x171c [ 6C0A9F6792B3979422F1FC7AB22C3551, 48BB8FA7D700D41CB72A708BEC1B94925676319E13076906C653138B6DF6A1EF ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:34:16.0452 0x171c AppIDSvc - ok
18:34:16.0459 0x171c [ CAAABF1708F5F6CD5FEF1D1938B8A0C4, 2E0A5B01D2DB21F9960D347678973655BA8A02F08C96AAD1A125BC11BDAC0705 ] Appinfo C:\Windows\System32\appinfo.dll
18:34:16.0475 0x171c Appinfo - ok
18:34:16.0483 0x171c [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
18:34:16.0506 0x171c AppMgmt - ok
18:34:16.0506 0x171c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
18:34:16.0522 0x171c arc - ok
18:34:16.0530 0x171c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:34:16.0545 0x171c arcsas - ok
18:34:16.0569 0x171c [ 2BE5C30079D9D06D756BBF0B8C4CC33F, 3C06F950ADE76519DF438322900416D66E5801003721FA8EB9DDD37EBF6CA218 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:34:16.0577 0x171c aspnet_state - ok
18:34:16.0584 0x171c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:34:16.0624 0x171c AsyncMac - ok
18:34:16.0624 0x171c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
18:34:16.0639 0x171c atapi - ok
18:34:16.0655 0x171c [ A585E162EBD575CC66801709458A7921, FF8D2B38A925358F24C5C582101F1667208AD15774202E74365FE30E27544214 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:34:16.0686 0x171c AudioEndpointBuilder - ok
18:34:16.0709 0x171c [ A585E162EBD575CC66801709458A7921, FF8D2B38A925358F24C5C582101F1667208AD15774202E74365FE30E27544214 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:34:16.0741 0x171c AudioSrv - ok
18:34:16.0881 0x171c [ 0A315098102B13D74D701A09DF7D40FA, 748AAA166A936C1AF67307DE63D334124DDCC4CA4D8D93E522748F25230099F6 ] AVKProxy C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
18:34:17.0045 0x171c AVKProxy - ok
18:34:17.0147 0x171c [ 4A39C595B451E8D98E03F29562DA7C0E, 1744E6DA05DAF0E03F0712D5484B23D242AFB503602FCD16EDF8FCDF7F79E51D ] AVKWCtl C:\Program Files (x86)\G DATA\TotalSecurity\AVK\AVKWCtlx64.exe
18:34:17.0256 0x171c AVKWCtl - ok
18:34:17.0272 0x171c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:34:17.0295 0x171c AxInstSV - ok
18:34:17.0311 0x171c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
18:34:17.0342 0x171c b06bdrv - ok
18:34:17.0350 0x171c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:34:17.0374 0x171c b57nd60a - ok
18:34:17.0381 0x171c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
18:34:17.0405 0x171c BDESVC - ok
18:34:17.0405 0x171c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
18:34:17.0436 0x171c Beep - ok
18:34:17.0459 0x171c [ E3ED6C06462FDDE33100F7E45E8F5213, 71AA528F8912106FDAD83175A7529CF94B5B19093D2C63C25FAC198587286F87 ] BFE C:\Windows\System32\bfe.dll
18:34:17.0491 0x171c BFE - ok
18:34:17.0522 0x171c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
18:34:17.0569 0x171c BITS - ok
18:34:17.0577 0x171c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:34:17.0592 0x171c blbdrive - ok
18:34:17.0600 0x171c [ D7E5C916557268B3DCC9E7DAD58E7727, 439D76346E8762BA7D7F91B09580EFE8354F1A650F3B59101A3BEE2328D8F562 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:34:17.0616 0x171c bowser - ok
18:34:17.0624 0x171c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
18:34:17.0639 0x171c BrFiltLo - ok
18:34:17.0639 0x171c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
18:34:17.0655 0x171c BrFiltUp - ok
18:34:17.0663 0x171c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
18:34:17.0678 0x171c Browser - ok
18:34:17.0694 0x171c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:34:17.0709 0x171c Brserid - ok
18:34:17.0717 0x171c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:34:17.0733 0x171c BrSerWdm - ok
18:34:17.0741 0x171c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:34:17.0756 0x171c BrUsbMdm - ok
18:34:17.0756 0x171c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:34:17.0772 0x171c BrUsbSer - ok
18:34:17.0780 0x171c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:34:17.0795 0x171c BTHMODEM - ok
18:34:17.0803 0x171c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
18:34:17.0834 0x171c bthserv - ok
18:34:17.0842 0x171c [ B861DF1DC9CA9259934DBAC5E069681B, BA3AB966509CF07DE26FB9F8CBEA21F4771FC1677767824813F4F8B80E33C072 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:34:17.0858 0x171c cdfs - ok
18:34:17.0866 0x171c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:34:17.0881 0x171c cdrom - ok
18:34:17.0889 0x171c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
18:34:17.0920 0x171c CertPropSvc - ok
18:34:17.0920 0x171c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
18:34:17.0936 0x171c circlass - ok
18:34:17.0952 0x171c [ 78CA84A35D09888E1FF21973E6E709C1, 9B2F03CCF816546591D8C4DC951D07D156C5CFA2B94EB6996ABB1EF261AFDBEB ] CLFS C:\Windows\system32\CLFS.sys
18:34:17.0975 0x171c CLFS - ok
18:34:17.0983 0x171c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:34:17.0999 0x171c clr_optimization_v2.0.50727_32 - ok
18:34:18.0006 0x171c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:34:18.0014 0x171c clr_optimization_v2.0.50727_64 - ok
18:34:18.0038 0x171c [ E92174C5B9610D580C6BAAE75A4DB9C8, 03049649E81BDABBCF1F9A544C064B5ECFF2CB31CD5C8DB41FC598078B906936 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:34:18.0053 0x171c clr_optimization_v4.0.30319_32 - ok
18:34:18.0053 0x171c [ 578F1BA9228FA9C270B1A4DDCC77EB2F, A1057FC68625811E785B11B04E4EA7EE4F3EC805F72FC62D02BAEB5D5BFD2428 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:34:18.0069 0x171c clr_optimization_v4.0.30319_64 - ok
18:34:18.0077 0x171c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
18:34:18.0092 0x171c CmBatt - ok
18:34:18.0092 0x171c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:34:18.0108 0x171c cmdide - ok
18:34:18.0124 0x171c [ 9DE8D00626F01DBD1879A6655D7A752D, 7624FEAEC4FBB2FAC484DA295FB748136BB331032FC58B426A45802F55F5C24D ] CNG C:\Windows\system32\Drivers\cng.sys
18:34:18.0147 0x171c CNG - ok
18:34:18.0155 0x171c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
18:34:18.0163 0x171c Compbatt - ok
18:34:18.0170 0x171c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:34:18.0186 0x171c CompositeBus - ok
18:34:18.0186 0x171c COMSysApp - ok
18:34:18.0194 0x171c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:34:18.0209 0x171c crcdisk - ok
18:34:18.0217 0x171c [ 2F10C8ECB51E41C9993B90204F3A5F5E, FF50F28544FDAB545971FFA7113BD7967CCAE6CD83858ECF7346C6A0DDE9672A ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:34:18.0241 0x171c CryptSvc - ok
18:34:18.0256 0x171c [ 80BC9D418607974E4940EBC42F69BC8D, 83F1C21DCBAC4CCD970DD820C169C31DE97BD8A42D3384454B0D9C9A6053A297 ] CSC C:\Windows\system32\drivers\csc.sys
18:34:18.0288 0x171c CSC - ok
18:34:18.0303 0x171c [ C593B028F399934C0A739AD7438B21BF, 8A288BD3F333ABBA9D96BD88E62B0BA782C7DF6027AC65DC2375800035655F9F ] CscService C:\Windows\System32\cscsvc.dll
18:34:18.0342 0x171c CscService - ok
18:34:18.0358 0x171c [ 6903B7516D5A766E4690CF6F31A20F7F, 198347E3194B08E0ED3E22FCDFB085D1342EA2BCD2287D4F675106E4F09EF602 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:34:18.0397 0x171c DcomLaunch - ok
18:34:18.0405 0x171c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
18:34:18.0444 0x171c defragsvc - ok
18:34:18.0452 0x171c [ 63705A08981F7EDD376241D6E0A9C2AC, 6965D64D164A4DBBC328D2611EE38A71D3FA66A6438AFC6E4830DC37ABC28729 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:34:18.0475 0x171c DfsC - ok
18:34:18.0483 0x171c [ 92286CCC501A4F588B2FAB8D1B6A236C, 9B96B92D9874DC8C24BD2B9DBB1C179175B36892B98C6638DCA0D5FA48D55A80 ] Dhcp C:\Windows\system32\dhcpcore.dll
18:34:18.0514 0x171c Dhcp - ok
18:34:18.0545 0x171c [ 7DF76667FA6276EE94F3BEAA8105E1B3, 199934460BED7F8A655EF70677CFED68F5F8091B22F834216B0B2B41B876721D ] DiagTrack C:\Windows\system32\diagtrack.dll
18:34:18.0624 0x171c DiagTrack - ok
18:34:18.0631 0x171c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
18:34:18.0663 0x171c discache - ok
18:34:18.0670 0x171c [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
18:34:18.0678 0x171c Disk - ok
18:34:18.0686 0x171c [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
18:34:18.0702 0x171c dmvsc - ok
18:34:18.0709 0x171c [ EEEFC204476D5C44E4F6802F55697179, 0B67D193FF6389BE207F584F4D0C4C0B8BC9F4206851991AD270D894B95E314E ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:34:18.0725 0x171c Dnscache - ok
