| |
| |||||||
Netzwerk und Hardware: Wlan Jammer - NachwirkungenWindows 7 Hilfe zu Motherboards, CPUs, Lüfter, Raid-Controller, Digitalkameras, Treiber usw. Bitte alle relevanten Angaben zur Hardware machen. Welche Hardware habe ich? Themen zum Trojaner Entfernen oder Viren Beseitigung bitte in den Bereinigungsforen des Trojaner-Boards posten. |
 |
28.04.2020, 17:04
| #1 |
 |  Wlan Jammer - Nachwirkungen Servus nach einigen Auffälligkeiten die letzten Tage, habe ich festgestellt, dass gleich mehrere unbekannte Geräte in meinem Wlan registriert waren (trotz WPA2). Folgende Dinge habe seither unternommen: Fritz-Box: - Entsprechende Geräteverbindungen unterbrochen/gelöscht - Keine neuen Geräte zulassen - Nur bekannte Geräteverbindungen zulassen - Kommunikation untereinander verbieten - WLan Passwort geändert (deutlich mehr Zeichen etc.) - Fritz-Box Passwort geändert - Bisher lediglich mein Handy als einziges WLan Gerät verbunden Seither habe ich allerdings noch immer 2 Login Versuche von diesen unbekannten Mac-Adressen: Code:
ATTFilter B4:E6:2D:2C:DD:35
B0:05:94:9D:8A:ED
Weiter gehe ich also davon aus, dass der LAN-PC noch immer kompromittiert ist. Vorab schon der Farbar, TDSS Killer, ADW Cleaner Log etc Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 26-04-2020
durchgeführt von dspri (Administrator) auf DESKTOP-OBO4HD2 (28-04-2020 17:33:45)
Gestartet von C:\Users\dspri\Desktop
Geladene Profile: dspri (Verfügbare Profile: dspri)
Platform: Windows 10 Pro Version 1903 18362.778 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Creative Technology Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Creative.SBConnect.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <54>
(Intel Corporation) [Datei ist nicht signiert] C:\Windows\System32\IPROSetMonitor.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc. -> McAfee, LLC.) C:\Program Files\McAfee\Real Protect\RealProtect.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12004.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\regedit.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtxSvc32.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942936 2018-11-02] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [Creative.SBConnect] => C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Creative.SBConnect.exe [87040 2018-06-05] (Creative Technology Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\RunOnce: [RealProtect] => C:\Program Files\McAfee\Real Protect\RealProtect.exe [7751488 2020-04-26] (McAfee, Inc. -> McAfee, LLC.)
HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\Run: [Opera Browser Assistant] => C:\Users\dspri\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3002904 2020-04-23] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\MountPoints2: {7bdb0fbf-f64b-11e8-92bc-e0d55e243967} - "H:\setup.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{5EF9A232-5B5B-4768-95F2-3F601FB184E3}] -> C:\Windows\system32\AutoGreenCP.dll [2018-11-28] () [Datei ist nicht signiert]
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {1F05BC05-40DB-4587-8E37-9530208E88CF} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887688 2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2B86BDA9-A2B9-44FF-835E-732C9AC8C1E2} - System32\Tasks\Opera scheduled assistant Autoupdate 1556399332 => C:\Users\dspri\AppData\Local\Programs\Opera\launcher.exe [1538584 2020-04-08] (Opera Software AS -> Opera Software)
Task: {324D4EF0-60C9-4CBE-96BF-47DA7AAA88A0} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [739624 2018-04-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {35314D76-EF24-4F44-8B06-8D4ECFB74875} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {44CE0668-A457-4A1C-AB1F-BE893A2A40F6} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1146048 2018-10-05] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {4D635DB4-EDFD-4F1A-A6E3-734E033958C7} - System32\Tasks\Opera scheduled Autoupdate 1556399326 => C:\Users\dspri\AppData\Local\Programs\Opera\launcher.exe [1538584 2020-04-08] (Opera Software AS -> Opera Software)
Task: {6656B409-B0E5-42F1-8319-F52B6D316E0E} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [32691080 2018-10-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {675C372C-BC85-4D8A-8C56-A69D9F54F7F9} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887688 2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {80F0B6FE-BD65-41AF-8FD7-EA37ADEFCF03} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855944 2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {87240E30-E39B-4E9F-9D3A-CDE6B5385AAE} - System32\Tasks\HPCustParticipation HP OfficeJet Pro 8710 => C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\HPCustPartic.exe [6439048 2018-04-06] (Hewlett Packard -> HP Inc.)
Task: {8B9534D4-9C5A-4E0D-AFA9-68D7F9E16FFB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-27] (Google Inc -> Google Inc.)
Task: {A19DEF5E-5D9F-441A-880C-BE5F686F35D2} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887688 2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AAECAC02-DCB8-4F2F-8308-191F3804431D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [126152 2020-04-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {AC593A19-61EC-46FA-82FE-2B16039D8871} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [563080 2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BA26BBA7-8F87-4D40-BABC-F51443A58958} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855944 2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C9D04876-55BC-43A2-A19F-119AD7997AAC} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [887688 2018-11-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E56757EF-1834-49EA-99CC-D9294A8D011A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-27] (Google Inc -> Google Inc.)
Task: {F1E110FC-0B7C-42E6-99FA-7F27EF4C67AC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {F819FA83-07D8-472C-9451-C6DC0C5CD89E} - System32\Tasks\AMDAutoUpdate => C:\Program Files\AMD\AutoUpdate\AMDAutoUpdate.exe [661240 2018-08-02] (Advanced Micro Devices Inc. -> )
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{db7d66dd-6300-40bd-aed0-56a49e4a5513}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{fe1fa264-015d-4afb-9b9a-95b5953eb843}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4079327580-188762723-1416653193-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4079327580-188762723-1416653193-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
FireFox:
========
FF DefaultProfile: 3olyo7xj.default
FF ProfilePath: C:\Users\dspri\AppData\Roaming\Mozilla\Firefox\Profiles\3olyo7xj.default [2020-04-27]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default [2020-04-28]
CHR Notifications: Default -> hxxps://ddl-warez.to
CHR Extension: (Präsentationen) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-27]
CHR Extension: (Docs) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-27]
CHR Extension: (Google Drive) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-27]
CHR Extension: (YouTube) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-27]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-04-07]
CHR Extension: (Tabellen) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-27]
CHR Extension: (Google Docs Offline) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-22]
CHR Extension: (Amazon Order History Reporter) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgkilgclilajckgnedgjgnfdokkgnibi [2020-01-04]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-07]
CHR Extension: (Google Mail) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-05]
CHR Extension: (Chrome Media Router) - C:\Users\dspri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-18]
Opera:
=======
OPR Extension: (MyJDownloader Browser Extension) - C:\Users\dspri\AppData\Roaming\Opera Software\Opera Stable\Extensions\fbclnkmbcmdfamfeaagadifibbongnmf [2019-04-28]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 CtxSvc32; C:\WINDOWS\sysWow64\CtxSvc32.exe [166808 2019-11-04] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2019-02-01] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-03-17] (Mixbyte Inc -> Freemake)
R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [506368 2017-10-26] (Intel Corporation) [Datei ist nicht signiert]
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-27] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2425136 2019-11-12] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3303736 2019-11-12] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe [3294680 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe [103168 2020-03-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [24288 2018-10-02] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31704 2018-10-03] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [137688 2018-10-02] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R2 AMDRyzenMasterDriverV13; C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys [71152 2018-12-11] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-27] (Microsoft Corporation) [Datei ist nicht signiert]
S3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [43416 2019-11-21] (Creative Technology Ltd -> Creative Technology Ltd)
R3 CtxHda; C:\WINDOWS\system32\drivers\CtxHda.sys [1204416 2019-11-04] (Creative Technology Ltd -> Creative Technology Ltd)
R3 CtxHdb; C:\WINDOWS\system32\DRIVERS\Ctxhdb.sys [48320 2019-11-04] (Creative Technology Ltd -> Creative Technology Ltd)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131904 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-12-02] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-12-02] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-04-27] (Malwarebytes Corporation -> Malwarebytes)
S3 gdrv; C:\Windows\gdrv.sys [26192 2019-01-05] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 gdrv2; C:\Windows\gdrv2.sys [32720 2018-11-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2019-02-11] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [65320 2018-12-29] (Martin Malik - REALiX -> REALiX(tm))
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-04-27] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-04-27] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-04-27] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-04-27] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-04-27] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [124560 2020-04-27] (Malwarebytes Inc -> Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
R0 secnvme; C:\WINDOWS\System32\drivers\secnvme.sys [134120 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R2 SSGDIO; C:\WINDOWS\SysWOW64\DRIVERS\ssgdio64.sys [14608 2019-01-05] (ATI Technologies, Inc -> ATI Technologies Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167232 2018-12-12] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 UcmCxUcsiNvppc; C:\WINDOWS\System32\drivers\UcmCxUcsiNvppc.sys [461592 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45960 2020-03-25] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [391392 2020-03-25] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-25] (Microsoft Windows -> Microsoft Corporation)
R1 WinRing0_1_2_0; C:\Program Files\EVGA\Precision X1\WinRing0\WinRing0x64.sys [14536 2015-10-20] (EVGA -> OpenLibSys.org)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2020-01-23] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-04-28 17:34 - 2020-04-27 00:58 - 005054744 _____ (AO Kaspersky Lab) C:\Users\dspri\Desktop\tdsskiller.exe
2020-04-28 17:33 - 2020-04-28 17:34 - 000020555 _____ C:\Users\dspri\Desktop\FRST.txt
2020-04-28 17:33 - 2020-04-28 17:29 - 002283008 _____ (Farbar) C:\Users\dspri\Desktop\FRST64.exe
2020-04-28 17:29 - 2020-04-28 17:34 - 000000000 ____D C:\FRST
2020-04-28 17:29 - 2020-04-28 17:29 - 002283008 _____ (Farbar) C:\Users\dspri\Downloads\FRST64.exe
2020-04-28 13:59 - 2020-04-28 13:59 - 000000000 ____D C:\WINDOWS\system32\Tasks\S-1-5-21-4079327580-188762723-1416653193-1001
2020-04-27 14:01 - 2020-04-27 14:01 - 001728127 _____ C:\Users\dspri\Downloads\Autoruns.zip
2020-04-27 13:25 - 2020-04-27 13:25 - 000000733 _____ C:\Users\dspri\Downloads\Laufwerk C alle Dateien mit Benutzern auflisten.zip
2020-04-27 01:15 - 2020-04-27 01:15 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-04-27 01:14 - 2020-04-27 01:14 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-04-27 01:14 - 2020-04-27 01:14 - 000124560 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-04-27 01:13 - 2020-04-27 01:13 - 001980016 _____ (Malwarebytes) C:\Users\dspri\Downloads\MBSetup (1).exe
2020-04-27 01:11 - 2020-04-27 01:11 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-04-27 01:11 - 2020-04-27 01:11 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-04-27 01:06 - 2020-04-27 01:09 - 000320064 _____ C:\TDSSKiller.3.1.0.28_27.04.2020_01.06.07_log.txt
2020-04-27 00:58 - 2020-04-27 00:58 - 005054744 _____ (AO Kaspersky Lab) C:\Users\dspri\Downloads\tdsskiller.exe
2020-04-27 00:57 - 2020-04-27 01:11 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2020-04-27 00:57 - 2020-04-27 01:05 - 000000000 ____D C:\Users\dspri\Desktop\mbar
2020-04-27 00:57 - 2020-04-27 00:57 - 014178840 _____ (Malwarebytes Corp.) C:\Users\dspri\Downloads\mbar-1.10.3.1001.exe
2020-04-27 00:57 - 2020-04-27 00:57 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\7352F42D.sys
2020-04-27 00:47 - 2020-04-27 00:47 - 001980016 _____ (Malwarebytes) C:\Users\dspri\Downloads\MBSetup.exe
2020-04-27 00:43 - 2020-04-27 00:43 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-04-27 00:43 - 2020-04-27 00:43 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-04-27 00:43 - 2020-04-27 00:43 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-04-27 00:43 - 2020-04-27 00:43 - 000000000 ____D C:\Users\dspri\AppData\Local\mbamtray
2020-04-27 00:43 - 2020-04-27 00:43 - 000000000 ____D C:\Users\dspri\AppData\Local\mbam
2020-04-27 00:42 - 2020-04-27 00:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-27 00:42 - 2020-04-27 00:42 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-04-27 00:42 - 2020-04-27 00:42 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-04-27 00:42 - 2020-04-27 00:42 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-26 19:24 - 2020-04-27 01:59 - 000000000 ____D C:\Program Files (x86)\stinger
2020-04-26 19:24 - 2020-04-26 19:24 - 000000000 ____D C:\Program Files\McAfee
2020-04-26 19:18 - 2020-04-26 19:18 - 000471276 _____ C:\Users\dspri\Downloads\FRITZ.Box 6490 Cable (lgi) 141.07.10_26.04.20_1918.export
2020-04-26 19:15 - 2020-04-26 19:15 - 000606761 _____ C:\Users\dspri\Downloads\diagnosis FRITZ.Box 6490 Cable (lgi) 141.07.10_26.04.20_1915.txt
2020-04-26 17:14 - 2020-04-26 17:14 - 000000000 ____D C:\WINDOWS\Panther
2020-04-21 03:40 - 2020-04-21 03:40 - 000015215 _____ C:\Users\dspri\Desktop\Kalkulation Wohnung Kosten.xlsx
2020-04-21 00:10 - 2020-04-21 00:10 - 000118933 _____ C:\Users\dspri\Downloads\WhatsApp Image 2020-04-20 at 14.45.26.jpeg
2020-04-20 06:03 - 2020-04-24 10:18 - 000002584 _____ C:\Users\dspri\Desktop\Wohnung Design.txt
2020-04-19 14:16 - 2020-04-19 14:16 - 000291606 _____ C:\Users\dspri\Downloads\TcpView-3.05.zip
2020-04-19 13:15 - 2020-04-27 04:58 - 000007596 _____ C:\Users\dspri\AppData\Local\Resmon.ResmonCfg
2020-04-18 22:23 - 2020-04-25 20:45 - 000018284 _____ C:\Users\dspri\Desktop\Gordon Trainingsplan April 2020.xlsx
2020-04-18 20:46 - 2020-04-18 20:46 - 000106952 _____ C:\Users\dspri\Downloads\RE-2019-12-1018 (1).pdf
2020-04-18 16:08 - 2020-04-18 16:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 022636544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 018027520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 017790464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 014818816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 007849216 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 007756800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 006523048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 005910016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 004611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 004563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 004129624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003980800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003802624 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003753472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003742544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003587384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 003547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003512320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 003109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 002951832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 002767928 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002717184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002369576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002188600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002126144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002114560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 002086656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001960448 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001945600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001942528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001870408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-04-18 16:08 - 2020-04-18 16:08 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001665216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001659408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001646048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001545216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 001512832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 001497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001495864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 001477112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001427456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001413840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001413704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001397576 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 001386296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001378528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001368576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001318912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 001263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 001261808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001245184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001243648 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001077064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001013000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000982840 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000980832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000924672 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000915192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000822208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000785920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000775696 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000768528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000759272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000684560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000673704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000673464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000665088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000654912 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000647680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000632832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000618296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000589384 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2020-04-18 16:08 - 2020-04-18 16:08 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000538160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000524264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000515600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000513576 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000510792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000487784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-04-18 16:08 - 2020-04-18 16:08 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000456504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2020-04-18 16:08 - 2020-04-18 16:08 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000437560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000416016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000406480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcApi.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpr.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000339304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\es.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000297272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000277864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000268008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000259776 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000251704 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasrad.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000231912 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000193848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasrad.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000185952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000178192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000151352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000147696 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000142544 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000123952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000102216 _____ (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\iasacct.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\keepaliveprovider.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000066624 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iasacct.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumapi.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000059192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumapi.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000050544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iaspolcy.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000047000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iaspolcy.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcProxyStubs.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000033080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wksprtPS.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ias.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\flpydisk.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ias.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Custom.ps.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbservicetrigger.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sfloppy.sys
2020-04-18 16:08 - 2020-04-18 16:08 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wksprtPS.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Custom.ps.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-04-18 16:08 - 2020-04-18 16:08 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-04-18 16:08 - 2020-04-18 16:08 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-04-18 16:04 - 2020-03-17 05:57 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-04-18 16:04 - 2020-03-17 05:56 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-04-12 11:02 - 2020-04-12 11:02 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-04-12 05:16 - 2020-04-16 12:32 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-04-10 11:57 - 2020-04-18 16:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-04-02 23:10 - 2020-04-02 23:10 - 000000000 ____D C:\Users\dspri\Desktop\POB
2020-04-02 23:07 - 2020-04-02 23:08 - 008091092 _____ C:\Users\dspri\Downloads\PathOfBuilding-1.4.140.zip
2020-04-02 22:31 - 2020-04-06 05:26 - 000000111 _____ C:\Users\dspri\Desktop\lethal.txt
2020-04-01 19:52 - 2020-04-26 22:54 - 000000000 ____D C:\Users\dspri\AppData\Roaming\Rizonesoft
2020-04-01 19:52 - 2020-04-01 19:52 - 001741723 _____ (Rizonesoft ) C:\Users\dspri\Downloads\Firemin_5060_Setup.exe
2020-04-01 16:09 - 2020-04-01 16:09 - 000010487 _____ C:\Users\dspri\OneDrive\Old\Dokumente\DanielSp_elster_01.04.2020_16.08.pfx
2020-04-01 16:09 - 2020-04-01 16:09 - 000010487 _____ C:\Users\dspri\Downloads\DanielSp_elster_01.04.2020_16.08.pfx
2020-03-30 11:59 - 2019-10-31 01:17 - 000079368 _____ (Razer Inc) C:\WINDOWS\system32\RazerS2S3Coinstaller.dll
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-04-28 17:33 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-28 17:13 - 2018-12-09 14:30 - 000000000 ____D C:\Users\dspri\AppData\Local\D3DSCache
2020-04-28 17:02 - 2019-09-27 17:59 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-04-28 16:07 - 2019-05-01 03:22 - 000000000 ____D C:\Users\dspri\Downloads\opera autoupdate
2020-04-28 16:02 - 2018-11-27 16:44 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-04-28 14:20 - 2018-11-27 16:17 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-28 14:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-04-28 06:01 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-04-28 06:01 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-04-28 01:08 - 2018-11-27 16:18 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-27 23:38 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-04-27 15:29 - 2018-11-27 16:16 - 000000000 ____D C:\Users\dspri\AppData\LocalLow\Mozilla
2020-04-27 14:26 - 2019-04-27 23:08 - 000001397 _____ C:\Users\dspri\Desktop\Opera-Browser.lnk
2020-04-27 13:11 - 2019-09-27 18:02 - 000000000 ____D C:\Users\dspri
2020-04-27 01:15 - 2019-09-27 18:08 - 001723312 _____ C:\WINDOWS\system32\PerfStringBackup.ini
2020-04-27 01:15 - 2019-03-19 14:16 - 000743892 _____ C:\WINDOWS\system32\perfh007.dat
2020-04-27 01:15 - 2019-03-19 14:16 - 000150216 _____ C:\WINDOWS\system32\perfc007.dat
2020-04-27 01:15 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-04-27 01:12 - 2019-09-27 18:07 - 000003142 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2020-04-27 01:12 - 2018-11-27 16:11 - 000000000 ____D C:\Users\dspri\AppData\Roaming\Origin
2020-04-27 01:11 - 2019-09-27 18:07 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-04-27 01:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-04-27 01:09 - 2019-03-19 06:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-04-27 00:45 - 2018-11-27 18:50 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-04-27 00:42 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-04-26 23:10 - 2018-11-27 16:06 - 000000000 ____D C:\Users\dspri\AppData\Local\Packages
2020-04-26 22:55 - 2019-04-27 23:08 - 000000000 ____D C:\Users\dspri\AppData\Local\JDownloader v2.0
2020-04-26 22:54 - 2020-03-25 03:31 - 000000000 ____D C:\Program Files (x86)\Freemake
2020-04-25 15:41 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-04-25 01:30 - 2020-03-25 03:03 - 000000000 ____D C:\Users\dspri\AppData\Roaming\vlc
2020-04-24 13:33 - 2019-09-27 18:07 - 000004464 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1556399332
2020-04-21 04:47 - 2020-03-03 06:53 - 000004811 _____ C:\Users\dspri\Desktop\vyan0303OK.txt
2020-04-19 12:45 - 2018-11-27 16:11 - 000000000 ____D C:\ProgramData\Origin
2020-04-19 12:08 - 2019-09-27 17:59 - 000443704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-04-19 12:08 - 2018-11-27 16:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-18 22:27 - 2019-03-19 14:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-04-18 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-04-18 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2020-04-18 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-04-18 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-04-18 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Provisioning
2020-04-18 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-04-18 22:27 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-04-18 16:02 - 2019-09-27 18:07 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4079327580-188762723-1416653193-1001
2020-04-18 16:02 - 2019-09-27 18:02 - 000002424 _____ C:\Users\dspri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-04-18 16:02 - 2018-11-27 16:08 - 000000000 ___RD C:\Users\dspri\OneDrive
2020-04-15 15:58 - 2019-09-27 18:07 - 000004232 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1556399326
2020-04-15 15:58 - 2019-04-27 23:08 - 000001444 _____ C:\Users\dspri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera-Browser.lnk
2020-04-12 11:02 - 2018-11-27 16:16 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-04-06 02:17 - 2020-01-10 23:40 - 000000000 ____D C:\Users\dspri\Desktop\prrooof
2020-04-05 06:49 - 2020-03-15 00:49 - 000000000 ____D C:\Users\dspri\AppData\Roaming\poe-overlay
2020-04-02 08:42 - 2018-11-27 18:42 - 000744808 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2020-04-01 10:34 - 2020-03-18 14:08 - 000001988 _____ C:\Users\Public\Desktop\PoE Overlay.lnk
2020-04-01 10:34 - 2020-03-18 14:08 - 000001988 _____ C:\ProgramData\Desktop\PoE Overlay.lnk
2020-04-01 10:34 - 2020-03-18 14:08 - 000000000 ____D C:\Program Files\poe-overlay
2020-03-31 16:03 - 2020-03-10 18:46 - 000000000 ____D C:\Users\dspri\Desktop\Erbdokumente
2020-03-30 11:59 - 2018-11-28 16:17 - 000000000 ____D C:\Program Files (x86)\Razer
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2020-04-19 13:15 - 2020-04-27 04:58 - 000007596 _____ () C:\Users\dspri\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Geändert von Java.exe (28.04.2020 um 17:29 Uhr) |
|
28.04.2020, 17:06
| #2 |
| | Wlan Jammer - NachwirkungenCode:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 26-04-2020
durchgeführt von dspri (28-04-2020 17:34:42)
Gestartet von C:\Users\dspri\Desktop
Windows 10 Pro Version 1903 18362.778 (X64) (2019-09-27 16:07:24)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4079327580-188762723-1416653193-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4079327580-188762723-1416653193-503 - Limited - Disabled)
dspri (S-1-5-21-4079327580-188762723-1416653193-1001 - Administrator - Enabled) => C:\Users\dspri
Gast (S-1-5-21-4079327580-188762723-1416653193-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4079327580-188762723-1416653193-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
AIDA64 Extreme v5.99 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.99 - FinalWire Ltd.)
AMD Ryzen Master (HKLM\...\AMD Ryzen Master) (Version: 1.5.2.0869 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 17.12 - Advanced Micro Devices, Inc.)
Anno 1800 (HKLM-x32\...\Uplay Install 4553) (Version: - Ubisoft)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.4 - Electronic Arts, Inc.)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.49.1 - Asmedia Technology)
AutoHotkey 1.1.32.00 (HKLM\...\AutoHotkey) (Version: 1.1.32.00 - Lexikos)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Ihr Firmenname) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.63793 - Electronic Arts)
Blitz (HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\Blitz) (Version: 0.9.20 - Blitz Inc.)
CPUID CPU-Z MSI 1.87 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.87 - CPUID, Inc.)
Dawn of Man MULTi4 - ElAmigos Version 1.0.2 (HKLM-x32\...\{C9209A07-3293-4BE1-9FE8-44CE47D77223}_is1) (Version: 1.0.2 - Madruga Works)
Diablo II (HKLM-x32\...\Diablo II) (Version: 0.0.0.0 - Blizzard Entertainment)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.01 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{422FC196-EA1D-448E-A505-BC7DFC21C880}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVGA Precision X1 (HKLM\...\EVGA Precision X1) (Version: 0.3.11.0 - EVGA Corporation)
Geeks3D FurMark 1.20.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Hearts of Iron IV Man the Guns (HKLM-x32\...\Hearts of Iron IV Man the Guns_is1) (Version: - )
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.165 - Riot Games, Inc.)
HP Dropbox Plugin (HKLM-x32\...\{1E18E86D-632C-48B5-962C-B60C2E53A478}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{039DDA62-50CC-4E7F-9D54-7CF032A2D362}) (Version: 36.0.41.58587 - HP)
HP OfficeJet Pro 8710 - Grundlegende Software für das Gerät (HKLM\...\{3574B2B8-5FA1-4F63-A6C7-652F213DFD80}) (Version: 40.12.1161.1896 - HP Inc.)
HP OfficeJet Pro 8710 Hilfe (HKLM-x32\...\{AC6E479B-DD73-4490-8B91-E497003E89AA}) (Version: 38.0.0 - HP)
HWiNFO64 Version 6.00 (HKLM\...\HWiNFO64_is1) (Version: 6.00 - Martin Malík - REALiX)
I.R.I.S. OCR (HKLM-x32\...\{77374D45-3BBF-4633-A2DF-188CD2106A67}) (Version: 12.3.7.0 - HP)
Intel(R) Network Connections 22.9.16.0 (HKLM\...\PROSetDX) (Version: 22.9.16.0 - Intel)
küchenquelle 3D Küchenplaner (HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\SquareClock_Production_Home_5-2_6f8e7f4b) (Version: - 3DVIA SAS)
Lactate EXPRESS 4.1.3.5 (HKLM-x32\...\{558137AF-56A3-437A-A05E-17C8B9588127}_is1) (Version: 4.0 - mesics GmbH)
Lactate Scout Assistant [DE] (HKLM-x32\...\{EF6CEA74-92E3-46D9-BB92-2E3ACE32CF1D}) (Version: 1.0.6 - SensLab GmbH)
Lactate Scout Data Link [DE] (HKLM-x32\...\{699F4B8A-CED0-4D82-BC36-12A98B5FFAE4}) (Version: 1.0.1 - SensLab GmbH)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
LED Sync (HKLM-x32\...\{3EF99290-BC31-4E90-89E2-B0E44D85C11C}) (Version: 1.0.9 - EVGA)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Median XL Launcher (HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\AD755AF1-2FD3-4FAF-B0C2-5F4800F53143) (Version: 1.2.1 - Median XL Team)
Microsoft OneDrive (HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Mozilla Firefox 75.0 (x64 de) (HKLM\...\Mozilla Firefox 75.0 (x64 de)) (Version: 75.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.3 - Mozilla)
Mozilla Thunderbird 68.7.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 68.7.0 (x86 de)) (Version: 68.7.0 - Mozilla)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
MTG Arena (HKLM-x32\...\{04F3D3CC-082B-49D4-8F97-5BCA4CA096ED}) (Version: 0.1.928.0 - Wizards of the Coast) Hidden
MTG Arena (HKLM-x32\...\MTG Arena 0.1.928.0) (Version: 0.1.928.0 - Wizards of the Coast)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.6.0.1 - Duodian Technology Co. Ltd.)
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Grafiktreiber 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
NVIDIA USBC Driver 1.1.27.831 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.1.27.831 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Ihr Firmenname)
Opera Stable 67.0.3575.137 (HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\Opera 67.0.3575.137) (Version: 67.0.3575.137 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.55.33574 - Electronic Arts, Inc.)
Oxygen Not Included MULTi4 - ElAmigos Version 381897 (HKLM-x32\...\{F23E1904-F816-4693-8DFF-AAA4F74E83D5}_is1) (Version: 381897 - Klei Entertainment)
Paradox Launcher v2 (HKLM\...\{F0072197-FCF6-41BF-9D38-832B145922DC}) (Version: 2.0.0.0 - Paradox Interactive)
Path of Building version 1.4.117 (HKLM-x32\...\{72FA9AB7-189F-4BDE-8856-72DEB90C157B}_is1) (Version: 1.4.117 - Openarl)
Path of Exile (HKLM-x32\...\{025604ce-a638-4741-93b8-3468109a0d0a}) (Version: 3.4.5.47261 - Grinding Gear Games)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 3.4.5.47261 - Grinding Gear Games) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.1 - pdfforge GmbH)
poe-overlay 0.6.16 (HKLM\...\{4029a1cf-61b4-539a-827c-d229b542fc0f}) (Version: 0.6.16 - Kyusung4698)
poe-overlay 0.6.7 (HKLM\...\4029a1cf-61b4-539a-827c-d229b542fc0f) (Version: 0.6.7 - Kyusung4698)
Polar FlowSync Version 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.21.1 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8228 - Realtek Semiconductor Corp.)
Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.3.0.1910 - Samsung Electronics)
Samsung NVM Express Driver (HKLM-x32\...\{bfb0503a-76b9-415a-b0a3-dd55d2a01ebe}) (Version: 3.0.0.1802 - Samsung Electronics)
Samsung NVM Express Driver 3.0.0.1802 (HKLM\...\{92729760-681A-42A2-A101-1098CAB4DEC1}) (Version: 3.0.0.1802 - Samsung Electronics Co., Ltd) Hidden
Sid Meier's Civilization 6 (HKLM-x32\...\Sid Meier's Civilization 6_is1) (Version: - )
Sound Blaster AE-Series Driver (HKLM-x32\...\AESeries_is1) (Version: 1.0.00.03 - Creative Technology Ltd.)
Sound Blaster Connect 2 Version 3.2.28.00 (HKLM-x32\...\Sound Blaster Connect 2_is1) (Version: 3.2.28.00 - Creative Technology Ltd.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Starsector by Fractal Softworks LLC (HKLM-x32\...\Starsector) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Studie zur Verbesserung von HP OfficeJet Pro 8710 (HKLM\...\{94E4242D-9AEA-458E-A74F-4C345DA16867}) (Version: 40.12.1161.1896 - HP Inc.)