18:34:18.0741 0x171c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
18:34:18.0772 0x171c dot3svc - ok
18:34:18.0788 0x171c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
18:34:18.0827 0x171c DPS - ok
18:34:18.0827 0x171c [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:34:18.0842 0x171c drmkaud - ok
18:34:18.0874 0x171c [ E5D015CBF87B514F822D2E782B3D883D, 63215A6036CF1AA8487449E6BE9EE2DB5252ABCFF5C7E61CE9B905B5C92340AD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:34:18.0913 0x171c DXGKrnl - ok
18:34:18.0920 0x171c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
18:34:18.0952 0x171c EapHost - ok
18:34:19.0030 0x171c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
18:34:19.0116 0x171c ebdrv - ok
18:34:19.0131 0x171c [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] EFS C:\Windows\System32\lsass.exe
18:34:19.0147 0x171c EFS - ok
18:34:19.0170 0x171c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:34:19.0202 0x171c ehRecvr - ok
18:34:19.0209 0x171c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
18:34:19.0225 0x171c ehSched - ok
18:34:19.0241 0x171c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:34:19.0256 0x171c elxstor - ok
18:34:19.0264 0x171c [ 9002EED07FD7FCFF6B8C5C06B454AC19, 0FCEF7D930316FF267841009DF83F29A7D9CD6ED710128F493EC15EC99D9ACD6 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:34:19.0288 0x171c ErrDev - ok
18:34:19.0303 0x171c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
18:34:19.0342 0x171c EventSystem - ok
18:34:19.0358 0x171c [ 173F4A590EAD80CAAAD4DB346DF8DC89, 907C894E5141F7C461B5A86147CEAD9D655DCACCEE7CB698FB0E653C985B2F78 ] exfat C:\Windows\system32\drivers\exfat.sys
18:34:19.0374 0x171c exfat - ok
18:34:19.0381 0x171c [ 87E0E4B0B83A77017D5A91A72C10986D, 7112DD76A8EE96E50B48DF23211E229EA30E550358105F3554ECF46666939B16 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:34:19.0405 0x171c fastfat - ok
18:34:19.0420 0x171c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
18:34:19.0452 0x171c Fax - ok
18:34:19.0459 0x171c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
18:34:19.0475 0x171c fdc - ok
18:34:19.0475 0x171c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
18:34:19.0506 0x171c fdPHost - ok
18:34:19.0514 0x171c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
18:34:19.0545 0x171c FDResPub - ok
18:34:19.0553 0x171c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:34:19.0561 0x171c FileInfo - ok
18:34:19.0569 0x171c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:34:19.0600 0x171c Filetrace - ok
18:34:19.0600 0x171c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
18:34:19.0616 0x171c flpydisk - ok
18:34:19.0624 0x171c [ DC591A7A196E99EFB5A48D708CB989FD, 1C34C0A4AEEE977D290EF5E79C3B13B1F1F18E051F49815013D360F62458D82A ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:34:19.0647 0x171c FltMgr - ok
18:34:19.0647 0x171c [ 508401A63E6B1CBF0B9C9A011498731F, F636B0A9C0EB6AE7EC04E5C5FD8A0578AEB76A1B0D974F355BCE6B6091901725 ] FNETTBOH_305 C:\Windows\system32\drivers\FNETTBOH_305.SYS
18:34:19.0663 0x171c FNETTBOH_305 - ok
18:34:19.0670 0x171c [ E341178C116DAC6A3A764587E68DFA7B, 91B4C79057908A622666FF069CF1C7ECA42952A6587432F5E99E33E8B19D29AF ] FNETURPX C:\Windows\system32\drivers\FNETURPX.SYS
18:34:19.0678 0x171c FNETURPX - ok
18:34:19.0709 0x171c [ 0257F78DEF3E60080CA0AAD885EE4DBE, A64CA302DB668B5502ADED14A9EBD3B0F1B816F78918181D8CAEF133119AA94A ] FontCache C:\Windows\system32\FntCache.dll
18:34:19.0749 0x171c FontCache - ok
18:34:19.0756 0x171c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:34:19.0764 0x171c FontCache3.0.0.0 - ok
18:34:19.0780 0x171c [ 76FCBFD0C78DE110468B356F85EC6DB3, 38C71EF8C194982CA352D5B30F78F6FE6C2BC4CD3B8C318A90139332AEBEE073 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
18:34:19.0803 0x171c ForceWare Intelligent Application Manager (IAM) - ok
18:34:19.0811 0x171c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:34:19.0819 0x171c FsDepends - ok
18:34:19.0827 0x171c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:34:19.0834 0x171c Fs_Rec - ok
18:34:19.0842 0x171c [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:34:19.0866 0x171c fvevol - ok
18:34:19.0874 0x171c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:34:19.0881 0x171c gagp30kx - ok
18:34:20.0014 0x171c [ 4CDB0CF2E3C97CDC4EA80E1B6AEF3207, 0A2B38263DF17E8F6241EE1DCCFD494FFE39D83393E9117FA87A6509B35F88D6 ] GDBackupSvc C:\Program Files (x86)\G DATA\TotalSecurity\AVKBackup\AVKBackupService.exe
18:34:20.0155 0x171c GDBackupSvc - ok
18:34:20.0256 0x171c [ 7EB1606CE5C20997BEA863295D8C7A0A, D8349B8D4AC678C6EE0333AF489B313E0D655018487C54E86B0B655428C3397C ] GDFwSvc C:\Program Files (x86)\G DATA\TotalSecurity\Firewall\GDFwSvcx64.exe
18:34:20.0366 0x171c GDFwSvc - ok
18:34:20.0381 0x171c [ 7BA96CE390CCC17F1A4E00A811746871, ABE677D2DE35AEBB1866B02AC48346BD8F50661268E55CC07B7DC09DFA268877 ] GDKBB C:\Windows\system32\drivers\GDKBB64.sys
18:34:20.0397 0x171c GDKBB - ok
18:34:20.0397 0x171c [ FC20CC3F6B87E9C26B01D8A6DDE6D847, C62B802E217160996073CDEBE7010C1C89FE26B89A09FF9F236642CDEDF2D19B ] GDKBFlt C:\Windows\system32\drivers\GDKBFlt64.sys
18:34:20.0413 0x171c GDKBFlt - ok
18:34:20.0428 0x171c [ 0B08A18EE71677042D171016BE2290A3, 51B923E0C29AD54041DA312687D222BF2F41D988CFB0EA29033BE4515EE0BDAE ] GDMnIcpt C:\Windows\system32\drivers\MiniIcpt.sys
18:34:20.0452 0x171c GDMnIcpt - ok
18:34:20.0467 0x171c [ 8DCD85752D5145A3DBE152452F543664, 0A85E7EB09F11D013AFB68801CBDECF604323E93AF34418A2954B885A708EF80 ] GDPkIcpt C:\Windows\system32\drivers\PktIcpt.sys
18:34:20.0483 0x171c GDPkIcpt - ok
18:34:20.0522 0x171c [ 3BCEE10FF6D06841FCD8B38D3185329E, 5C47CCA624E2C7F51542EEA5D25FA42C6471D2629F09CE8CDB7BD3994BA990F5 ] GDScan C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
18:34:20.0569 0x171c GDScan - ok
18:34:20.0709 0x171c [ DCD2D789422DB64D9A975D8BD0C205B8, 7CCE6D836E03913CB451D7A8290B1DE7E6B32B2D832C42999CF377DEA2E09CEE ] GDTunerSvc C:\Program Files (x86)\G DATA\TotalSecurity\AVKTuner\AVKTunerService.exe
18:34:20.0850 0x171c GDTunerSvc - ok
18:34:20.0866 0x171c [ 4849FCCC12639989BA9645E37BF5D81C, 9BE61DE49FB3DB385AEBEA752CF85B6FDAD4CB2A7AB0B4A2766F88575163C390 ] gdwfpcd C:\Windows\system32\drivers\gdwfpcd64.sys
18:34:20.0881 0x171c gdwfpcd - ok
18:34:20.0889 0x171c [ 2D15E93C8836D8F834695419E33EAB38, 86CC7FC465512BE3B957DAA9C95F1063A22FABF59F130D0F18360B92A077D105 ] GeneStor C:\Windows\system32\DRIVERS\GeneStor.sys
18:34:20.0905 0x171c GeneStor - ok
18:34:20.0928 0x171c [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc C:\Windows\System32\gpsvc.dll
18:34:20.0967 0x171c gpsvc - ok
18:34:20.0975 0x171c [ 7F2DEAC8C1F91EA86FD0E50A340C3348, 5FB43B9AEC482AF95E71E11E9A96E65BDE9D1A25F9B42EE7051866D2A3EF0098 ] GRD C:\Windows\system32\drivers\GRD.sys
18:34:20.0991 0x171c GRD - ok
18:34:20.0999 0x171c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:34:21.0014 0x171c hcw85cir - ok
18:34:21.0022 0x171c [ 9AF4A0ACD548D31C46EDA7DD7EFE6139, A29FF1DEEADA0E1A958E9453A41D3C05441D3E70ADE6D9BAC28C7CB83735DAAA ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:34:21.0045 0x171c HdAudAddService - ok
18:34:21.0053 0x171c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:34:21.0077 0x171c HDAudBus - ok
18:34:21.0077 0x171c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
18:34:21.0092 0x171c HidBatt - ok
18:34:21.0100 0x171c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:34:21.0116 0x171c HidBth - ok
18:34:21.0124 0x171c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
18:34:21.0139 0x171c HidIr - ok
18:34:21.0139 0x171c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
18:34:21.0170 0x171c hidserv - ok
18:34:21.0178 0x171c [ F3169EF73866BA0F98B505E5B5D8D811, C4F86BF848AF239D930D0A287B5099825DE89002A05E95CB60A7E7D8D4B0ED9E ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:34:21.0194 0x171c HidUsb - ok
18:34:21.0202 0x171c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:34:21.0233 0x171c hkmsvc - ok
18:34:21.0241 0x171c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:34:21.0256 0x171c HomeGroupListener - ok
18:34:21.0264 0x171c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:34:21.0288 0x171c HomeGroupProvider - ok
18:34:21.0295 0x171c [ D986361A94F2FBD521144C5457543F51, C43E20118C8C51D57E74CA30CBC64E8DD9F84A5F3765E42FECDB56990AA1B4F7 ] HookCentre C:\Windows\system32\drivers\HookCentre.sys
18:34:21.0311 0x171c HookCentre - ok
18:34:21.0319 0x171c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:34:21.0334 0x171c HpSAMD - ok
18:34:21.0350 0x171c [ 93C367EA831FB39DEE3BA96539A187FB, 8B912152CA8B89B4429278F93163481BAA07E2D940EE61CE1B7AD178AB13E105 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:34:21.0381 0x171c HTTP - ok
18:34:21.0397 0x171c [ 9CEE2BBB060DC4B7062BE4461774A7A0, BBE3AEE1B5FF27871E6E2F3BFAF17C5DB646A9491576E348D3BDE93C17F05D18 ] HuaweiHiSuiteService64.exe C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
18:34:21.0413 0x171c HuaweiHiSuiteService64.exe - detected UnsignedFile.Multi.Generic ( 1 )
18:34:21.0413 0x171c Detect skipped due to KSN trusted
18:34:21.0413 0x171c HuaweiHiSuiteService64.exe - ok
18:34:21.0436 0x171c [ EF558A02D734A1403583E95CCEEC2487, F0D052DAF48A62E4A90D067BFCB5EE9563804DE68D0EA82E0E11C8D16AD19D29 ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
18:34:21.0444 0x171c HWiNFO32 - ok
18:34:21.0452 0x171c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:34:21.0459 0x171c hwpolicy - ok
18:34:21.0475 0x171c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:34:21.0483 0x171c i8042prt - ok
18:34:21.0499 0x171c [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:34:21.0522 0x171c iaStorV - ok
18:34:21.0545 0x171c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:34:21.0577 0x171c idsvc - ok
18:34:21.0584 0x171c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:34:21.0592 0x171c iirsp - ok
18:34:21.0616 0x171c [ 25AF7D5C819F19D7C97F4A9607F2609A, 70142B97F1087E20758AFECF5A7AB2EC1FDBBF68019A3BEC6C49F168650FEFC8 ] IKEEXT C:\Windows\System32\ikeext.dll
18:34:21.0655 0x171c IKEEXT - ok
18:34:21.0663 0x171c [ 7A4E36E091087C3580EFBA7471743744, 069A067CE95ED1AA91DF64FF2B47E02A172176E10907892EEA000BE638FD23EB ] IMFDownProtect C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFDownProtect.sys
18:34:21.0670 0x171c IMFDownProtect - ok
18:34:21.0678 0x171c [ 82FAED95796DA0E45A47E6C82B17234D, 83C898E3AFE6A400B688E97795603057A1BDB0671FF8C9C140BE52474B08450A ] IMFFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys
18:34:21.0686 0x171c IMFFilter - ok
18:34:21.0694 0x171c [ 97DD9A83C8D94B78AC58A896F6CC18F0, 8DEF7B7DD3A3D752CE596574D9A9020AC28977431FF2085973D2A36F60FF76E6 ] IMFForceDelete C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\IMFForceDelete.sys
18:34:21.0702 0x171c IMFForceDelete - ok
18:34:21.0709 0x171c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
18:34:21.0717 0x171c intelide - ok
18:34:21.0725 0x171c [ FF4EA6C23A8F2EEEEBA612D137E154E0, E56924FCC378B12B59FD2E331368179CC7DA9ED4E2B6EA7A819A7B6E5577411D ] intelppm C:\Windows\system32\drivers\intelppm.sys
18:34:21.0741 0x171c intelppm - ok
18:34:21.0749 0x171c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:34:21.0780 0x171c IPBusEnum - ok
18:34:21.0788 0x171c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:34:21.0819 0x171c IpFilterDriver - ok
18:34:21.0834 0x171c [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:34:21.0874 0x171c iphlpsvc - ok
18:34:21.0881 0x171c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:34:21.0897 0x171c IPMIDRV - ok
18:34:21.0905 0x171c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:34:21.0936 0x171c IPNAT - ok
18:34:21.0936 0x171c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:34:21.0959 0x171c IRENUM - ok
18:34:21.0959 0x171c [ 7E1DBF664ED3F203B1D3770E8586589D, 94B880B2B76C42B13F074F099BCFFD0FB41FF5F5A5C1790A2602066A25612956 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:34:21.0975 0x171c isapnp - ok
18:34:21.0983 0x171c [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:34:21.0999 0x171c iScsiPrt - ok
18:34:22.0006 0x171c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:34:22.0022 0x171c kbdclass - ok
18:34:22.0022 0x171c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:34:22.0038 0x171c kbdhid - ok
18:34:22.0045 0x171c [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] KeyIso C:\Windows\system32\lsass.exe
18:34:22.0061 0x171c KeyIso - ok
18:34:22.0069 0x171c [ D96B11F8C763060BDA0CAB64D3C2C1EE, FF7F39E1D33D162528AC0258477F62717D864DF50DCAF8457855C4B61FD69721 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:34:22.0084 0x171c KSecDD - ok
18:34:22.0092 0x171c [ 14BA4CC0F3560A4DD99336AF14038AB9, DE12621F55114F17493D49355E8315FE364CCCA012F08C00735B6CE4D46CA789 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:34:22.0108 0x171c KSecPkg - ok
18:34:22.0116 0x171c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:34:22.0147 0x171c ksthunk - ok
18:34:22.0155 0x171c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
18:34:22.0194 0x171c KtmRm - ok
18:34:22.0202 0x171c [ E42D4FDE2190BF6E55471F7F34BFAC66, 707AD0155F8356CB1E09C7C8ADB626C0DEC722F8FD4AAF5CDBDAEAB6D4239333 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:34:22.0233 0x171c LanmanServer - ok
18:34:22.0241 0x171c [ 01C95A8CAE16CCF1EA1181395C872B9F, 0BB846AFC7335BB0CD52735AE32E0BCD5075865900C356493DC159795E8C8181 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:34:22.0264 0x171c LanmanWorkstation - ok
18:34:22.0272 0x171c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:34:22.0303 0x171c lltdio - ok
18:34:22.0311 0x171c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:34:22.0350 0x171c lltdsvc - ok
18:34:22.0358 0x171c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:34:22.0381 0x171c lmhosts - ok
18:34:22.0397 0x171c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:34:22.0405 0x171c LSI_FC - ok
18:34:22.0413 0x171c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:34:22.0428 0x171c LSI_SAS - ok
18:34:22.0436 0x171c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
18:34:22.0444 0x171c LSI_SAS2 - ok
18:34:22.0452 0x171c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:34:22.0467 0x171c LSI_SCSI - ok
18:34:22.0475 0x171c [ 33F4F8FA5A6978602AF6CA8F2B6C3F10, EDD5D993283F3FF2F8E09751815B992E800BDBB147385E303DEC26E120410C56 ] luafv C:\Windows\system32\drivers\luafv.sys
18:34:22.0491 0x171c luafv - ok
18:34:22.0499 0x171c [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
18:34:22.0522 0x171c LVRS64 - ok
18:34:22.0631 0x171c [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
18:34:22.0741 0x171c LVUVC64 - ok
18:34:22.0756 0x171c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:34:22.0772 0x171c Mcx2Svc - ok
18:34:22.0780 0x171c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
18:34:22.0788 0x171c megasas - ok
18:34:22.0803 0x171c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
18:34:22.0819 0x171c MegaSR - ok
18:34:22.0827 0x171c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
18:34:22.0858 0x171c MMCSS - ok
18:34:22.0866 0x171c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
18:34:22.0889 0x171c Modem - ok
18:34:22.0897 0x171c [ 0E8EBD8E54DB14F14412B90AD4B099BF, 5D6513AFB31B0907D84C79869660C578203281ACD221B970B69E16295F26D749 ] monitor C:\Windows\system32\drivers\monitor.sys
18:34:22.0913 0x171c monitor - ok
18:34:22.0920 0x171c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys
18:34:22.0928 0x171c mouclass - ok
18:34:22.0936 0x171c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:34:22.0952 0x171c mouhid - ok
18:34:22.0959 0x171c [ D250A7B69B0BDC151F5F7B9C9FC78074, 6B6C8205A88FC1E4BB2669FA1433EC9B0CD23F2CC818E1F64FDC9802E5744579 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:34:22.0967 0x171c mountmgr - ok
18:34:22.0983 0x171c [ F95BF4A610D88AA5AB77E6DD47973ADF, EB7D67C5A17A2D13AA43309CADC1229B4AD24BF4E057E7B02897B264E1906C61 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:34:22.0999 0x171c MozillaMaintenance - ok
18:34:23.0006 0x171c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
18:34:23.0022 0x171c mpio - ok
18:34:23.0030 0x171c [ 3F829492638A86A3C4E0BB06778F0C23, A5B5FBE06E407C892E4668D53CC3F49BC6C7ACA12ED7AFB69FAC1C133003A890 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:34:23.0045 0x171c mpsdrv - ok
18:34:23.0069 0x171c [ C7A8706D5536D9BE35396C0116CAA8EE, AFB6B40B5CBA4F54C6AB3F82534CCA9D393C466EC5E3981CEBB33CB111C405D0 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:34:23.0100 0x171c MpsSvc - ok