Sweet Home 3D version 6.2 (HKLM\...\Sweet Home 3D_is1) (Version: 6.2 - eTeks)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
WinRAR 5.61 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
X4 Foundations (HKLM-x32\...\X4 Foundations_is1) (Version: - )
Packages:
=========
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-03-28] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_110.1.728.0_x64__v10z8vjag6ke6 [2020-04-18] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2020-02-26] (Instagram)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-27] (Microsoft Corporation) [MS Ad]
Microsoft News – Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4079327580-188762723-1416653193-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4079327580-188762723-1416653193-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4079327580-188762723-1416653193-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4079327580-188762723-1416653193-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4079327580-188762723-1416653193-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4079327580-188762723-1416653193-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-27] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-27] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2018-11-27 16:22 - 2018-06-05 14:34 - 000759808 _____ ( () [Datei ist nicht signiert]) [Datei wird verwendet ] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Platform\Creative.Platform.Webservice.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000232448 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000057344 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000567808 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000072704 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000357888 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2018-11-27 16:22 - 2018-06-05 14:34 - 000146944 _____ (Creative Lab Pte Ltd. ) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Platform\ClplLEDController.dll
2018-11-27 16:22 - 2018-06-05 14:34 - 001830912 _____ (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Platform\CTDrvLedMgr.dll
2018-11-27 16:22 - 2018-06-05 14:34 - 000124416 _____ (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Platform\CTHID.dll
2018-11-27 16:22 - 2018-06-05 14:34 - 000555520 _____ (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Platform\CTHIDRpA.dll
2018-11-27 16:22 - 2018-06-05 14:34 - 000098304 _____ (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Platform\CTIntrfu.dll
2019-01-11 15:56 - 2016-10-04 16:51 - 000076800 _____ (Igor Pavlov) [Datei ist nicht signiert] C:\Program Files\7-Zip\7-zip.dll
2017-10-18 15:23 - 2017-10-18 15:23 - 000349696 _____ (Intel(R) Corporation) [Datei ist nicht signiert] C:\WINDOWS\system32\NCS2Setp.dll
2019-12-10 06:24 - 2019-12-10 06:24 - 000116736 _____ (pdfforge GmbH) [Datei ist nicht signiert] C:\WINDOWS\System32\pdfcmon.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2017-09-29 15:46 - 2018-12-19 22:38 - 000000831 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NGX;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4079327580-188762723-1416653193-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dspri\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\lenovowallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "Gigabyte Speed"
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKU\S-1-5-21-4079327580-188762723-1416653193-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SNMPTRAP-In-UDP] => (Block) %SystemRoot%\system32\snmptrap.exe Keine Datei
FirewallRules: [PNRPMNRS-PNRP-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [PNRPMNRS-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [EventForwarder-In-TCP] => (Block) %SystemRoot%\system32\NetEvtFwdr.exe Keine Datei
FirewallRules: [EventForwarder-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteFwAdmin-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteFwAdmin-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [AllJoyn-Router-Out-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Netlogon-TCP-RPC-In] => (Block) %SystemRoot%\System32\lsass.exe Keine Datei
FirewallRules: [WirelessDisplay-In-TCP] => (Block) %systemroot%\system32\WUDFHost.exe Keine Datei
FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Block) %systemroot%\system32\CastSrv.exe Keine Datei
FirewallRules: [MsiScsi-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-WINMGMT-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-WINMGMT-Out-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMI-ASYNC-In-TCP] => (Block) %systemroot%\system32\wbem\unsecapp.exe Keine Datei
FirewallRules: [Wininit-Shutdown-In-Rule-TCP-RPC] => (Block) %systemroot%\system32\wininit.exe Keine Datei
FirewallRules: [Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper] => (Block) %systemroot%\system32\wininit.exe Keine Datei
FirewallRules: [ProximityUxHost-Sharing-In-TCP-NoScope] => (Block) %SystemRoot%\system32\proximityuxhost.exe Keine Datei
FirewallRules: [NETDIS-SSDPSrv-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-FDPHOST-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-DAS-In-UDP-Active] => (Block) %SystemRoot%\system32\dashost.exe Keine Datei
FirewallRules: [NETDIS-LLMNR-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-LLMNR-Out-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NETDIS-FDRESPUB-WSD-In-UDP-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-In-TCP-EdgeScope] => (Block) %SystemRoot%\system32\msra.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [RemoteAssistance-PnrpSvc-UDP-In-EdgeScope] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MSDTC-In-TCP] => (Block) %SystemRoot%\system32\msdtc.exe Keine Datei
FirewallRules: [MSDTC-KTMRM-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MSDTC-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteEventLogSvc-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteEventLogSvc-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WFDPRINT-DAFWSD-In-Active] => (Block) %SystemRoot%\system32\dashost.exe Keine Datei
FirewallRules: [WFDPRINT-DAFWSD-Out-Active] => (Block) %SystemRoot%\system32\dashost.exe Keine Datei
FirewallRules: [WFDPRINT-SPOOL-In-Active] => (Block) %SystemRoot%\system32\spoolsv.exe Keine Datei
FirewallRules: [WFDPRINT-SCAN-In-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [TPMVSCMGR-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [TPMVSCMGR-Server-In-TCP] => (Block) %SystemRoot%\system32\RmtTpmVscMgrSvr.exe Keine Datei
FirewallRules: [TPMVSCMGR-Server-Out-TCP] => (Block) %SystemRoot%\system32\RmtTpmVscMgrSvr.exe Keine Datei
FirewallRules: [Microsoft-Windows-DeviceManagement-deviceenroller-TCP-Out] => (Block) %SystemRoot%\system32\deviceenroller.exe Keine Datei
FirewallRules: [RemoteSvcAdmin-In-TCP] => (Block) %SystemRoot%\system32\services.exe Keine Datei
FirewallRules: [RemoteSvcAdmin-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Collab-P2PHost-In-TCP] => (Block) %SystemRoot%\system32\p2phost.exe Keine Datei
FirewallRules: [Collab-P2PHost-Out-TCP] => (Block) %SystemRoot%\system32\p2phost.exe Keine Datei
FirewallRules: [Collab-P2PHost-WSD-In-UDP] => (Block) %SystemRoot%\system32\p2phost.exe Keine Datei
FirewallRules: [Collab-P2PHost-WSD-Out-UDP] => (Block) %SystemRoot%\system32\p2phost.exe Keine Datei
FirewallRules: [Collab-PNRP-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Collab-PNRP-Out-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Collab-PNRP-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Collab-PNRP-SSDPSrv-Out-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [CoreNet-DHCP-In] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [CoreNet-DHCPV6-In] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [CoreNet-Teredo-In] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RVM-VDS-In-TCP] => (Block) %SystemRoot%\system32\vds.exe Keine Datei
FirewallRules: [RVM-VDSLDR-In-TCP] => (Block) %SystemRoot%\system32\vdsldr.exe Keine Datei
FirewallRules: [RVM-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteTask-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteTask-RPCSS-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MDNS-In-UDP-Private-Active] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [NVS-FrameServer-Out-TCP-NoScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-WLANSvc-ASP-CP-In] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-Unified-Telemetry-Client] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMP-In-UDP-x86] => (Block) %ProgramFiles(x86)%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-In-UDP] => (Block) %ProgramFiles%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-Out-UDP] => (Block) %ProgramFiles%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMP-Out-TCP] => (Block) %ProgramFiles%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-QWave-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-QWave-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-QWave-Out-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [WMPNSS-WMP-In-UDP] => (Block) %PROGRAMFILES%\Windows Media Player\wmplayer.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [WMPNSS-In-UDP] => (Block) %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe Keine Datei
FirewallRules: [WMPNSS-In-TCP] => (Block) %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe Keine Datei
FirewallRules: [WPDMTP-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP] => (Block) %SystemRoot%\system32\sppextcomobj.exe Keine Datei
FirewallRules: [MCX-SSDPSrv-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MCX-In-TCP] => (Block) %SystemRoot%\ehome\ehshell.exe Keine Datei
FirewallRules: [MCX-QWave-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MCX-QWave-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MCX-TERMSRV-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [MCX-In-UDP] => (Block) %SystemRoot%\ehome\ehshell.exe Keine Datei
FirewallRules: [PlayTo-In-UDP-LocalSubnetScope] => (Block) %SystemRoot%\system32\mdeserver.exe Keine Datei
FirewallRules: [PlayTo-Out-UDP-LocalSubnetScope] => (Block) %SystemRoot%\system32\mdeserver.exe Keine Datei
FirewallRules: [PlayTo-In-RTSP-LocalSubnetScope] => (Block) %SystemRoot%\system32\mdeserver.exe Keine Datei
FirewallRules: [PlayTo-QWave-In-UDP-PlayToScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [PlayTo-QWave-Out-UDP-PlayToScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [PlayTo-QWave-In-TCP-PlayToScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [PlayTo-QWave-Out-TCP-PlayToScope] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteDesktop-UserMode-In-TCP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteDesktop-UserMode-In-UDP] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [RemoteDesktop-Shadow-In-TCP] => (Block) %SystemRoot%\system32\RdpSa.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-PeerDist-WSD-In] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [Microsoft-Windows-PeerDist-WSD-Out] => (Block) %systemroot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{F41DA79C-1B04-47B2-BA28-DD26B930D856}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{121E19D9-E3EE-49CE-A7AB-131C7ACFE27A}] => (Block) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{BEA20974-A3EE-41DC-99C7-B5A5CE4086F0}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{4FAC48AB-459A-4E72-9190-A76A0A9E9D3F}] => (Block) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{451620EB-2A20-4BA7-8F7E-09DC860A246C}] => (Block) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{F2B03678-B63E-45BA-BE5C-5E0C89C8F6AD}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{0ACEB78F-E61A-40F4-8AC6-6D6834FF4240}] => (Block) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [{2DE6A171-0DF5-4FEE-8AE7-4CFAB8ACA338}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.)
FirewallRules: [UDP Query User{F62D819E-DDF8-4865-80D4-8A0A089497D4}D:\domina\steamapps\common\domina\domina.exe] => (Block) D:\domina\steamapps\common\domina\domina.exe (Dolphin Barn Incorporated) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{4EB46D36-022B-4C6D-8863-1353853E7057}D:\domina\steamapps\common\domina\domina.exe] => (Block) D:\domina\steamapps\common\domina\domina.exe (Dolphin Barn Incorporated) [Datei ist nicht signiert]
FirewallRules: [{6679061D-E7D3-48FA-8132-44860EE13556}] => (Allow) D:\SteamLibrary\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [Datei ist nicht signiert]
FirewallRules: [{D5F6C077-1439-4898-BC19-2AB9BFD0BCB7}] => (Allow) D:\SteamLibrary\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [Datei ist nicht signiert]
FirewallRules: [{27ED42DF-A923-4ECB-9C53-C0335D6446E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{170B6782-5850-4788-999B-DF56CEEEE9DF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe () [Datei ist nicht signiert]
FirewallRules: [{351A52A9-4EB7-4984-B86A-AAD26505D5CE}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{F182CF27-AAF9-44EC-ADA5-77ABABB8D203}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{D2471387-11F6-48ED-8350-DFFBE360D924}] => (Allow) D:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [Datei ist nicht signiert]
FirewallRules: [{5803B856-ABF2-483A-9827-EDABED66C634}] => (Allow) D:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [Datei ist nicht signiert]
FirewallRules: [{BD86E24E-9EA3-467D-82AD-251AF3884FBF}] => (Block) D:\factorio_0.17.17\bin\x64\factorio.exe (Wube Software) [Datei ist nicht signiert]
FirewallRules: [{004F4DDD-15CB-4F22-9593-9668887551DC}] => (Block) D:\factorio_0.17.17\bin\x64\factorio.exe (Wube Software) [Datei ist nicht signiert]
FirewallRules: [{E99B61A0-8B66-4017-8032-D61DE6DC161F}] => (Allow) D:\SteamLibrary\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{F3B91856-E5C2-4849-9D53-532848154A6B}] => (Allow) D:\SteamLibrary\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [UDP Query User{E40E7325-8F5A-4188-8524-EE09F10C535B}C:\program files (x86)\creative\connection service\connection service.exe] => (Block) C:\program files (x86)\creative\connection service\connection service.exe Keine Datei
FirewallRules: [TCP Query User{5B00A754-68B5-46E6-8E8A-C0B253DEFAA3}C:\program files (x86)\creative\connection service\connection service.exe] => (Block) C:\program files (x86)\creative\connection service\connection service.exe Keine Datei
FirewallRules: [{4A436100-68D6-4B3B-A683-C76D6F78E6EA}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{C1AEB650-375B-4FC6-9FCC-B4B0BAE03738}] => (Block) LPort=5357
FirewallRules: [{712FF17E-9B6A-4FAB-88AB-AE32A5252914}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{76F42626-D5E4-4260-8DDC-8C52B151E8E5}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{E55E2B9F-C85F-4FA5-B5FF-CC843F20CE63}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{CF84DD66-CB22-476D-ABC5-6781E5EE92DA}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{19C67D21-5BAA-450C-87B6-EBB8981EED31}] => (Allow) C:\Program Files\HP\HP OfficeJet Pro 8710\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{3154132C-39B8-4BF8-978A-2BB0F34EB1D9}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteControl\grckm.exe Keine Datei
FirewallRules: [{46342F7C-F37D-4B14-B07D-0B08456356F3}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe Keine Datei
FirewallRules: [{C9EFAA07-4242-4CA2-B2B6-304D9A36E2CB}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\HCLOUD.exe Keine Datei
FirewallRules: [UDP Query User{12BCC5C8-CD6B-4A36-A01F-38D3C8CA836F}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe Keine Datei
FirewallRules: [TCP Query User{B9FE9FAE-BFAB-4F89-9965-3E7C5C25C1A5}C:\program files (x86)\gigabyte\@bios\flashbios.exe] => (Allow) C:\program files (x86)\gigabyte\@bios\flashbios.exe Keine Datei
FirewallRules: [{2D947066-E8F5-4286-8CE4-56EDED8109ED}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{188FF16C-B546-48F9-80ED-5CF6232E6DE4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{91A6F158-CAC9-4CB7-9584-A36F95C53AC3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9DAE4D0B-C973-4DE8-8F70-CF3EA1C9E8B2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4C354BE8-1DF4-40EE-9DCD-1EBB7677E1E9}] => (Allow) LPort=5354
FirewallRules: [{79901EE8-A7EF-4992-9FF3-F01B02FAA31F}] => (Allow) LPort=5354
FirewallRules: [{436B340D-C063-43E1-9AB4-88B8DF19633A}] => (Allow) LPort=5354
FirewallRules: [{F02D4FD4-DE0B-4323-98BB-988976A495B4}] => (Allow) LPort=5354
FirewallRules: [TCP Query User{3D414FA4-34B9-46A6-9014-FA20B63C14D8}C:\program files (x86)\creative\connection service\connection service.exe] => (Allow) C:\program files (x86)\creative\connection service\connection service.exe Keine Datei
FirewallRules: [UDP Query User{D0055885-DAC1-458C-86DB-B6C097491FB2}C:\program files (x86)\creative\connection service\connection service.exe] => (Allow) C:\program files (x86)\creative\connection service\connection service.exe Keine Datei
FirewallRules: [TCP Query User{9FDF7C2A-40DD-456A-B979-5D4645DEC96D}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{60F66310-54FE-45C2-8F2D-BA7F2C31AA73}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{30ACF427-C787-4A12-8F02-7E2FBAB8A682}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\One Hour One Life\steamGateClient.exe () [Datei ist nicht signiert]
FirewallRules: [{E0726D61-A436-4947-A8DD-EEF965D6E6FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\One Hour One Life\steamGateClient.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{519C57D4-16DB-434F-8954-92D35708448D}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe Keine Datei
FirewallRules: [UDP Query User{91FD672E-F265-4C35-BD8E-23A4586ED5BF}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe Keine Datei
FirewallRules: [{C58836FE-5165-4A5A-AB28-E7B6A4063227}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Keine Datei
FirewallRules: [{C446736B-E9F8-4B5D-81B7-15FB04246123}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Keine Datei
FirewallRules: [{53D9506A-05FF-4EF4-85F1-7CA50E294D30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [{27C37937-1513-463B-9D4B-F7783028DCFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [{E57DF218-E623-48F4-931C-5B97E167B42F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{294D267F-8FA7-4163-8AFC-494B62EB5BCE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{5BB1A5E6-EECC-411A-AE35-D792D594FAE8}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{E38D0B64-F10D-4245-AF7A-E8C05C4D8CD3}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [{C97A1B03-5A23-48F3-9EBD-2EC532220B43}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{F40B279B-7D66-4EB8-818B-6B36C27B1E04}] => (Allow) D:\Anno 1800\Bin\Win64\Anno1800.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{BAD73BF7-D9B0-4656-9B73-1BF2624A1BCC}] => (Allow) C:\Users\dspri\AppData\Local\Programs\Opera\67.0.3575.115\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{B32D377C-8516-40A1-BC35-4B422FC721A8}] => (Allow) C:\Users\dspri\AppData\Local\Programs\Opera\67.0.3575.137\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{6A77AFF6-3991-4D29-B0EF-A24FF6159EEA}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{32055893-B942-4ABF-B345-5E57F365470E}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{E5A97A3F-81CC-4839-A688-183526E14EC6}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{FBA8CB01-CD60-4D73-B124-AF162B1219DA}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{4A5BEE4E-8998-48FB-BD81-5AA74AA7280F}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{DB9B2115-4B2E-49EE-8579-AE380FC04982}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{499F09EF-EEE4-4D8A-9793-36726398DBDD}] => (Block) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteControl\grckm.exe Keine Datei
FirewallRules: [{4662DAD1-9D6F-4152-8178-5AB9981031FE}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteControl\grckm.exe Keine Datei
FirewallRules: [{281BB356-67EA-4113-B4BB-EFDCD76D5563}] => (Block) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe Keine Datei
FirewallRules: [{EB8B1C60-8259-4FCC-90FB-5BDE6F73ADB2}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\RemoteOC\ubssrv_oc_only.exe Keine Datei
FirewallRules: [{015FCE4F-FD3A-497B-A461-E0580C0002B6}] => (Block) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\HCLOUD.exe Keine Datei
FirewallRules: [{A6B6F2A0-1C34-4F9A-BC06-16DF96A0F5FD}] => (Allow) C:\Program Files (x86)\Gigabyte\CloudStation\HomeCloud\HCLOUD.exe Keine Datei
FirewallRules: [{32597ACB-C3BB-4550-B9F3-3C0F3474152A}] => (Allow) D:\Anno 1800\Bin\Win64\Anno1800.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{76FE3DF6-54D6-426A-BF0B-772C392D9940}] => (Allow) D:\Anno 1800\Bin\Win64\Anno1800.exe (Blue Byte GmbH -> Ubisoft)
FirewallRules: [{E6A17062-6311-40A5-BC55-FA767E0F1F44}] => (Block) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{713DB9A4-7215-4E7D-B45E-AEB960C6703A}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{6B1CFEC6-1680-436F-92F9-EADB2050073F}] => (Block) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [{B9D34A26-BE1C-4879-BEC0-9F43A3C752DD}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [{914A02BD-2C9E-4488-8BF4-22814C86283E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [{1B0239DB-89C1-44B4-8731-E326D14CEEE2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [{1BA9CFDF-17C8-411C-B7E3-3BC48EB2C953}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [{D0730820-9ED9-463F-9E60-BADC8A925BE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [{C8B6EF47-2DBC-4BF4-9837-EFB301E10582}] => (Allow) D:\SteamLibrary\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{8CB5E6E3-0BDA-4EB7-915A-C8B84798E6BD}] => (Allow) D:\SteamLibrary\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{A6BF5172-42F2-4384-A977-9E02E06BA178}] => (Allow) D:\SteamLibrary\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{456632AB-0358-4B32-843B-4AD01849FFBA}] => (Allow) D:\SteamLibrary\steamapps\common\Railway Empire\RailwayEmpire.exe (Kalypso Media Group -> Gaming Minds Studios GmbH)
FirewallRules: [{6AA71ED8-A002-41B5-8A1D-6DC407E5F8EF}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{668AC44F-02BE-4C32-809E-4253CE906065}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{72B95383-9B6A-4E52-8B60-11AF3C1D5925}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{5968FD92-FA2E-4C21-AADF-67DDDEB29F34}] => (Allow) D:\SteamLibrary\steamapps\common\RimWorld\RimWorldWin64.exe () [Datei ist nicht signiert]
FirewallRules: [{1074082C-0969-48B8-B6C0-81BA81AF6D8A}] => (Allow) D:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [Datei ist nicht signiert]
FirewallRules: [{F6047454-5A9A-4B8B-95C3-EA976A3E15C3}] => (Allow) D:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [Datei ist nicht signiert]
FirewallRules: [{E96E201A-6F39-4376-8B1A-1029049DEEC8}] => (Allow) D:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [Datei ist nicht signiert]
FirewallRules: [{7CD4098F-EC21-4C28-BBA1-68D257C4E093}] => (Allow) D:\SteamLibrary\steamapps\common\Risk of Rain 2\Risk of Rain 2.exe () [Datei ist nicht signiert]
FirewallRules: [{3D75D2B5-FA5C-48B5-844F-4B448B3016A5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{9ACFB60D-D400-410A-8183-957BB51A6C42}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{230C748D-03C1-4F2B-BA33-FE47B37BA221}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{5A1C610E-3DC8-46B3-9A36-6A4E7CD491B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stellaris\dowser.exe (Paradox Interactive Ab (Publ) -> )
FirewallRules: [{9B5B9D79-14B4-425C-913C-C00CDDF4CEF9}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{190F6391-FB80-4E79-8E44-A5227572871E}] => (Block) %SystemRoot%\system32\svchost.exe (Microsoft Windows Publisher -> Microsoft Corporation)
FirewallRules: [{3B6B7162-A0BD-4F41-9D32-EAECF28EA372}] => (Block) LPort=49684
FirewallRules: [{A800E2E0-B84C-4AAF-8333-7BDCE7A9DC19}] => (Block) LPort=49684
FirewallRules: [{A815553C-337A-466C-994F-543249E31753}] => (Block) LPort=60812
FirewallRules: [{BC8FD37B-5DAE-404C-91A6-B30BE0879FA2}] => (Block) LPort=60812
FirewallRules: [{A346715E-C8F4-4924-8B78-A58D30CF610B}] => (Block) LPort=60853
FirewallRules: [{8FF12A6A-3227-4594-ACDA-6391C05B7F07}] => (Block) LPort=60853
FirewallRules: [{93A1B42A-BD9C-47EB-AD88-C0F778A1A323}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Wiederherstellungspunkte =========================
26-04-2020 22:55:33 Entfernt Creative ALchemy
27-04-2020 01:05:45 Malwarebytes Anti-Rootkit Restore Point
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (04/28/2020 04:07:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17572,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (04/28/2020 01:41:33 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12660,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (04/28/2020 06:06:33 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5076,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (04/28/2020 05:35:24 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12296,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (04/28/2020 03:54:58 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15648,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (04/28/2020 01:16:22 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12780,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (04/27/2020 03:27:32 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18912,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (04/27/2020 02:31:27 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2020,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Systemfehler:
=============
Error: (04/28/2020 02:20:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/28/2020 02:20:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/28/2020 02:20:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "{9BA05972-F6A8-11CF-A442-00A0C90A8F39}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/28/2020 02:19:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/28/2020 02:19:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/28/2020 02:19:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/28/2020 02:19:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (04/28/2020 02:19:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-OBO4HD2)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
===================================
Date: 2020-04-27 01:05:36.069
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {1B2CCAE5-3704-4193-A98E-8060A122A722}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-04-18 17:58:14.662
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {AB7BD813-0B3B-4DE5-B40D-BB75CB4717B3}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-04-01 19:47:55.701
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Unwaders.A!ml&threatid=242872&enterprise=0
Name: Program:Win32/Unwaders.A!ml
ID: 242872
Schweregrad: Schwerwiegend
Kategorie: Potenziell unerwünschte Software
Pfad: file:_C:\Users\dspri\Downloads\Firemin_5060_Setup_CB-DL-Manager.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: FastPath
Erkennungsquelle: Echtzeitschutz
Benutzer: DESKTOP-OBO4HD2\dspri
Prozessname: C:\Windows\System32\svchost.exe
Sicherheitsversion: AV: 1.313.533.0, AS: 1.313.533.0, NIS: 1.313.533.0
Modulversion: AM: 1.1.16900.4, NIS: 1.1.16900.4
Date: 2020-04-12 10:03:07.259
Description:
Bei Windows Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.313.1335.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.16900.4
Fehlercode: 0x8024402c
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 6401 12/07/2018
Hauptplatine: ASUSTeK COMPUTER INC. CROSSHAIR VI HERO
Prozessor: AMD Ryzen 7 2700 Eight-Core Processor
Prozentuale Nutzung des RAM: 20%
Installierter physikalischer RAM: 32694.66 MB
Verfügbarer physikalischer RAM: 26087.06 MB
Summe virtueller Speicher: 86028.58 MB
Verfügbarer virtueller Speicher: 76817.68 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:465.16 GB) (Free:56.09 GB) NTFS
Drive d: (Games SSD) (Fixed) (Total:238.25 GB) (Free:35.58 GB) NTFS
Drive e: (System-reserviert) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: () (Fixed) (Total:73.16 GB) (Free:20.17 GB) NTFS
Drive g: (Filme / Downloads) (Fixed) (Total:1397.26 GB) (Free:315.57 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive k: (Musik / Bilder) (Fixed) (Total:148.92 GB) (Free:50.75 GB) NTFS
Drive q: (Elements) (Fixed) (Total:3725.99 GB) (Free:3701.37 GB) NTFS
\\?\Volume{95c8b1e2-2441-4b4f-9a19-a816f0961cfe}\ () (Fixed) (Total:0.49 GB) (Free:0.04 GB) NTFS
\\?\Volume{d31fc03b-0000-0000-0000-f06c12000000}\ () (Fixed) (Total:0.83 GB) (Free:0.34 GB) NTFS
\\?\Volume{154e0165-e66e-409d-921a-8319f5a79eeb}\ () (Fixed) (Total:0.09 GB) (Free:0.08 GB) FAT32
\\?\Volume{7ec0eb3e-df5a-41f5-9d0a-04a5f2337dba}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 148.9 GB) (Disk ID: 976E976E)
Partition 1: (Active) - (Size=148.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 74.5 GB) (Disk ID: D31FC03B)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=73.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=846 MB) - (Type=27)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: 0A7C5575)
Partition 1: (Active) - (Size=1397.3 GB) - (Type=07 NTFS)
==========================================================
Disk: 4 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 5 (Size: 3726 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== Ende von Addition.txt =======================
|
|
28.04.2020, 17:15
| #3 |
| | Wlan Jammer - NachwirkungenCode:
ATTFilter 18:09:43.0774 0x1b1c TDSS rootkit removing tool 3.1.0.28 Apr 9 2019 21:11:46
18:09:43.0774 0x1b1c UEFI system
18:09:46.0647 0x1b1c ============================================================
18:09:46.0647 0x1b1c Current date / time: 2020/04/28 18:09:46.0647
18:09:46.0647 0x1b1c SystemInfo:
18:09:46.0647 0x1b1c
18:09:46.0647 0x1b1c OS Version: 10.0.18362 ServicePack: 0.0
18:09:46.0647 0x1b1c Product type: Workstation
18:09:46.0648 0x1b1c ComputerName: DESKTOP-OBO4HD2
18:09:46.0648 0x1b1c UserName: dspri
18:09:46.0648 0x1b1c Windows directory: C:\WINDOWS
18:09:46.0648 0x1b1c System windows directory: C:\WINDOWS
18:09:46.0648 0x1b1c Running under WOW64
18:09:46.0648 0x1b1c Processor architecture: Intel x64
18:09:46.0648 0x1b1c Number of processors: 16
18:09:46.0648 0x1b1c Page size: 0x1000
18:09:46.0648 0x1b1c Boot type: Normal boot
18:09:46.0648 0x1b1c CodeIntegrityOptions = 0x00000001
18:09:46.0648 0x1b1c ============================================================
18:09:46.0685 0x1b1c KLMD registered as C:\WINDOWS\system32\drivers\95456954.sys
18:09:46.0685 0x1b1c KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 18362.1, osProperties = 0x19
18:09:46.0740 0x1b1c System UUID: {295D8458-4822-28B6-52F8-0C7A9E56E879}
18:09:46.0910 0x1b1c Drive \Device\Harddisk4\DR4 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:09:46.0932 0x1b1c Drive \Device\Harddisk0\DR0 - Size: 0x253B1D5400 ( 148.92 Gb ), SectorSize: 0x200, Cylinders: 0x4BF0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:09:46.0932 0x1b1c Drive \Device\Harddisk1\DR1 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:09:46.0932 0x1b1c Drive \Device\Harddisk2\DR2 - Size: 0x12A1F16000 ( 74.53 Gb ), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:09:46.0933 0x1b1c Drive \Device\Harddisk3\DR3 - Size: 0x15D50E5DE00 ( 1397.26 Gb ), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:09:46.0946 0x1b1c Drive \Device\Harddisk5\DR5 - Size: 0x3A37F700000 ( 3725.99 Gb ), SectorSize: 0x200, Cylinders: 0x76BFD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:10:05.0329 0x1b1c ============================================================
18:10:05.0329 0x1b1c \Device\Harddisk4\DR4:
18:10:05.0345 0x1b1c GPT partitions:
18:10:05.0345 0x1b1c \Device\Harddisk4\DR4\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {95C8B1E2-2441-4B4F-9A19-A816F0961CFE}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
18:10:05.0345 0x1b1c \Device\Harddisk4\DR4\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {7EC0EB3E-DF5A-41F5-9D0A-04A5F2337DBA}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x31800
18:10:05.0345 0x1b1c \Device\Harddisk4\DR4\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {38C35A18-6E15-44E8-BC0E-8A21B2C02700}, Name: Microsoft reserved partition, StartLBA 0x12B800, BlocksNum 0x8000
18:10:05.0345 0x1b1c \Device\Harddisk4\DR4\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {823F6ED0-8AFC-4C3E-946E-B323D3CC7707}, Name: Basic data partition, StartLBA 0x133800, BlocksNum 0x3A252800
18:10:05.0345 0x1b1c MBR partitions:
18:10:05.0345 0x1b1c \Device\Harddisk0\DR0:
18:10:05.0345 0x1b1c MBR partitions:
18:10:05.0345 0x1b1c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x129D7800
18:10:05.0345 0x1b1c \Device\Harddisk1\DR1:
18:10:05.0345 0x1b1c GPT partitions:
18:10:05.0345 0x1b1c \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {154E0165-E66E-409D-921A-8319F5A79EEB}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
18:10:05.0345 0x1b1c \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {097F637D-5F32-4238-B735-E55F263CD6B4}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000
18:10:05.0345 0x1b1c \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D64AD2F9-CF65-4B0C-BE27-6E318D2704B8}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0x1DC80000
18:10:05.0345 0x1b1c MBR partitions:
18:10:05.0345 0x1b1c \Device\Harddisk2\DR2:
18:10:05.0345 0x1b1c MBR partitions:
18:10:05.0345 0x1b1c \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x112800
18:10:05.0345 0x1b1c \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x113000, BlocksNum 0x925442F
18:10:05.0345 0x1b1c \Device\Harddisk3\DR3:
18:10:05.0345 0x1b1c MBR partitions:
18:10:05.0345 0x1b1c \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAEA86800
18:10:05.0345 0x1b1c \Device\Harddisk5\DR5:
18:10:05.0345 0x1b1c GPT partitions:
18:10:05.0361 0x1b1c \Device\Harddisk5\DR5\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {A19DD89A-46C7-47A9-9B58-FB17D268D779}, Name: Elements, StartLBA 0x800, BlocksNum 0xD1BFA800
18:10:05.0361 0x1b1c MBR partitions:
18:10:05.0361 0x1b1c ============================================================
18:10:05.0361 0x1b1c C: <-> \Device\Harddisk4\DR4\Partition4
18:10:05.0361 0x1b1c D: <-> \Device\Harddisk1\DR1\Partition3
18:10:05.0361 0x1b1c E: <-> \Device\Harddisk2\DR2\Partition1
18:10:05.0361 0x1b1c F: <-> \Device\Harddisk2\DR2\Partition2
18:10:05.0424 0x1b1c G: <-> \Device\Harddisk3\DR3\Partition1
18:10:05.0454 0x1b1c K: <-> \Device\Harddisk0\DR0\Partition1
18:10:05.0454 0x1b1c Q: <-> \Device\Harddisk5\DR5\Partition1
18:10:05.0454 0x1b1c ============================================================
18:10:05.0454 0x1b1c Initialize success
18:10:05.0454 0x1b1c ============================================================
18:10:31.0022 0x3f34 ============================================================
18:10:31.0022 0x3f34 Scan started
18:10:31.0022 0x3f34 Mode: Manual; SigCheck; TDLFS;
18:10:31.0022 0x3f34 ============================================================
18:10:31.0022 0x3f34 KSN ping started
18:10:31.0091 0x3f34 KSN ping finished: true
18:10:31.0861 0x3f34 ================ Scan BIOS =================================
18:10:31.0863 0x3f34 BIOS info: vendor = American Megatrends Inc., version = 6401, releaseDate = 12/07/2018
18:10:31.0863 0x3f34 Base board info: manufacturer = ASUSTeK COMPUTER INC., product = CROSSHAIR VI HERO, version = Rev 1.xx
18:10:42.0772 0x3f34 [ 007B8C4B144C94D21B2F01E980DD236B, B9EC87B43E3988DC888542A12E05B1DC19DF254DF1174F336DE65BF3D79D6339 ] BIOS
18:10:42.0772 0x3f34 BIOS - ok
18:10:42.0774 0x3f34 ================ Scan system memory ========================
18:10:42.0776 0x3f34 System memory - ok
18:10:42.0778 0x3f34 ================ Scan services =============================
18:10:42.0833 0x3f34 [ 214FD47FAA4CA006B575B65AC7604E3A, 071F296DAD21044232A52350496BC77C0E5C0EE799FC387D9D730664F6A4B67E ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
18:10:42.0924 0x3f34 1394ohci - ok
18:10:42.0936 0x3f34 [ 4A8F6E456977488CC4C77149792340E9, 6E8D7D4360543D1CB2343B4C323063A6BF69CEA364FB205114753B337DB4806F ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
18:10:42.0954 0x3f34 3ware - ok
18:10:42.0961 0x3f34 [ D77CEF562DB337187D63766B689360BA, 0A528EB3BA5A0481A4F189F44569FE5B651A7CC4106370AD029A569939BDF4DC ] AarSvc C:\WINDOWS\System32\AarSvc.dll
18:10:42.0982 0x3f34 AarSvc - ok
18:10:42.0999 0x3f34 [ 4EC1CE67D6DF47C05C9400332BB6699C, 6418C8A428F9DDCC634573E4D729092E0E6B9C12AA8CDDDA98372BC3DEDA7BA7 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
18:10:43.0024 0x3f34 ACPI - ok
18:10:43.0029 0x3f34 [ 97CD5E972FA665A42E9C087B1DFAE6E6, A0F1FB5AECE906F59DF1B3291F49C42F90AF1AEB1E7CFC1D2CC0049C794223D9 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
18:10:43.0046 0x3f34 AcpiDev - ok
18:10:43.0052 0x3f34 [ D5294DC5293B58E1B400984AC326FF3B, 31810584C1D53F075D5A823FC4AFFC3E021941281F1F03959B84002ED52AFB5D ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
18:10:43.0068 0x3f34 acpiex - ok
18:10:43.0072 0x3f34 [ 8E4182F6A345D2D85F9AC3BCBBD7F18C, D4EE54871113EAD4754AB58222D7E4A3B1DEF80B4B6F5524B1B4BB901340FF7D ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
18:10:43.0089 0x3f34 acpipagr - ok
18:10:43.0093 0x3f34 [ 48D460FAA6929BC81869CC7299A6B70A, 32A3A96B2708148B8F5461E666995BE9119F61C73DAB5EC373D014F0F13D0297 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
18:10:43.0111 0x3f34 AcpiPmi - ok
18:10:43.0114 0x3f34 [ B9EDE7133F52C0B989A66CA3B39AA588, 16F189B1D5AB90D981C6EBC1B4794EBA5D53FF1AD3A3A13720C927889C5C38F3 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
18:10:43.0132 0x3f34 acpitime - ok
18:10:43.0140 0x3f34 [ D264D55A2C13C9BF6F0CD8AF323DD0B5, E39F3532787FFE81163E5D0656B4F25B9ED9097EC302449E33E626F79E6BE464 ] Acx01000 C:\WINDOWS\system32\drivers\Acx01000.sys
18:10:43.0163 0x3f34 Acx01000 - ok
18:10:43.0169 0x3f34 [ 878A26B96FA0E4821601E570C3BCEDD2, C13DB5E0C64BFC2392CB477AE33CC924ED878F521B839003DFA295B3F2D39C29 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:10:43.0183 0x3f34 AdobeARMservice - ok
18:10:43.0208 0x3f34 [ 126384CA8ADA5F1E061CAE75581CEE8F, C3E2085B7A50928780CB4F693643C76E623417227E3B564F4EF5DC9AB6F66976 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
18:10:43.0240 0x3f34 ADP80XX - ok
18:10:43.0256 0x3f34 [ D7BA40E7960C754C36373D9FFDBCFDEF, F063D0F6C9178BCB22A9FF6CA79369504A1EBB82855DFA355134E89D58D00955 ] AFD C:\WINDOWS\system32\drivers\afd.sys
18:10:43.0281 0x3f34 AFD - ok
18:10:43.0285 0x3f34 [ 6CB8C646B514FAD486A615A4364C0B5A, 2D6236BB8DFEAD68A2611B4501F8AB93B3075B9A07E8FD13F6CAA00A598B5794 ] afunix C:\WINDOWS\system32\drivers\afunix.sys
18:10:43.0303 0x3f34 afunix - ok
18:10:43.0311 0x3f34 [ D22DAE66A9819D2C98DC92A5EE29BD9B, 3D78E37AA605E093AD953D74CAF0DEBA153734EBB3E7824C842D18D690B96F15 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
18:10:43.0334 0x3f34 ahcache - ok
18:10:43.0338 0x3f34 [ 232B30ECEFBB1BEC07F2DF21D46DCDB6, BC840D8E3473A100BE396CDF977E4909303E3F9E2086DB4ABCED249ACF7F17D9 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
18:10:43.0356 0x3f34 AJRouter - ok
18:10:43.0362 0x3f34 [ FADF878C0D61D07170C91C891EBC72B2, 896D685EF63B0041558A51096506FD915A99B3FE2D524E6834C1F996383134DB ] ALG C:\WINDOWS\System32\alg.exe
18:10:43.0381 0x3f34 ALG - ok
18:10:43.0385 0x3f34 [ 6DE877FDD30174677494492A44ED8DAA, 23E5FE8F71F8755757CBD7648F2056BAD74ACFA8B0C3E1C6F3BD4F0C52244A2A ] amdgpio2 C:\WINDOWS\System32\drivers\amdgpio2.sys
18:10:43.0407 0x3f34 amdgpio2 - ok
18:10:43.0411 0x3f34 [ 857DC82D821987E30748E49A5CCFD794, 54BCA9429156D90B0E8C24F3979693F7AA70C0B16051149B1F1CC1B1AB615C70 ] amdgpio3 C:\WINDOWS\System32\drivers\amdgpio3.sys
18:10:43.0428 0x3f34 amdgpio3 - ok
18:10:43.0431 0x3f34 [ A6B00F4CD34F26B22B1B97D454567DA1, F70FED4807BBDA94170F6B060FDB27A3B5DED6982665F7A854A1DAEE370B8005 ] amdi2c C:\WINDOWS\System32\drivers\amdi2c.sys
18:10:43.0449 0x3f34 amdi2c - ok
18:10:43.0455 0x3f34 [ C1DACFF864A9228E03F1415439EB42ED, 67DD2A14E31270360ABF4A6D8C3D8CA85A63378A46E002FB66A15689D1919291 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
18:10:43.0472 0x3f34 AmdK8 - ok
18:10:43.0478 0x3f34 [ BEEE064E5C42F02883A816E94AEC503B, 60693C3424CCD1C764876C92373D59498F7B4ED07BE985678678B78FF7E9A1FD ] amdkmcsp C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys
18:10:43.0491 0x3f34 amdkmcsp - ok
18:10:43.0496 0x3f34 [ 004BA14C2315369431191EDF942A4720, 04A38A8105A9B1A1732D6C68EAB94EECA894ADEE3F231D94C83FC2C4632A9EC1 ] AMDPCIDev C:\WINDOWS\System32\drivers\AMDPCIDev.sys
18:10:43.0507 0x3f34 AMDPCIDev - ok
18:10:43.0514 0x3f34 [ 59ED9FC34E6FFBA8638451190F3344DA, EAA9CEC6468CE652D1062BE4E1383F926C5D618C106B8037779EF77AAACC4955 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
18:10:43.0531 0x3f34 AmdPPM - ok
18:10:43.0536 0x3f34 [ BFC3CE0BBFDA59FF000B2CED9F21E864, 7A20F997C147F5CF1B87B94A9354276BE050276683A667CD8446F31D0BCE3837 ] amdpsp C:\WINDOWS\system32\drivers\amdpsp.sys
18:10:43.0551 0x3f34 amdpsp - ok
18:10:43.0555 0x3f34 [ F16B44CCA74D3C3645E4C0A6BB5C0CB9, 7E81BEAE78E1DDBF6C150E15667E1F18783F9B0AB7FBE52C7AB63E754135948D ] AMDRyzenMasterDriverV13 C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys
18:10:43.0569 0x3f34 AMDRyzenMasterDriverV13 - ok
18:10:43.0575 0x3f34 [ 6BA3FF67D317AF6A6946CCF4E80B5B33, A8E375860F06374F3A9DCACDB99D5D574C8430C07E71D5D60A0FACC24C49B669 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
18:10:43.0590 0x3f34 amdsata - ok
18:10:43.0598 0x3f34 [ 3FD087BF35CFC998037DF2534ED9CBC2, 71C4D8924AAEBE362C167E18F4C1B38D5151D70AD05F75DCC3EB748A37DD5C95 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
18:10:43.0615 0x3f34 amdsbs - ok
18:10:43.0619 0x3f34 [ B6AF8AAE55DC50EA0610FCFF92133952, D990C7A19D2C4CDFA4E08EC64941BAD0F378D23BFC5D93026CCACC97A283A2C9 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
18:10:43.0633 0x3f34 amdxata - ok
18:10:43.0639 0x3f34 [ 4E8E32057AA60133C15B8D8CA110A186, 025D2114D40CBC840BC2F8D413F022A2BC143F21155DFE10112ABE7FC408EB5C ] AppID C:\WINDOWS\system32\drivers\appid.sys
18:10:43.0656 0x3f34 AppID - ok
18:10:43.0661 0x3f34 [ 34F6D0A9692590838D867A26FD83B257, 52F54C8BCCE6155B1D703AF261540A6D5843A460809FC630B59637B5885604FD ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
18:10:43.0680 0x3f34 AppIDSvc - ok
18:10:43.0686 0x3f34 [ 53125F85B3107DCE57CFA029008728D6, B5D1DD17BD9242280E58D03C339D5CC38A3694DFB80BC32D1703B4DFB5817116 ] Appinfo C:\WINDOWS\System32\appinfo.dll
18:10:43.0706 0x3f34 Appinfo - ok
18:10:43.0711 0x3f34 [ 5C8B1D3954F8ED849C68CD6D98636605, 8784FD6DD92B118659BED6FE0C3EAA0488C2ADD371DA5A02D4A22B61AC6900EF ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
18:10:43.0727 0x3f34 applockerfltr - ok
18:10:43.0733 0x3f34 [ 57EEEC521B7CA488A2C0C627B1F8DB75, 682D79792FDA28C693FAB026C65E434080E8FC12811628BC894F1AC29FFBFEC1 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
18:10:43.0753 0x3f34 AppMgmt - ok
18:10:43.0767 0x3f34 [ 2D7826A4C6C3DE9668DEC67FA352ADBB, 6AA4B4D43C351C1CA7EA7F75C56906B039369ACF18443508A3A86BDAFC6A8AF8 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
18:10:43.0799 0x3f34 AppReadiness - ok
18:10:43.0816 0x3f34 [ 63D3B1DF43B6DFDB0EB9DCA99A323A5B, AC0249B6B6A7E05CAFCFC490B84AE9A7DE5515B3A58EE6AC1CFEFABE790FB6A1 ] AppVClient C:\WINDOWS\system32\AppVClient.exe
18:10:43.0843 0x3f34 AppVClient - ok
18:10:43.0850 0x3f34 [ 8FA9A06482202DC0D2C93F01EA4ACC89, 561E46D2EA7442498500F5187F90889A82BF169FD47BF9F3D497FE856CE2ABB9 ] AppvStrm C:\WINDOWS\system32\drivers\AppvStrm.sys
18:10:43.0867 0x3f34 AppvStrm - ok
18:10:43.0873 0x3f34 [ CA7518C52B2D648163570B543E4889CB, 147FAB2381304C93E574FB14C05837701B94EA98C23780ED425689AC872A6F0E ] AppvVemgr C:\WINDOWS\system32\drivers\AppvVemgr.sys
18:10:43.0889 0x3f34 AppvVemgr - ok
18:10:43.0894 0x3f34 [ ABE96FE0ABC35A947CEE3ED18705ADCD, A7343D8C1F927B16E852FEB5A4645F3397BC28A8B831462009FD851B02FDE9E9 ] AppvVfs C:\WINDOWS\system32\drivers\AppvVfs.sys
18:10:43.0909 0x3f34 AppvVfs - ok
18:10:43.0969 0x3f34 [ 6ACC27D9E27DF88D671EAA4FB65C6679, 03E0714FD72C3020F2A0784697C81C9BEAABF2124BEF8633BB3ED91F876165E2 ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
18:10:44.0062 0x3f34 AppXSvc - ok
18:10:44.0071 0x3f34 [ A05FF69C88EAB79E51430E6982BCC6F0, 728622D57C390DC8C6D883D148D14DB4DB3E94EF99B726F4ABDD552F32347B30 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
18:10:44.0088 0x3f34 arcsas - ok
18:10:44.0106 0x3f34 [ F19C92E8396CB3BED513EFF9CE0D5923, B4BA4191FE3AED317DA65D599F1CEB634FA7780AA222B12326A1DA75F0522B4D ] AssignedAccessManagerSvc C:\WINDOWS\System32\assignedaccessmanagersvc.dll
18:10:44.0144 0x3f34 AssignedAccessManagerSvc - ok
18:10:44.0149 0x3f34 [ A6275119CE5EC54FDBC62C307503F767, D6E6A2D68EE31F13D92A9D7620E3DB46A6BC4415703E35D47769982BFD9A25DD ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
18:10:44.0166 0x3f34 AsyncMac - ok
18:10:44.0171 0x3f34 [ 30D7EEDAB3671A5DF808D1836CCACF56, 90D935043ABF09F501135151BA1D84C17F33BB2CA83F3A9488A35B5E8DC84E8D ] atapi C:\WINDOWS\system32\drivers\atapi.sys
18:10:44.0186 0x3f34 atapi - ok
18:10:44.0202 0x3f34 [ 016F3D954C6030770197DCA8BE3040EE, AD87CEFD5455E19B0A8AE1FB4776DDEB07D8621993411D59CC40B3709D8746F8 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
18:10:44.0231 0x3f34 AudioEndpointBuilder - ok
18:10:44.0264 0x3f34 [ EE1A17A1DAC1C427D6B498C2FA105C62, 6DE56D1EF2461139309C480FE4456779029B3592FA26C7A941E9482BE966B471 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
18:10:44.0319 0x3f34 Audiosrv - ok
18:10:44.0326 0x3f34 [ 23410CD6AD97FDF3FD465ACBB6C170E2, 31259CB3F2009157A59266854B2FAF2A90057D9BDFF24EBBEAD868D23F6567F6 ] autotimesvc C:\WINDOWS\System32\autotimesvc.dll
18:10:44.0343 0x3f34 autotimesvc - ok
18:10:44.0347 0x3f34 [ 09DC5008B1F189EC76CF6E2DDDC236D0, 9AE49A71375491597D27495BBF7D746D045A27AFA8C54619CFA998CD58AAF1AB ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
18:10:44.0364 0x3f34 AxInstSV - ok
18:10:44.0375 0x3f34 [ A1FF5E48350A1C3332190CA008916F0E, 403639275459836DD9B243B16FD226951157A9EE6B295A0C0947249C3DEDD8E8 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
18:10:44.0395 0x3f34 b06bdrv - ok
18:10:44.0400 0x3f34 [ 96ECA99B219CBB4F7C95176E492F53BF, 8189D0DBA3331145FB99D4EE188DE48799F0940DE79D46FB9444914C5B4D4146 ] bam C:\WINDOWS\system32\drivers\bam.sys
18:10:44.0414 0x3f34 bam - ok
18:10:44.0424 0x3f34 [ 2EA5A34CE470500BC36B02BD25836B2C, E2F6EE196A580F1AEF6145FE476692CF5053C31C742972E7BDECE30142623054 ] BasicDisplay C:\WINDOWS\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys
18:10:44.0439 0x3f34 BasicDisplay - ok
18:10:44.0445 0x3f34 [ A48DAFD906B1912D738A9A90559EF5F3, 3ED950F996552E94D23F9B42300B11D46659F99621B8215EAA7A157B03640F2F ] BasicRender C:\WINDOWS\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys
18:10:44.0462 0x3f34 BasicRender - ok
18:10:44.0488 0x3f34 [ FEEAA31D7AAC2119B4AE5C340490524B, EA975CD0935916961F3F131B07A799983D6AE0617F687EFC21C1404D43FC1F7E ] BcastDVRUserService C:\WINDOWS\System32\BcastDVRUserService.dll
18:10:44.0531 0x3f34 BcastDVRUserService - ok
18:10:44.0537 0x3f34 [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
18:10:44.0553 0x3f34 bcmfn2 - ok
18:10:44.0564 0x3f34 [ 77FCD2D8339007BC914AF1DBAE5C6BC8, 1E6F69D0AA496E1D9C7DFA67986AC7CB4149C74B5C46EDACE5D078C94E3F0649 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
18:10:44.0592 0x3f34 BDESVC - ok
18:10:44.0596 0x3f34 [ A5D43CA19863A29D219C3C588D936FFC, EECA12E6D5BB7C827BE0B7E5C4484BECEEDF53E5E9BF81B7EEBE7EC43CA8AD53 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:10:44.0613 0x3f34 Beep - ok
18:10:44.0630 0x3f34 [ D7654CCF919B8BD04B6D4972459F01B2, 47A108ECCB27192091286728D400E2FA1F0C56692B546636D6343A95D29E18C0 ] BFE C:\WINDOWS\System32\bfe.dll
18:10:44.0665 0x3f34 BFE - ok
18:10:44.0672 0x3f34 [ DB98C485C672CD9C3FCCB944055D3311, 2061FE65646DE71E56FDCEF860AF92AB370E1DA73307460A2A4B8744DA16D57A ] bindflt C:\WINDOWS\system32\drivers\bindflt.sys
18:10:44.0688 0x3f34 bindflt - ok
18:10:44.0716 0x3f34 [ 9CD4154507F00A342A8C843663D81499, 34E5764170689E51343113246A6328387E207700D0DCE67F10E8209BD5AA0E10 ] BITS C:\WINDOWS\System32\qmgr.dll
18:10:44.0769 0x3f34 BITS - ok
18:10:44.0782 0x3f34 [ EAF35F231112E4FB5FA1B64F817E5708, 6FEA61162DC849EEDBE899EE95B1D1BD6D22382D06AD3D7093B67628F8FEB855 ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
18:10:44.0812 0x3f34 BluetoothUserService - ok
18:10:44.0820 0x3f34 [ EE14F8F0269DB5C26D3DAD7B1A65894B, F1BFA7B723B324F78B8DED1597BAD8091FF0298BC8DBAC29FB793F2D33F5456C ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
18:10:44.0839 0x3f34 bowser - ok
18:10:44.0846 0x3f34 [ 0339E495F3EBC438DEE1DD299E06CEDC, 8B9C45F6830D4DE85D6117216294479B4ABC35304BEE23917BC670BA140AC384 ] BrokerInfrastructure C:\WINDOWS\System32\psmsrv.dll
18:10:44.0869 0x3f34 BrokerInfrastructure - ok
18:10:44.0891 0x3f34 [ 7890EDCBF832CE7A376C8ADEBA13B905, 073CF699B84635340D29EF8E341BF2F90504C107927969D9CD7409145BAC97AA ] BTAGService C:\WINDOWS\System32\BTAGService.dll
18:10:44.0931 0x3f34 BTAGService - ok
18:10:44.0939 0x3f34 [ CCA2505C9EB10CDABDC9FEE10D812F02, 8B0F65F411C463CBC68B8039D4795A3D3A356F6F18FF165F2C14439BD8FB569A ] BthA2dp C:\WINDOWS\System32\drivers\BthA2dp.sys
18:10:44.0951 0x3f34 BthA2dp - detected UnsignedFile.Multi.Generic ( 1 )
18:10:45.0013 0x3f34 Detect skipped due to KSN trusted
18:10:45.0013 0x3f34 BthA2dp - ok
18:10:45.0023 0x3f34 [ 42C9AFF4636ACE3DCFB79FEF85345545, CD11AE283264371906D8FAA0F959F13F8CD4A46D5A0D9AFAC657E2FE0F1634C0 ] BthAvctpSvc C:\WINDOWS\System32\BthAvctpSvc.dll
18:10:45.0053 0x3f34 BthAvctpSvc - ok
18:10:45.0058 0x3f34 [ A174D8A04B437D03FFF7D4F02CAB7332, AF6C7A13676A85D05FC5B8B53A3256FD4B059B3B27B4EEDB4384A3C0091F506F ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
18:10:45.0080 0x3f34 BthEnum - ok
18:10:45.0085 0x3f34 [ 48AE897A64019A816D694241BF62E266, E2F7F0318DC412497AD4906314C08488979F9B9D84AB5FAB404461D324B50A27 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
18:10:45.0103 0x3f34 BthHFEnum - ok
18:10:45.0108 0x3f34 [ 9E958ED983C0DD9C690248084219C2DE, 2F6DE7E74D1F82FAF07A513AF8A5F9307A05715D261A276B874575EED903F4EF ] BthLEEnum C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
18:10:45.0125 0x3f34 BthLEEnum - ok
18:10:45.0129 0x3f34 [ D1F115CA98D91473907FDAE6FBD280AD, 5D966789BE8FD3913E25D6709C5F6FAA8CE1AA75800B86604493CE16F68EFE6B ] BthMini C:\WINDOWS\System32\drivers\BTHMINI.sys
18:10:45.0146 0x3f34 BthMini - ok
18:10:45.0151 0x3f34 [ 98C477D98674C799758B3C6E9950E11A, D864987FC3DEA86E713539DD440B7FB981FF2F41BD2840BF12601411C8CF5099 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
18:10:45.0167 0x3f34 BTHMODEM - ok
18:10:45.0191 0x3f34 [ 6AC17972A8678E2F2EBC36EC40DB119A, F2E3AEDBF437AB2F9787A4D3D9A4EB386B6DE68FDF40F2F17C466222B4D377AB ] BTHPORT C:\WINDOWS\System32\drivers\BTHport.sys
18:10:45.0235 0x3f34 BTHPORT - ok
18:10:45.0243 0x3f34 [ E947884C5B5A5FDE7F13D0D16EEA45EE, DED2C9D51A4BA68554B7990CA71D1BD298BCBB8F7804394EC4ECFE10183D8C79 ] bthserv C:\WINDOWS\system32\bthserv.dll
18:10:45.0263 0x3f34 bthserv - ok
18:10:45.0268 0x3f34 [ 2212F0E65690203A8ADC9A3E6FB7E338, 3F91463CE72D7DB0C5F320A5F473AB9C48556240DC3AACD73E398FEAA977CA07 ] BTHUSB C:\WINDOWS\System32\drivers\BTHUSB.sys
18:10:45.0284 0x3f34 BTHUSB - ok
18:10:45.0288 0x3f34 [ 600CA7D3C456198089558B142D86C065, F33B5A9513170297D4AF12DDD44CA195204DE398737B341537CBAE9D6F08005D ] bttflt C:\WINDOWS\system32\drivers\bttflt.sys
18:10:45.0301 0x3f34 bttflt - ok
18:10:45.0305 0x3f34 [ 58F44FD7BA873AAA8FE6C9473702492B, 44114E8906CB70BD426442D67534FE7105B257CD35F08C7D02DB1D5ECBF2F6C5 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
18:10:45.0320 0x3f34 buttonconverter - ok
18:10:45.0324 0x3f34 [ D3FC817DA4694E586135A3221811B409, B889FD8F588023358AA3EC0017CB5392D9F4F8A8B5DB637BE18A044C8C7982C4 ] CAD C:\WINDOWS\System32\drivers\CAD.sys