18:34:23.0108 0x171c [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:34:23.0131 0x171c MRxDAV - ok
18:34:23.0139 0x171c [ 6042F3A3CE512D895844D733F70C34AD, D87D37FEBB88589D3515BCDD924456D0AE2735BF3B54AB9CD5D3C9C37CB1F8B4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:34:23.0170 0x171c mrxsmb - ok
18:34:23.0178 0x171c [ 985C9103BCE319E4E7C798CF55B2ED76, 7792A682519F14BD92788FA3A3665A407A4A62BECF7D665CCD620329002FEDBA ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:34:23.0209 0x171c mrxsmb10 - ok
18:34:23.0217 0x171c [ D88D50A3234EBC718C94CEFB48C3C0C5, 7E2089014CD35D00164912A7117827ED3D00AF317F3FE2FCF3EDABC7ADAB1205 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:34:23.0241 0x171c mrxsmb20 - ok
18:34:23.0249 0x171c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
18:34:23.0256 0x171c msahci - ok
18:34:23.0264 0x171c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:34:23.0280 0x171c msdsm - ok
18:34:23.0288 0x171c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
18:34:23.0303 0x171c MSDTC - ok
18:34:23.0319 0x171c [ 45BD105115AF4C040383FEA51F04BD06, 3E0FDFF5FE65053B7DA9630F0244C3E65FEB687C214333456D545EAF0AF1C325 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:34:23.0334 0x171c Msfs - ok
18:34:23.0342 0x171c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:34:23.0366 0x171c mshidkmdf - ok
18:34:23.0374 0x171c [ 0F7F6C886C308976DB01EFE81084A77F, FAB0D03DFB66224700423165422D03FF249F998737A942D32C63BDBBF60ABBC2 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:34:23.0381 0x171c msisadrv - ok
18:34:23.0389 0x171c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:34:23.0428 0x171c MSiSCSI - ok
18:34:23.0428 0x171c msiserver - ok
18:34:23.0436 0x171c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:34:23.0467 0x171c MSKSSRV - ok
18:34:23.0475 0x171c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:34:23.0506 0x171c MSPCLOCK - ok
18:34:23.0506 0x171c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:34:23.0538 0x171c MSPQM - ok
18:34:23.0561 0x171c [ 6D998E05CBEF595C38FCECC8DDAAAA86, BA844687D503EC9D9DA26762CE5C3B7BB48D324355DDF5EAA2A66E8D97006B9A ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:34:23.0577 0x171c MsRPC - ok
18:34:23.0584 0x171c [ A5D45B7B91F95F825EB5ABD3A6B262EF, C27C7E89205255CDE6A785C0141F3533E8572D0AFC4B9F73855565BF9F746E04 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:34:23.0600 0x171c mssmbios - ok
18:34:23.0600 0x171c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:34:23.0631 0x171c MSTEE - ok
18:34:23.0639 0x171c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
18:34:23.0655 0x171c MTConfig - ok
18:34:23.0655 0x171c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
18:34:23.0670 0x171c Mup - ok
18:34:23.0678 0x171c [ D69262765A6E89272510E221EEE3CCFF, 98F1D99BA8CC9BC25D7FED130A58621BE73A8DD22AA026374D791C46B7990E3E ] myTuningSvc C:\Program Files (x86)\mytuning utilities 17\SUService64.exe
18:34:23.0694 0x171c myTuningSvc - ok
18:34:23.0709 0x171c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
18:34:23.0749 0x171c napagent - ok
18:34:23.0764 0x171c [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:34:23.0788 0x171c NativeWifiP - ok
18:34:23.0819 0x171c [ CBE5C2A3353A367734989E335D6AF194, E8927AD1202AC5E523717AC4ADB2345D31A00B304FA56056B27043792237CFEC ] NDIS C:\Windows\system32\drivers\ndis.sys
18:34:23.0850 0x171c NDIS - ok
18:34:23.0858 0x171c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:34:23.0881 0x171c NdisCap - ok
18:34:23.0889 0x171c [ E8179074C0166D83BD8366169137669E, 44A3BCA1772F42CF0580C6BB0B48D106C678D0BB471DB6D81BC9C52895C9C16A ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:34:23.0905 0x171c NdisTapi - ok
18:34:23.0913 0x171c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:34:23.0936 0x171c Ndisuio - ok
18:34:23.0944 0x171c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:34:23.0975 0x171c NdisWan - ok
18:34:23.0983 0x171c [ D0FE24076ED3BA7B54D6E9819F8215A8, 42962676E322DCD9112740E6C43C8E49B8F9D998D7733645947771598FD3DD22 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:34:23.0999 0x171c NDProxy - ok
18:34:24.0006 0x171c [ 2E19EB10185992AB08BC3688AACA4CE2, D9E3A5CFE8887B7F66239000116723FAA119107870A6FB65FD6F108CE5C9D9EB ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:34:24.0022 0x171c NetBIOS - ok
18:34:24.0030 0x171c [ 0805034EA6F5273D4CB130D726AA5450, 3662B56226CF79A19174F3644D1902A4EE90CCBB86890B902DC387F3DFB492E7 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:34:24.0053 0x171c NetBT - ok
18:34:24.0053 0x171c [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] Netlogon C:\Windows\system32\lsass.exe
18:34:24.0069 0x171c Netlogon - ok
18:34:24.0084 0x171c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
18:34:24.0124 0x171c Netman - ok
18:34:24.0139 0x171c [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:34:24.0155 0x171c NetMsmqActivator - ok
18:34:24.0163 0x171c [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:34:24.0178 0x171c NetPipeActivator - ok
18:34:24.0194 0x171c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
18:34:24.0233 0x171c netprofm - ok
18:34:24.0241 0x171c [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:34:24.0256 0x171c NetTcpActivator - ok
18:34:24.0264 0x171c [ DE38E1601A85FB72FCE2EFAC49ED3927, C3359D9867481DE42A64B8861921CD2A36925242D7D0B16F61D3F1B6D115E798 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:34:24.0280 0x171c NetTcpPortSharing - ok
18:34:24.0288 0x171c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:34:24.0303 0x171c nfrd960 - ok
18:34:24.0311 0x171c [ 93DEDBE8E24F31962755E6AA4AC2D7B0, 368B3F48F230514F496CE24339EC8943A87A6BB9815912AE192B73837AB3E3B7 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:34:24.0334 0x171c NlaSvc - ok
18:34:24.0342 0x171c [ B6B896FA19D091233BC23DB828A556F1, 28F2655C002E73D1D223C0D4D61C481F189E08F6E8935D5DE6C6CC6520E828A4 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:34:24.0366 0x171c Npfs - ok
18:34:24.0366 0x171c [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi C:\Windows\system32\nsisvc.dll
18:34:24.0381 0x171c nsi - ok
18:34:24.0389 0x171c [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:34:24.0405 0x171c nsiproxy - ok
18:34:24.0413 0x171c [ 13C0D9CBA38FFA6D0C9E721B5E7212A0, 41F38AA6111FCE5D0CF63E7CC289645C7B51BCD353690700B8ECBFC03CF51FA9 ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
18:34:24.0428 0x171c nSvcIp - ok
18:34:24.0475 0x171c [ 1D728E2DA93EE1F7766DE97D0BEEFC57, 077C85AF6D788F1323648F5DD8B5873B06CD62B4AC33577453D01B16738BEFDE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:34:24.0522 0x171c Ntfs - ok
18:34:24.0530 0x171c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
18:34:24.0561 0x171c Null - ok
18:34:24.0569 0x171c [ 786DB821BFD57C0551DBBE4F75384A7D, F956D636F834F2BA5F019E187FDB9CC33940363C75A60E53CD81310A4DB6A6AB ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
18:34:24.0577 0x171c nusb3hub - ok
18:34:24.0592 0x171c [ DAA8005CAF745042BB427A1ED7433354, 3019002F174783B76D5D8AA47F7A465B7FEC7C14235B70E5C9277FE534839226 ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
18:34:24.0608 0x171c nusb3xhc - ok
18:34:24.0624 0x171c [ DE17C68FE82A90B681D323AB33E3BEF7, CA77E90B5E5AFA67C64E6FD9A0E8A46F9D7EDFAD55E50E9B47FE724351AF4271 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
18:34:24.0639 0x171c NvContainerLocalSystem - ok
18:34:24.0655 0x171c [ DE17C68FE82A90B681D323AB33E3BEF7, CA77E90B5E5AFA67C64E6FD9A0E8A46F9D7EDFAD55E50E9B47FE724351AF4271 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
18:34:24.0678 0x171c NvContainerNetworkService - ok
18:34:24.0702 0x171c [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
18:34:24.0717 0x171c NVENETFD - ok
18:34:24.0733 0x171c [ 815F0AB48BD5A6F72EB711E40372BE45, B6A5D436637CBC2BD8652520E6E58F89874510335AEAEFED7DBEBB902CD501D8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:34:24.0749 0x171c NVHDA - ok
18:34:25.0155 0x171c [ 7EB24095EE77767ECC51B2E2660A8488, 135169633F6EAA56E1FD93033F3DF09254CAFB166A9E1F075E772FFA975311C1 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:34:25.0553 0x171c nvlddmkm - ok