18:10:45.0337 0x3f34 CAD - ok
18:10:45.0345 0x3f34 [ 771A2F98EA940349AA0B490DD35156E5, DD6645D0089C8638B47364C747CF3340D319DB8630720174AB7EBC59983E7A2A ] camsvc C:\WINDOWS\system32\CapabilityAccessManager.dll
18:10:45.0368 0x3f34 camsvc - ok
18:10:45.0373 0x3f34 [ C240AF291AC69BF55C33DC9820338D66, 8A9E78820CD0594721B8462EDBC68D64D2A7FDE9F8EA8642ABC181733B685DA3 ] CaptureService C:\WINDOWS\System32\CaptureService.dll
18:10:45.0390 0x3f34 CaptureService - ok
18:10:45.0413 0x3f34 [ 1F8DEF3E9D4A1225D2275E6AA3A7744A, D0ABFAE305AB4CB7B15493DA486A48FD67903DB9B8F2522F6C6E1BFFE9246384 ] cbdhsvc C:\WINDOWS\System32\cbdhsvc.dll
18:10:45.0449 0x3f34 cbdhsvc - ok
18:10:45.0458 0x3f34 [ 3E9C20ED02FAA6D194C060BC6E7D587E, FDF9996AFE6EA77FB3FBF5C4D021C2669203D05495F6A36E01A3B08BB296B14C ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
18:10:45.0475 0x3f34 cdfs - ok
18:10:45.0490 0x3f34 [ 99C7075EC8DB304DBAE728B5C7C288AD, 5EAEA826E018903D3BCD5A0FD08ED80A3528D659CD0C7DD2456ED5C962A4CFC9 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
18:10:45.0519 0x3f34 CDPSvc - ok
18:10:45.0530 0x3f34 [ 0CD86DF5805D6DCD09B930A7E7BFF156, B7A171E88B9FF66AEA94895F92639027A5DE25AB9D7A6AFC5601B6942FCC9E05 ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
18:10:45.0557 0x3f34 CDPUserSvc - ok
18:10:45.0565 0x3f34 [ 81E3779064C04790E30F25770F0AEADD, E7460E7C556D9C1497B9962838E3E1D261AA39392BB2501C67B2DDB870AF2EBB ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
18:10:45.0585 0x3f34 cdrom - ok
18:10:45.0593 0x3f34 [ F738B75E685601069A0A3F8C30CF4F47, CA063889D35F2C1CA38BA3E057EF1C1261E6D710A95527DF3523C0A26F97ACC4 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
18:10:45.0616 0x3f34 CertPropSvc - ok
18:10:45.0624 0x3f34 [ E5259475D04AA9C04D2B44DB0BAC05D8, D474C0AC0D6FCD11D94C10B6D0B756918B61A326046EF49D82B8A89A98294F70 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
18:10:45.0642 0x3f34 cht4iscsi - ok
18:10:45.0673 0x3f34 [ C748EE7BCE13820DB957C79B64219992, 4503B96BFE7C7A6DDB183E7590EC32D698AEC3F75A71B7AC368EEAC87D03B2E8 ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
18:10:45.0712 0x3f34 cht4vbd - ok
18:10:45.0718 0x3f34 [ B7FCEF757304710463D78C1155764BA7, 35F30E3016742879CD51A3786DE5EAE685BFCE9ECFA4F05942625A207CBBAD83 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
18:10:45.0734 0x3f34 circlass - ok
18:10:45.0744 0x3f34 [ 6114901A59C1B0FC636F3C7D532E4E41, 36A2F5542BDFB09E7B318B46CBA8A1D4E7CDCFBA711E53D111FEDCAA5ABD3897 ] CldFlt C:\WINDOWS\system32\drivers\cldflt.sys
18:10:45.0768 0x3f34 CldFlt - ok
18:10:45.0778 0x3f34 [ 3E1CE22362CB8DA91CC79E09B723E062, 9FA43C3CF522548D9AF7458823DD1CF41A63BBC3B28D0746C84F3869DE41E41C ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
18:10:45.0797 0x3f34 CLFS - ok
18:10:45.0816 0x3f34 [ 6BCBA20F52EA624D3056618A36A4FDD4, 29813606AA989EBF7A06319E5FEF9FF73EB3934C95FC444B06FB9C3E8F932E21 ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
18:10:45.0844 0x3f34 ClipSVC - ok
18:10:45.0856 0x3f34 [ 61F6E1DB8CC17FFDEC5DDE1715320729, 18701706C0CC83B9719921D304A4659BB764CCB6C0A097D9035138DAB166719A ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
18:10:45.0872 0x3f34 CmBatt - ok
18:10:45.0887 0x3f34 [ A47AB918DD77B629B6C41064DDA431DD, C4569A738D7CD211AE5CA143E5AB3B3816A3D181DF4DEFD845DFE03C35846A4A ] CNG C:\WINDOWS\system32\Drivers\cng.sys
18:10:45.0911 0x3f34 CNG - ok
18:10:45.0917 0x3f34 [ 6FD42010608BC1B77D60947175E0BFD9, 81C84FB81A0A6AAC064CC6E12AD60FE0CF667440621BCA191FF83C2F66EFD2CF ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
18:10:45.0930 0x3f34 cnghwassist - ok
18:10:45.0935 0x3f34 [ 54789D18CB08EBB83C3BF07E87928F1F, DCD7FEEF65F3E7B0FF675243CAEFF400FFF8CEB6F7650984A6BF1F72C3D42ABF ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys
18:10:45.0952 0x3f34 CompositeBus - ok
18:10:45.0957 0x3f34 COMSysApp - ok
18:10:45.0963 0x3f34 [ 77FE273FA6FFE487E689194DB20ACAE2, EFA8E4F01E77F3D83A5212CE2F6097EEFEE433653685BDBBF07A2E17CC8AE178 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
18:10:45.0977 0x3f34 condrv - ok
18:10:45.0984 0x3f34 [ 31D59C0A7B2549F578FC82B5ED9661FD, 5E19CC0D30ED4BF2BA0B0E163C4DC7B7CFB18C0004C2FE3452243ED9D6871AB6 ] ConsentUxUserSvc C:\WINDOWS\System32\ConsentUxClient.dll
18:10:46.0004 0x3f34 ConsentUxUserSvc - ok
18:10:46.0024 0x3f34 [ 64C146E79B02051548A3D2790071C96A, 86F31D86E4E6E692E2FD195C0D1B02B3F720688491A330C98E124E55E1FB492A ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
18:10:46.0051 0x3f34 CoreMessagingRegistrar - ok
18:10:46.0068 0x3f34 [ 868B7A47689F43A27D3BD5CBAD723055, 8BA047B7009FEF2B4487BC558AE83551CB8F7082E8D0F700D0C39142EF56F09D ] CredentialEnrollmentManagerUserSvc C:\WINDOWS\system32\CredentialEnrollmentManager.exe
18:10:46.0088 0x3f34 CredentialEnrollmentManagerUserSvc - ok
18:10:46.0097 0x3f34 [ 868B7A47689F43A27D3BD5CBAD723055, 8BA047B7009FEF2B4487BC558AE83551CB8F7082E8D0F700D0C39142EF56F09D ] CredentialEnrollmentManagerUserSvc_90e0c5e C:\WINDOWS\system32\CredentialEnrollmentManager.exe
18:10:46.0117 0x3f34 CredentialEnrollmentManagerUserSvc_90e0c5e - ok
18:10:46.0124 0x3f34 [ 0C757F912068DD931C2BB80845702779, 9FE5843B1943814B61DD859B313CDC739E0B24CBDC2DDD55D16895E4D445C0D9 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
18:10:46.0144 0x3f34 CryptSvc - ok
18:10:46.0157 0x3f34 [ 66787D119D42517BC34417015D6E6D21, 5EE7BE8C25F57CBA52690B7C0DAA52EFBBE357B046D77522AA1375164F639D41 ] CSC C:\WINDOWS\system32\drivers\csc.sys
18:10:46.0185 0x3f34 CSC - ok
18:10:46.0205 0x3f34 [ AB766C7D2459818E5EA1986FAAD91461, 44AA7AA27879FAA2F87CDD23134614E7731343CDC67314AE24B4289A00D83AF7 ] CscService C:\WINDOWS\System32\cscsvc.dll
18:10:46.0234 0x3f34 CscService - ok
18:10:46.0239 0x3f34 [ 839DEE64989886F8371C59192E2C58AF, 90E50A3039D4896273B5AD837F3F1004E2612F54AC3D5BD3343E0868FED2275D ] cthdb C:\WINDOWS\system32\DRIVERS\cthdb.sys
18:10:46.0252 0x3f34 cthdb - ok
18:10:46.0274 0x3f34 [ 9ADA266B2989FA4DB4EF3E54CC14C5B2, 2865252D0F02B8FD6AF80853ED5139541D2A91816AFDF567A5C76401C36D851D ] CtxHda C:\WINDOWS\system32\drivers\CtxHda.sys
18:10:46.0305 0x3f34 CtxHda - ok
18:10:46.0310 0x3f34 [ EB58F6D89C61AC102D4CA1C2951A623F, 913C81690BA862C3CE6867908F0E197F71650940F1106982D47DD62468D5952B ] CtxHdb C:\WINDOWS\system32\DRIVERS\Ctxhdb.sys
18:10:46.0322 0x3f34 CtxHdb - ok
18:10:46.0343 0x3f34 [ 53871E2C0B97523F8DE00E90FCB440BA, D51C3887C5B2856B70AFED983658CB08581C4BF793476596CD503A50F4D66CCF ] CtxSvc32 C:\WINDOWS\sysWow64\CtxSvc32.exe
18:10:46.0358 0x3f34 CtxSvc32 - ok
18:10:46.0363 0x3f34 [ D32047ED7F2718871AFC215FFF4760C2, A3F954BC3C22EEEC50610039CB8E6082C1533AE5C92C12C85BAF3569D499A7BE ] dam C:\WINDOWS\system32\drivers\dam.sys
18:10:46.0377 0x3f34 dam - ok
18:10:46.0400 0x3f34 [ DC3F4E5A6ACEC3EC10FD082E8C40DEFB, 87EF177448A55B85C5DF4399309124348EE1AA96643CD86C6FE91D389D2CEA33 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:10:46.0442 0x3f34 DcomLaunch - ok
18:10:46.0456 0x3f34 [ 84D865A4A6560C39C8F92397BA4CC617, D0C6960578E76ED470A627C690EAF00883B23893EA523B62BF2E4E56409D4CAE ] defragsvc C:\WINDOWS\System32\defragsvc.dll
18:10:46.0483 0x3f34 defragsvc - ok
18:10:46.0491 0x3f34 [ 2F8FC61BEA3BCF61106609E85307B65B, F5192CDBBB44043D086E5A1D005152FBE089A5F8FCC08BA23D8A9E791D27707B ] DeviceAssociationBrokerSvc C:\WINDOWS\System32\deviceaccess.dll
18:10:46.0509 0x3f34 DeviceAssociationBrokerSvc - ok
18:10:46.0524 0x3f34 [ 8AB0C55A78B0C18991ACC62C13167DDD, D7E24A6611FEBA7F69E1261B00DE4AB45019EE525B28F45F6AE20E6E11670D52 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
18:10:46.0550 0x3f34 DeviceAssociationService - ok
18:10:46.0557 0x3f34 [ C28BA33FE1373DE12B5FC1873FFAE4BE, 54D6EC2E21DFBA341EFE237ABDB08F00EA8A2479124750C3719375FC628459D8 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
18:10:46.0579 0x3f34 DeviceInstall - ok
18:10:46.0590 0x3f34 [ 6683A03C986D00273C67ADB1B249D7ED, 9FF5976B82C2186D336B5B970CC7B25898679F801CA79414C990D851FF43AE15 ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
18:10:46.0620 0x3f34 DevicePickerUserSvc - ok
18:10:46.0637 0x3f34 [ BF9F78C84DB3F84149FAF6867DB52490, DF6D17EEA5BCFF87C73E21D841E95CE5DB15ECDA05F9C7379E978814014B29AE ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
18:10:46.0666 0x3f34 DevicesFlowUserSvc - ok
18:10:46.0674 0x3f34 [ DC2944BD2B4DBA7AE74A32D8B57C554C, C33FA2CBD29137CB86B856F010166B59D4756A34308EC872B90AFB47493341E7 ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
18:10:46.0691 0x3f34 DevQueryBroker - ok
18:10:46.0698 0x3f34 [ D974C10E19DDC10622E30904AEE16FA3, 02A219750F23F183A8E2927AF0EFF8DCD631529FA618A704BE090E94057120AB ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
18:10:46.0716 0x3f34 Dfsc - ok
18:10:46.0724 0x3f34 [ 3A54122D1038844E86837989851695F3, BCD533C899D7491E3B3F47FCC00E4C4B06972B2A294A74E7D8F30DA22DA0E5EC ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
18:10:46.0737 0x3f34 dg_ssudbus - ok
18:10:46.0747 0x3f34 [ 02147FE1CB895CE623D32408C549DD04, 84406AE8281A87705EA4082641BA08262C27BFDE46676B8D3175F2585AF05C42 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
18:10:46.0771 0x3f34 Dhcp - ok
18:10:46.0777 0x3f34 [ 70494019BAD482015A512F81F97BE736, 0AECF381F62F10CC5298C11E080CB7CC6EB2A24382031448EC0E4C0081E686DA ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
18:10:46.0796 0x3f34 diagnosticshub.standardcollector.service - ok
18:10:46.0804 0x3f34 [ 720ABE3F8938902E9F0B512318975551, 3F23CCB61AC437C1A672D8236347045F92759ACCF3EA73B4877363FB169FE91C ] diagsvc C:\WINDOWS\system32\DiagSvc.dll
18:10:46.0825 0x3f34 diagsvc - ok
18:10:46.0887 0x3f34 [ C8525783FB957F6C260999D72C726F6F, B327560BDC6E28861CF5946B50EBF1D75D3FAFEB13A238A5881725F8749102C5 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
18:10:46.0978 0x3f34 DiagTrack - ok
18:10:46.0987 0x3f34 [ F13316A14B8E7319C5DCD77A439BCCCF, 25035525DD878A7C00816AE654D5160609601EE726BD2CF0595D0AB8336DFC86 ] disk C:\WINDOWS\system32\drivers\disk.sys
18:10:47.0002 0x3f34 disk - ok
18:10:47.0013 0x3f34 [ 0E71A704D20B10275B28DBEE1AF7D95E, 97DE31280CB3F2A63A9504511EE737D8211D5ECE90065A9D7CDCB97698790018 ] DispBrokerDesktopSvc C:\WINDOWS\System32\DispBroker.Desktop.dll
18:10:47.0038 0x3f34 DispBrokerDesktopSvc - ok
18:10:47.0060 0x3f34 [ B8F1CEDBA76858962C4EBF39C507B017, 596CF489B18626277F218999E6F9EA2189A3F2D8039721D1587326CCA1811E32 ] DisplayEnhancementService C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
18:10:47.0100 0x3f34 DisplayEnhancementService - ok
18:10:47.0118 0x3f34 [ BEB74D20EC54FDBF796A627CDA25A112, F9B5750FCCBDB1D8BF902D673193FDE2DDAC558FB442672FF01C190625B556FD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
18:10:47.0154 0x3f34 DmEnrollmentSvc - ok
18:10:47.0160 0x3f34 [ 0F4ABC6AEF95AC1E50D3F36808DE4C3D, 2A9B58065318AEA1E54DBD4E11A35DF8202D859B77E486D4E8706FE6BDD25FD5 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
18:10:47.0174 0x3f34 dmvsc - ok
18:10:47.0179 0x3f34 [ A4F5D5C81B9690B8ACB8798A5C711D31, A30F92686E84544CE1D36682F4E81836BDDAE9C1F08C2524BAB9671F7B5CD14C ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
18:10:47.0197 0x3f34 dmwappushservice - ok
18:10:47.0206 0x3f34 [ 22460A37FA73F13DA804E501BA9DC769, 99AFA28E046C583D16DF4F27BE5769306F00D46E3FB0606624570B33D82018A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:10:47.0231 0x3f34 Dnscache - ok
18:10:47.0243 0x3f34 [ 7A8428929D11D112534178311305E01C, A6CE9C0F02A0A0590602A8984D5F1B14B8BD26EE1E03A07BA521F23BBE029441 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
18:10:47.0265 0x3f34 dot3svc - ok
18:10:47.0273 0x3f34 [ FC37ABA7F9026FFB255CEC78AC2410E4, EEBE379C184D39F821BB0B11EB3F7A68EBEF2964CACCCC0197A79A1E770FBCA5 ] DPS C:\WINDOWS\system32\dps.dll
18:10:47.0293 0x3f34 DPS - ok
18:10:47.0298 0x3f34 [ 8D6B2A26E72E260860FC46593E67E94F, 30AC8EA9784DA08F30784C70D1B711E65F73BFEBA6389C80A023BAADC584CD7B ] drmkaud C:\WINDOWS\System32\drivers\drmkaud.sys
18:10:47.0312 0x3f34 drmkaud - ok
18:10:47.0321 0x3f34 [ 5C438FD023BB99268C291E2A0F670AF9, 27FC507B3B50EBC30C9AB068D2165B982CDD02C9A3AE9D80C478848710F0562A ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
18:10:47.0345 0x3f34 DsmSvc - ok
18:10:47.0351 0x3f34 [ CE06775BD98FDF4E2DA40F5C92FC70AF, 0102E78F904E46924D44E5EE29F18404CCD477AC48944A5B5C0C51C83D4F175E ] DsSvc C:\WINDOWS\System32\DsSvc.dll
18:10:47.0373 0x3f34 DsSvc - ok
18:10:47.0378 0x3f34 [ 679FF716052109392D870F6A6C4A3535, BEF1784448CCA4AF1D67ED68BD0C7CFE01A7719E98CACF92C2DCBFAA916DC57E ] dtlitescsibus C:\WINDOWS\System32\drivers\dtlitescsibus.sys
18:10:47.0390 0x3f34 dtlitescsibus - ok
18:10:47.0395 0x3f34 [ E23FDD696839A4790682CA66C48D3F2F, F5F0721BDA751968224E52E75D0C309A3E084C430CD98E85A55AF622D16B9A44 ] dtliteusbbus C:\WINDOWS\System32\drivers\dtliteusbbus.sys
18:10:47.0408 0x3f34 dtliteusbbus - ok
18:10:47.0418 0x3f34 [ 15653F0DB240DE46090B6AB27DBD1916, 96753BCDC9D5F588647645D5C167FDAA4715A6316EF768A4DC472ED8A5F52A0C ] DusmSvc C:\WINDOWS\System32\dusmsvc.dll
18:10:47.0439 0x3f34 DusmSvc - ok
18:10:47.0499 0x3f34 [ E297669B41E313856A0DDDD282A6C3FE, 9AF10D517853B9BABD78077E259B7EEDEB2B382594C0A2B965528E76C5726C70 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
18:10:47.0566 0x3f34 DXGKrnl - ok
18:10:47.0582 0x3f34 [ 80D54727BA06412794788ECFB278AD81, A8984C47A2BD8D3375A2D2F21AD167FA2773FD957A947C4E67BFA96CAD3683EA ] e1i65x64 C:\WINDOWS\System32\drivers\e1i65x64.sys
18:10:47.0608 0x3f34 e1i65x64 - ok
18:10:47.0615 0x3f34 [ F48869A7BE7437F4742DD9D4126FD770, 4F3D3F167B0846F97255F4549DC5EB9DACCD9FE2A5AC1E4658366AB2B8A9C420 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
18:10:47.0632 0x3f34 Eaphost - ok
18:10:47.0648 0x3f34 [ EF0F571CA05EB64C15F5B84928387594, 43F0E483816C843D7C1E17D4427206C4B01FE9906BFCBCAAAE30174CF58667E6 ] EasyAntiCheat C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
18:10:47.0673 0x3f34 EasyAntiCheat - ok
18:10:47.0729 0x3f34 [ E326127FB5622481C00EA40401039B2D, 87912CFA98C696211A430B86B607B03EC7D7A9CC34D0D34BD80B2F579AB76D73 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
18:10:47.0788 0x3f34 ebdrv - ok
18:10:47.0796 0x3f34 [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] EFS C:\WINDOWS\System32\lsass.exe
18:10:47.0811 0x3f34 EFS - ok
18:10:47.0816 0x3f34 [ 8A00A8300D25BAEFBB718436D55207B7, 076652CED4C4A0F7B1F0D17C4A6F43A8B017E5C5AB092306AC5AA8BACE2F19F2 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
18:10:47.0830 0x3f34 EhStorClass - ok
18:10:47.0837 0x3f34 [ C31E54032B1B24F561535228F7714F85, 1DC6FAEE368B867518A12D2AC7421E6685EF527B1716535DA29A5213398DBC22 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
18:10:47.0851 0x3f34 EhStorTcgDrv - ok
18:10:47.0858 0x3f34 [ 910F199C081D8D7471173333265982E3, 5F0388D48A39494FD7CFEB7DDB2EC20E04B5CA46BCCFC473D5007A6B8200BF80 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
18:10:47.0877 0x3f34 embeddedmode - ok
18:10:47.0888 0x3f34 [ ADBA0456A915EFCD6B35F298D185A976, CE1A8985CC8F4DA3CD08FAE7EC91BF3C8891031AC29FA30C01222C489BEA1CD0 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
18:10:47.0914 0x3f34 EntAppSvc - ok
18:10:47.0918 0x3f34 [ 122DD638F997E3EB08E442DACFEE0D78, 9667489726ED7B30270EFEEC57008EAA22FDCDBF162FD2E741E026051D17B09F ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
18:10:47.0934 0x3f34 ErrDev - ok
18:10:47.0942 0x3f34 [ 2EC5A65E71610FBA01F1E5CF054E9701, BFEF603B610D14608DCE066380BB680A56851E894823E24C2A5880A264CA2BD5 ] ESProtectionDriver C:\WINDOWS\system32\drivers\mbae64.sys
18:10:47.0956 0x3f34 ESProtectionDriver - ok
18:10:47.0987 0x3f34 [ 0386398EA6109B478180CC7AD2E78FC5, E232EE336B2B97A814B6E0F07C14C5A59BF0D8103AE1BC03461A6D6244FF1D07 ] EventLog C:\WINDOWS\System32\wevtsvc.dll
18:10:48.0041 0x3f34 EventLog - ok
18:10:48.0053 0x3f34 [ D263FCB363262B353EFCB2FE368AD73A, 1ADDE67F6D4666D2D33E4A16BA1D6FF951ED0C8AE15F8A0F41B4E9D5E464750B ] EventSystem C:\WINDOWS\system32\es.dll
18:10:48.0078 0x3f34 EventSystem - ok
18:10:48.0088 0x3f34 [ E25A3F31BDAB7D8C9D17390852A4CD96, 9B276776C67D354C969E30BC4D9501355E10568F0A87E9029DFBD5C587003188 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
18:10:48.0110 0x3f34 exfat - ok
18:10:48.0121 0x3f34 [ 7CBC5EB3E9A9AD5D204F79D1030524DD, 34DEA9E0D1180B7109EB9030515561CCECDF3BB7504FF1AA62B555DFC89C40A2 ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
18:10:48.0139 0x3f34 fastfat - ok
18:10:48.0144 0x3f34 [ F2F45F7B58EDBA2255AA0D0EDCE16C0F, 3B8961E134D73788A83855D949B4956A13EFC9EA500227475052D3BC7511016D ] fdc C:\WINDOWS\System32\drivers\fdc.sys
18:10:48.0160 0x3f34 fdc - ok
18:10:48.0164 0x3f34 [ 574937AAC16BC828BA35DA6639972660, BCC1431B0062AFA56B2A754EC381FD3BDDF0864929BB16B174E13827D2088D9C ] fdPHost C:\WINDOWS\system32\fdPHost.dll
18:10:48.0180 0x3f34 fdPHost - ok
18:10:48.0185 0x3f34 [ 5414A54236322C5ED8691CEC1A38EF80, A66E093F96383FAD9AB11C350A9712D64016F3EF7753124ABA368F969B74B276 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
18:10:48.0202 0x3f34 FDResPub - ok
18:10:48.0208 0x3f34 [ 9AC5E05D599A49DC91E2F438F93D719F, E3D583CA50ECDAC508EBC1642F5565DD42541E4E9C7AE1B709A042CB1A3A0CC0 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
18:10:48.0226 0x3f34 fhsvc - ok
18:10:48.0232 0x3f34 [ 35E6FE3288B6147F844B1845564FF161, 167F38BBDE88FDF7F30A626D7E1AF59006FE936D40D14C27FAEBDFCB2ECB6DAF ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
18:10:48.0248 0x3f34 FileCrypt - ok
18:10:48.0253 0x3f34 [ 5F4FB09BC4D33E6E3793AEA41D555697, 501AA763CA8E7BC2A5C760254A58E1732BD8616F72FD908A413E85E8148B07D6 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
18:10:48.0267 0x3f34 FileInfo - ok
18:10:48.0272 0x3f34 [ 75ABB7E381E36922230D55670B26D21A, 4F30A8FAD774DC669AEB2046C29A4E6C5C24ED7C99D034B3E97DED2F85001960 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
18:10:48.0289 0x3f34 Filetrace - ok
18:10:48.0307 0x3f34 [ 8669BE94F63944E4F899C3950B520241, 9991E57B3C366D59BD186CEAA78D4590EDB2BC127250CF4D1522CBE413453E72 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:10:48.0332 0x3f34 FLEXnet Licensing Service - ok
18:10:48.0338 0x3f34 [ D8745E1CEAA1150AD7E76E7E8687A308, B0507BCCEE86AD302DA9B4576E57307001CDC5310EA4C6E71520CEA7699709BB ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
18:10:48.0352 0x3f34 flpydisk - ok
18:10:48.0362 0x3f34 [ 3E149E6CF0C5CA47C89FABAEE220922E, B2D4AA7665BBEE84A0A4B4B522DA662D893A0D29CE6E60BF5EA2C3E9BA74678F ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:10:48.0379 0x3f34 FltMgr - ok
18:10:48.0415 0x3f34 [ 89AE83301C1FE0402CBB4CB8AD89E417, CADDFAF198E0C6907613A799B67A6484C516974E32C12BE12A62E2D260B17A77 ] FontCache C:\WINDOWS\system32\FntCache.dll
18:10:48.0471 0x3f34 FontCache - ok
18:10:48.0478 0x3f34 [ 6431A8760ACC8616B0C3A36B9E74C062, 1F406F9B4D8B1098465A091E3683E27BFF73906F08436924279A8EB8AD475DCF ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:10:48.0491 0x3f34 FontCache3.0.0.0 - ok
18:10:48.0506 0x3f34 [ B32400D8D7922E5D177233348F4CDC21, 55D7A7B9F37BCA73CA3CA0C72F4BC42D0A2EE342945A7533A3844DB86F2F371C ] FrameServer C:\WINDOWS\system32\FrameServer.dll
18:10:48.0536 0x3f34 FrameServer - ok
18:10:48.0542 0x3f34 [ E267D7A667B7C209E0708191A03F3DF8, 199364D416102591F153CCA1DCEF644220ADEFBF62BB976EB6E45D75273DD91E ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
18:10:48.0555 0x3f34 Freemake Improver - ok
18:10:48.0560 0x3f34 [ 9640EC828267B5BC7E587D581E3FCEA0, 996B4FDAE249E4BC4A9BA3935586AC8F93F243DD9C697DE6EA6EFC6120C80BB7 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
18:10:48.0574 0x3f34 FsDepends - ok
18:10:48.0579 0x3f34 [ 8DC43B0CC985D4FD9155739BD774471D, FCB9BF96A463A5D0A876BC5775F756268452FF284500A33D83DB20047BD08CF3 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:10:48.0592 0x3f34 Fs_Rec - ok
18:10:48.0609 0x3f34 [ 2E9974F4F6E81EF6A2C67DB6C6AA6932, 5E6A84FD095160EE2CEB3094F31975659BC44320EA13DB55354B28164E8F6721 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
18:10:48.0634 0x3f34 fvevol - ok
18:10:48.0639 0x3f34 [ 9AB9F3B75A2EB87FAFB1B7361BE9DFB3, 31F4CFB4C71DA44120752721103A16512444C13C2AC2D857A7E6F13CB679B427 ] gdrv C:\Windows\gdrv.sys
18:10:48.0648 0x3f34 gdrv - ok
18:10:48.0653 0x3f34 [ A72E10ECEA2FDEB8B9D4F45D0294086B, 26C28746E947389856543837AA59A5B1F4697E5721A04D00AA28151A2659B097 ] gdrv2 C:\Windows\gdrv2.sys
18:10:48.0664 0x3f34 gdrv2 - ok
18:10:48.0668 0x3f34 [ EF8A6E4DDD8A6F5840B96C1C238B59EC, 55BD969E15AE16EABC399D99AA48FB7A9CF7FDB73CAD8B2A79095B37B3731C75 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
18:10:48.0681 0x3f34 gencounter - ok
18:10:48.0692 0x3f34 [ 56694161233F5A703E2C875BF4265407, 0427C583537E9CC4FA6110B826ACC64930F86A4F3BBEA4FE272F489219D1409E ] genericusbfn C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys
18:10:48.0707 0x3f34 genericusbfn - ok
18:10:48.0727 0x3f34 [ 319F7CD88B8FC59874C89870F13832F0, 96853C44AE784C4774AA92DBA481D785306D0F0E87C4DD8C85BA3D870D2BC6C7 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\elevation_service.exe
18:10:48.0753 0x3f34 GoogleChromeElevationService - ok
18:10:48.0761 0x3f34 [ 66ACDC2BF5346E2FC24AD20207AD43B7, EBD873D28714D7B504ADF96A6BF0F13A39ED9BCA021DABB09C5CDF5BC1B461CC ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
18:10:48.0776 0x3f34 GPIOClx0101 - ok
18:10:48.0800 0x3f34 [ 2A6EEA251877EB33048A0E8A320F505C, 46CB246E11BA91985F59C77CCDE2725313BA4F57A8D298AEDBED83EBA84BDAA1 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
18:10:48.0840 0x3f34 gpsvc - ok
18:10:48.0846 0x3f34 [ ECF72E76711455EEB362E2E175395F87, 14E3D4396678303BACA9EE6A60869CE3EBBCEF58E71B25FA077D6DA4F94F1390 ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
18:10:48.0861 0x3f34 GpuEnergyDrv - ok
18:10:48.0866 0x3f34 [ 7A9DDF886942F5C791360BD76B06D874, 6550823ACF882D115B3922CD34C54479D0B2662CD187B98D5D4F203154C1947D ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
18:10:48.0884 0x3f34 GraphicsPerfSvc - ok
18:10:48.0890 0x3f34 [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:10:48.0904 0x3f34 gupdate - ok
18:10:48.0909 0x3f34 [ 92EE791A630830452485E8E375F8DB35, 542294724926B0E156224B9EBD33E6354D79DA4C828FB52F7F4233DF45E3F624 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:10:48.0922 0x3f34 gupdatem - ok
18:10:48.0927 0x3f34 [ 7F79205B4EFA98F0767309479C8C01C6, 4B576903A83F33A8CF31D3887144A3D51C56D1187115C83AC99C0E9F6B4BF128 ] Hamachi C:\WINDOWS\System32\drivers\Hamdrv.sys
18:10:48.0941 0x3f34 Hamachi - ok
18:10:48.0951 0x3f34 [ 543F752593EB8943A2A7F483C51723F5, 1272DD24BBAB7E65346260DA733C92E69F09386DDB21354B26DEAD1025BCEBF0 ] HdAudAddService C:\WINDOWS\System32\drivers\HdAudio.sys
18:10:48.0974 0x3f34 HdAudAddService - ok
18:10:48.0980 0x3f34 [ 1D742547071FC1436ED72A3F9DB6E1F0, 3E69AC41B139C294BC139E641C9D98C3FBFAF547B00C7C82EB0CB4132CBB0588 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
18:10:48.0996 0x3f34 HDAudBus - ok
18:10:49.0001 0x3f34 [ 23CB986FD6DC1D8022831254C609E481, D5669912870A3E498C576D24DBC61918364055AC90715C2ADF08C7572AE1EC57 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
18:10:49.0015 0x3f34 HidBatt - ok
18:10:49.0021 0x3f34 [ 98DB60B4CC713C73E3BFCD8521210B26, 18C1A04761CCA4D591C37C57F6F5625781437458F8CB073A7D55184527609731 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
18:10:49.0039 0x3f34 HidBth - ok
18:10:49.0044 0x3f34 [ F5468C4442990B23D99FEA900B63338F, 90495D0A53F8E635E3999B297DC719294BBF08A57E5596049DE10903EDAF54A5 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
18:10:49.0060 0x3f34 hidi2c - ok
18:10:49.0065 0x3f34 [ 34642FB049036D8BAAA42C922A82CCBC, FAB504F789B8AD00D54BA7AFC9D6141E22BF2A35218D7F57260E5233B5609166 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
18:10:49.0079 0x3f34 hidinterrupt - ok
18:10:49.0083 0x3f34 [ C789878B45C886DBD967826B491C9C19, 29ACA42E3B8307078D03FD77831A534DE3EFF38A20ABB08EDF81089A94E2E585 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
18:10:49.0099 0x3f34 HidIr - ok
18:10:49.0104 0x3f34 [ ACA51FC51A8D0959D3FF0E822A760E77, 2D780AA5D36E6A95CF1F0513B0BCAEC94ED2B9CC85CD071F630F3DC9B068086D ] hidserv C:\WINDOWS\system32\hidserv.dll
18:10:49.0121 0x3f34 hidserv - ok
18:10:49.0126 0x3f34 [ B3ACD7D2D86A046DB549B922D663DEA2, 1B4281916B27EAB16D8F40CFC754EB2EFE9AA769CC9EFF9C51EB9E60F1B8FC61 ] hidspi C:\WINDOWS\System32\drivers\hidspi.sys
18:10:49.0142 0x3f34 hidspi - ok
18:10:49.0147 0x3f34 [ E6FB73DDF8BB4DF3F9BAE8D650ED2540, 6419EA5EA3F5FB0091335A784C3F133503C085C4E33A6C44557AB98F9F0B8495 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
18:10:49.0163 0x3f34 HidUsb - ok
18:10:49.0174 0x3f34 [ A195E0255B056E2968B3A4BE21588E35, 769CAAE42AC023E8B9167F6FFE23D35C77FBB4276309E9F72494B056B43E2258 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
18:10:49.0188 0x3f34 HpSAMD - ok
18:10:49.0211 0x3f34 [ 3DAE8017FDE9DC3EE7E341D5F96CAFDE, E437A96C93DF6E911D2905F3930A8B7BC7398288927CD1FED015B081C82C8A6B ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
18:10:49.0242 0x3f34 HTTP - ok
18:10:49.0249 0x3f34 [ 6E7C4CAE43DA57A46DE9AC07D3400719, 3F5552758C8DF6D3C2A06FB19A3DB104916E2DCBD0C85DF15A40463EE5E0A614 ] hvcrash C:\WINDOWS\System32\drivers\hvcrash.sys
18:10:49.0262 0x3f34 hvcrash - ok
18:10:49.0268 0x3f34 [ 2B51ABC2AD3A5D1476D2833F8F03239A, 05F01D07F21EFFEBA25D82E7E7988405A0E8ED3D2AA6AF80BF207EDF0490B347 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
18:10:49.0281 0x3f34 HvHost - ok
18:10:49.0287 0x3f34 [ 1435943BE2F09B2C5D7F79E5DC0D3A77, 4379C78BE3AEC324B9C80353EF7F02900D9911C551984C4809D591E144BD127A ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
18:10:49.0301 0x3f34 hvservice - ok
18:10:49.0306 0x3f34 [ 4CE65795DBBF0C8892CDF7B3E8E72168, DFCC08CBA81E4888B005AD128E403314290EFE1FA2810BA09250CE56122DB575 ] HWiNFO C:\WINDOWS\system32\drivers\HWiNFO64A.SYS
18:10:49.0318 0x3f34 HWiNFO - ok
18:10:49.0323 0x3f34 [ C1AE2929CAD05CD2AA1FA835B06023A0, 4FA13362C7132114904C31EE2D96AED773BD0473FF73713B6D8C1030A4C2FE13 ] HwNClx0101 C:\WINDOWS\system32\Drivers\mshwnclx.sys
18:10:49.0339 0x3f34 HwNClx0101 - ok