18:34:25.0600 0x171c [ 0AD267A4674805B61A5D7B911D2A978A, FD4A80BD4BBBC0D820E363EB1566FF878DE4097F2CCA2AC1BEDF75DE343F60E7 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
18:34:25.0616 0x171c NVNET - ok
18:34:25.0624 0x171c [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:34:25.0639 0x171c nvraid - ok
18:34:25.0647 0x171c [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:34:25.0663 0x171c nvstor - ok
18:34:25.0678 0x171c [ 71B6ECD3C56FBF12FB1968DA3953B703, 47E39FBC336C9BFC159AA0FF9D8DEE950724ABB782102858E397A7EF87112584 ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
18:34:25.0686 0x171c nvstor64 - ok
18:34:25.0694 0x171c [ C1E4298F14EDD4465EDB86E638B45153, A3514A1465A3A4011EC0FA3F295336C15D9135DED6C72B58ADB30A9B48C3B6F8 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
18:34:25.0709 0x171c NvStreamKms - ok
18:34:25.0725 0x171c [ 74058793EF08A7BFA0F95B7BE2A515AD, 28511469F236564A88A98662502E28F29A0F407A0657640E02A9197115221C5E ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
18:34:25.0741 0x171c NvTelemetryContainer - ok
18:34:25.0749 0x171c [ 0C8042CA2D71370AF5684B9F7C171CD6, 8932E489C2DCF9E016E7BFAF64FB47DCBC4635A2F79AB48A31B725AA9480F018 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
18:34:25.0764 0x171c nvvad_WaveExtensible - ok
18:34:25.0772 0x171c [ FE9178D6C9A4BDE30A43B66AD8F3B70A, 17D22CF02B4121EFD4526F30B16371A084F5F41B8746F9359BAD4C29D7DEB715 ] nvvhci C:\Windows\system32\DRIVERS\nvvhci.sys
18:34:25.0780 0x171c nvvhci - ok
18:34:25.0788 0x171c [ 6E1B8F7B9A0363AD0B3779BAB2E8E417, 5CDFC63B7A946E040FAA82DFEDE016F8DD228247A8C36813441413DF901E46B0 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:34:25.0803 0x171c nv_agp - ok
18:34:25.0811 0x171c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:34:25.0827 0x171c ohci1394 - ok
18:34:25.0827 0x171c [ 1BBF2FBF7A845198165A43E42413E6AE, 54A7142D109046152540F182FAF7153A5C34A45750823BE34F1370019284F926 ] optousb C:\Windows\system32\DRIVERS\optousb.sys
18:34:25.0842 0x171c optousb - ok
18:34:25.0850 0x171c [ 8A2C2B28D0A1E81214FC03BCBCF1322A, D9FDEF3FCB85FA6E04E4DAC983D771F1557E4C42DF01E54D1645BD371B1ED978 ] optovcm C:\Windows\system32\DRIVERS\optovcm.sys
18:34:25.0858 0x171c optovcm - ok
18:34:25.0874 0x171c [ 7EA6044AB974F06410A51FCC7856B8BB, EC0C9505B42C123E506A175ECCDD2FB2D84F2DEFDF50624B2F1CC7BDB76AE193 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:34:25.0897 0x171c p2pimsvc - ok
18:34:25.0913 0x171c [ 79DB2B358BF0B152F15D1C5A525233BD, 374D9E8D7FBBC3EB14BDC651378120FCB075A36404F1E76A3F291F89CD5C3362 ] p2psvc C:\Windows\system32\p2psvc.dll
18:34:25.0936 0x171c p2psvc - ok
18:34:25.0944 0x171c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:34:25.0959 0x171c Parport - ok
18:34:25.0959 0x171c Partizan - ok
18:34:25.0967 0x171c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:34:25.0983 0x171c partmgr - ok
18:34:25.0991 0x171c [ 5EF9936FC08352660CFDF17F2BE39BA1, 65D4628478BA3DDB19758B3EBE638B8A083D78CAE3E3550AC5E0129BBE8B6268 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:34:26.0006 0x171c PcaSvc - ok
18:34:26.0022 0x171c [ A1AD4E64D923498F9D03641E77176F52, 81D661290154EE5FA883F79549B9557D7A42BE85C48487C0E4241E5EEFBCA180 ] pci C:\Windows\system32\drivers\pci.sys
18:34:26.0030 0x171c pci - ok
18:34:26.0038 0x171c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
18:34:26.0045 0x171c pciide - ok
18:34:26.0061 0x171c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
18:34:26.0077 0x171c pcmcia - ok
18:34:26.0077 0x171c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
18:34:26.0092 0x171c pcw - ok
18:34:26.0108 0x171c [ 70C2C4D9EB212093F3F88F5247AF057E, 3A82D82B4C35EDC86CA326A5D8D03654ED8692400FC78D8129DFEDA8C3B331CB ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:34:26.0139 0x171c PEAUTH - ok
18:34:26.0170 0x171c [ C59E17D5E30972ECA28A72004795AEA7, 24CE4698F578BB6BE51101BA083C5E4A6A1AA449439C125BA3E5793E54260525 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
18:34:26.0217 0x171c PeerDistSvc - ok
18:34:26.0256 0x171c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:34:26.0264 0x171c PerfHost - ok
18:34:26.0311 0x171c [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla C:\Windows\system32\pla.dll
18:34:26.0350 0x171c pla - ok
18:34:26.0374 0x171c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:34:26.0397 0x171c PlugPlay - ok
18:34:26.0397 0x171c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:34:26.0413 0x171c PNRPAutoReg - ok
18:34:26.0428 0x171c [ 7EA6044AB974F06410A51FCC7856B8BB, EC0C9505B42C123E506A175ECCDD2FB2D84F2DEFDF50624B2F1CC7BDB76AE193 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:34:26.0452 0x171c PNRPsvc - ok
18:34:26.0467 0x171c [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:34:26.0491 0x171c PolicyAgent - ok
18:34:26.0499 0x171c [ F249779586148090EF90EFC697E4FE97, AD0ECD98307595C3C0D4397A8C87327198F4E7C8003063D36E28023016168CEC ] Power C:\Windows\system32\umpo.dll
18:34:26.0530 0x171c Power - ok
18:34:26.0538 0x171c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:34:26.0569 0x171c PptpMiniport - ok
18:34:26.0569 0x171c [ 25B69B39183984F07EE1D73041CABF70, BD655EA1827A8E53D43F439E12B0B6BFCA1EEBCAA23CE6FD47F89F897673A10C ] Processor C:\Windows\system32\drivers\processr.sys
18:34:26.0592 0x171c Processor - ok
18:34:26.0600 0x171c [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
18:34:26.0616 0x171c ProfSvc - ok
18:34:26.0624 0x171c [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:34:26.0639 0x171c ProtectedStorage - ok
18:34:26.0647 0x171c [ 4CE827A5433451551E99C2C1D20E4A43, B2E0806BB5C32A9126584941EE92526BFD45BB9EE18D7E598A2FFE7AAB495930 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:34:26.0663 0x171c Psched - ok
18:34:26.0702 0x171c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:34:26.0749 0x171c ql2300 - ok
18:34:26.0756 0x171c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:34:26.0772 0x171c ql40xx - ok
18:34:26.0780 0x171c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
18:34:26.0803 0x171c QWAVE - ok
18:34:26.0811 0x171c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:34:26.0827 0x171c QWAVEdrv - ok
18:34:26.0827 0x171c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:34:26.0858 0x171c RasAcd - ok
18:34:26.0866 0x171c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:34:26.0897 0x171c RasAgileVpn - ok
18:34:26.0905 0x171c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
18:34:26.0936 0x171c RasAuto - ok
18:34:26.0944 0x171c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:34:26.0975 0x171c Rasl2tp - ok
18:34:26.0991 0x171c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
18:34:27.0022 0x171c RasMan - ok
18:34:27.0030 0x171c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:34:27.0061 0x171c RasPppoe - ok
18:34:27.0069 0x171c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:34:27.0100 0x171c RasSstp - ok
18:34:27.0116 0x171c [ 6DB20EF6CAD4356B785A061071FA4ECC, FAB7B6A1FEB6C7861D3655058EB55013A255C5FA569ED20F257626A2E5F121CF ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:34:27.0139 0x171c rdbss - ok
18:34:27.0147 0x171c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:34:27.0163 0x171c rdpbus - ok
18:34:27.0170 0x171c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:34:27.0194 0x171c RDPCDD - ok
18:34:27.0209 0x171c [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
18:34:27.0225 0x171c RDPDR - ok
18:34:27.0225 0x171c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:34:27.0256 0x171c RDPENCDD - ok
18:34:27.0264 0x171c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:34:27.0295 0x171c RDPREFMP - ok
18:34:27.0303 0x171c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:34:27.0319 0x171c RDPWD - ok
18:34:27.0327 0x171c [ F4287A980C0AA41DE3073F053E5EA73C, 04A386884DE32C6813486FD2D8FD9B9B275758CE5354459D8862A60E7F134833 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:34:27.0342 0x171c rdyboost - ok
18:34:27.0350 0x171c [ 427B15BE9E1A6C143C72C007324E3AAD, 8AB51CE0DE213EED3C3E8251DBE53993F34697E58A7B9693059FB0D58BA93D44 ] RegFilter C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
18:34:27.0366 0x171c RegFilter - ok
18:34:27.0374 0x171c [ 0301EEE83B03229F555C6F8025FB5540, 3ABBA482E59FF9FC831A0FEA75A8C937BAE5077108A0EB3F89205C72FEDC2CD9 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:34:27.0389 0x171c RemoteAccess - ok