18:10:49.0344 0x3f34 [ 3D5054457DD70E28A30D3CB1A352D468, E64EDA20E4A99F3ED04BA35BEAAFC85AB708EBC01F57BCA2B03A2407AEED3595 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
18:10:49.0355 0x3f34 hwpolicy - ok
18:10:49.0361 0x3f34 [ 4B0CB29B31E937AAC09EC0E66B03A70B, 351BD5B31B4256ABBDE0C414C0CCA10A84139023C0459C0AE8C9B9FF375E49D2 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
18:10:49.0374 0x3f34 hyperkbd - ok
18:10:49.0379 0x3f34 [ 454416484E10579883D0DE1CE13E695D, 1EB9269A57C176FFF386FE89298369EDA2028D57CA08C03CC09AE8E111A309DD ] HyperVideo C:\WINDOWS\System32\drivers\HyperVideo.sys
18:10:49.0393 0x3f34 HyperVideo - ok
18:10:49.0399 0x3f34 [ B475892255B02D33CF29B24FBD4AFDC9, 1678F2C246A6BCB434970C6E6394AD257D49BA3943AC46018359128099D82D35 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
18:10:49.0416 0x3f34 i8042prt - ok
18:10:49.0421 0x3f34 [ 9E5AECAB5F05218D9AC923E7CEA1CE15, FAAA46F22944E043A90AE6E9F0F86AF187FC2819C563DA375B2A409347BB2C35 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
18:10:49.0437 0x3f34 iagpio - ok
18:10:49.0443 0x3f34 [ 48EDB9B5DAB7D294951A520330F13715, 9296A14590DFD94A3C728CAF3CA91BA211F27974F9CFF8417CDDC00D1453315C ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
18:10:49.0460 0x3f34 iai2c - ok
18:10:49.0466 0x3f34 [ 6C3EDE394C71D5A67A504F55E35B6F47, 6FF5D13EF69E8FBCB4772C7B5C4D5770C78E0B29F9164FA1611EFDE91CE876BE ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
18:10:49.0483 0x3f34 iaLPSS2i_GPIO2 - ok
18:10:49.0489 0x3f34 [ 806D14CEAF25E5F2DFCBA8E7E33B86BB, 2141DE558461B592D4111A0388D1AAC8062FA72CD1E2A2D2D68279A9633288E9 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
18:10:49.0506 0x3f34 iaLPSS2i_GPIO2_BXT_P - ok
18:10:49.0512 0x3f34 [ 87DDDAE1693484BD0A210C877BDA00C2, E353D90D0B79A70F976FD5EA1CB7E25A97835E25116962EA035424715B2F43FE ] iaLPSS2i_GPIO2_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys
18:10:49.0528 0x3f34 iaLPSS2i_GPIO2_CNL - ok
18:10:49.0534 0x3f34 [ 8D3E3C431367E3BA632B4396CA662E1A, 71FDC25244298D62A335769D6ED43394C33FBD8DB05AA54CA924A2977F37858F ] iaLPSS2i_GPIO2_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys
18:10:49.0551 0x3f34 iaLPSS2i_GPIO2_GLK - ok
18:10:49.0558 0x3f34 [ 149F1260537C4F68C3F67C363B62F3C5, 3F1F9EC7571D0F82D3F5BBA298965491260708F05EBAAA2CC23483521A5FF079 ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
18:10:49.0578 0x3f34 iaLPSS2i_I2C - ok
18:10:49.0585 0x3f34 [ 3E641E905A6DBF29CBA1E72BBE349808, BF354297A55713D9E2DD4044D42810C007733EE54D5A80D58B96DD279D92C716 ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
18:10:49.0605 0x3f34 iaLPSS2i_I2C_BXT_P - ok
18:10:49.0614 0x3f34 [ B78D6AF79045B0DAB58596AF75037516, F99CAA667A832173BE4C879712360937BF7267CEAF88D5C4798A500861E4018A ] iaLPSS2i_I2C_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys
18:10:49.0632 0x3f34 iaLPSS2i_I2C_CNL - ok
18:10:49.0639 0x3f34 [ 2ED3B41C7CB4101ACB15D84D8AB5AA9D, A92487129B81376471C842B9932FF3A7B3ABBBB89797978E3FDEAF71A6FD5E3F ] iaLPSS2i_I2C_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys
18:10:49.0657 0x3f34 iaLPSS2i_I2C_GLK - ok
18:10:49.0663 0x3f34 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
18:10:49.0675 0x3f34 iaLPSSi_GPIO - ok
18:10:49.0681 0x3f34 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
18:10:49.0699 0x3f34 iaLPSSi_I2C - ok
18:10:49.0716 0x3f34 [ 92175FB164CDD9A49821DCE51D9E2699, 140358A5529D3E1495607B61D1326B76679EFB0E3392A3486000D82FD21926FC ] iaStorAVC C:\WINDOWS\system32\drivers\iaStorAVC.sys
18:10:49.0742 0x3f34 iaStorAVC - ok
18:10:49.0753 0x3f34 [ E027678E8F76B2225C64CD186986E249, C5B41E88E4EC5DAE4FDCBF02B160026C1A8B4E1624B5B2AA4EA9E3A9DC514A47 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
18:10:49.0772 0x3f34 iaStorV - ok
18:10:49.0784 0x3f34 [ B9D28B4AF5C5D472DB6659B787811CF3, 944C27097141BED73C053D648E59E6A1F4FAD6823550741F1132AE325B70D681 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
18:10:49.0805 0x3f34 ibbus - ok
18:10:49.0812 0x3f34 [ 8F5031663CBB1A9922074E8E23151FFA, EF69CD92096291F5FC18550B2B6DBD4F61058603691F4BD3E61DEC97FD15E5FE ] ICCS C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
18:10:49.0825 0x3f34 ICCS - ok
18:10:49.0833 0x3f34 [ B33F26DCC3E07ACC95DD146F3078BAB2, 7A17DA5FACB61A3C64F7DC15DEE86F8235B2C55E55519E5C25D1FDF06ADF67F6 ] icssvc C:\WINDOWS\System32\tetheringservice.dll
18:10:49.0856 0x3f34 icssvc - ok
18:10:49.0877 0x3f34 [ AA66B1519DE1DEF3D72EF4216F636E0A, 53FED87B6A63548FBA2897FD174580CC7791C8174AFED7FA294B1C6035649D6B ] IKEEXT C:\WINDOWS\System32\ikeext.dll
18:10:49.0915 0x3f34 IKEEXT - ok
18:10:49.0922 0x3f34 [ 7EDB7CCEDC86F03D3254274564DB0E99, 58C7B50D8306E3B2334634DDF81B99B61E2EBF4D35B3E43BE02C7BEFECA77E0C ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
18:10:49.0939 0x3f34 IndirectKmd - ok
18:10:49.0980 0x3f34 [ A0C83BB8E8B2D8DBCB84BA3273928C00, 08972274F77B5760F07B085FEE8F234A61C110695E19A279FB496A40E906825F ] InstallService C:\WINDOWS\system32\InstallService.dll
18:10:50.0042 0x3f34 InstallService - ok
18:10:50.0059 0x3f34 [ B939292CF495FF8602FB4B2579A8B4EF, A9FACD44C498E1CB0CAD7556AE532C7A4F511E57C11F48DFE6274443FCBCB91C ] Intel(R) PROSet Monitoring Service C:\WINDOWS\system32\IProsetMonitor.exe
18:10:50.0077 0x3f34 Intel(R) PROSet Monitoring Service - detected UnsignedFile.Multi.Generic ( 1 )
18:10:50.0136 0x3f34 Detect skipped due to KSN trusted
18:10:50.0136 0x3f34 Intel(R) PROSet Monitoring Service - ok
18:10:50.0146 0x3f34 [ 899E975AE058A0AF9793EF151D2F9277, 637D2DCC22D4C286CA653569B289265AA206637C5A296B5A174D4E8C5C4EF86A ] intelide C:\WINDOWS\system32\drivers\intelide.sys
18:10:50.0160 0x3f34 intelide - ok
18:10:50.0170 0x3f34 [ E4B0203E943935A5D02930187ECC6073, 0D9BCFE6739FF868F341443A14E7CC9FADB9BA39B0DA57E69FE070BC7616AA4A ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
18:10:50.0188 0x3f34 intelpep - ok
18:10:50.0194 0x3f34 [ 8D6ADFE99C1DC577C74B0148E70ED5BB, 3CB473C80B1F0B4BF32D5F76A600A972D4AFB5E62882FB09F48B6D40F3285F07 ] intelpmax C:\WINDOWS\System32\drivers\intelpmax.sys
18:10:50.0210 0x3f34 intelpmax - ok
18:10:50.0218 0x3f34 [ 128F278F1C80EC2629B261186938244A, 1DEE570DB015CC3A77CA6C71B6CF812721E30C0DC57DEFFF23535A7D93C70BDB ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
18:10:50.0233 0x3f34 intelppm - ok
18:10:50.0239 0x3f34 [ A89BF4378628224DA411A76FF6913E95, 2572614EB43DA5BE591B8484CD05D4F8FB991BF3331A976A87A03DC3585FB100 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
18:10:50.0252 0x3f34 iorate - ok
18:10:50.0258 0x3f34 [ 02A2D46896B4312F084D5095D00B6DE7, 0D27C86EC5B2D9DEC9F88729AB16F79638769455179ABE23C86A519858104176 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:10:50.0274 0x3f34 IpFilterDriver - ok
18:10:50.0290 0x3f34 [ 0EB4405D79E1463454A79D42CCBC95E8, 83581555B7E99E34CCC09A1E5909F00D8BED61C345A2F3E47915C1594943B226 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
18:10:50.0319 0x3f34 iphlpsvc - ok
18:10:50.0326 0x3f34 [ 4BAA9037E2D4544906A7E9BDFE0CFCB5, 2E9A4BD67408B4193D4BDD2E934739BFE7F3FD0F0B649F44E861C5EF49F82A0F ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
18:10:50.0342 0x3f34 IPMIDRV - ok
18:10:50.0350 0x3f34 [ 5E05C0FEA671B910FEBC634E796C38B5, 7531CA77A2586E6F7085E1776EB6E5B665EAE3782C5EA7C2B7E5D3039F922397 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
18:10:50.0371 0x3f34 IPNAT - ok
18:10:50.0377 0x3f34 [ 3BB90B22F0D8A58B261A1B1AE6B80EAD, 6F5246DAA62C8F4E318E88EDAA48CD9ABD00591111F1E3F421E3E8D1D3377AF7 ] IPT C:\WINDOWS\System32\drivers\ipt.sys
18:10:50.0390 0x3f34 IPT - ok
18:10:50.0396 0x3f34 [ 5B4848FF9C6D605563BE8E21D4D2F70F, 394335BF90F7761515914A63D0F9DA122465D755D1C0E27329289228E15384FD ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
18:10:50.0413 0x3f34 IpxlatCfgSvc - ok
18:10:50.0418 0x3f34 [ 054FE6D33A16F8CE82DCBA85AEE69B76, 3EA2188A9E5568B415CBB02B06A96DECDB37B9F07489145921CD34501823B704 ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
18:10:50.0431 0x3f34 isapnp - ok
18:10:50.0440 0x3f34 [ BEEE3BA3612ACAB58CEDABD6AAD10BAA, E67BCE12CE26676A2A48A9FE623F25991D210F748C700745F59B2E88B36B9333 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
18:10:50.0456 0x3f34 iScsiPrt - ok
18:10:50.0464 0x3f34 [ 7C65B40F45AD2545443D009A837D7893, BD0A1831377E965414278C1BC813B008B52B6674B03994A6ADD4DEC43F568276 ] ItSas35i C:\WINDOWS\system32\drivers\ItSas35i.sys
18:10:50.0478 0x3f34 ItSas35i - ok
18:10:50.0484 0x3f34 [ A6C674D09B6231702D1DE55E26441BA8, 395DEEACDA99CC90B567FB493F613FC2C34ABF4A34A158E173367F550AE31D87 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
18:10:50.0497 0x3f34 kbdclass - ok
18:10:50.0502 0x3f34 [ FC6793F3CEA0B44CB516BEE39CA47538, A211547E85B488DDEA3D9FA6080CA9014FB08EAA7C72D54E561D159909F548F6 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
18:10:50.0519 0x3f34 kbdhid - ok
18:10:50.0525 0x3f34 [ B773A19F81C442DF6FE7C6271ED7CFF4, DCF1CEC745A9B6D8B8A4C031707FA6E618B522B4C4D7D51725BB2ED691DED48F ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
18:10:50.0538 0x3f34 kdnic - ok
18:10:50.0543 0x3f34 [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] KeyIso C:\WINDOWS\system32\lsass.exe
18:10:50.0558 0x3f34 KeyIso - ok
18:10:50.0565 0x3f34 [ 761E3C7936C0DC4C3F669E9795480361, DCBDFEC0C785A42A92FB61F1FB158A78B00F3268E4329818140D82AEF7282C9E ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
18:10:50.0581 0x3f34 KSecDD - ok
18:10:50.0588 0x3f34 [ 40047F9803520015A2BD065AB3E36B21, 2E6DF774882E69A28D40E3F17025925751577529486C647BFBCFBC296B97087F ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
18:10:50.0603 0x3f34 KSecPkg - ok
18:10:50.0608 0x3f34 [ 85F56430EDB7F15D7E74562B4B9F45ED, 8546D87E71206BE9DEEB7885152554719A322B5BBC5C02A56193F16E4A516FB9 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
18:10:50.0624 0x3f34 ksthunk - ok
18:10:50.0634 0x3f34 [ 2A4F33C288355AF81387C4030C00FEBB, 2A2263CD1670D14DE27F7B5FA70E4037ADFE00A65D93A0C6B3C584435FD93FCE ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
18:10:50.0658 0x3f34 KtmRm - ok
18:10:50.0667 0x3f34 [ 7445884AB1995E1605840E5C8947DDA3, FC7817855F8CA8616BD5A941992468E6EB7FFFCAA21E332C3E4B832E7CA92EF4 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
18:10:50.0688 0x3f34 LanmanServer - ok
18:10:50.0699 0x3f34 [ 4B63205E92415FC3B12DCC23DB446CD5, EE41C199C14F51A7D6F6DE23ED49612CDD2F1B5530193FD990C1CA163423E9B2 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
18:10:50.0723 0x3f34 LanmanWorkstation - ok
18:10:50.0732 0x3f34 [ C74D6825D4F8F587AFBFE4CFAFA6CCE2, 8E00369E9DF24BAB5314B7BFC748A5413124654DA9CA37DE90B9309FD68139AE ] lfsvc C:\WINDOWS\System32\lfsvc.dll
18:10:50.0749 0x3f34 lfsvc - ok
18:10:50.0754 0x3f34 [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] LGBusEnum C:\WINDOWS\system32\drivers\LGBusEnum.sys
18:10:50.0768 0x3f34 LGBusEnum - ok
18:10:50.0774 0x3f34 [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
18:10:50.0785 0x3f34 LGCoreTemp - ok
18:10:50.0791 0x3f34 [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] LGJoyXlCore C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
18:10:50.0802 0x3f34 LGJoyXlCore - ok
18:10:50.0807 0x3f34 [ 1DDE097A358F533F58060B49A06B0AA4, F392D6EB5FD31A5A063E0DD091C3438A6C02DBBBDE12515C663BEB815F17587B ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
18:10:50.0826 0x3f34 LicenseManager - ok
18:10:50.0832 0x3f34 [ A0D1856F57DFCF58D8A9E23D8B205886, 228803C88590C8AC10A1730CADA38A48DEB0236FDC6695673D70C40F91F3948D ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
18:10:50.0848 0x3f34 lltdio - ok
18:10:50.0857 0x3f34 [ 27DA2D87DA23C2AB3328AFBA945DFEF4, E3E570EB6B9AF06B1CC1EB09DA7E660F4BCE3EF40842D143BE0611F7DE4B2BC3 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
18:10:50.0877 0x3f34 lltdsvc - ok
18:10:50.0883 0x3f34 [ 21DCCE84ACEE6DF560A54901460B1974, 2EE4A5C334CAD770B5A4BE77D0FDF10F084B10FCC9DFAF434338224B263A23B6 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
18:10:50.0901 0x3f34 lmhosts - ok
18:10:50.0908 0x3f34 [ CEDF1C2E1AE31E63C4F83F8486F59E53, A5D2420B62F2478A97CFC72BE0F17996CCABDC9EB77ADAF57C66E7D29F5CC0C9 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
18:10:50.0921 0x3f34 LogiRegistryService - ok
18:10:50.0931 0x3f34 [ 8EC5966393F3D2FB1F3663D47F059571, 0EC6328DE76D3817972BF1EBE897473D55B62D4EBFB8B1FE087FE3D2073B0446 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
18:10:50.0945 0x3f34 LSI_SAS - ok
18:10:50.0951 0x3f34 [ B3A55D8E17DC2CEC64C55031B60692E5, B4E9CC96946149FB6ADEE7FA52C5C01E02843AB932A1ED1747E42B8519DCAFE7 ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
18:10:50.0965 0x3f34 LSI_SAS2i - ok
18:10:50.0973 0x3f34 [ 08F9429D6D41E0D217C415D052BC84D6, 823597418DAA875AF30B2EBD5B2C224170E1589B2A841EB879144BAD51B3A8CF ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
18:10:50.0987 0x3f34 LSI_SAS3i - ok
18:10:50.0993 0x3f34 [ 21A85C6B86AF33EDED64F556D2DB7E32, 64B72F8B3967DF9B5BC2F83BB410ED9A4D68E824EFFFD35E4E615335D05DA286 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
18:10:51.0006 0x3f34 LSI_SSS - ok
18:10:51.0020 0x3f34 [ BDA93061DADEAEFB75CC2FD0D54CDC4C, 2FB16DE5EB8A1DB9E489B16C0AFC60CD0B645C48D8528A09D02A571933E43F34 ] LSM C:\WINDOWS\System32\lsm.dll
18:10:51.0082 0x3f34 LSM - ok
18:10:51.0095 0x3f34 [ B1F6D849F8DDF1406454899C1BF5A1C5, 15E66A2DC64AAF1810C26827E2E95FD6393DEA843034A0CAA51AE9580CCBB822 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
18:10:51.0114 0x3f34 luafv - ok
18:10:51.0124 0x3f34 [ 41744BD2D3FBA7BD8C910913152A88C4, AF91CB5A27E25A72F6DC8BB8D87202543E17D1BBBB30B950D597A75DD2748984 ] LxpSvc C:\WINDOWS\System32\LanguageOverlayServer.dll
18:10:51.0145 0x3f34 LxpSvc - ok
18:10:51.0151 0x3f34 [ 1294A83A7E61544E5C3678A40237F842, 120EC51CAA8D917E6B6FBD1E22E7AC59858C148EADA9B3F81EB03D82DD608EFD ] MapsBroker C:\WINDOWS\System32\moshost.dll
18:10:51.0173 0x3f34 MapsBroker - ok
18:10:51.0186 0x3f34 [ 7B1EFA88175EFB47970D274E671C8BE8, EE9E0C2DB1F4E358C1ECB9740E096AFB9271B85B84E6DFA3016E52635CCFFE5E ] mausbhost C:\WINDOWS\System32\drivers\mausbhost.sys
18:10:51.0206 0x3f34 mausbhost - ok
18:10:51.0213 0x3f34 [ 822938D041A15C2FF4841C656D94F604, 0077D7CB82B14423BD831E833F60CCE0239198E32200CD41051276E00C995BE8 ] mausbip C:\WINDOWS\System32\drivers\mausbip.sys
18:10:51.0225 0x3f34 mausbip - ok
18:10:51.0234 0x3f34 [ A77DE77416DC1FD32F530F2243D48414, 51CBBA64C9CDC204F839C135C10CB72DE7D1476E54CE2354A13A55CD594DFD8D ] MBAMChameleon C:\WINDOWS\System32\Drivers\MbamChameleon.sys
18:10:51.0248 0x3f34 MBAMChameleon - ok
18:10:51.0253 0x3f34 [ 31E4AC0C3D3BAC32082304BD43560760, 228CA2A510BB8BBF0E0AB29455BB0961B82774FF74E664BB20A864758B8B0904 ] MbamElam C:\WINDOWS\system32\DRIVERS\MbamElam.sys
18:10:51.0266 0x3f34 MbamElam - ok
18:10:51.0275 0x3f34 [ 9DA36321263CCD2954E4062370A1DF5E, A406D09659F7AADF62EE844C48227BB6E405E435B1155B651390613C50E1B5C7 ] MBAMFarflt C:\WINDOWS\system32\DRIVERS\farflt.sys
18:10:51.0288 0x3f34 MBAMFarflt - ok
18:10:51.0294 0x3f34 [ ED50BA39B56351F0864FC69B3B53B901, A2C12E431A20ACBB2C7F7DDAA797B9D9CC89F93638E03C6D1AA7B3326F0CA4EE ] MBAMProtection C:\WINDOWS\system32\DRIVERS\mbam.sys
18:10:51.0306 0x3f34 MBAMProtection - ok
18:10:51.0402 0x3f34 [ D22F94683E57BD98D4110E44DB9BA433, 75BFB3EE2591EA2A62343644F1A197BDDFE462A15418CD1F8CB4A6D754070D26 ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
18:10:51.0520 0x3f34 MBAMService - ok
18:10:51.0536 0x3f34 [ A1CB214CAD55EFE911245FD79AD01CD3, 0A05F9FF66B0829769075F6EBC1668003913F2A08A78322E70464BDA95F7EDC9 ] MBAMSwissArmy C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
18:10:51.0550 0x3f34 MBAMSwissArmy - ok
18:10:51.0558 0x3f34 [ B17163AAB62A4315D2A3630AC706C6A2, 54D9A281CBD51E6D244735265935E219D3765CFA0683D1FA394CD31DF948B47F ] MBAMWebProtection C:\WINDOWS\system32\DRIVERS\mwac.sys
18:10:51.0572 0x3f34 MBAMWebProtection - ok
18:10:51.0583 0x3f34 [ AD72EA72A524720D6FAA09DCAEEF3990, 671646DAA2522ECB0B57930B7A526AA14861756C85643A8D79980D4EDC311CAD ] MbbCx C:\WINDOWS\system32\drivers\MbbCx.sys
18:10:51.0606 0x3f34 MbbCx - ok
18:10:51.0612 0x3f34 [ 1BB90BE197FB0D96185B1E3A78177A57, F0EAC8FE2C696022AFC21B3546450C90CD19C65F390ED460421A6F3F588F8A4B ] megasas C:\WINDOWS\system32\drivers\megasas.sys
18:10:51.0625 0x3f34 megasas - ok
18:10:51.0631 0x3f34 [ AEF3EA8036FF17BF8BD9403B1D76A876, 949358C4BFB2C4AEA4FDE9F26E9A5263DD50423BD17A3B830119875BC14211EC ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
18:10:51.0644 0x3f34 megasas2i - ok
18:10:51.0652 0x3f34 [ 91680A3466B271AAE802452BDE032380, 95C5EA5F6741C63443F6046585716CBFB61F5A905C288C64CB69E09AC3AF2079 ] megasas35i C:\WINDOWS\system32\drivers\megasas35i.sys
18:10:51.0665 0x3f34 megasas35i - ok
18:10:51.0679 0x3f34 [ 721FC491970364F1065C791629323502, A6997BA88BDD70D266A62728460254D5B6E4FF1737E7F2DCF4D0C1F332D089D2 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
18:10:51.0699 0x3f34 megasr - ok
18:10:51.0706 0x3f34 [ F1DE8D5576D0200A808C3475FC6E90A5, B6E9793FB86425042DD547E07AB86B17E18092BD24B8D1782784BCA9834467C8 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
18:10:51.0723 0x3f34 MessagingService - ok
18:10:51.0733 0x3f34 [ 41A35E2FFC5F68F2345CAFDBA29D59E3, DCF1E7EE3A79A670E8AE9B2F83013F01F52DDB23CDAC0BEDCD874543E99F1B9F ] Microsoft_Bluetooth_AvrcpTransport C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
18:10:51.0749 0x3f34 Microsoft_Bluetooth_AvrcpTransport - ok
18:10:51.0771 0x3f34 [ 3FFE0858D0E44AD01151A1D20EFE8C6E, 44AD3E4453992289720B09B4C43725C07F8E16ACD3A2065080B0B59CBD56FC27 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
18:10:51.0799 0x3f34 mlx4_bus - ok
18:10:51.0806 0x3f34 [ CABA725AA198FB1B8FC88BC863BC6C4E, F4A467FFFEA42EC236E7CAFC22DDCE630608722B7DE84806D1C97DCE7A66756E ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
18:10:51.0821 0x3f34 MMCSS - ok
18:10:51.0827 0x3f34 [ BD0744EA7533D420236F4958CDC88332, 5FCEA3BA97DC951485851BC0C299BDBD8F6195F8F5BF90F399EFC0F64C79FD42 ] Modem C:\WINDOWS\system32\drivers\modem.sys
18:10:51.0844 0x3f34 Modem - ok
18:10:51.0851 0x3f34 [ B5B8EFDB66C59A95B88DF40D1A5C62D3, 711B003A068D3E63EAB4FC9965B28BB9D6DFCAB7212CCF118ED3AC73327E46AF ] monitor C:\WINDOWS\System32\drivers\monitor.sys
18:10:51.0868 0x3f34 monitor - ok
18:10:51.0874 0x3f34 [ 2636838B7F077F20C9FE4EB6C4762887, 152B4D9DCA39CEBE703ACACFCD4D020EA65E503BA417811C5168BBD64FD51840 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
18:10:51.0887 0x3f34 mouclass - ok
18:10:51.0893 0x3f34 [ A461B82FE51C46FA77C124190E1A24E5, A0A1854783D9415892F5BCAF02BB5D0005C321CC051D8262D7C042A21E694EEB ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
18:10:51.0908 0x3f34 mouhid - ok
18:10:51.0916 0x3f34 [ B85C904F394A8F13159541CFEB131B85, 502C3915B2ECCC02EECB262144B7E259FC740C43854E13CFF51D9319DDF8C7C8 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
18:10:51.0930 0x3f34 mountmgr - ok
18:10:51.0938 0x3f34 [ CA86C410FC6C7B0A9979C8BDCA8D41B2, 0CB54A1C664A18A4937A1DA281B0FFB936E17C7CB10CBDB8335027A6374C7D97 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:10:51.0952 0x3f34 MozillaMaintenance - ok
18:10:51.0959 0x3f34 [ 4F42CBB27A7B4AA26BE4DCCA6C25D136, 0987ABF8212CDC420B0F40E040E4097D414D389DC0010DD58167593E31C6E97D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
18:10:51.0977 0x3f34 mpsdrv - ok
18:10:51.0998 0x3f34 [ 4D877C9393F2A61096F020BF9682F8FA, 6BE5876EC27B3B5C58854570B5236CAD497B08704A9B7CEBC0D407639AF36369 ] mpssvc C:\WINDOWS\system32\mpssvc.dll
18:10:52.0035 0x3f34 mpssvc - ok
18:10:52.0044 0x3f34 [ 6D7E0D16C4158099E4DD6D7F1E4DC8B3, 746F8D13D57209F099BB0B20DDE134F04197998ADDD6FA0DD4ED9931D45EFACF ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
18:10:52.0062 0x3f34 MRxDAV - ok
18:10:52.0076 0x3f34 [ CF2B10FAC417B5C3E065B880A0D3C1E8, CCB85B2CA9D206787241B008A7E03637470207F067C5B406DD1DE9F9E2CF86FF ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:10:52.0097 0x3f34 mrxsmb - ok
18:10:52.0108 0x3f34 [ B3B72A0C1D45707261D841308BE812F6, 4512BBDB544FA0384D9BD09F439DC0C4EB36D2B89311A12B135B4662E5CF7CF1 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
18:10:52.0124 0x3f34 mrxsmb20 - ok
18:10:52.0131 0x3f34 [ 90F0B61C3A11A7D2E718FC70EDF55942, A0DB00D8C0D2928D2004CEAE96B2F6971FD909FD149B56F74F110203A314A7D2 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
18:10:52.0149 0x3f34 MsBridge - ok
18:10:52.0156 0x3f34 [ DC59FE37CFF118B6DAC426FE9923B32C, 8DDC6D67A14B549946D103F2A5E7B1EB23C68BB6E7B8ECBC192365C7323EC458 ] MSDTC C:\WINDOWS\System32\msdtc.exe
18:10:52.0175 0x3f34 MSDTC - ok
18:10:52.0189 0x3f34 [ FD79E6397F6915348FC7797018B496EF, 0D94E9498CF5CB5E9BF5537C0510DB7922380745335DF99AF8A1F34EC8134A5A ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:10:52.0201 0x3f34 Msfs - ok
18:10:52.0207 0x3f34 [ 5CC4AE59BAC4DDE8C0ECB05A4A965D19, 56618151F45271CDAE0E6EAF9E5358B1B0E46761633234E14E7571722449443D ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
18:10:52.0221 0x3f34 msgpiowin32 - ok
18:10:52.0227 0x3f34 [ 22813FD068277CC4994CB3FB5547AA23, AA5FCFEE8161EA12ED65FAB5A662EE3BFF5B7D725DEFF081FCB45C534FAC976A ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
18:10:52.0242 0x3f34 mshidkmdf - ok
18:10:52.0247 0x3f34 [ ED11DC4C201FF6C06F171E18B379B589, 37E1901ECF54A22D016B844B68847B3894EDCA7854D713C46951BD41684735BB ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
18:10:52.0263 0x3f34 mshidumdf - ok
18:10:52.0268 0x3f34 [ B96409D62458CF2D45895A8B112B1E24, 73E57262DCA69935FB93A5D6FBDB7D516C80532924E49325275839A84FA4F620 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
18:10:52.0281 0x3f34 msisadrv - ok
18:10:52.0289 0x3f34 [ 7A11436A666D4CDD1D650FBC92738C8C, A45F0037374FA16D032D8AB31343CAA005393931542884C58187CE18BC8A1848 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
18:10:52.0308 0x3f34 MSiSCSI - ok
18:10:52.0313 0x3f34 msiserver - ok
18:10:52.0319 0x3f34 [ E3B4680BAB18D0898E80C6E4FE05BF55, 2F215EB0122A796674123241D7F34849B4A77E9376A373968D5ADAFAB4D428B2 ] MSKSSRV C:\WINDOWS\System32\drivers\MSKSSRV.sys
18:10:52.0335 0x3f34 MSKSSRV - ok
18:10:52.0341 0x3f34 [ D65874265E85BEF4E54740FB69803430, 5A368710766359A45B9E5ED0C381D2B3DD971C4D4BA563EAF2464AC3E372F7DE ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
18:10:52.0358 0x3f34 MsLldp - ok
18:10:52.0364 0x3f34 [ FAFA1781D123CD9B2542719DD523177D, FDDA2690AE37D970935A74CBD54492331E520DBC0D4C8484812E75678AE7383C ] MSPCLOCK C:\WINDOWS\System32\drivers\MSPCLOCK.sys
18:10:52.0380 0x3f34 MSPCLOCK - ok
18:10:52.0385 0x3f34 [ 031C0DAF57390C77A409E00031548827, ECB8E06EC52F84C206C77D605B07DEED2CA0B150E4645CF870E2DBE6CE8573F7 ] MSPQM C:\WINDOWS\System32\drivers\MSPQM.sys
18:10:52.0401 0x3f34 MSPQM - ok
18:10:52.0412 0x3f34 [ D766C72E3A6BCDC2510267BA84501539, 0A560E8B8D5D76D453F3198E6A5D773B1A07599446AACF09DE431C110865D1B8 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
18:10:52.0430 0x3f34 MsRPC - ok
18:10:52.0442 0x3f34 [ 5C0FF03DBE8AFB924C91973C2DC69D6F, 19D21372E572EB96D35C97F9F9F23A33647DF877722D0BA9E994071021EFB37F ] MsSecFlt C:\WINDOWS\system32\drivers\mssecflt.sys
18:10:52.0458 0x3f34 MsSecFlt - ok
18:10:52.0469 0x3f34 [ 84AB9DA4C598BE81A7D0B88C8AE2DF41, A52BDE35B576B48EEECE245D9FD28FFDEAD402C17BC411A92849BEC93C7A1AAA ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
18:10:52.0482 0x3f34 mssmbios - ok
18:10:52.0488 0x3f34 [ E13D4B1DD649D69E974C51B2D550E4FC, 1D5DECC4CC515D74625283D4703F9D9A4B1EE013DA61CCB736690F63906B2E7D ] MSTEE C:\WINDOWS\System32\drivers\MSTEE.sys
18:10:52.0504 0x3f34 MSTEE - ok
18:10:52.0510 0x3f34 [ EA16B406DCEF72848A1E2BA9B32469CF, ABF2B0A6B03AF147C04A0E7E788E866D9B84BE1EB7D7ED25641F7BF0B3C25138 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
18:10:52.0525 0x3f34 MTConfig - ok
18:10:52.0533 0x3f34 [ CEA4A7C14A65A7F1D10A089FE60FD9EC, D57693FFBF6FF55DCE758B034618499C214739F68FD8CBCE12CD3AFEBF739113 ] Mup C:\WINDOWS\system32\Drivers\mup.sys
18:10:52.0547 0x3f34 Mup - ok
18:10:52.0553 0x3f34 [ 62F9AE1AB6F9B3825A4DB481E2613940, 02B4D85EB99AFF67BBBF2BD29E3747BBDD627F09F1F0FE62E5BF9AF6062C2E27 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
18:10:52.0567 0x3f34 mvumis - ok
18:10:52.0574 0x3f34 [ B32497762D916DBA6C827E31205B67DD, 5F6547E9823F94C5B94AF1FB69A967C4902F72B6E0C783804835E6CE27F887B0 ] NAL C:\WINDOWS\system32\Drivers\iqvw64e.sys
18:10:52.0588 0x3f34 NAL - ok
18:10:52.0608 0x3f34 [ D727DD8EA3CD56115F9BDD5C33F9D1B9, 888B19C1348A307BDFF84477D7B2A84D721A37689AA124536D12BDC26BCED4B5 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
18:10:52.0634 0x3f34 NativeWifiP - ok
18:10:52.0652 0x3f34 [ 3509BB296C4E2F8D71089C17DFB6CEAF, 2F1A77B938104698AC6D9E4F0184AE53745998C232EEA7BC7CD42A4ED21006F7 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
18:10:52.0685 0x3f34 NaturalAuthentication - ok
18:10:52.0696 0x3f34 [ C8A90D48FB91BB96583322053FF67D2E, 97950F7F9E7BAE1BB1CC009D6227868E5623B7AC82D6C42563AB99499CC751F5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
18:10:52.0717 0x3f34 NcaSvc - ok
18:10:52.0728 0x3f34 [ 8194AC4A443019328E8CFED3ED58F6A0, 796C07B7C9BF30B180874E545C68FF7F3CB11DA3BE05518EC8CADE11812D2CCE ] NcbService C:\WINDOWS\System32\ncbservice.dll
18:10:52.0751 0x3f34 NcbService - ok
18:10:52.0758 0x3f34 [ 9EB402A3A00433B271C2DE5B904AA770, 4E95FECBF1C71F7CB574651FA2B1F8B23AE16543887D80432D178809A5833C42 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
18:10:52.0777 0x3f34 NcdAutoSetup - ok
18:10:52.0786 0x3f34 [ 323CE279076206EB4B1EC4FE85A81FEB, F224109E7A447EB98266D24270ADAB4D71681018FCCA1B3405686D2776ED0376 ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
18:10:52.0800 0x3f34 ndfltr - ok
18:10:52.0828 0x3f34 [ BD6576B39F9EC724089ACABC3C59400A, 038894F1D5AA855D036F50D8AE17A2459AEA6C5C20C983BCD7AED7EB8EFEB138 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
18:10:52.0861 0x3f34 NDIS - ok
18:10:52.0869 0x3f34 [ FFB60317CFDA978621A5F8C54450AF01, 37CF86500841AAA866E9F06D5953FDDCF8D05226E0E7FCCA8FE32D7BFC60C60B ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
18:10:52.0885 0x3f34 NdisCap - ok
18:10:52.0892 0x3f34 [ DB14DD4CE1D762ABDD2C69F86E359D18, 2815A03E2F04F6BFE8C70D550854DE8B5269B5B0074A9675E87704BD793F6BDA ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