18:34:27.0397 0x171c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:34:27.0428 0x171c RemoteRegistry - ok
18:34:27.0436 0x171c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:34:27.0467 0x171c RpcEptMapper - ok
18:34:27.0467 0x171c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
18:34:27.0483 0x171c RpcLocator - ok
18:34:27.0499 0x171c [ 6903B7516D5A766E4690CF6F31A20F7F, 198347E3194B08E0ED3E22FCDFB085D1342EA2BCD2287D4F675106E4F09EF602 ] RpcSs C:\Windows\system32\rpcss.dll
18:34:27.0538 0x171c RpcSs - ok
18:34:27.0545 0x171c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:34:27.0577 0x171c rspndr - ok
18:34:27.0584 0x171c [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
18:34:27.0592 0x171c s3cap - ok
18:34:27.0600 0x171c [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] SamSs C:\Windows\system32\lsass.exe
18:34:27.0616 0x171c SamSs - ok
18:34:27.0624 0x171c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:34:27.0631 0x171c sbp2port - ok
18:34:27.0647 0x171c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:34:27.0679 0x171c SCardSvr - ok
18:34:27.0687 0x171c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:34:27.0718 0x171c scfilter - ok
18:34:27.0750 0x171c [ F8EA90B3EB37EDD78E58C1AD2160136B, 4C0584083A1036400A1C30EEA47D0AF7C4D2ECF314F81DB1EF8F302B97B83796 ] Schedule C:\Windows\system32\schedsvc.dll
18:34:27.0789 0x171c Schedule - ok
18:34:27.0796 0x171c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:34:27.0828 0x171c SCPolicySvc - ok
18:34:27.0835 0x171c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:34:27.0851 0x171c SDRSVC - ok
18:34:27.0859 0x171c secdrv - ok
18:34:27.0859 0x171c [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
18:34:27.0875 0x171c seclogon - ok
18:34:27.0882 0x171c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
18:34:27.0914 0x171c SENS - ok
18:34:27.0921 0x171c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:34:27.0937 0x171c SensrSvc - ok
18:34:27.0937 0x171c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:34:27.0953 0x171c Serenum - ok
18:34:27.0960 0x171c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:34:27.0976 0x171c Serial - ok
18:34:27.0976 0x171c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:34:27.0992 0x171c sermouse - ok
18:34:28.0007 0x171c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
18:34:28.0039 0x171c SessionEnv - ok
18:34:28.0039 0x171c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:34:28.0054 0x171c sffdisk - ok
18:34:28.0062 0x171c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:34:28.0078 0x171c sffp_mmc - ok
18:34:28.0078 0x171c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:34:28.0093 0x171c sffp_sd - ok
18:34:28.0101 0x171c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:34:28.0117 0x171c sfloppy - ok
18:34:28.0125 0x171c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:34:28.0164 0x171c SharedAccess - ok
18:34:28.0179 0x171c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:34:28.0218 0x171c ShellHWDetection - ok
18:34:28.0218 0x171c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
18:34:28.0234 0x171c SiSRaid2 - ok
18:34:28.0242 0x171c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:34:28.0250 0x171c SiSRaid4 - ok
18:34:28.0257 0x171c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:34:28.0289 0x171c Smb - ok
18:34:28.0296 0x171c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:34:28.0312 0x171c SNMPTRAP - ok
18:34:28.0320 0x171c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
18:34:28.0328 0x171c spldr - ok
18:34:28.0351 0x171c [ 8003D39B386EDCCFB08DC21AACC0683A, 99D6A4DBE810335A69AE3053DC4B6AAC267639AD7F9C568431FA0714F6E71F30 ] Spooler C:\Windows\System32\spoolsv.exe
18:34:28.0375 0x171c Spooler - ok
18:34:28.0460 0x171c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
18:34:28.0570 0x171c sppsvc - ok
18:34:28.0578 0x171c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:34:28.0609 0x171c sppuinotify - ok
18:34:28.0625 0x171c [ 79D017CDDC5DF89881B3B72557C0240B, D60F73DA7128563E323EA2CE3F728A92431C286E44132C713217114C0A28D838 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:34:28.0656 0x171c srv - ok
18:34:28.0664 0x171c [ DF2E40970AF016F1393CDF61AAF1974E, B4AC50C18352E4E28BECFD2469C0D481071C13C611809B4038523DB1ADB272BF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:34:28.0695 0x171c srv2 - ok
18:34:28.0710 0x171c [ 826EB12B7B309392D501D208EA3F9708, AA4B7532DF402E414839277451B680B05C4E431D71D540226418BC4C44965C79 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:34:28.0734 0x171c srvnet - ok
18:34:28.0742 0x171c [ B242E32E9DD37D54061FD96AC97D935E, 76B2F89425EFBC05331829C4F1679C64DC866C474E79FFD100535F87026C2DAD ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:34:28.0765 0x171c SSDPSRV - ok
18:34:28.0773 0x171c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:34:28.0804 0x171c SstpSvc - ok
18:34:28.0843 0x171c [ 908159333F4B12DF5F5624EB300A73BE, 253208904C4E0A17ADCAD044B78225F7B50646ECFB63E0FA50CC91CC1F939782 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:34:28.0890 0x171c Steam Client Service - ok
18:34:28.0898 0x171c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
18:34:28.0914 0x171c stexstor - ok
18:34:28.0929 0x171c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
18:34:28.0960 0x171c stisvc - ok
18:34:28.0968 0x171c [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
18:34:28.0976 0x171c storflt - ok
18:34:28.0984 0x171c [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
18:34:29.0000 0x171c StorSvc - ok
18:34:29.0000 0x171c [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
18:34:29.0015 0x171c storvsc - ok
18:34:29.0023 0x171c SWDUMon - ok
18:34:29.0023 0x171c [ 2888219D7E85BA0635CC98AEA7599CF4, FA8D454AE42AC38B04647B3E46541625A3AB51146EBEC5B1674717E347C03A0D ] swenum C:\Windows\system32\drivers\swenum.sys
18:34:29.0039 0x171c swenum - ok
18:34:29.0054 0x171c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
18:34:29.0093 0x171c swprv - ok
18:34:29.0140 0x171c [ 15CF7B24AA64FE958CAEA00274838B1C, 820F7CF1CCD036A1871D728C1CC80D9E9BB5E3BD5D9C7BC822B1711D8DB79707 ] SysMain C:\Windows\system32\sysmain.dll
18:34:29.0187 0x171c SysMain - ok
18:34:29.0203 0x171c [ AD359C53941A6AC57FB935E7E9F1D16E, 6D53065ECE8E928CC045E16B7618D866C121EBA6C6CBDADC97C2B0DC8D8CF9FC ] TabletInputService C:\Windows\System32\TabSvc.dll
18:34:29.0218 0x171c TabletInputService - ok
18:34:29.0234 0x171c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
18:34:29.0265 0x171c TapiSrv - ok
18:34:29.0273 0x171c [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
18:34:29.0304 0x171c TBS - ok
18:34:29.0351 0x171c [ 80DA51C2F7DAFB900512F15DB6ADEC5A, 6FA4C00B223DE451D7D2DB283F7B4C0865877E23BF0DEDAD9A5E460168D9B739 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:34:29.0421 0x171c Tcpip - ok
18:34:29.0468 0x171c [ 80DA51C2F7DAFB900512F15DB6ADEC5A, 6FA4C00B223DE451D7D2DB283F7B4C0865877E23BF0DEDAD9A5E460168D9B739 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:34:29.0531 0x171c TCPIP6 - ok
18:34:29.0546 0x171c [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:34:29.0578 0x171c tcpipreg - ok
18:34:29.0585 0x171c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:34:29.0601 0x171c TDPIPE - ok
18:34:29.0601 0x171c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:34:29.0617 0x171c TDTCP - ok
18:34:29.0625 0x171c [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:34:29.0640 0x171c tdx - ok
18:34:29.0648 0x171c [ 2E7A1415FE48EAC714E960CB3D1DD54B, 9DBF881D300267D8654F205C22FB1391DCEA777942D136D69D8F6ACB0F8FC354 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:34:29.0656 0x171c TermDD - ok
18:34:29.0679 0x171c [ CC84B48075B91118C497610F577D006A, 13AA977E6211DF364CF9446DA1272D698E5493EB384A5CA36C04CCD3FB695201 ] TermService C:\Windows\System32\termsrv.dll
18:34:29.0710 0x171c TermService - ok
18:34:29.0718 0x171c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
18:34:29.0734 0x171c Themes - ok
18:34:29.0742 0x171c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
18:34:29.0773 0x171c THREADORDER - ok
18:34:29.0781 0x171c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
18:34:29.0812 0x171c TrkWks - ok
18:34:29.0820 0x171c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:34:29.0851 0x171c TrustedInstaller - ok
18:34:29.0859 0x171c [ B4E764C19CD65256CE03F29C4183046E, 3DC2A1EA551C1511E94BA073CFCAF74FC8E776900329E3D91043A90E37FB1076 ] TS4NT C:\Windows\system32\Drivers\TS4nt.sys
18:34:29.0875 0x171c TS4NT - ok
18:34:29.0882 0x171c [ F3F18DA6FF07708115634DD07A80422D, 8C8D6486A9BFB635E6587C1A195C3FC7C85D7E93B199792076F571E08A58F54A ] TSNxGService C:\Program Files (x86)\G DATA\TotalSecurity\TSNxG\TSNxGService.exe
18:34:29.0906 0x171c TSNxGService - ok
18:34:29.0906 0x171c [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:34:29.0921 0x171c tssecsrv - ok
18:34:29.0929 0x171c [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:34:29.0945 0x171c TsUsbFlt - ok
18:34:29.0953 0x171c [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
18:34:29.0960 0x171c TsUsbGD - ok
18:34:29.0968 0x171c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:34:30.0000 0x171c tunnel - ok
18:34:30.0007 0x171c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:34:30.0023 0x171c uagp35 - ok
18:34:30.0031 0x171c [ F0C176C907539FBBA54F8C1DC1C6320D, 86EB7BB27391AE973B0CC5678D9452B05D1E9493206958DB2EE63BBD18339242 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:34:30.0054 0x171c udfs - ok
18:34:30.0062 0x171c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:34:30.0078 0x171c UI0Detect - ok
18:34:30.0085 0x171c [ 1FD0CC5121FC0590FC19B196AB6EFF4B, 9BF894CF6BDEB094E0F24C7F44BCB27D1F5F8DB53AE41E4C0A8A70E0082392EF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:34:30.0101 0x171c uliagpkx - ok
18:34:30.0101 0x171c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:34:30.0117 0x171c umbus - ok
18:34:30.0125 0x171c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
18:34:30.0132 0x171c UmPass - ok
18:34:30.0140 0x171c [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
18:34:30.0164 0x171c UmRdpService - ok
18:34:30.0179 0x171c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
18:34:30.0210 0x171c upnphost - ok
18:34:30.0218 0x171c [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:34:30.0242 0x171c usbaudio - ok
18:34:30.0242 0x171c [ E6DFE1F33B1250A6E26EA6F6CE10B09C, BCA9E05BDBFC8D5B7095DE2F5CCE4C40E2CA5BA8D983039500A8D016723CA763 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:34:30.0281 0x171c usbccgp - ok
18:34:30.0289 0x171c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:34:30.0296 0x171c usbcir - ok
18:34:30.0304 0x171c [ 234F9E56606CE5D1549DE7D4CCA4DE0C, 6BC996A27AEA91DD82B3E9492889D38E3A5B98404AD0C018DA091E1450998AA7 ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:34:30.0320 0x171c usbehci - ok
18:34:30.0335 0x171c [ 0A33C9EC6822B24E26687F1EC6346922, 44295855AC7DCD098EA4A2379B9896F347147FCB02E2DCC82F2064FB31D2E7A5 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:34:30.0351 0x171c usbhub - ok
18:34:30.0359 0x171c [ 9C456BFD0FF50CB5B7ECDA7B7529F63B, 70AADB0702BEB00243CA315D7898F484898A58E58A6935185FBF091A78B2218E ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:34:30.0375 0x171c usbohci - ok
18:34:30.0375 0x171c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:34:30.0390 0x171c usbprint - ok
18:34:30.0398 0x171c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:34:30.0414 0x171c usbscan - ok
18:34:30.0421 0x171c [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:34:30.0437 0x171c USBSTOR - ok
18:34:30.0437 0x171c [ 3C1D50EBDC6F531C0AA905D71956E106, E32EB5DAD87235E40568DB1BD80EAE16C9AF55606BEF5FAB25B0EF503369493E ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:34:30.0453 0x171c usbuhci - ok
18:34:30.0460 0x171c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:34:30.0476 0x171c usbvideo - ok
18:34:30.0484 0x171c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
18:34:30.0515 0x171c UxSms - ok
18:34:30.0523 0x171c [ D2E59CD552933171475C2DD59002AF5C, 6F36F469D88F902A17333108EACAD789D2A52DD50DBB23DD01EFCF529993C4A1 ] VaultSvc C:\Windows\system32\lsass.exe
18:34:30.0539 0x171c VaultSvc - ok
18:34:30.0546 0x171c [ 5E83F6FA86407F4FA3A347B31C28CB9B, B94ED30529DC202FDB451C5F72878362D59B1E84C6844653FE722B3FA5B629F0 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:34:30.0554 0x171c vdrvroot - ok
18:34:30.0570 0x171c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
18:34:30.0609 0x171c vds - ok
18:34:30.0617 0x171c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:34:30.0632 0x171c vga - ok
18:34:30.0640 0x171c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
18:34:30.0671 0x171c VgaSave - ok
18:34:30.0679 0x171c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:34:30.0695 0x171c vhdmp - ok
18:34:30.0718 0x171c [ D1182A6D3CE8A992A76C8E0285CEEBB4, 9D2412692A3100141BADF6AD327C916B0F1B38A541DF2041EDF117D92D9BD44F ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
18:34:30.0742 0x171c VIAHdAudAddService - ok
18:34:30.0750 0x171c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
18:34:30.0757 0x171c viaide - ok
18:34:30.0765 0x171c [ D1E8B98B9A85436FC425A9CD66754A29, EF94BF8FB7090E8320D601A5A1470B9C6BBDC569CE856A3DBE592F632CCF37F6 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
18:34:30.0781 0x171c VIAKaraokeService - ok
18:34:30.0789 0x171c [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
18:34:30.0804 0x171c vmbus - ok
18:34:30.0812 0x171c [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
18:34:30.0820 0x171c VMBusHID - ok
18:34:30.0828 0x171c [ 0C62F898EF24366F20C822226057FD9E, 3FFA3A750DF36D12A66221C34D42CEFDA9106117B687F01BC14210F65C3B56C0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:34:30.0843 0x171c volmgr - ok
18:34:30.0851 0x171c [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:34:30.0875 0x171c volmgrx - ok
18:34:30.0882 0x171c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:34:30.0906 0x171c volsnap - ok
18:34:30.0914 0x171c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:34:30.0921 0x171c vsmraid - ok
18:34:30.0969 0x171c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
18:34:31.0032 0x171c VSS - ok
18:34:31.0040 0x171c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
18:34:31.0055 0x171c vwifibus - ok
18:34:31.0071 0x171c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
18:34:31.0110 0x171c W32Time - ok
18:34:31.0118 0x171c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:34:31.0133 0x171c WacomPen - ok
18:34:31.0141 0x171c [ 6CB845761069BB2722A2C6979F493AFB, EB5A3480DDAAE53F41D3AB869D2CABBC1FF1F40B855A69A1E61D4C045891995C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:34:31.0157 0x171c WANARP - ok
18:34:31.0165 0x171c [ 6CB845761069BB2722A2C6979F493AFB, EB5A3480DDAAE53F41D3AB869D2CABBC1FF1F40B855A69A1E61D4C045891995C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:34:31.0180 0x171c Wanarpv6 - ok
18:34:31.0219 0x171c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
18:34:31.0266 0x171c wbengine - ok
18:34:31.0274 0x171c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:34:31.0297 0x171c WbioSrvc - ok
18:34:31.0313 0x171c [ 79E3903FD75A22386326B542F17A2563, 3CCCE0BCDE12240BE7E108A8C0A959A33C8462A0DE8510F28FA0107C4A9A1F05 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:34:31.0336 0x171c wcncsvc - ok
18:34:31.0344 0x171c [ 35050F01D00E7E72A2449EB6F9ABF8B4, CF45943E14D2418E83CF4DC836D3AFE4ED61186B6B9DA25EF745DC6FBB07FAC5 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:34:31.0360 0x171c WcsPlugInService - ok
18:34:31.0368 0x171c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
18:34:31.0383 0x171c Wd - ok
18:34:31.0399 0x171c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:34:31.0430 0x171c Wdf01000 - ok
18:34:31.0438 0x171c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:34:31.0461 0x171c WdiServiceHost - ok
18:34:31.0461 0x171c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:34:31.0485 0x171c WdiSystemHost - ok
18:34:31.0493 0x171c [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient C:\Windows\System32\webclnt.dll
18:34:31.0516 0x171c WebClient - ok
18:34:31.0524 0x171c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:34:31.0563 0x171c Wecsvc - ok
18:34:31.0571 0x171c [ A5B9B5226168F4DBEDB6444D970CAF7B, 2948C14F0B56B0CDE3AA2D67F5A45A21A6AED56E527773BCDE89DCD021CC520B ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:34:31.0586 0x171c wercplsupport - ok