18:10:52.0909 0x3f34 NdisImPlatform - ok
18:10:52.0916 0x3f34 [ 4FB78EEE9A0A57FFED051596EE75C0AD, 89020FE6821FAD1C00BCBB51793E4EE2A7780822850E7559E2488E74C26F27A6 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:10:52.0931 0x3f34 NdisTapi - ok
18:10:52.0937 0x3f34 [ 5F74158F98277E08CEA499AC7041A798, 517338614196FC5F0F70F6AC8C89590D093912D33F46D0D580CDFA6E8E8F919B ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
18:10:52.0955 0x3f34 Ndisuio - ok
18:10:52.0961 0x3f34 [ 44FB0EB6FD78309E8A6A767B91AF3374, DB4E3333A64CF4B6E3A1EACC14D44BE264ACC89773CDE1449D8752D9A3D2811F ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
18:10:52.0977 0x3f34 NdisVirtualBus - ok
18:10:52.0985 0x3f34 [ E85F8D502518D6A5C51F6A56461A7FCE, AAD454FAFC811E7E604894504CA92A3064A2C4DAA40221FCF22D0D096AD914E4 ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
18:10:53.0004 0x3f34 NdisWan - ok
18:10:53.0013 0x3f34 [ E85F8D502518D6A5C51F6A56461A7FCE, AAD454FAFC811E7E604894504CA92A3064A2C4DAA40221FCF22D0D096AD914E4 ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:10:53.0032 0x3f34 ndiswanlegacy - ok
18:10:53.0039 0x3f34 [ C91AE4E1A91B338F85D2F64667F0C6AA, FF3FB1764DC5B95B6238DE8BB7152B14FADE799B2D712499C7CA758C204E9071 ] NDKPing C:\WINDOWS\system32\drivers\NDKPing.sys
18:10:53.0054 0x3f34 NDKPing - ok
18:10:53.0063 0x3f34 [ 272BB37E2437E88920B5C0B19E9E280B, 2D3D744D7FD4A38E741DC2DFB0A964ECE5EE60C8DBCF1EC2666B7EB73F617C45 ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
18:10:53.0082 0x3f34 ndproxy - ok
18:10:53.0090 0x3f34 [ 340AC1BF4E5727DC58E16E9F0806B36F, 5BFB10B9BAECBCBC6C8E61FF3E9D82CB3F1779681268687AFB742B015C5F1740 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
18:10:53.0107 0x3f34 Ndu - ok
18:10:53.0116 0x3f34 [ 53FF0E34116C7835CB795C15341C2ECC, CE332489445F9DF1737AAAFDDD58610C5237C4510F09B8F76B5157A52272ED30 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
18:10:53.0135 0x3f34 NetAdapterCx - ok
18:10:53.0142 0x3f34 [ 42F0CF6F74257A58D8F1EA68EA7782B8, 7BF400D21BF8098CBC2B697FBE5E680DF22CC77379299F2F15B71DAEE4D04F7F ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
18:10:53.0156 0x3f34 NetBIOS - ok
18:10:53.0174 0x3f34 [ 729ED379D3A960CFBE02C7634651AC63, 734FD9F077F413CDC07F0218C75B24806BA1B82F7A3C32C16E45C48C1EBA51C9 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:10:53.0197 0x3f34 NetBT - ok
18:10:53.0204 0x3f34 [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:10:53.0218 0x3f34 Netlogon - ok
18:10:53.0227 0x3f34 [ 8B6A2782D99C02CB125F51BEEEC63D95, 3FDC65F7B9588BF95A607E3AC74FFEEBBC52181CB653911C3EC6FAC52DC67B07 ] Netman C:\WINDOWS\System32\netman.dll
18:10:53.0250 0x3f34 Netman - ok
18:10:53.0267 0x3f34 [ 029C64C4CB16EC74170006137A196B44, A2E91648A5E683664DD6AD3F3D3A3D3EED7ABC823E3916204E9FAF4022C4EFDA ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
18:10:53.0298 0x3f34 netprofm - ok
18:10:53.0310 0x3f34 [ 52C81BF18B4DE114AFAD3FB92EF626B6, D290D1840890E5CD9088852EF00951462A790C97E32C7BD0F04600F927F49E47 ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
18:10:53.0335 0x3f34 NetSetupSvc - ok
18:10:53.0346 0x3f34 [ A35D38A33A4DE8EA83FBD73524DAA0D2, 092705C17D057E86EA25B269819CCFFD21A2F72A8563CFBE2941A38559E13620 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:10:53.0363 0x3f34 NetTcpPortSharing - ok
18:10:53.0372 0x3f34 [ 9A623CA1E98A73B95F7C3F8C965C683B, 7D238029E620512F6B7D695735C371F60EE5EA2632D989766C12CD1D436EBA72 ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
18:10:53.0388 0x3f34 netvsc - ok
18:10:53.0411 0x3f34 [ 009CFEA73B021463EB8287C23D6812E6, 881B026ADF6C66FA01ADD65B1A8E56D914AB737B04633F085CA557634953C6A0 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
18:10:53.0444 0x3f34 NgcCtnrSvc - ok
18:10:53.0464 0x3f34 [ A3E88BA1F249E819AE625645552B93F5, CBB304348C61A9FDA4F7F2FD46CE6EDDC61898C44626E45A6B1F0C5D4147DEB7 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
18:10:53.0503 0x3f34 NgcSvc - ok
18:10:53.0517 0x3f34 [ 7BCF6AD02C76EAFDD3B774CDBDE0BB3A, 607DF222712B73D0EFAD4F36A3CA4D95ACC921121313B58D6A10EB3B820B64B0 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
18:10:53.0542 0x3f34 NlaSvc - ok
18:10:53.0549 0x3f34 [ 744DE5F3E878FA12739C0BD98A972153, D0179A8B31EB86B2C677C0AA3390F61510AE2F6CE48E42801F3B1352B4A291ED ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:10:53.0563 0x3f34 Npfs - ok
18:10:53.0569 0x3f34 [ 2F0A6D060CB7A32A96004A5A8A61E9FE, D450F549C380C9DA4663ADA1777F6687C7461D82DCB6C739FA708870B4118964 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
18:10:53.0587 0x3f34 npsvctrig - ok
18:10:53.0594 0x3f34 [ 7A92D9DB681E48655475F9D071E34950, BCE27B53E265DDC75B3372F26DC017669378C85C1B1CF8145D8A582A737BE25F ] nsi C:\WINDOWS\system32\nsisvc.dll
18:10:53.0612 0x3f34 nsi - ok
18:10:53.0618 0x3f34 [ 7B37EF7E59C204DF60105C70BBE0D27E, 20EFC058E1BA0DECC1E7001ADB5AAE299DE684B1114E1B66CEB5B78A746384DD ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
18:10:53.0635 0x3f34 nsiproxy - ok
18:10:53.0683 0x3f34 [ CA25673ED59E3B133B6EC7C043296FEB, 225C7D44F0AC5E477C88C2EF0E418890A434884944BB3CC65606CD177CCAE634 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:10:53.0733 0x3f34 Ntfs - ok
18:10:53.0741 0x3f34 [ 7DE33B6BCD2113B39090D005BA5CFE9E, 1E84F2E321BB303320F6A40CC1EF22328BC162C9E433E4559F7D42160058EA78 ] Null C:\WINDOWS\system32\drivers\Null.sys
18:10:53.0757 0x3f34 Null - ok
18:10:53.0766 0x3f34 [ F7E5F5D6F7A645A263F71D53F4B0EFD1, 6ED8BA49AA366F8DAF2186E2418635E6C85B80E40F3BA1455087955466447DFE ] nvdimm C:\WINDOWS\System32\drivers\nvdimm.sys
18:10:53.0780 0x3f34 nvdimm - ok
18:10:53.0793 0x3f34 [ F1D1AFD3CB0C0182143994A6E96968DD, A8FFD29D9C3778409488B772334D945B2051B2041DB5A8E2B552B0B737779FC5 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
18:10:53.0808 0x3f34 NVHDA - ok
18:10:53.0823 0x3f34 nvlddmkm - ok
18:10:53.0830 0x3f34 [ 34185B2FFC507E1C93F1A90CC7F74ACD, 1AA777B0963100512399D12FCECA596A06F59BA17ED8C3B8148243BAA9F8CF76 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
18:10:53.0845 0x3f34 nvraid - ok
18:10:53.0853 0x3f34 [ 516681B5A77104029F18468E5428678F, D864C5AEBBF819D31842D1C1825543558C4CC07711A71B01AB3C7B3480FB6782 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
18:10:53.0868 0x3f34 nvstor - ok
18:10:53.0884 0x3f34 [ 8FF3F6AC8ACB907F704654F1FF436999, 7D8BCBE297A8B251739D18552AEC697990EF7253E6A8F292D9592D578173CA48 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
18:10:53.0905 0x3f34 NvTelemetryContainer - ok
18:10:53.0917 0x3f34 [ 464C685801474077A3BA79529E6459E1, 48E3C12D68E4E4AB7B622F742BBFB8564482E33C20532AF4004D0298BA270691 ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
18:10:53.0938 0x3f34 OneSyncSvc - ok
18:10:53.0983 0x3f34 [ 7392ACC6718F7C86DF5BE763D78EC3D7, 04BE4BDC183413EF41919EE817279A2D6A6CE6D31BBB513F4986E37086EDF184 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
18:10:54.0030 0x3f34 Origin Client Service - ok
18:10:54.0086 0x3f34 [ C23D43EA654AC79D134EE935CE49A208, DD10A7EE47C02AA3B1240FAA7D1C1F762C267B746712C0F902BD8B9CE5F3EB8D ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
18:10:54.0150 0x3f34 Origin Web Helper Service - ok
18:10:54.0161 0x3f34 [ E0406C2951A24073AB920705A9CC9D59, D4865B7B9812CEAB1D18F7FFE3C6AAA90538C91E4A6B61199F84B9A5BE5A6D3D ] osrss C:\WINDOWS\system32\osrss.dll
18:10:54.0178 0x3f34 osrss - ok
18:10:54.0189 0x3f34 [ E71271E27F8F1AFC93606866C205AC0F, 657745689991EE70BEAEE684986099D0014DB166CEC3232E837396DEB01A2717 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
18:10:54.0212 0x3f34 p2pimsvc - ok
18:10:54.0224 0x3f34 [ 63971F9592E9264CDD944E120CBAAF8A, D582C28E9F43D4ADEE2BB7DA69A889136E76B663CE06FD3051C017D47BF7604C ] p2psvc C:\WINDOWS\system32\p2psvc.dll
18:10:54.0248 0x3f34 p2psvc - ok
18:10:54.0256 0x3f34 [ AC682BC99BECA3A6C8C71234A9BC4225, 1FB6177AD97EDDA35D8F30ACE2FE2996A07DA62999A788146A4FAB70A6E25CBE ] Parport C:\WINDOWS\System32\drivers\parport.sys
18:10:54.0273 0x3f34 Parport - ok
18:10:54.0281 0x3f34 [ D64F3982FCCC6842507D1A5FED60618B, 03F6E12F6D59651076F89FA356E84A9782DC242C1861A72BBCA0DAB519DF5F3D ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
18:10:54.0296 0x3f34 partmgr - ok
18:10:54.0311 0x3f34 [ A91206029B729C33ABFE6514F8B62915, 326A975BB1E385529FB43267195B98324BB202DE6C7A5FDBAF7F14C724857A53 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
18:10:54.0334 0x3f34 PcaSvc - ok
18:10:54.0346 0x3f34 [ 0F1A842BBEBFDE786A0148A8535CAE73, FE205F4F84D30ECB1538BD5384D96D0E37C49F03E713F4E624DBDAD0E76DE635 ] pci C:\WINDOWS\system32\drivers\pci.sys
18:10:54.0365 0x3f34 pci - ok
18:10:54.0374 0x3f34 [ A93A68775EA57ACCBC854FCE6C4C7147, DCACA738E8E0077F59A0930051C70BAA1AD72C4E636E09B8175DCCA0B9C448F9 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
18:10:54.0390 0x3f34 pciide - ok
18:10:54.0399 0x3f34 [ C98DC1ACC9D5C4754BE83E28233369B9, 8FF4F1001D71E531FB8F7FB7E5F8CC485FE5DE9FF580B3E1BD6764D9ABB377A5 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
18:10:54.0416 0x3f34 pcmcia - ok
18:10:54.0424 0x3f34 [ 9B7C96AB92C3EA3D6D7DE2291FDC0893, A3682D50AD47BF713B036E01A103BAD0DF668D87B81B85CA3AA3E0B5588E487B ] pcw C:\WINDOWS\system32\drivers\pcw.sys
18:10:54.0430 0x3f34 pcw - ok
18:10:54.0447 0x3f34 [ 87B12300DE1D5D0C4CAFFE2F3D16EFE7, 92C1BDA89A0C83915665E0F6DC3CB04035C5D9D396AB2A3C1B75098D873037FE ] pdc C:\WINDOWS\system32\drivers\pdc.sys
18:10:54.0463 0x3f34 pdc - ok
18:10:54.0482 0x3f34 [ 095D67AD5263822A20B1C11BE21E18BC, BD85B637CC5527AFE28B036FF14C07C0B6A38BBA58FC00937B286823BE20A02F ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
18:10:54.0513 0x3f34 PEAUTH - ok
18:10:54.0548 0x3f34 [ DD862D97C38953177C798BEC6707512B, A897D851EB0F0A38D09015F33666E041D228DA919CF4F4FB07CB6618F80D3527 ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
18:10:54.0602 0x3f34 PeerDistSvc - ok
18:10:54.0612 0x3f34 [ 3EDF20F5B059DD88ED7DBAF40CF31CA7, 4460E7CEF33CABD01263AA975E512A0622B305B9B74DDACC90EDC8CCABAAD745 ] perceptionsimulation C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe
18:10:54.0629 0x3f34 perceptionsimulation - ok
18:10:54.0636 0x3f34 [ 5AAC1089AC330F737B445158094FD4B0, 51292603648329B34BC747E7815407DA0B0A89E7D837A4D75A3B6F31EAD61AE8 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
18:10:54.0650 0x3f34 percsas2i - ok
18:10:54.0657 0x3f34 [ 12E63DAE1AEFAF7C7C3A533184B14C11, 488BDFB0D73B3E77D10FFD4A403A98771FA2029CCE1BB4950E77DA264E422FA0 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
18:10:54.0670 0x3f34 percsas3i - ok
18:10:54.0696 0x3f34 [ 0EC027E95D4B022102940FA3CD930E46, A802DE40D4F9FEA20516D4D8BA65942F48E47546DEB116C75B7A9EDB1F2EAAC6 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
18:10:54.0713 0x3f34 PerfHost - ok
18:10:54.0746 0x3f34 [ 0CB5CA2CF0539502E5019BED31A4DD3D, B73118184BC8ED4664DB045907BABA893F2B81627C66DAE3E65185A6FE08B030 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
18:10:54.0782 0x3f34 PhoneSvc - ok
18:10:54.0792 0x3f34 [ D4AE23C2024C079A8B3F3A11229B19D2, D94A6399B8508EF9DF09FB9E8FD237958CA4A6D32B43E25E6034003704561520 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
18:10:54.0812 0x3f34 PimIndexMaintenanceSvc - ok
18:10:54.0823 0x3f34 [ 0E3A1170D5698CACE6B6A4E72B04A5D0, 888697CA316A710C966025961CF5CB5E44FF1E23C0E8DD3E3055EB7278C5E514 ] PktMon C:\WINDOWS\system32\drivers\PktMon.sys
18:10:54.0837 0x3f34 PktMon - ok
18:10:54.0866 0x3f34 [ 8059D6CF7FD1D34B61D1880A20F58B1C, 716640B11B9192BD58355E2076742199B314CA222FF932919D1548C31710ACDF ] pla C:\WINDOWS\system32\pla.dll
18:10:54.0909 0x3f34 pla - ok
18:10:54.0918 0x3f34 [ C28BA33FE1373DE12B5FC1873FFAE4BE, 54D6EC2E21DFBA341EFE237ABDB08F00EA8A2479124750C3719375FC628459D8 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
18:10:54.0939 0x3f34 PlugPlay - ok
18:10:54.0949 0x3f34 [ 26C53135EE0B51441B17AE473962303F, 8DFA17C92F1DF6F49B28E828EFD7444CA7F366F666BB7B3EEC46A3BD678E7642 ] pmem C:\WINDOWS\System32\drivers\pmem.sys
18:10:54.0963 0x3f34 pmem - ok
18:10:54.0970 0x3f34 [ 4689DC2AEF21B8764CC4F4AD6712210A, 9D2747224CA01271EA7665AF3636C5F9507EF5C70033D5EC8C923D1AC5C8A31B ] PNPMEM C:\WINDOWS\System32\drivers\pnpmem.sys
18:10:54.0985 0x3f34 PNPMEM - ok
18:10:54.0991 0x3f34 [ 65272396F9B8D1F01E020639E1AC5DC3, 852FEA677D3D500BC208BE0C6E759EC668AD9DD6D694119ABE736DEB3D136F32 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
18:10:55.0008 0x3f34 PNRPAutoReg - ok
18:10:55.0020 0x3f34 [ E71271E27F8F1AFC93606866C205AC0F, 657745689991EE70BEAEE684986099D0014DB166CEC3232E837396DEB01A2717 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
18:10:55.0042 0x3f34 PNRPsvc - ok
18:10:55.0055 0x3f34 [ 4FC9AC0B06074E1669FBF126C593A153, ABB0DEF921BCB84DE1BEFA6EACDFD4E0081F141E7F542CB3983593B97CE61371 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
18:10:55.0080 0x3f34 PolicyAgent - ok
18:10:55.0089 0x3f34 [ 3DC43052FC990C7A0F3697F6E9142273, 058C5FCBA09D603C48BEC6F2F9982D1D0C490915A79D304B90718A3823E69192 ] portcfg C:\WINDOWS\System32\drivers\portcfg.sys
18:10:55.0106 0x3f34 portcfg - ok
18:10:55.0119 0x3f34 [ 5F2DF79A55B4AA9291E323FE25A8A885, 379B264D67B87DAB6A55C5BEA9FAC9B065C7720E19D5DFBF6A7A9B9D0F247466 ] Power C:\WINDOWS\system32\umpo.dll
18:10:55.0139 0x3f34 Power - ok
18:10:55.0146 0x3f34 [ 627C7573539A6CD64E5C34D4F630A3B1, B1837DC01C4F5ECBC65F0D5CC4331CB30E620789B7CF00B77A50FA3F55481BDB ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
18:10:55.0162 0x3f34 PptpMiniport - ok
18:10:55.0218 0x3f34 [ 6173803E45D401CB58BBD1BD34DFDA59, EF086494C47CF19CA8586C54AD5FE87F2CE2BD3D4D767EFA917110BEFDBFCF7A ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
18:10:55.0296 0x3f34 PrintNotify - ok
18:10:55.0309 0x3f34 [ 9CCFB9CA2C3CE919D1E47321D6188F6E, 0C9B1CD40B205704114F4160CA5AD91F10D3E8D15CF59A090EFD9F1617303DE6 ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
18:10:55.0329 0x3f34 PrintWorkflowUserSvc - ok
18:10:55.0344 0x3f34 [ CF05F2857B73DF9D87BAE8FA390D333C, 8C915DEA0877F61B168A0AA009D2BFF663468C97B9BF86BB03902BB203FA9E82 ] Processor C:\WINDOWS\System32\drivers\processr.sys
18:10:55.0359 0x3f34 Processor - ok
18:10:55.0372 0x3f34 [ 8FB06155ECE8D2793C7ACFF831114D94, B199092DB901B9FF7508FC600BB76BBEF419C4E0801A9C208EAA88D6E19D2AE3 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
18:10:55.0398 0x3f34 ProfSvc - ok
18:10:55.0408 0x3f34 [ C0EF1DA7CB74EB2E0B87686AB7AA7454, 2053809FAD23211A336F30F306B5C11D93F6DE5E7A38CE021CD535E5E5EDE21D ] Psched C:\WINDOWS\system32\drivers\pacer.sys
18:10:55.0422 0x3f34 Psched - ok
18:10:55.0432 0x3f34 [ 34F064C964229611B694B5D01AAF4152, E15E4D37A07D3BC247D47FC429401A5FD97A2E1744ABE6BDBE8CE2BEECF8EE71 ] PushToInstall C:\WINDOWS\system32\PushToInstall.dll
18:10:55.0453 0x3f34 PushToInstall - ok
18:10:55.0463 0x3f34 [ E862021CE0B9DA301969D8843A6F6AD8, 03772F4AACB9F7F9D65E53A63F1247B36A3863444AFA28578B430445FFABF082 ] QWAVE C:\WINDOWS\system32\qwave.dll
18:10:55.0487 0x3f34 QWAVE - ok
18:10:55.0494 0x3f34 [ 00664026ACC782597B77AAAB5B65E715, F4B18D321BBAD9DF4EC7C44742FB65D09C70EE7AD26A30E26EE583305B643F82 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
18:10:55.0510 0x3f34 QWAVEdrv - ok
18:10:55.0517 0x3f34 [ E000172D517986EB493DBB0C42F76DCA, CE5D7D84972CA167F71F40502FE30C3AF6AB3F484D5582DAB0C2DFC361770EBE ] Ramdisk C:\WINDOWS\system32\DRIVERS\ramdisk.sys
18:10:55.0531 0x3f34 Ramdisk - ok
18:10:55.0537 0x3f34 [ 84E05BABA2B16499881D9E8BBC0779AC, 548E5BE36F836F8B955F186813CF512D0AF5B4FF7BC4D842D881A79520BE4B26 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:10:55.0553 0x3f34 RasAcd - ok
|
|
28.04.2020, 17:28
| #4 |
| | Wlan Jammer - NachwirkungenCode:
ATTFilter 18:10:55.0561 0x3f34 [ 4EE4536507CFFE3463D7B0BD705EFB09, 34491CA5A7C26859D8AFDFD9BC666F1014F75BCAB21CCF2856E4784640A1AC3A ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
18:10:55.0582 0x3f34 RasAgileVpn - ok
18:10:55.0591 0x3f34 [ F9804C84CEA2184B1E61E61E897B369E, E266464AD299D738BA14BD38A0EAB1B67C9DE8858DB3A1DA0186385754757886 ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:10:55.0610 0x3f34 RasAuto - ok
18:10:55.0618 0x3f34 [ 555E33527CC3C34620E49F5F86C8F7B0, 3E5EF22BA5CD091C55D71D66FA803C7990846887A1295A063A62F5088238538E ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
18:10:55.0635 0x3f34 Rasl2tp - ok
18:10:55.0654 0x3f34 [ 8ED08395BF4E3FA8B9129B18E99923F6, A6F05E7CBF5220B83C1113B1C3C75C0D2DFA053414308525BD229DD86C3045E0 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:10:55.0688 0x3f34 RasMan - ok
18:10:55.0696 0x3f34 [ A5FBC5FD8026AE164ECAD4882B24486E, 4B757832CDAC4C269E618013146E5AA94371CCDCF1ED7426DBC2724458DC08FD ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:10:55.0712 0x3f34 RasPppoe - ok
18:10:55.0722 0x3f34 [ FE1C387B8C3BC89D907D3BB06F83315F, F5F219A3D68914571DCC514AD418F8681E03D120090E2ED39ED4557D6BD1F0AF ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
18:10:55.0738 0x3f34 RasSstp - ok
18:10:55.0751 0x3f34 [ 000642148F1D914FC99AE7DBE5352722, EE81F2A9595751E8E0AF9BE758547668A8F0F1EB62011D9ABE5EE9CE96ABE94F ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:10:55.0768 0x3f34 rdbss - ok
18:10:55.0779 0x3f34 [ D02EA52890750A5980EE970586942695, 4E321C27D0DC476F27A3B0720BC1188F6E549D1FA7B7E77E6BDE5F869E983A08 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
18:10:55.0796 0x3f34 rdpbus - ok
18:10:55.0805 0x3f34 [ 51D49770FD9D2E1956833C1F4D992893, E8ADEE85A597786C6110A71B868C882C6BE4FA94904FAE6A6F779A24450F373B ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
18:10:55.0824 0x3f34 RDPDR - ok
18:10:55.0840 0x3f34 [ B276A5816508DF357F58CDC514E6EAD8, 73BC81E49B0832D82A42601CC2D46EBB817489DA76C618D0952DE8521219E740 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
18:10:55.0852 0x3f34 RdpVideoMiniport - ok
18:10:55.0865 0x3f34 [ CD3A6A87C682363E227F065B8E59D94C, F7174E6F5A7ECBEEBC68A79C500890C12F826A70594C46C7817A49D992C6F030 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
18:10:55.0881 0x3f34 rdyboost - ok
18:10:55.0916 0x3f34 [ A66B18D587B6DBD58B59290A9771F561, 6094EF05F100BDD5827A58449433FD912DDD17FB0C30BE76C4D75CA5BE6C6EF3 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
18:10:55.0954 0x3f34 ReFS - ok
18:10:55.0978 0x3f34 [ EB0BB6BAD926A1024D1025641C03FF9D, 57F4DF6141D5597A90FA7601C00904F6B4DF2E9067FD3B00B9D70F3CC40B1233 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
18:10:56.0006 0x3f34 ReFSv1 - ok
18:10:56.0021 0x3f34 [ 6FFED799B83ACCDA874834531E402D92, 75DD48E3209D65C6478DB6F7B0111CD4C3B6CC5AFB9FD415933826C2A101D57D ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:10:56.0046 0x3f34 RemoteAccess - ok
18:10:56.0078 0x3f34 [ 15D9B88C7258263375BA462B96E61860, 3209521819139C2DC44B45E31907B5249CC780A3B11F7029E8DE9E94C29B8296 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
18:10:56.0120 0x3f34 RemoteRegistry - ok
18:10:56.0137 0x3f34 [ 51304725CA84C6D40082A6FB0C29AFE9, BF6EEC43E5C2493BA0E67D8B4B43154D82F32916E378484B9D0CEF1DF1681458 ] RetailDemo C:\WINDOWS\system32\RDXService.dll
18:10:56.0167 0x3f34 RetailDemo - ok
18:10:56.0182 0x3f34 [ FF46B8795B06BAB591F082FBEF17DC91, 080098FED6F70BF410A5833D1AB991DEBF7D8549D49BA0958F0403A6A24D71E7 ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
18:10:56.0201 0x3f34 RFCOMM - ok
18:10:56.0209 0x3f34 [ E3DE6D17049E592A710284B4C811E7BF, 3290298073AE13C3AEB166E77B1B2F570607571385C585D52FC392968659181E ] rhproxy C:\WINDOWS\System32\drivers\rhproxy.sys
18:10:56.0227 0x3f34 rhproxy - ok
18:10:56.0236 0x3f34 [ 1DE7A310E67B46A010AF318A7DC67954, ECA4546E4E47A4239FF93F489C295E279E62A8A886812549C42AF2C930C2C3D2 ] RmSvc C:\WINDOWS\System32\RMapi.dll
18:10:56.0255 0x3f34 RmSvc - ok
18:10:56.0286 0x3f34 [ CC465ECBC1700B2D91E152ED9165994A, F8854BAA9B63F34C7CE06E2081DF5597D1917E56D7210DF10041F4D1C546C1EE ] RosettaStoneDaemon C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
18:10:56.0321 0x3f34 RosettaStoneDaemon - ok
18:10:56.0330 0x3f34 [ 9F8C24A7E07A8363D069F4D49993994C, 20042FA6280BC42FA10F585036E1945545EE1B99E141B469114686C065CFFD73 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
18:10:56.0349 0x3f34 RpcEptMapper - ok
18:10:56.0355 0x3f34 [ A089120B99842F0A3CE8AE586A31BD56, CDFAA0429D8EF28E7011CFEB00C8CB08F63A4AF53A1FA6D41D23F86D85D80CA5 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:10:56.0372 0x3f34 RpcLocator - ok
18:10:56.0395 0x3f34 [ DC3F4E5A6ACEC3EC10FD082E8C40DEFB, 87EF177448A55B85C5DF4399309124348EE1AA96643CD86C6FE91D389D2CEA33 ] RpcSs C:\WINDOWS\system32\rpcss.dll
18:10:56.0436 0x3f34 RpcSs - ok
18:10:56.0445 0x3f34 [ CCF4A5CEC8FA38035007AB19EB0EBE2E, 05C7701A1A2FCEDCD0F5EC6EF069F73C48D920448EFB010E5E7FBEEA3438F014 ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
18:10:56.0463 0x3f34 rspndr - ok
18:10:56.0476 0x3f34 [ 2D8E4F38B36C334D0A32A7324832501D, 01AA278B07B58DC46C84BD0B1B5C8E9EE4E62EA0BF7A695862444AF32E87F1FD ] RTCore64 C:\Program Files (x86)\MSI Afterburner\RTCore64.sys
18:10:56.0489 0x3f34 RTCore64 - ok
18:10:56.0496 0x3f34 [ 55FFB814690A7D8A9E592B3DE1E0F6B6, 860F42D44D8C811D657BAF404939AE3451D6E766BAFFD6FD4912E313683EA316 ] rzendpt C:\WINDOWS\System32\drivers\rzendpt.sys
18:10:56.0508 0x3f34 rzendpt - ok
18:10:56.0517 0x3f34 [ 421497E425AFB40502013F362E4FA230, 20E2372BEE4BFB21138CA574C9806EC399DDA9D3439F3C391E34ABB2E518106D ] rzudd C:\WINDOWS\System32\drivers\rzudd.sys
18:10:56.0531 0x3f34 rzudd - ok
18:10:56.0538 0x3f34 [ 40CD5DB1671197EFBD5C3AB16B9B037C, A1DB4872DB0AF87E4E1F8506483200838E62B0FCE17E77ED9DEA47DE1C230C84 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
18:10:56.0550 0x3f34 s3cap - ok
18:10:56.0557 0x3f34 [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] SamSs C:\WINDOWS\system32\lsass.exe
18:10:56.0572 0x3f34 SamSs - ok
18:10:56.0581 0x3f34 [ C111AC7C9698EAC8DAEA3425DAD68F42, 2B1C2FBD95FF7C18B13114A573DC47991F1323C8280C006B27013717BA731788 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
18:10:56.0595 0x3f34 sbp2port - ok
18:10:56.0606 0x3f34 [ 6F1E358F693B1D389D7C12B271157D69, 4E8936B8BFBFFF1B5D27C67291DDF260D0F148676A86C3848B1F4A89DB06458B ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
18:10:56.0628 0x3f34 SCardSvr - ok
18:10:56.0638 0x3f34 [ 057C49628A9E9945CA5676F52464D931, 2B7461227992F2384D75416092D9FAD2A1AD37BACB5CBC2FC0B98FD3C864E61A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
18:10:56.0658 0x3f34 ScDeviceEnum - ok
18:10:56.0665 0x3f34 [ E0891042C6FBF9FB1ED5133D745AD647, 3D7C64FA1C533D375B221FDE1929D53656875305E16F2FA6BC1E4F0EA6107426 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
18:10:56.0681 0x3f34 scfilter - ok
18:10:56.0699 0x3f34 [ E2A91295F3B3419961F2C3AAE5BE8313, E9A694C5E2CD8668F78CE55FC0BE0A765A8F0D2837245CE2CB0D17D301B13FB1 ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:10:56.0731 0x3f34 Schedule - ok
18:10:56.0741 0x3f34 [ 1FF0B5E9E6C463A1B8F627F4BB2AFB95, 74B88EC879B9619B199EE31E6A0B403FE1F6FD3CC1A9E84F3378F7DACC5E42D7 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
18:10:56.0756 0x3f34 scmbus - ok
18:10:56.0766 0x3f34 [ F738B75E685601069A0A3F8C30CF4F47, CA063889D35F2C1CA38BA3E057EF1C1261E6D710A95527DF3523C0A26F97ACC4 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
18:10:56.0786 0x3f34 SCPolicySvc - ok
18:10:56.0797 0x3f34 [ 00E6D8D42B3B68557CF5161A544AA7C2, 50284F76D3920CC4FBB37F2CB2B0886742644408E6033DB1F07F42C6D61130B2 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
18:10:56.0814 0x3f34 sdbus - ok
18:10:56.0821 0x3f34 [ 801D9B80964AC7240F82C452709E28F8, 061103B80623B2A406F14AC3635A1B73D70F2523A96765FB846531C2112B2999 ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
18:10:56.0835 0x3f34 SDFRd - ok
18:10:56.0844 0x3f34 [ 24407C609A56A7720111E7A4060D4516, 922874B120BB021F550E64F4D3BDBEF4177178EED6AD7C7D64240682564C88C8 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
18:10:56.0863 0x3f34 SDRSVC - ok
18:10:56.0872 0x3f34 [ 14B11BF6B3B0D4D54C4F649DB701A597, CDC8546F068A87C434B4674DE0C031D6B22B0D9E9926C5D8852AAAB20010E77B ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
18:10:56.0885 0x3f34 sdstor - ok
18:10:56.0893 0x3f34 [ 512FD6039A256324A745DF4FA01D5D02, 5EDDB6B714C2D35085D09BFDA3FED3365385B949DD62C6A405EC161C9F9AC2EA ] seclogon C:\WINDOWS\system32\seclogon.dll
18:10:56.0911 0x3f34 seclogon - ok
18:10:56.0919 0x3f34 [ CAD17F42DB081F605C0B22EF57238FE1, 22B655C7C2AA69EB9E6B472A69128479345BFF2C0AC30F079969D16DA2322DB1 ] secnvme C:\WINDOWS\system32\drivers\secnvme.sys
18:10:56.0934 0x3f34 secnvme - ok
18:10:56.0957 0x3f34 [ 0D06BE475B3C82CEC609D9E9F0FBD502, 42B9B2200AFDCDD1ACAE40FD7C273309D2B2F0C17CD26CB03A9DCA2B65538D33 ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
18:10:56.0984 0x3f34 SecurityHealthService - ok
18:10:57.0011 0x3f34 [ 4F88B110B25531EC1CC84D621B2C74EC, 10D9A19C15FD98216EABA9AB1468756CCD3E17C67146F77F5D262BD1657D79E8 ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
18:10:57.0052 0x3f34 SEMgrSvc - ok
18:10:57.0061 0x3f34 [ 84F8DAF82B643F63D5D6EF93F8F5BB95, B946740A87C875713829F4ED88C44B2D8ADF7132683CDF8E89B70D16B77B60B8 ] SENS C:\WINDOWS\System32\sens.dll
18:10:57.0080 0x3f34 SENS - ok
18:10:57.0086 0x3f34 Sense - ok
18:10:57.0112 0x3f34 [ EA7F202EE760B3F949191FDF86E553EA, B7D7EFF9F543B5DC37D69EC4665C031C6FCC2135E527301DEAC0A16766EE60E1 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
18:10:57.0152 0x3f34 SensorDataService - ok
18:10:57.0167 0x3f34 [ D83530B2386434C004C0E4E41DD61843, 2D66E1AA30E1CFF0471E515817B350D1A637D88934790295D2EDE03A9443F2C0 ] SensorService C:\WINDOWS\system32\SensorService.dll
18:10:57.0193 0x3f34 SensorService - ok
18:10:57.0202 0x3f34 [ 706087D7D9D2A5347F6B327B353E9E08, 9962FF6718615913C2C42E3C3C26C082E8D1E7FDAC7C7454E4CDCB14AA6948C8 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
18:10:57.0222 0x3f34 SensrSvc - ok
18:10:57.0231 0x3f34 [ E1F507DB004880A5903EF7522912331B, 6A4A5E471FCB51D180A616ED7655F9DF428BF4F83BD822B60CBCF8E156755284 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
18:10:57.0245 0x3f34 SerCx - ok
18:10:57.0254 0x3f34 [ F43CB691DE5A8595B1558EC70E11F238, BE978529263B17EB95923326580507D964A08122FAF17F4C880AB36C4AC7DCEE ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
18:10:57.0268 0x3f34 SerCx2 - ok
18:10:57.0275 0x3f34 [ 570C25D873C1BB07CEC1D244F540FBD7, B130072C4D67CECAE0530AE3BCDA3C2CE6E43915534D9DA07E9403E0E5932F71 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
18:10:57.0291 0x3f34 Serenum - ok
18:10:57.0299 0x3f34 [ 75643A5BE2FB697CACB327C98571C1E0, 2652E67FAA7D514056D81D29FB8D8CEE629002DCF32FEE6A49183514654D2292 ] Serial C:\WINDOWS\System32\drivers\serial.sys
18:10:57.0316 0x3f34 Serial - ok
18:10:57.0323 0x3f34 [ 408A7AF941752F2CF6113A5028F10479, 17AF544225C5A7560FBB962FF1515844CB1A7A5287278D7EB67B382EA03ACF7E ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
18:10:57.0339 0x3f34 sermouse - ok
18:10:57.0368 0x3f34 [ 0C1E0D0CD0B4683A27E27BC15A50921B, 55AD04803406E8A120C623E21E040AD7C7E1DBEAD9370887111FEEADFC78F0F4 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
18:10:57.0394 0x3f34 SessionEnv - ok
18:10:57.0402 0x3f34 [ B6ED1B9FF9EE3406AFE6937EE50626A6, 06895C22BD93ED1F68E7F029227FCA4F550E44936682E5BADB58983E78441D6E ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
18:10:57.0417 0x3f34 sfloppy - ok
18:10:57.0425 0x3f34 [ C0F588AB65EE3869C38C1BD10A0AEF85, 8395188C4194A65B1106C0A9B1287DEB60513B1D5443DE6E55AB58C71EE49A1E ] SgrmAgent C:\WINDOWS\system32\drivers\SgrmAgent.sys
18:10:57.0439 0x3f34 SgrmAgent - ok
18:10:57.0451 0x3f34 [ C51AA0BB954EA45E85572E6CC29BA6F4, 2DF8A183B3DCA4DE156433280FD69B49E7B20B474211D7125FBE256CA25D769C ] SgrmBroker C:\WINDOWS\system32\SgrmBroker.exe
18:10:57.0469 0x3f34 SgrmBroker - ok
18:10:57.0486 0x3f34 [ FF5D569D4EEB6ABE49C66EE778EB70FA, 2CA762967321DD026E09A19CC4B7E40A721FC846A193EBAB16623F1B957D0FF6 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:10:57.0513 0x3f34 SharedAccess - ok
18:10:57.0527 0x3f34 [ 9BC0F13DAD4AF8C6C4EEDBBE17025F1F, 5B0813BCDD63AC9AB3326906C7A504414612EBA8B149722252FB55F44B64F2CD ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
18:10:57.0552 0x3f34 SharedRealitySvc - ok
18:10:57.0564 0x3f34 [ 66E6C9C7AEB812EF3F7ED69143E8E287, 4C85FF6D3281EBD05DA823B6FD272EFA53C3AFD2C41A86E4684BB43E4FCF003A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:10:57.0586 0x3f34 ShellHWDetection - ok
18:10:57.0597 0x3f34 [ B2E022EFC0BB678D37D4595BEC535BF5, 32F2DFBCA501D88BEC2103F3B181F04B45D8823B613684741AD5FE57C12B8295 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
18:10:57.0620 0x3f34 shpamsvc - ok
18:10:57.0628 0x3f34 [ E1FCDB9B82A224C4EB01F7A0C54DF557, 50F152B1469761C5065A7C4B2E3AB5FB2DC4D96F78B41B58CAC697E9A54C70C5 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
18:10:57.0641 0x3f34 SiSRaid2 - ok
18:10:57.0649 0x3f34 [ 0588849E68C841A706081A294E51E759, DCAD7CF4326DB5E307078CE819D704506E1205685AA8E9A9C14C24F8C0689FFA ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
18:10:57.0663 0x3f34 SiSRaid4 - ok
18:10:57.0679 0x3f34 [ 7A160562207FA446643277E75C6D697B, B6A34380356430BBEB4D3B23D0075E0E22DE6652CEFAB77C62BC8FF6981E7DE0 ] SmartSAMD C:\WINDOWS\system32\drivers\SmartSAMD.sys
18:10:57.0696 0x3f34 SmartSAMD - ok
18:10:57.0706 0x3f34 [ B15241350252D74581FE956F358478C5, 540802AF873C4B325D8E8E9CFC5026B7BC0CB44F96DBEF1886221C47F0EAE4D1 ] smbdirect C:\WINDOWS\system32\DRIVERS\smbdirect.sys
18:10:57.0726 0x3f34 smbdirect - ok
18:10:57.0733 0x3f34 [ 7EC5BE35AFE354E89378300C2455FE69, 2D6355E532C00DC0DE11C52013FE971722CCA26F1ADF691D6B919C042A8DDF3B ] smphost C:\WINDOWS\System32\smphost.dll
18:10:57.0748 0x3f34 smphost - ok
18:10:57.0764 0x3f34 [ 0D5698724FA6A269B9379C41FE2C1333, BC8120380CE3A1603AF2D67CDA9040A11F12EC0E03D2A2AB6F28E8847D679A90 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
18:10:57.0792 0x3f34 SmsRouter - ok
18:10:57.0812 0x3f34 [ 78172782B1E1E26933D67A9DA912158C, 354CFFF20D10A00A1DEFCD1B6B225C5B258D98D8CD94FDD905678DF8A62EDE34 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
18:10:57.0831 0x3f34 SNMPTRAP - ok
18:10:57.0847 0x3f34 [ E2BA844230F364548420EDDF4C82E33F, 47F41937E088F500C4CAEF71F64EF19F7AF746593A7D678E579639935788BFEB ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
18:10:57.0871 0x3f34 spaceport - ok
18:10:57.0880 0x3f34 [ B0FC1C59BC63170BE57D66837FB6BEED, 58C979A655FA6EAD84DA6A0D606A917903C71A59D0D8CD16F2C7282CC76D5A2E ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
18:10:57.0893 0x3f34 SpatialGraphFilter - ok
18:10:57.0901 0x3f34 [ D6E649E8482AA227B8F985116D115A9A, ADAD215D0F3A6FE046000FF9E7E7BDD6288438A8D6E7EEEF980205B73F32A990 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
18:10:57.0914 0x3f34 SpbCx - ok
18:10:57.0935 0x3f34 [ 7F3921BA41FB025FD9285D795419B854, 000D624C339F3ECF346B9266702954AAA5EB038F68242CD5F8AB7ECF1090F032 ] spectrum C:\WINDOWS\system32\spectrum.exe
18:10:57.0969 0x3f34 spectrum - ok
18:10:57.0995 0x3f34 [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan C:\WINDOWS\SysWOW64\speedfan.sys
18:10:58.0012 0x3f34 speedfan - ok
18:10:58.0032 0x3f34 [ 217A5227E768CC42CF52B2902C7EFA8C, 13B3E4725F07A2371B7B45BB3E53ED14438ABC38CED045D50BFF3DC840680C59 ] Spooler C:\WINDOWS\System32\spoolsv.exe
18:10:58.0063 0x3f34 Spooler - ok
18:10:58.0132 0x3f34 [ 3909CC9A7F1EBA439DFDE7795BDD900A, 099ABB1A129B272442667E1CB1A52D294FD5FDBA070C8E7A6D140C7242451409 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
18:10:58.0207 0x3f34 sppsvc - ok
18:10:58.0230 0x3f34 [ 96A82A83C435C79CD290C4AFE89F7ADB, 79212192FA3CF7C066C4EAE63B1D15178827F3E7829C0CDF27EAF9459647BA49 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
18:10:58.0259 0x3f34 srv2 - ok
18:10:58.0271 0x3f34 [ 9377D1D673BD59D4D77B5CAC8C5AA96D, F7C5389EB70534D65F02CBA85F97547024305DE8ABBC93D7D325A7FBC0D12F95 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
18:10:58.0291 0x3f34 srvnet - ok
18:10:58.0301 0x3f34 [ EC6EB8E7946753A3F71B92D06A52A36F, DD4A6A6AF19B6F11D96EE4DFE6C1BDD5A52A782D8915CC72D749554D37FEA823 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:10:58.0322 0x3f34 SSDPSRV - ok
18:10:58.0330 0x3f34 [ 26D973D6D9A0D133DFDA7D8C1ADC04B7, AD40E6D0F77C0E579FB87C5106BF6DE3D1A9F30EE2FBF8C9C011F377FA05F173 ] SSGDIO C:\WINDOWS\SysWOW64\DRIVERS\ssgdio64.sys
18:10:58.0340 0x3f34 SSGDIO - ok
18:10:58.0352 0x3f34 [ 9FFECD197D09FF33B00D5E5B78A48146, 79C03E83B42E3C0402680B47A2493C3C506E2D212062859BD7C4EBACA46F3AD5 ] ssh-agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
18:10:58.0373 0x3f34 ssh-agent - ok
18:10:58.0383 0x3f34 [ 5778543F5A5201B9661AFDA420FF0AF6, 26AEBACD5C17F36DE6B6E893B2EFE0D0967813005F90A4ED95C72354152CC58B ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
18:10:58.0403 0x3f34 SstpSvc - ok
18:10:58.0412 0x3f34 [ 7A81545C93E5AF3FB543112CD6C9236A, 3445BDCDA73607553185124B98C0173B0B897E50ABB86D383A8D3B4B868BE9C6 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
18:10:58.0427 0x3f34 ssudmdm - ok
18:10:58.0507 0x3f34 [ 7B95F9C1FC5CFADC7F922E76DA711A9C, 38A637F56306BBEFB9EC7A2F487ECF9C7411E7DDC1CB215B5BF5FACC39DCFFC8 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
18:10:58.0597 0x3f34 StateRepository - ok
18:10:58.0638 0x3f34 [ C74A2B46040BE36946D9D3CF07536406, 8CC2B3CA91C717B2E1F684138B07C2C1723DD0E035D60F744E20BE36A796ACE8 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
18:10:58.0675 0x3f34 Steam Client Service - ok
18:10:58.0686 0x3f34 [ 8BC164974B677F0D4ABFCA42ADADD14E, DA6FA13FB28779F2A5D8BFF25659A3659BF5AF5EFE0432D0F4CF8BCAF20F0D96 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
18:10:58.0700 0x3f34 stexstor - ok
18:10:58.0707 0x3f34 [ 436CDBDA59896E965D87A90E326AD81D, 3FD54045A9BFFD27D24E68D81B3A908BBEDA80676E4578C6281EEB0F0A72A8F8 ] StillCam C:\WINDOWS\System32\drivers\serscan.sys
18:10:58.0723 0x3f34 StillCam - ok
18:10:58.0741 0x3f34 [ 1A9FD015C2C0C71385E770DBE8377583, E4576B079E6065DFAA94DACADA327A8A3F5F4CC4482FB057789FCCF48CB03A75 ] stisvc C:\WINDOWS\System32\wiaservc.dll
18:10:58.0772 0x3f34 stisvc - ok
18:10:58.0782 0x3f34 [ 9BC1BE2707C09BF57BB1E2310C9BA486, 4C1D82B7345D3A921FC43E40309C383910DE2D82275DEDA4E92B46C1ED8BE6BA ] storahci C:\WINDOWS\system32\drivers\storahci.sys
18:10:58.0797 0x3f34 storahci - ok
18:10:58.0805 0x3f34 [ 8B2A9CF83531994775A1DA620AA234FB, DEEA990D633D621831D24A54E53AE6AE2F64AC3F983F411B436E48B6CAFFC3AD ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
18:10:58.0818 0x3f34 storflt - ok
18:10:58.0827 0x3f34 [ E015C21F6E817349F2B4001B09C66711, DFF3C04337EB0DDF518428BA1467CA43759768B9E36B3152773A0F2B70E369C6 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
18:10:58.0841 0x3f34 stornvme - ok
18:10:58.0850 0x3f34 [ 59D5626EC27D43039D76A6AA71CE5B01, A1D7EDE04A85129866560DB97E8F5F4F3A8E80B82ECB7BB347D1D1E84C4F32E0 ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
18:10:58.0863 0x3f34 storqosflt - ok
18:10:58.0885 0x3f34 [ CDB014026FD827CF7DF7A3F20869FDE4, C6B31D0364FE4993A15A71D77F941EB66BA697B8737C99CBCAE957DADB030784 ] StorSvc C:\WINDOWS\system32\storsvc.dll
18:10:58.0922 0x3f34 StorSvc - ok
18:10:58.0931 0x3f34 [ 1D0089F5B147314EF0BA3118B08FC8C3, 25923167C622A6789D9073D8D9979CE0DB5F444FEC2D3D9497822B1EAEDCF750 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
18:10:58.0944 0x3f34 storufs - ok
18:10:58.0952 0x3f34 [ 868A36136BC87EB433CA0DC7394A8A3B, D4F04125A7A073798B35D6794C043FF8651C1AF126CE4B9AD122B3C4D7A14BF6 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
18:10:58.0965 0x3f34 storvsc - ok
18:10:58.0972 0x3f34 [ 763995562791AD56C4DCFD5B0746317B, F9E86B319309F7A5803CF5BCBCC76E5F13725884523A0A003EEB7006009C3940 ] svsvc C:\WINDOWS\system32\svsvc.dll
18:10:58.0990 0x3f34 svsvc - ok
18:10:59.0003 0x3f34 [ 8A9C14DE49EC3FC1CF4C906C6DD6EFC1, DD08E6F686696537783A90E6D1EC60F9FCF379E1FF9BADBFAD36E3841C8624D1 ] swenum C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_1c567926e5b29133\swenum.sys
18:10:59.0015 0x3f34 swenum - ok
18:10:59.0029 0x3f34 [ 0D936D3B6AF7D118B3F8A36AF16C0846, 2460F708DE9F4792E247B8ED9612A8E4905DCA2C72DBF334820F4B9F15625495 ] swprv C:\WINDOWS\System32\swprv.dll
18:10:59.0055 0x3f34 swprv - ok
18:10:59.0063 0x3f34 [ D2C18148D3C16CCED6E176C646C13EFD, 0F454E2421CEC26340A63E5223508A7E170AEA90C9D21BC3C01C66B8F6D8FF2E ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
18:10:59.0079 0x3f34 Synth3dVsc - ok
18:10:59.0103 0x3f34 [ 46CF46BB6F819E067AF42D30C62C2DB0, 259DD10BFADF27A57BEB74D360B70512389379635478C16FB72D1E6EB1190F3E ] SysMain C:\WINDOWS\system32\sysmain.dll
18:10:59.0142 0x3f34 SysMain - ok
18:10:59.0154 0x3f34 [ E2F4812F664799182D39C4B30C62850C, 731A65566A402B6CBC6BA6898C4906D4FD0F6721238F149B4CEE0CB10AB35933 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
18:10:59.0176 0x3f34 SystemEventsBroker - ok
18:10:59.0186 0x3f34 [ D79C8F7F04616ADF654FBDA9847CF3EB, E7AFD9057D55A493B331981B62F8F08B78FB682DB7313F182036642858CDE6B5 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
18:10:59.0207 0x3f34 TabletInputService - ok
18:10:59.0219 0x3f34 [ 421D9344DC1B87485600ED07D52B05EB, D9FEEAB0BD3D1A15B91446FA9F32DC4AD7D2F8B190E7CEF6CCB044ACA4E5985C ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:10:59.0240 0x3f34 TapiSrv - ok
18:10:59.0287 0x3f34 [ 80C4BF092924DFD2F60B02DFB97A1613, 05D32FB0DC3767C895C8FC5DA4C8EAFA325562BC892EC16E6D4FC413F65F8A2E ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
18:10:59.0337 0x3f34 Tcpip - ok
18:10:59.0386 0x3f34 [ 80C4BF092924DFD2F60B02DFB97A1613, 05D32FB0DC3767C895C8FC5DA4C8EAFA325562BC892EC16E6D4FC413F65F8A2E ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
18:10:59.0437 0x3f34 Tcpip6 - ok
18:10:59.0454 0x3f34 [ 6A6D4EE00469704BC0091AF5AC73C6DD, E2504FCFF084F8004BD5EA3735426D2DDEBF4372A7512EEFF4CB13076C77C213 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
18:10:59.0471 0x3f34 tcpipreg - ok
18:10:59.0486 0x3f34 [ 9AF99FB2DA176C88C68D886046C56B01, 8465D551BA060AAC7E178072899534F78BFCE35B69FA69CFACCEACCCB7BDAF4B ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
18:10:59.0501 0x3f34 tdx - ok
18:10:59.0510 0x3f34 [ BACB822DEC72FECEFC809449FD3C7CD3, 3F71D97CF24F74E315874DDB4BB2429B745F9E36E7EDFC0A37BCE8EB23947FA2 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
18:10:59.0522 0x3f34 terminpt - ok
18:10:59.0545 0x3f34 [ 977C8C10ECCF58A81A2AA5A859933EBA, 9A804200931D1FD3372E7D72ACF71245569C43413DC452F7F7B16537BA7FBD4F ] TermService C:\WINDOWS\System32\termsrv.dll
18:10:59.0582 0x3f34 TermService - ok
18:10:59.0594 0x3f34 [ 3B09BAB568BD4ED4B7A1998D47ECCF0C, E3668B4D57174032C36987AA97043E9F7D731E3E5D7A14EB10B5A18E339DCB09 ] Themes C:\WINDOWS\system32\themeservice.dll
18:10:59.0614 0x3f34 Themes - ok
18:10:59.0626 0x3f34 [ 00E0C9BF4808162AE2FC9E6C8BA50701, 7ABFD8534338904819797A8346C854100334ED79D3915A51B8CF1D3F9F335393 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
18:10:59.0649 0x3f34 TieringEngineService - ok
18:10:59.0662 0x3f34 [ AED022158618781B1816CEB14897E755, EC74A356E6AC9281AD99391C167B035AD7FFC84FB89C559DD9FD6DCB4917646A ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
18:10:59.0683 0x3f34 TimeBrokerSvc - ok
18:10:59.0712 0x3f34 [ 4D723A99443BCEE48301E3FCC7E03B3D, 85DDACA1923203142430D99E5863F6D1F01B6D0EE7C46016A4D65940DD9165D7 ] TokenBroker C:\WINDOWS\System32\TokenBroker.dll
18:10:59.0756 0x3f34 TokenBroker - ok
18:10:59.0768 0x3f34 [ EB10289845531FB638E97A92240BB474, 30415A66291A1947347772D59E1A0D8C6281B68C2D8BA5183CE999D184EA7697 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
18:10:59.0783 0x3f34 TPM - ok
18:10:59.0791 0x3f34 [ F47972C77B03F421BE57CFEEE384D98B, 8015327D5DE0E632276B5F6B079DBBFB453872175E463ECC4814E4AA9EB8138C ] TrkWks C:\WINDOWS\System32\trkwks.dll
18:10:59.0812 0x3f34 TrkWks - ok
18:10:59.0825 0x3f34 [ 0ABBA689E78D931613ADB942C43B2CF1, AC1AB44E7408B9477AE23E086E5E8D83351F86860656500A0C390EB40588AB20 ] TroubleshootingSvc C:\WINDOWS\system32\MitigationClient.dll
18:10:59.0848 0x3f34 TroubleshootingSvc - ok
18:10:59.0858 0x3f34 [ 966317326671E66535AE59AA917C2B42, 336701CCB71B703003DD5EB01C69B7CF37AAE33AD19FFE7F9483A5C12D18F41A ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
18:10:59.0874 0x3f34 TrustedInstaller - ok
18:10:59.0888 0x3f34 [ 4D66CADB97981EE7390E95C5D59319F1, 0E0016522D5C4C0471A893ECD7E29F790DDB7895F4392BBE6142FBB17CE76407 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
18:10:59.0904 0x3f34 TsUsbFlt - ok
18:10:59.0911 0x3f34 [ C26F638642EF8203EC7113464A0CCA55, 50398A6FB2A333701395107549C4E5FFB567278A89C387088025E49CFA371F92 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
18:10:59.0927 0x3f34 TsUsbGD - ok
18:10:59.0936 0x3f34 [ A8D4B53D386487AB9CFCFD972764941C, 28A6372C64D1A274F3830E0EEAAF2CAB990D8AFD25511349C7BEB747ABC2172D ] tsusbhub C:\WINDOWS\System32\drivers\tsusbhub.sys
18:10:59.0953 0x3f34 tsusbhub - ok
18:10:59.0963 0x3f34 [ E524022894A7499E3C06C147B0BA7FDF, BBA4A87B6EC7BAA4355CA7A99BCB228EFDA91E4FE8CDC8D1C15B68981250765B ] tunnel C:\WINDOWS\system32\drivers\tunnel.sys
18:10:59.0980 0x3f34 tunnel - ok
18:10:59.0989 0x3f34 [ 3DD3418273A3E097E9302C672E975D08, C0ED745B87B64D7DCC54380C7B82A70A8E7C66AC8C2C5871E9074A1C10374215 ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
18:11:00.0010 0x3f34 tzautoupdate - ok
18:11:00.0019 0x3f34 [ 948B18AEBDBF85B5A022AE3DD44EF7ED, F45AF191367A4EA4CEE8C405A90AF191A70E81FE81B433528D293C8C04BFA72F ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
18:11:00.0033 0x3f34 UASPStor - ok
18:11:00.0043 0x3f34 [ 4CFC014F7268E18414D115D2915E7636, FE783E47F63494F15A13309DAB7F8E702E594ADC53E5E34CFD705EC065F31A10 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
18:11:00.0062 0x3f34 UcmCx0101 - ok
18:11:00.0076 0x3f34 [ 138C08FACD09F43A8A2B3AEF04F9662C, 91411C20C0FB5451BA64EA44E426DE28E5EBAF4310CB98F04A1EF02BBEC4E610 ] UcmCxUcsiNvppc C:\WINDOWS\System32\drivers\UcmCxUcsiNvppc.sys
18:11:00.0097 0x3f34 UcmCxUcsiNvppc - ok
18:11:00.0107 0x3f34 [ C6ABD73AA3C86F3252E476FD34FC4D66, 98B1A2BD72021FD3CE338C253FFEC5DEBB333A265822663A17E85DD67E9790CE ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
18:11:00.0125 0x3f34 UcmTcpciCx0101 - ok
18:11:00.0133 0x3f34 [ A10EF89D243B4A011E4A7618319B5D57, A048B1C4E7695E6E24EF3B0641C89BB908EB7B3D0047602B54740A4DE339AF83 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
18:11:00.0149 0x3f34 UcmUcsiAcpiClient - ok
18:11:00.0158 0x3f34 [ 777028ECD134FD8A094F4613475F099B, 52D24A96D10A455816AE3EF3CD2E563B3899DAB336E405D6AE31F3551C17C0C1 ] UcmUcsiCx0101 C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
18:11:00.0175 0x3f34 UcmUcsiCx0101 - ok
18:11:00.0187 0x3f34 [ D111694A8F376B645A9A24219B67C3B8, C272682D9D99F786C80A7339FDF79F1F826FC364B821F0DEB352690D91B237FE ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
18:11:00.0202 0x3f34 Ucx01000 - ok
18:11:00.0210 0x3f34 [ F920FF63AD376001D8946FA22A8B598D, F2F95F9352CC89CD2E68D9483A82A3F789627A0472DA9DFBCE0E2245B2055D11 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
18:11:00.0226 0x3f34 UdeCx - ok
18:11:00.0239 0x3f34 [ 0D3464F8E1D1CC638DCFBD935CBFDAEC, 16139D1C8CB34C69BAC27A0C8B7597C1AFABBB305216623CBEA601DDEA1A98B2 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
18:11:00.0260 0x3f34 udfs - ok
18:11:00.0269 0x3f34 [ B25FA421FC85C9A3F4AC81587B07A90E, EF3D1C17560DF9D9510A8D7CD639C18D3EBF13CD678440C81E6B3CF56BD1D1A4 ] UEFI C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_4fcaf0fc6eaf7533\UEFI.sys
18:11:00.0282 0x3f34 UEFI - ok
18:11:00.0290 0x3f34 [ A9250ADFC71B9CBEE5BAD97CEE0C1EF0, 35B45E0A506991902C02884485E32EF52C3AF5EAC9170D256BA6F2B027DC30CE ] UevAgentDriver C:\WINDOWS\system32\drivers\UevAgentDriver.sys
18:11:00.0303 0x3f34 UevAgentDriver - ok
18:11:00.0327 0x3f34 [ 00EFFBF5C5E25799A2E5B49CAFDE86F4, EBB1CE157D405F9C681B0013C96997F1659C55040C96638C5C525A3C412DF377 ] UevAgentService C:\WINDOWS\system32\AgentService.exe
18:11:00.0364 0x3f34 UevAgentService - ok
18:11:00.0378 0x3f34 [ 87D5D59B6AAC3ACCB6875D9666825C8E, 31B4ACDAB0B2E8CDB8C94D4F1C7939E6DA1A5495BD1751772B0C4D329B3E1DC0 ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
18:11:00.0396 0x3f34 Ufx01000 - ok
18:11:00.0405 0x3f34 [ A872BEA2A958430B9BABE0F5A6259E5A, FB2BA7E4B01F88F5802819F153FBC52B3A417F5B832D94945628F7B08A8D3E5E ] UfxChipidea C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_624eef84faf426d6\UfxChipidea.sys
18:11:00.0419 0x3f34 UfxChipidea - ok
18:11:00.0429 0x3f34 [ 86AD2D2C5AF22D8D13617F512EDA35B9, E021FC587F5CD82F5CBF1B4FD73FE57E50D480317BB4B21637A96D51B097081E ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
18:11:00.0443 0x3f34 ufxsynopsys - ok
18:11:00.0462 0x3f34 [ 6E08E87B46D3227C5AEC05AFD881ED83, D746C6E18AF1C2505F578A882D240E916EA59559F4A6F7591CECDAED160BDAB7 ] umbus C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys
18:11:00.0479 0x3f34 umbus - ok
18:11:00.0486 0x3f34 [ 63C55C0E80F83D63EEB3BF6810DD8387, 72F104ADAC4A5E3137B429F752F72B947D95A246D7F7CA7F53426FFE944F0308 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
18:11:00.0503 0x3f34 UmPass - ok
18:11:00.0518 0x3f34 [ 79C0194B9F2FF312F1E2927D42E52105, 0FF203FAD727BCEB4C84957A0CD9FA93238BCDAE51AE70103D6B241D24642606 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
18:11:00.0543 0x3f34 UmRdpService - ok
18:11:00.0573 0x3f34 [ CBD797C153711690954BCF807FA3F257, 59262DB1A4751C475E0491122A67DA273144192F3237B7B2A38A71268A75934C ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
18:11:00.0616 0x3f34 UnistoreSvc - ok
18:11:00.0638 0x3f34 [ B2A49311CD1CFC9B41F63B640228232E, 3BECE2955BC36CCFEEB87EDEDFFB34D1C34235648B3F19A6384AE7D21D44859E ] upnphost C:\WINDOWS\System32\upnphost.dll
18:11:00.0665 0x3f34 upnphost - ok
18:11:00.0674 0x3f34 [ 9DCE4606E15FA465DE1AC453F46A85E6, 788C5B0FB8B7B7E041B3EB31C8FE5A909FA64E18EA609564CAFCB1BD52C98D86 ] UrsChipidea C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_86da23c455846f41\urschipidea.sys
18:11:00.0687 0x3f34 UrsChipidea - ok
18:11:00.0696 0x3f34 [ A7BE0A24B7F11060394A3BFAE21C783F, 159E8ED944B7C3243AFC07BD85A36F9DA7DE6FBE66C2F3DA75D25C531663075B ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
18:11:00.0710 0x3f34 UrsCx01000 - ok
18:11:00.0718 0x3f34 [ F1DE82278E0A027980B598BD70CECD6A, F70027BBFBF71CCF06B733A64946F4526DA28C2DC7934BB9BC9C3DAAB0A8135B ] UrsSynopsys C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_7302ce5d1420ed71\urssynopsys.sys
18:11:00.0731 0x3f34 UrsSynopsys - ok
18:11:00.0741 0x3f34 [ 7568EE93D647F65AC772852C9869E513, 72608E9FED569757D00444E6F6B63B17D693D7B5E7A5C643A119F80A64E0E7C3 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
18:11:00.0760 0x3f34 usbaudio - ok
18:11:00.0773 0x3f34 [ 61DFCE1DAB6503BC75032102F150D692, C55F112C42FD7A1ECB03D33C8D8E14AF69F9A7A4312BBBA031E9C5B1EC712FB5 ] usbaudio2 C:\WINDOWS\System32\drivers\usbaudio2.sys
18:11:00.0793 0x3f34 usbaudio2 - ok
18:11:00.0804 0x3f34 [ 3AE5C6C575A4CBDC18194DA5E57F591A, C38216421E34AAEAE4FD0C798BBED04327641E117981AC255979F64F293CFFE0 ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
18:11:00.0820 0x3f34 usbccgp - ok
18:11:00.0830 0x3f34 [ 4A2A90FC52DD031BD5135BF2B6F95CDD, D15010BCC02CF48C63612F32E0F166311D713F2103B58224B87E1583AA25630C ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
18:11:00.0847 0x3f34 usbcir - ok
18:11:00.0856 0x3f34 [ A1EFF2E07889DB46C82520238D8225EF, 092B52141612B6643A744DF11BD45EEA846130B4251BA75E7016231B5DF45D11 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
18:11:00.0869 0x3f34 usbehci - ok
18:11:00.0884 0x3f34 [ F6656FC6BA03CD046F5F82D968F02CC0, 7D1605BE823DC0DC1EA9D330455BF18ED4A4AF993508EB2C38A7C137CCF643A5 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
18:11:00.0908 0x3f34 usbhub - ok
18:11:00.0924 0x3f34 [ 95235AF07E459393CF5B51AE665048B1, 48CE92C954052A556C195473A128CDBA6BA6A260CC346B609F833AF764A948BA ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
18:11:00.0944 0x3f34 USBHUB3 - ok
18:11:00.0952 0x3f34 [ A6FF43DEE42EF4B160976D8A3BCA2143, 3C06B624B3498DE9D9C7B5A139838E11179C413B2AFB5FCC04864AD190711A57 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
18:11:00.0971 0x3f34 usbohci - ok
18:11:00.0980 0x3f34 [ 11724C8F4354F87EC7F96CBCBD18A612, 0807A61EF7D56D5E208957F189D4A75E86DFB6A33FCBEEE46CCB93BB3602332A ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
18:11:00.0995 0x3f34 usbprint - ok
18:11:01.0003 0x3f34 [ 55CFD737A673108074914ED21F44CC0D, 4BB52E2C4DE005865BF5D1C31F2E25DAE4CB53B14A1EFF23589FA4E620DE50DF ] usbser C:\WINDOWS\System32\drivers\usbser.sys
18:11:01.0024 0x3f34 usbser - ok
18:11:01.0033 0x3f34 [ D575E148B38E2226E1DA27D0206B1006, D171BF1DF8E3DCB1C5E84F29142BF738382E2B457E48FC5A295A401F07E7FA7C ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
18:11:01.0048 0x3f34 USBSTOR - ok
18:11:01.0056 0x3f34 [ 194091B0D8079A66B64A017B3E3965C1, FE83A1B7A4CA5D37AED4552A41AC4DE618275AC6B0A438604F05ABA3B4D8178E ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
18:11:01.0072 0x3f34 usbuhci - ok
18:11:01.0085 0x3f34 [ BC3579105E83D38FE10C08A512888265, 7A933F387F5BA5A2D1F240FFCF7B31BD7513933755E985D4DD22EE0266CC31A0 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
18:11:01.0102 0x3f34 usbvideo - ok
18:11:01.0117 0x3f34 [ FCEF88F73F95864FC7763B00FF8EBFCD, 5EFF5E1F91C054814AB2AE2A44E255159DB1253EB8B6AF3AEE8EB9B0679718B2 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
18:11:01.0137 0x3f34 USBXHCI - ok
18:11:01.0165 0x3f34 [ 4AB290C4D42C77D1A395D44BF428E126, 3DCFEC698D93EEFEFA422DF12BBFF1A537A95EDFE251450011BDC77E503ED8AA ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
18:11:01.0210 0x3f34 UserDataSvc - ok
18:11:01.0243 0x3f34 [ 3CDA02F057095F94DC578E329746B74E, 7266151C13119EE95140D0B3E0DE13EB1742E649F644050648BFBB0DADA9AFF1 ] UserManager C:\WINDOWS\System32\usermgr.dll
18:11:01.0286 0x3f34 UserManager - ok
18:11:01.0303 0x3f34 [ A31A93B414450AB17C32643CCF923281, 3A50319E8EBFA5A6F168476B38919BA5802A8142508D9BF5F547482BA8CF0F65 ] UsoSvc C:\WINDOWS\system32\usosvc.dll
18:11:01.0331 0x3f34 UsoSvc - ok
18:11:01.0345 0x3f34 [ DA482A04D8A194EF5041F0090A774A17, B8111D10F9E33264ACA11B1AA97263F9721163D1F71A23E68F80D4CAA50C4245 ] VacSvc C:\WINDOWS\System32\vac.dll
18:11:01.0365 0x3f34 VacSvc - ok
18:11:01.0374 0x3f34 [ 03C70933698C6E3E466076DD9C3FAA18, AA52B2D3DD4B9B47FF4496C0460BDEDDA791354018CF0782B899EF28ACEE8D21 ] VaultSvc C:\WINDOWS\system32\lsass.exe
18:11:01.0387 0x3f34 VaultSvc - ok
18:11:01.0395 0x3f34 [ F8B7332117B5D5944945FA9EDEB6E2FA, C419D3D50DE9B485F01278B044432CC1B326FD3A44CFBF3DF4E7780F483298AB ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
18:11:01.0409 0x3f34 vdrvroot - ok
18:11:01.0425 0x3f34 [ 774339D0AC38E93E136329C586749A9E, DFB0F5C163B45F769BE1F0DBF51254B67BFE191E37B049628A659381B445983A ] vds C:\WINDOWS\System32\vds.exe
18:11:01.0454 0x3f34 vds - ok
18:11:01.0466 0x3f34 [ 0DAEB3C122959420D6CC0EEBE4AAA301, B5CFC19968473A3618174E04B7B4EA9844A2C4E5B1BA91C88D96599EC85EB801 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
18:11:01.0484 0x3f34 VerifierExt - ok
18:11:01.0505 0x3f34 [ 3B2908EC5B61EFB0A4C1156213488115, C392FC8A492713369F9ADB90FE6A504D07E50A9598A22552113FDA41688D0659 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
18:11:01.0528 0x3f34 vhdmp - ok
18:11:01.0537 0x3f34 [ 7D2E55D69166E5ADD2E85E4D91B106EA, 37A58CE570C3B3F46F02B5582F335073107A417947A03335370BC4B760F3E193 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
18:11:01.0552 0x3f34 vhf - ok
18:11:01.0567 0x3f34 [ FBC323E15CAE64D279DB0C406D6AE586, 3249F3BC3CA3882214DAB59AE996D74836298691526E7E3DDC5E6B3DD2E3A636 ] Vid C:\WINDOWS\System32\drivers\Vid.sys
18:11:01.0589 0x3f34 Vid - ok
18:11:01.0601 0x3f34 [ A633771179DBB2B3D0648F58B15BDC87, 970FCD0B1B5AAFACE46379578BB7F61CE9AEEFABB02526F70073BBF16788B5D2 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
18:11:01.0618 0x3f34 vmbus - ok
18:11:01.0627 0x3f34 [ 0D36DA7B9053AA928EBB0A791FA9AD98, D85A0613E5CF27C90A6248D4606DA61AC4F2A293F37A0814845619476EFFAF11 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
18:11:01.0639 0x3f34 VMBusHID - ok
18:11:01.0648 0x3f34 [ 32480E0760E0C3D21964CE3992001D5F, 135AE6162F52A314CB99F4A13DF78BE371280FAAC7EF85CD9B8D806460B7FA79 ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
18:11:01.0711 0x3f34 vmgid - ok
18:11:01.0724 0x3f34 [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
18:11:01.0741 0x3f34 vmicguestinterface - ok