18:34:31.0594 0x171c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
18:34:31.0625 0x171c WerSvc - ok
18:34:31.0633 0x171c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:34:31.0665 0x171c WfpLwf - ok
18:34:31.0665 0x171c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:34:31.0680 0x171c WIMMount - ok
18:34:31.0680 0x171c WinDefend - ok
18:34:31.0688 0x171c WinHttpAutoProxySvc - ok
18:34:31.0704 0x171c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:34:31.0743 0x171c Winmgmt - ok
18:34:31.0790 0x171c [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM C:\Windows\system32\WsmSvc.dll
18:34:31.0844 0x171c WinRM - ok
18:34:31.0860 0x171c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:34:31.0875 0x171c WinUsb - ok
18:34:31.0899 0x171c [ 354C045ED623FC6BB22E9BFD675895C9, C48B3A90A59C83E419FDB56760F38AF3457F3AA189613A58234F3093B9E5C153 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:34:31.0938 0x171c Wlansvc - ok
18:34:31.0946 0x171c [ 43471A750D4F3918AC92F5131AE252D3, E843AA1555262F521B924BBB1505474757E1BB9540FCCF93BC0BE2059F497C87 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:34:31.0961 0x171c WmiAcpi - ok
18:34:31.0969 0x171c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:34:31.0985 0x171c wmiApSrv - ok
18:34:31.0993 0x171c WMPNetworkSvc - ok
18:34:31.0993 0x171c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:34:32.0008 0x171c WPCSvc - ok
18:34:32.0016 0x171c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:34:32.0040 0x171c WPDBusEnum - ok
18:34:32.0040 0x171c [ 54AF0724831FF09EC2713CED2032DBD3, A59397F6C2215CE1776BE750C0EA7DD009CB770C3E0760F3BF0995BAB6B0A902 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:34:32.0071 0x171c ws2ifsl - ok
18:34:32.0071 0x171c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
18:34:32.0094 0x171c wscsvc - ok
18:34:32.0094 0x171c WSearch - ok
18:34:32.0172 0x171c [ 2039FC378DCC3A3897C9CCFF0A67874C, 6A8A714DE3CD39C8A02654DB6C9C7184658F5B37A065A18A1F697D280B764600 ] wuauserv C:\Windows\system32\wuaueng.dll
18:34:32.0250 0x171c wuauserv - ok
18:34:32.0266 0x171c [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:34:32.0297 0x171c WudfPf - ok
18:34:32.0305 0x171c [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:34:32.0336 0x171c WUDFRd - ok
18:34:32.0344 0x171c [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:34:32.0375 0x171c wudfsvc - ok
18:34:32.0383 0x171c [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
18:34:32.0407 0x171c WwanSvc - ok
18:34:32.0407 0x171c ================ Scan global ===============================
18:34:32.0415 0x171c [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
18:34:32.0422 0x171c [ 31FF838929AD7C63F570F192CEE9835B, 8FF4DE7F291C114681D9C0F8D1B1AB28A4FED5034D089615E4F069469D691DE6 ] C:\Windows\system32\winsrv.dll
18:34:32.0438 0x171c [ 31FF838929AD7C63F570F192CEE9835B, 8FF4DE7F291C114681D9C0F8D1B1AB28A4FED5034D089615E4F069469D691DE6 ] C:\Windows\system32\winsrv.dll
18:34:32.0446 0x171c [ D52F821BB4EA388A2DD356A58BC4ED98, 4DCE903819C89BA015DE77E315708FCC5E786C549A9610E43952809715F5C370 ] C:\Windows\system32\sxssrv.dll
18:34:32.0461 0x171c [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
18:34:32.0461 0x171c [ Global ] - ok
18:34:32.0461 0x171c ================ Scan MBR ==================================
18:34:32.0469 0x171c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:34:32.0555 0x171c \Device\Harddisk0\DR0 - ok
18:34:32.0563 0x171c [ EA923EB0EC0060F1451E9AD7B5762CFE ] \Device\Harddisk1\DR1
18:34:32.0727 0x171c \Device\Harddisk1\DR1 - ok
18:34:32.0735 0x171c [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk2\DR2
18:34:32.0875 0x171c \Device\Harddisk2\DR2 - ok
18:34:32.0875 0x171c ================ Scan VBR ==================================
18:34:32.0883 0x171c [ 515C1CA3194FB2A98689F621E9A6C71E ] \Device\Harddisk0\DR0\Partition1
18:34:32.0883 0x171c \Device\Harddisk0\DR0\Partition1 - ok
18:34:32.0883 0x171c [ 09696D047AA21E0512633788921452E8 ] \Device\Harddisk0\DR0\Partition2
18:34:32.0891 0x171c \Device\Harddisk0\DR0\Partition2 - ok
18:34:32.0891 0x171c [ C10B41902BCD39E52057B7939430E58D ] \Device\Harddisk0\DR0\Partition3
18:34:32.0899 0x171c \Device\Harddisk0\DR0\Partition3 - ok
18:34:32.0899 0x171c [ E1A61C773D9F0728ECCAC9254B462BFA ] \Device\Harddisk0\DR0\Partition4
18:34:32.0899 0x171c \Device\Harddisk0\DR0\Partition4 - ok
18:34:32.0907 0x171c [ BDFBDA854C96D3AC24E1210451D2D39E ] \Device\Harddisk1\DR1\Partition1
18:34:32.0907 0x171c \Device\Harddisk1\DR1\Partition1 - ok
18:34:32.0915 0x171c [ 9E6BFD9CD276C941F7CD2C87FE01ADD3 ] \Device\Harddisk2\DR2\Partition1
18:34:32.0915 0x171c \Device\Harddisk2\DR2\Partition1 - ok
18:34:32.0915 0x171c ================ Scan generic autorun ======================
18:34:33.0032 0x171c [ E1E457F60C294A55455856ABCE91B476, C8192FC1304F082D796B58F6C963A2EC57A12340F76933765C7DF7A622CB7BFF ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
18:34:33.0149 0x171c HDAudDeck - ok
18:34:33.0157 0x171c AvastUI.exe - ok
18:34:33.0297 0x171c [ 4B6FB7DE94D91974950976108D2B837E, 8F6FD897DA2DE048020679AE1309922EC41DDA87FB57FB195292A2B8A73665A4 ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
18:34:33.0438 0x171c XFastUSB - ok
18:34:33.0571 0x171c [ E1E457F60C294A55455856ABCE91B476, C8192FC1304F082D796B58F6C963A2EC57A12340F76933765C7DF7A622CB7BFF ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
18:34:33.0688 0x171c HDAudDeck - ok
18:34:33.0704 0x171c [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
18:34:33.0719 0x171c LWS - ok
18:34:33.0750 0x171c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:34:33.0790 0x171c Sidebar - ok
18:34:33.0797 0x171c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:34:33.0813 0x171c mctadmin - ok
18:34:33.0844 0x171c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:34:33.0883 0x171c Sidebar - ok
18:34:33.0891 0x171c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:34:33.0907 0x171c mctadmin - ok
18:34:33.0915 0x171c AV detected via SS2: G DATA TOTAL SECURITY, C:\Program Files (x86)\G DATA\TotalSecurity\AVK\avkwscpe.exe ( 25.1.0.0 ), 0x41000 ( enabled : updated )
18:34:33.0915 0x171c FW detected via SS2: G DATA TOTAL SECURITY, C:\Program Files (x86)\G DATA\TotalSecurity\AVK\avkwscpe.exe ( 25.1.0.0 ), 0x41010 ( enabled )
18:34:34.0008 0x171c ============================================================
18:34:34.0008 0x171c Scan finished
18:34:34.0008 0x171c ============================================================
18:34:34.0008 0x195c Detected object count: 0
18:34:34.0008 0x195c Actual detected object count: 0
Geändert von cosinus (27.10.2019 um 20:26 Uhr) Grund: code tags |
|
27.10.2019, 20:26
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Kriege Malware nicht aus dem System (Firefox/Win 7) Du musst ASAP auf ein aktuelles OS aktualisieren, weil Windows 7 in wenigen Wochen end of life ist und keine Updates mehr bekommt. Diese drei Möglichkeiten hast du nun: a) Windows 10 neu installieren und hoffen, dass diese alte Hardware damit zurechtkommt b) zu Linux wechseln c) neuen Rechner kaufen
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
29.10.2019, 21:04
| #5 |
| | Kriege Malware nicht aus dem System (Firefox/Win 7) Danke für Deine Empfehlung. Da muss ich mal schauen was ich jetzt mache. Das heißt um eine Neuinnstallation komme ich dann so oder so nicht rum. Vielleicht hat ja jemand noch zusätzlich eine Idee wie man die Adware los wird. |
|
29.10.2019, 21:20
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Kriege Malware nicht aus dem System (Firefox/Win 7) Irgendwie hast du die Problematik nicht begriffen. Es geht hier NICHT darum, Ideen für die Entfernung von Adware zu sammeln oder dass man hier keine Ahnung hat, wie die zu entfernen sei. Es macht einfach keinen Sinn, ein so altes System zu retten, Windows 7 ist bald tot und dann muss es eh weg. Daten sichern und Neuinstallation mit Windows 10, fertig. Oder du nimmst Linux.
__________________ --> Kriege Malware nicht aus dem System (Firefox/Win 7) |
|
| Themen zu Kriege Malware nicht aus dem System (Firefox/Win 7) |
| danke, einiger, engine, gdata, gdata virenscan, gefunde, hilfe, immer wieder, kriege, log, malware, meinem, nicht, node.js, nvcontainer, scan, scanner, sigcheck, system, virenscan, virenscanner, warnt, zugriff |
Linear-Darstellung