18:11:01.0753 0x3f34 [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
18:11:01.0771 0x3f34 vmicheartbeat - ok
18:11:01.0783 0x3f34 [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
18:11:01.0800 0x3f34 vmickvpexchange - ok
18:11:01.0813 0x3f34 [ E8D33D1EA66CF460A204007DFF2CC1D8, 40A57D316D6AEA01C3FD3C1E8CF0838F5047F05A885663F1F39316115F5E8FDC ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
18:11:01.0835 0x3f34 vmicrdv - ok
18:11:01.0847 0x3f34 [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
18:11:01.0864 0x3f34 vmicshutdown - ok
18:11:01.0876 0x3f34 [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmictimesync C:\WINDOWS\System32\icsvc.dll
18:11:01.0892 0x3f34 vmictimesync - ok
18:11:01.0903 0x3f34 [ C6F988A12AE96C5A553E69A19921D2B3, E5E13F6F07A0FC9FD7823BB3AA29226A7E132173E68D0E252D180AED28ED1F3C ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
18:11:01.0920 0x3f34 vmicvmsession - ok
18:11:01.0933 0x3f34 [ E8D33D1EA66CF460A204007DFF2CC1D8, 40A57D316D6AEA01C3FD3C1E8CF0838F5047F05A885663F1F39316115F5E8FDC ] vmicvss C:\WINDOWS\System32\icsvcext.dll
18:11:01.0954 0x3f34 vmicvss - ok
18:11:01.0964 0x3f34 [ 4BF95A7DEB8FC4C1E70A520DF78B3F48, E31F5D9916EF9C887D471AB3BC7D93D9CDE5EDC53B4189D97FD23A3BCF0DA5C3 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
18:11:01.0978 0x3f34 volmgr - ok
18:11:01.0992 0x3f34 [ 1594BC85AE1FA9C8ECD069BAE21B968C, 26D222B3CC2DA1F1F3BE63B65C57B6DD254B141CA99D34DBD4A35E40209B2EB7 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
18:11:02.0009 0x3f34 volmgrx - ok
18:11:02.0023 0x3f34 [ 7764E62EF94DDA90E87309E739F6970E, 093805ECD89C4BAB5EA225786FCE80246F24D5B2DB5E3F04CA6C47F8AA78D327 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
18:11:02.0041 0x3f34 volsnap - ok
18:11:02.0050 0x3f34 [ 48AC7024857127BF09088853DB43FF93, 998E1134F40472DA39DD53FC9FA2EED9309606ACD34BBBF237E50C6DA11DE881 ] volume C:\WINDOWS\system32\drivers\volume.sys
18:11:02.0062 0x3f34 volume - ok
18:11:02.0072 0x3f34 [ CF1C674D2149ECCDF3C93EECA1EA2F61, 1F9CE82225402E4BD0A0E1167F039B805036FB87CD8D16A2DDE44A8A8FCD2045 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
18:11:02.0087 0x3f34 vpci - ok
18:11:02.0098 0x3f34 [ 942B73A77ACB3099384A0754814EA9D9, 3FB26A47A3326B932254ACCCDA06C158BBF39C301051108084A7AC913DE03827 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
18:11:02.0112 0x3f34 vsmraid - ok
18:11:02.0141 0x3f34 [ C82C209DF1CFDA5C72B148DFC2FA5D1D, C4A4BB9B050D214D44119D6F39822E9E3B36EF7DA67471843C0856E090987B70 ] VSS C:\WINDOWS\system32\vssvc.exe
18:11:02.0185 0x3f34 VSS - ok
18:11:02.0199 0x3f34 [ A6CEC1A878536F3D5C82CFDF6E4CFCB9, A569744957E492042994C6F1312C8F4EC2F20A559BD8938A6A09C15230DEBBDC ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
18:11:02.0216 0x3f34 VSTXRAID - ok
18:11:02.0224 0x3f34 [ C347534CE40DB6D4878447302129BC73, 511747AD4C6FF8C2B568CD8AAEF1E49D67DABFCD8D639786F683DA338E8DD837 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
18:11:02.0239 0x3f34 vwifibus - ok
18:11:02.0250 0x3f34 [ 489782EABA27384E116243E60EFFEEE7, 510E97FAE86E9B0162E74D93A5F4ECDDAA9EFC5534AD755327B1402BFC9EEDFB ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
18:11:02.0267 0x3f34 vwififlt - ok
18:11:02.0282 0x3f34 [ 600A2AF8A6358F31962DDFEDA8883049, 7E4D5F180C090D665C03299E04FF2CB88D95BEDD253EDE139E2DF7B80D25C1AA ] W32Time C:\WINDOWS\system32\w32time.dll
18:11:02.0309 0x3f34 W32Time - ok
18:11:02.0322 0x3f34 [ A192EF6F95CB00B3BEF10956195358B7, F61867D698D0B4AF22D044861CC1E9FE23A12662443260D4745DAB5277BD51A5 ] WaaSMedicSvc C:\WINDOWS\System32\WaaSMedicSvc.dll
18:11:02.0346 0x3f34 WaaSMedicSvc - ok
18:11:02.0355 0x3f34 [ 0F428BDADB31C63BEC85FE65577BD84B, D0467601837108726E499EC59F1F1B3E386C7C41ACE49288B3E52BEB8F57EE29 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
18:11:02.0371 0x3f34 WacomPen - ok
18:11:02.0385 0x3f34 [ 0DC4909F3D4E5272CB0A5B2BB7CA06BB, 7D28C8CD903401F2B4435D6510391A39D7B7969E234EE9CB76CA06EC36EAC5AF ] WalletService C:\WINDOWS\system32\WalletService.dll
18:11:02.0411 0x3f34 WalletService - ok
18:11:02.0421 0x3f34 [ C878ADFAEBC91078BDD67DC75761C606, 104F4CE8FCDFA2508818C2DA926B7A78671618346936CC5D12A12A8BF4C5642F ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:11:02.0438 0x3f34 wanarp - ok
18:11:02.0447 0x3f34 [ C878ADFAEBC91078BDD67DC75761C606, 104F4CE8FCDFA2508818C2DA926B7A78671618346936CC5D12A12A8BF4C5642F ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:11:02.0463 0x3f34 wanarpv6 - ok
18:11:02.0475 0x3f34 [ FA45D9FF48626207024305DADAD40AAB, 79B388312F9B143DA75F7972EEAD2627329C9ACB49DF07307102A4BC3A111FEB ] WarpJITSvc C:\WINDOWS\System32\Windows.WARP.JITService.dll
18:11:02.0496 0x3f34 WarpJITSvc - ok
18:11:02.0527 0x3f34 [ 499F84004BC0700E5A842EF169FD61EE, 5BA6D4DA167807254F4321AEFBA2E2FE356A66347F1AE207A0B0932C19062EA2 ] wbengine C:\WINDOWS\system32\wbengine.exe
18:11:02.0574 0x3f34 wbengine - ok
18:11:02.0599 0x3f34 [ A49E17680E06B392CC6ECB47F01A6E64, 7B042F2A5CACA738631891C07044718C08543888F62BC4D03C931A7F33F87B19 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
18:11:02.0635 0x3f34 WbioSrvc - ok
18:11:02.0647 0x3f34 [ A81917DE3C9CB2E8FD8B2981961E117E, 0967DDC0619AE26197D96DFACCBF997D2B4F9CA33BCF828D53534A4581B7AD8A ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
18:11:02.0663 0x3f34 wcifs - ok
18:11:02.0687 0x3f34 [ C61442CB0BED0898C91E3224DE6AE2E3, EE01A9213C25F1F98C95C038E4058B89FC1FB2D8DF7B64C5B74AF4C94FD4D280 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
18:11:02.0724 0x3f34 Wcmsvc - ok
18:11:02.0742 0x3f34 [ 7CEAE2332C6036D25E01A2F61C16824C, 011F017A0A5081D07A2B5B6D012B1BDECBEAF73EF1BC7CC533ACBFC2E94C1EFD ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
18:11:02.0768 0x3f34 wcncsvc - ok
18:11:02.0778 0x3f34 [ B6F93B8B921662E81F9BA6A2AD014F86, EBEF2198FD97B405C9AB92F9FCD4478BF09B83BCF0B8C0BFEE76FA80AE4EB642 ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
18:11:02.0795 0x3f34 wcnfs - ok
18:11:02.0804 0x3f34 [ FD35100B4266D01C5F986048BD78D544, 1B9970251A57508159CB6A8EBAC5AFD532A6FCB8B1ACE05890650B5CC1535409 ] WdBoot C:\WINDOWS\system32\drivers\wd\WdBoot.sys
18:11:02.0818 0x3f34 WdBoot - ok
18:11:02.0839 0x3f34 [ 13A2F7B0EEAC7D05F1A1BC41A239FDF6, 4A66E54C8B760BAA99826A47416ECAACF092530ECE5C361669BDC0843651BC38 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
18:11:02.0863 0x3f34 Wdf01000 - ok
18:11:02.0879 0x3f34 [ E11B693483CC8E313A4462CDF10CDF02, B1E3B300AEC3079D3A4CD99AA5B4FC51B96D49856DC1688A5F55F1C8B90904FC ] WdFilter C:\WINDOWS\system32\drivers\wd\WdFilter.sys
18:11:02.0897 0x3f34 WdFilter - ok
18:11:02.0908 0x3f34 [ AA843CF3C016B79340C6FDACDA20D75D, 1BC8F5BBE7BCBB194406D74FD0EABE763F2F7BBBF6CBC81300355050AB44B675 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
18:11:02.0928 0x3f34 WdiServiceHost - ok
18:11:02.0937 0x3f34 [ AA843CF3C016B79340C6FDACDA20D75D, 1BC8F5BBE7BCBB194406D74FD0EABE763F2F7BBBF6CBC81300355050AB44B675 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
18:11:02.0957 0x3f34 WdiSystemHost - ok
18:11:02.0979 0x3f34 [ A09400A803B10A64422D8F9A6520D3A6, EE7A827E1F073CD6C8DD903DDFCB77DEDFB00629F789645378826EE95AFA7802 ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
18:11:03.0012 0x3f34 wdiwifi - ok
18:11:03.0022 0x3f34 [ 35ED849BBAD731509E4E8D3A015CE5FA, 087494CA0B94BACB61B5EC7E5295FCB733EE47328A6A69D5942BF1324D50C499 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
18:11:03.0035 0x3f34 WdmCompanionFilter - ok
18:11:03.0044 0x3f34 [ 2E123D61E45D51B0B9A10DFD13457B48, 31052ECC30B4671292B60C4AA16D3FF53875DCAA6FABD0E68735A28940AABDA2 ] WdNisDrv C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
18:11:03.0057 0x3f34 WdNisDrv - ok
18:11:03.0113 0x3f34 [ 21814BCBEAB160F1D98C05C4D472337B, 80B5D7927E0983C81AE45B41883E4A3CE4AF78AB676F4443007C5818B19B2E64 ] WdNisSvc C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\NisSrv.exe
18:11:03.0174 0x3f34 WdNisSvc - ok
18:11:03.0190 0x3f34 [ 96F813A401A00A1C0477C0738DE64E3A, CF869EC31169D18697FADF82DE1F3E30C99A5870686F0C9CAA7591B3832800AD ] WebClient C:\WINDOWS\System32\webclnt.dll
18:11:03.0212 0x3f34 WebClient - ok
18:11:03.0222 0x3f34 [ D2432132ABE0F620939B667D4894A36F, BD68DB1FC98A163575420681D7E6BA043CF878055B11EB7BE72B46D0E5D4B1B5 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
18:11:03.0245 0x3f34 Wecsvc - ok
18:11:03.0254 0x3f34 [ FAF9800B056767E9F525C143C90F4F9E, 16F3DFA02E227B157A64141D95B6DFE4C8F57D017430BF2D9F3466403AFBB8EA ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
18:11:03.0272 0x3f34 WEPHOSTSVC - ok
18:11:03.0282 0x3f34 [ B79505827986A6C0A51C1F1C7B020DD4, B190F6BBEF27072FFB06B53A7C3F222F37F4C9A62131D42CCBC97CD237CA9BCA ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
18:11:03.0303 0x3f34 wercplsupport - ok
18:11:03.0315 0x3f34 [ 3BCA441E86403E6474CA5B13CF1E86B6, 86BF39D60F8EC4CD3B7BDD908CD072BB23CA395F43D8B8D579B688A458F6931D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
18:11:03.0338 0x3f34 WerSvc - ok
18:11:03.0356 0x3f34 [ 5FB0717636A54C5C37082E79A6605902, 389B657CB93645CB2DEC3C576204EAAF284CD95956985E3278396D1D022972D7 ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
18:11:03.0387 0x3f34 WFDSConMgrSvc - ok
18:11:03.0398 0x3f34 [ 97460B0FBD9A2329E13D715AAA826D80, DE5EB3B1519B3D72F6A6F2952E4705529151E6E88AB51C27F963240A135CC0CF ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
18:11:03.0412 0x3f34 WFPLWFS - ok
18:11:03.0422 0x3f34 [ 5CB480ABFD5C68B6D7CD7821F23BA7B8, F489FEB3E0543CDB607DAB099DCDA49A30580F734DBC0BC927999958C792C4E0 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
18:11:03.0442 0x3f34 WiaRpc - ok
18:11:03.0451 0x3f34 [ 5EFC1312EF40814D8F3AE9A6F8A21D8A, 8E93137FDEC76CD202242A6A2950286AF49345BAEA8F4E737BCAB133E447F38B ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
18:11:03.0464 0x3f34 WIMMount - ok
18:11:03.0474 0x3f34 [ 331A9DAB79909E3012F0FBD1BA870757, B595B1832B0A24D781EA501A881513381182138766B2385C96C0E356300B1B66 ] WinDefend C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.8-0\MsMpEng.exe
18:11:03.0488 0x3f34 WinDefend - ok
18:11:03.0511 0x3f34 [ 9FCCEAAF76F60F712C2DCEE6FC0B07A2, F4AE6C93FD8BE874ED6A5EC28DE4F74DC2ABA41010F0AEB248500FC0078F8606 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
18:11:03.0525 0x3f34 WindowsTrustedRT - ok
18:11:03.0534 0x3f34 [ C696815C9B8DD3F40454A949E30ECA0B, 85F15CA27389CC78701FBBCC974C3F8DF8D6F34CF3A717C9960D2621011C002C ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
18:11:03.0547 0x3f34 WindowsTrustedRTProxy - ok
18:11:03.0569 0x3f34 [ 47F6BDF5EA61507053EE2698116E74CA, BFF0846B3797A38D44B0FFAFDBFC4F822D56E519A0DA0090C443587F0FFF1971 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
18:11:03.0600 0x3f34 WinHttpAutoProxySvc - ok
18:11:03.0610 0x3f34 [ 9B3BD21B1FF32B20EE30FA4332D3AB6C, CDC5921946F9AD6EFBDFA09ECE90D4E4784BB77F0C5B170A3F1A6F7A29509ABD ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
18:11:03.0624 0x3f34 WinMad - ok
18:11:03.0639 0x3f34 [ E7B5AC14EF3F0116D59E851A2F38DA74, 18327A5219C35791C8037AF5F717166467F7844202773D2C1CB10874BABE6DCD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:11:03.0660 0x3f34 Winmgmt - ok
18:11:03.0673 0x3f34 [ 631BA97B0AB7D31F8A6491809D36415C, ED18E41BBAF2014E8ACA427D0FFC08F29A2804D72DB2089F49AB7F3DCCBD612F ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
18:11:03.0694 0x3f34 WinNat - ok
18:11:03.0706 0x3f34 [ 99737333A5493750CC4CBB8C2BD323BB, 8EA82295AB6C02F03E4A969C152FF0347D1561D191644998CA9E9F0039820715 ] WinQuic C:\WINDOWS\system32\drivers\winquic.sys
18:11:03.0723 0x3f34 WinQuic - ok
18:11:03.0732 0x3f34 [ 27BCBEEC8A466178A6057B64BEF66512, A7B000ABBCC344444A9B00CFADE7AA22AB92CE0CADEC196C30EB1851AE4FA062 ] WinRing0_1_2_0 C:\Program Files\EVGA\Precision X1\WinRing0\WinRing0x64.sys
18:11:03.0743 0x3f34 WinRing0_1_2_0 - ok
18:11:03.0789 0x3f34 [ 41FFA458DF60F9AF1E2D1BADDDE158B4, B68627CB167153B068970C336935F1E24C563D6764A2F7E99851A73DC202BED1 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
18:11:03.0858 0x3f34 WinRM - ok
18:11:03.0885 0x3f34 [ 7C8733775E291E3211F918A30B425742, EF4DC11990E88B19C8BB565B8E67CE9A146D69A4779D859474BA1EFFAC993280 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
18:11:03.0902 0x3f34 WINUSB - ok
18:11:03.0912 0x3f34 [ D130D6ED19268A74D6587C0D134B59EB, CBF4BE2A0789B3DE473CBE8EBC90A559826D642B503CFD26D1CEA8AAB33433E3 ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
18:11:03.0925 0x3f34 WinVerbs - ok
18:11:03.0947 0x3f34 [ A23D42E530004C2B0B798B7A5169164B, B8FC9CB921E121DFC3292F41E7E4A670673250BCA6D59B6EF45AC544D8019522 ] wisvc C:\WINDOWS\system32\flightsettings.dll
18:11:03.0979 0x3f34 wisvc - ok
18:11:04.0028 0x3f34 [ E1E249E190D55FC8CAE9F770E2D6AD2D, D4FD73CCEB1951D3A4AB03C4FAEA2E2C407712F8B85450498499B3935612C28D ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
18:11:04.0098 0x3f34 WlanSvc - ok
18:11:04.0139 0x3f34 [ 6803E9CDBD383C6EBEDE758A9E3A26ED, 1FC0037B3A47E19A42D727B454CBC33399ADF9DFB20A2F0A07265C7907BD5BA9 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
18:11:04.0196 0x3f34 wlidsvc - ok
18:11:04.0227 0x3f34 [ 06122A4C8860167431FB9D66CCC93D18, CBB2004CA69FA5B4069B75206D8A70EDFCDB57F955B8B07800EBA800E91ACBBB ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
18:11:04.0269 0x3f34 wlpasvc - ok
18:11:04.0291 0x3f34 [ 7DC7ACDE1C96B0556D0E6B51F57A3FF4, 4B50AE369ABAC673B79633E3944F998C3BBF6CA1AE4BA4B50E4AD52669448ADD ] WManSvc C:\WINDOWS\system32\Windows.Management.Service.dll
18:11:04.0324 0x3f34 WManSvc - ok
18:11:04.0333 0x3f34 [ B4ABE535AB99C02E3678AA1ED5EC56B2, FC9A55CD935488CC0826E0A28C4D2EAB52C87C88D15B4D542A70BD3EDB355966 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
18:11:04.0348 0x3f34 WmiAcpi - ok
18:11:04.0367 0x3f34 [ 72260CE9438A7A9A8A5BA101EDA4D6BD, 8A221672E37FD7F30D35B3466CA9F1A473F9A77C27A5A16C6392BCEECCAFEA6F ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
18:11:04.0387 0x3f34 wmiApSrv - ok
18:11:04.0396 0x3f34 WMPNetworkSvc - ok
18:11:04.0408 0x3f34 [ 1AAC4936E71E3895F7044DDE711C43F1, 0FB03F7CE4B8A7D01F488EA554C2BCD60457F5E55BD6969F84F7564327A233D9 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
18:11:04.0424 0x3f34 Wof - ok
18:11:04.0471 0x3f34 [ 32B375C6C0D00B6AB34A8369978E47F5, 0442B33C8C95433C13A66538B09AEC5A146E3224AFA2E4FF0858E0CD5847F26F ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
18:11:04.0518 0x3f34 workfolderssvc - ok
18:11:04.0558 0x3f34 [ 4508402327384C9675878E37DA0ED941, BC89C924E97E563A058BA2EB1CCBAD856EF0F4CE6401814CCAB1BDB5462979ED ] WpcMonSvc C:\WINDOWS\System32\WpcDesktopMonSvc.dll
18:11:04.0618 0x3f34 WpcMonSvc - ok
18:11:04.0631 0x3f34 [ A43EF2A9B957EC0B74721E262BB571B3, 324DDCCEDD14FA34C33A8E46557B5A6678252D4F8A98A3B9A6D5B6C0DFE24A22 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
18:11:04.0651 0x3f34 WPDBusEnum - ok
18:11:04.0660 0x3f34 [ 58CD56BD6647BCAD784D9EB172D3132B, 7343D35C3883B44575BAFABD15EF057172393C3A952AD1E26C9F4636BDE0F254 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
18:11:04.0673 0x3f34 WpdUpFltr - ok
18:11:04.0685 0x3f34 [ 4272FF6572619F068B79338CBD4567B7, C08C772E924D534FBBA08DADE8F7DC7BBF7B4F1B93D1A735330F0FEDD2A63CB1 ] WpnService C:\WINDOWS\system32\WpnService.dll
18:11:04.0708 0x3f34 WpnService - ok
18:11:04.0718 0x3f34 [ B10C7C8714D4D279F56072EBAC17F6DD, E4E8328AA54976256824C5016499F11A8F44B9EEA9E83537B061EE32C5D0BB86 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
18:11:04.0737 0x3f34 WpnUserService - ok
18:11:04.0755 0x3f34 [ F4754B705332FFB21375D11EDD0E063E, D9CDD8FD3D9EB4840A1AA34A3D3DADBF0DD18C56E0BC1E1973751AA594AA3AC3 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
18:11:04.0771 0x3f34 ws2ifsl - ok
18:11:04.0785 0x3f34 [ 31320670CC3C89B2504FCAC12D42801E, 0B20A7911DC384A473CF49E22E57DDD445740E7593D91319B6426DE5053DB8A8 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
18:11:04.0805 0x3f34 wscsvc - ok
18:11:04.0814 0x3f34 [ C9276B244EE4E8FC133150BAD1A263D7, C16133410BE3CFC5DFA5B3645E3CEF93910C9181FB937B8F71345C0A80AFA524 ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
18:11:04.0829 0x3f34 WSDPrintDevice - ok
18:11:04.0840 0x3f34 [ 620B79F814459C593C482802B1189A92, E4B5E2E12A3B9E9F573C6B4EBADEEA5DD42F75B1353715D16D2C6A7052811917 ] WSDScan C:\WINDOWS\System32\drivers\WSDScan.sys
18:11:04.0856 0x3f34 WSDScan - ok
18:11:04.0866 0x3f34 WSearch - ok
18:11:04.0926 0x3f34 [ A5DC44185B821EAAF9B557641A6A6AF1, A39DEE3705D4F8F516FE24971DA1282103A338383B0FDA8ACF101C7F8E7F5EA0 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
18:11:05.0011 0x3f34 wuauserv - ok
18:11:05.0026 0x3f34 [ 28F033782B14D59DDBCA1E2FAE674B8A, 409E9B4F53BEC370AEB7D104FE929CD1DBA60C2AC83A4823FA82C67CED2BEC32 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
18:11:05.0045 0x3f34 WudfPf - ok
18:11:05.0058 0x3f34 [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
18:11:05.0080 0x3f34 WUDFRd - ok
18:11:05.0093 0x3f34 [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
18:11:05.0114 0x3f34 WUDFWpdFs - ok
18:11:05.0127 0x3f34 [ C339B551B1233A139AFD73C9DD8B50EC, 1921C9B41516E3028E707D03077EC59080BA88CA596508E14CC3A7A10910DDAC ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
18:11:05.0147 0x3f34 WUDFWpdMtp - ok
18:11:05.0180 0x3f34 [ BB6B47C54A38B2F60425E8D10EB60021, 7322A96977A509BEDE3303E96AE18AF35C4EFBDF6123E66E8075911F5894FE91 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
18:11:05.0231 0x3f34 WwanSvc - ok
18:11:05.0257 0x3f34 [ 5A185AD39FBA3409D7AD7DDCDA29DBA0, 18B67F1B06B8A0626B04721FC88C79875713072EF354F67DEA4090BAC77903B7 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
18:11:05.0295 0x3f34 XblAuthManager - ok
18:11:05.0323 0x3f34 [ 2F19D8B17B932AF9A5FAC588D6437773, F4DBBECD64D89CFD94ED2BD5883E980D134D2798D469F1B47164CDABF845425B ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
18:11:05.0365 0x3f34 XblGameSave - ok
18:11:05.0379 0x3f34 [ 384059930ED4037232D12DBD8CB99B95, 359B4993C2814B67F6631BE9903501401A7B8B87BF0012A88026E43185E1FA63 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
18:11:05.0401 0x3f34 xboxgip - ok
18:11:05.0411 0x3f34 [ C7135FB498E924FD4F93A35B206D1256, 5B98528040BCBB9CC9BC1BEF54919C4435D4587A4A0CA5C9EF666E06C6CAA274 ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
18:11:05.0431 0x3f34 XboxGipSvc - ok
18:11:05.0458 0x3f34 [ 5A495E793B14CCD532182BFEF1D06207, D8B54268281F49F868A422700F974F4456E435795279A02095E0A5567DF90D4D ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
18:11:05.0500 0x3f34 XboxNetApiSvc - ok
18:11:05.0511 0x3f34 [ 4F6C56E15EDAD3E3CD7D839972F61BE0, C375862DDA538CD8DB8ED0F6C47A05E11C3AEAD564278CDD087058C88A4C3FB9 ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
18:11:05.0527 0x3f34 xinputhid - ok
18:11:05.0548 0x3f34 [ 3C68ADDE2437FB45CFE71FD8C33C4919, 7F19F51F3664BE5FDD79BCF216DF8D1D1BC3015D522E989DD592BFA1AB3DFE8B ] YSDrv C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys
18:11:05.0564 0x3f34 YSDrv - ok
18:11:05.0565 0x3f34 ================ Scan global ===============================
18:11:05.0569 0x3f34 [ B21455B8FF82C98410E1ECDCDC50A67E, 2518696AA3CD15AA0C324A008A87680555911B73DC0DAB6BB5C25230B1F97FD9 ] C:\WINDOWS\system32\basesrv.dll
18:11:05.0574 0x3f34 [ 5D7E5826FF94D08CE87B197B0E99DDB4, FCA2A1651C8E8ED34E322BFE8D872A8FDE4C2CEC5545DD8EA2E2ADF7D13F3B2A ] C:\WINDOWS\system32\winsrv.dll
18:11:05.0581 0x3f34 [ 41993C8E7B59A1BF027895DF4B98618A, 931491CEC18F0AAC10154241556FDE1CB8FFCA5E41BBB2AA94C644E7C7510FCA ] C:\WINDOWS\system32\sxssrv.dll
18:11:05.0598 0x3f34 [ BCCC12EB2EF644E662A63A023FB83F9B, 9090E0E44E14709FB09B23B98572E0E61C810189E2DE8F7156021BC81C3B1BB6 ] C:\WINDOWS\system32\services.exe
18:11:05.0610 0x3f34 [ Global ] - ok
18:11:05.0611 0x3f34 ================ Scan MBR ==================================
18:11:05.0612 0x3f34 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk4\DR4
18:11:05.0632 0x3f34 \Device\Harddisk4\DR4 - ok
18:11:05.0647 0x3f34 [ 72B8CE41AF0DE751C946802B3ED844B4 ] \Device\Harddisk0\DR0
18:11:05.0797 0x3f34 \Device\Harddisk0\DR0 - ok
18:11:05.0800 0x3f34 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
18:11:05.0816 0x3f34 \Device\Harddisk1\DR1 - ok
18:11:05.0819 0x3f34 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
18:11:05.0890 0x3f34 \Device\Harddisk2\DR2 - ok
18:11:05.0913 0x3f34 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk3\DR3
18:11:06.0142 0x3f34 \Device\Harddisk3\DR3 - ok
18:11:06.0144 0x3f34 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk5\DR5
18:11:06.0627 0x3f34 \Device\Harddisk5\DR5 - ok
18:11:06.0627 0x3f34 ================ Scan VBR ==================================
18:11:06.0629 0x3f34 [ 88502EA466665A5C7660F383E113ACC8 ] \Device\Harddisk4\DR4\Partition1
18:11:06.0630 0x3f34 \Device\Harddisk4\DR4\Partition1 - ok
18:11:06.0632 0x3f34 [ 07320CDA429F8FC18519F32BA9FD40D1 ] \Device\Harddisk4\DR4\Partition2
18:11:06.0633 0x3f34 \Device\Harddisk4\DR4\Partition2 - ok
18:11:06.0635 0x3f34 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk4\DR4\Partition3
18:11:06.0635 0x3f34 \Device\Harddisk4\DR4\Partition3 - ok
18:11:06.0637 0x3f34 [ E64C4D1A802913C6C007852AECFC1DF6 ] \Device\Harddisk4\DR4\Partition4
18:11:06.0638 0x3f34 \Device\Harddisk4\DR4\Partition4 - ok
18:11:06.0640 0x3f34 [ 05A53F2671A9FF4010431C30FC16ADB8 ] \Device\Harddisk0\DR0\Partition1
18:11:06.0642 0x3f34 \Device\Harddisk0\DR0\Partition1 - ok
18:11:06.0644 0x3f34 [ DE545D4A131B19288C7832496C60CE89 ] \Device\Harddisk1\DR1\Partition1
18:11:06.0644 0x3f34 \Device\Harddisk1\DR1\Partition1 - ok
18:11:06.0646 0x3f34 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition2
18:11:06.0647 0x3f34 \Device\Harddisk1\DR1\Partition2 - ok
18:11:06.0649 0x3f34 [ 780828E6FD06B4F3E9F5A086DF4B3EB2 ] \Device\Harddisk1\DR1\Partition3
18:11:06.0651 0x3f34 \Device\Harddisk1\DR1\Partition3 - ok
18:11:06.0653 0x3f34 [ 8501B53D1FD2BA1D73AEA125EB53565F ] \Device\Harddisk2\DR2\Partition1
18:11:06.0656 0x3f34 \Device\Harddisk2\DR2\Partition1 - ok
18:11:06.0658 0x3f34 [ DEB21416EA3E83EB07FB8428431A2065 ] \Device\Harddisk2\DR2\Partition2
18:11:06.0659 0x3f34 \Device\Harddisk2\DR2\Partition2 - ok
18:11:06.0661 0x3f34 [ 86C4CE46FBDF8E2B5C48EFE15B475F1A ] \Device\Harddisk3\DR3\Partition1
18:11:06.0663 0x3f34 \Device\Harddisk3\DR3\Partition1 - ok
18:11:06.0665 0x3f34 [ 5A412B03CE347C19729C222569C71566 ] \Device\Harddisk5\DR5\Partition1
18:11:06.0666 0x3f34 \Device\Harddisk5\DR5\Partition1 - ok
18:11:06.0667 0x3f34 ================ Scan generic autorun ======================
18:11:06.0710 0x3f34 [ 6600341AFD77470FB3468B759FAB3897, 7F2FE5ED8FA26F044DBBB0DB6B633C8FEAA2C683880D5C3842A5927F85A2D3BE ] C:\WINDOWS\system32\SecurityHealthSystray.exe
18:11:06.0735 0x3f34 SecurityHealth - ok
18:11:06.0997 0x3f34 [ 723EB88FCA501ECD191605F5374D0575, 39D7DBBDF5934FA139A177ECB12B418DFFAC43B4BFD9734947876CA8E613516C ] C:\Program Files\Logitech Gaming Software\LCore.exe
18:11:07.0286 0x3f34 Launch LCore - ok
18:11:07.0303 0x3f34 RTHDVCPL - ok
18:11:07.0307 0x3f34 [ F68AF942FD7CCC0E7BAB1A2335D2AD26, 11064E9EDC605BD5B0C0A505538A0D5FD7DE53883AF342F091687CAE8628ACD0 ] C:\Windows\system32\rundll32.exe
18:11:07.0325 0x3f34 Logitech Download Assistant - ok
18:11:07.0428 0x3f34 [ ED989A7FE89610188AC3A95B7C592B94, 01B1FE61FADD7619ABBAF8E4038D152E5CD0D75CFC7E6683515B12CB596F724D ] C:\Program Files\McAfee\Real Protect\RealProtect.exe
18:11:07.0561 0x3f34 RealProtect - ok
18:11:07.0571 0x3f34 [ 764E1978E52EAD4FAAFA2B4E27D1E343, D774C135CCF8110BBE20A552A16303AFA238B825EC9F726C9742D9C3478DDD76 ] C:\Program Files (x86)\Creative\Sound Blaster Connect 2\Creative.SBConnect.exe
18:11:07.0580 0x3f34 Creative.SBConnect - detected UnsignedFile.Multi.Generic ( 1 )
18:11:07.0637 0x3f34 Detect skipped due to KSN trusted
18:11:07.0637 0x3f34 Creative.SBConnect - ok
18:11:07.0648 0x3f34 [ 313E7C0A5A874F9280843800B99F71CC, 4004855402C8552B69407B7F191F4AF6A383D68143CA4BBA904CF39A8EFDB537 ] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
18:11:07.0666 0x3f34 Razer Synapse - ok
18:11:07.0684 0x3f34 OneDriveSetup - ok
18:11:07.0687 0x3f34 OneDriveSetup - ok
18:11:07.0733 0x3f34 [ 5758FBF25F60CFD34DA65EEC1A676A7C, D22855AB4F65FB20B53EE608975EC3C16C74021DED042AC46CBAB60DCBD36963 ] C:\Users\dspri\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
18:11:07.0784 0x3f34 Opera Browser Assistant - ok
18:11:07.0787 0x3f34 Waiting for KSN requests completion. In queue: 21
18:11:08.0814 0x3f34 AV detected via SS2: Windows Defender, windowsdefender:// ( ), 0x60100 ( disabled : updated )
18:11:08.0818 0x3f34 AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.207 ), 0x61000 ( enabled : updated )
18:11:08.0841 0x3f34 Win FW state via NFP2: enabled ( trusted )
18:11:08.0944 0x3f34 ============================================================
18:11:08.0944 0x3f34 Scan finished
18:11:08.0944 0x3f34 ============================================================
18:11:08.0953 0x19c4 Detected object count: 0
18:11:08.0954 0x19c4 Actual detected object count: 0
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-08.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-28-2020
# Duration: 00:00:01
# OS: Windows 10 Pro
# Cleaned: 3
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Users\dspri\AppData\Local\Temp\DMR
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\csastats
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|ProductUpdater
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete IFEO
[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1591 octets] - [28/04/2020 18:22:18]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
|
|
28.04.2020, 17:36
| #5 |
| /// Helfer-Team    | Wlan Jammer - Nachwirkungen Erkläre doch bitte mal, was Deine Probleme mit Plagegeistern zu tun hat. Du hast irgendein Netzwerkproblem und das gehört in ein anderes Unterforum.
__________________ LG Der Felix Keine Hilfe per PN und E-Mail |
|
28.04.2020, 18:13
| #6 |
| | Wlan Jammer - Nachwirkungen Das hier womöglich - der PC wurde um 14:20 Uhr ausgeschaltet. PS- WOL ist mittlerweile deaktiviert.. (ich kann mich aber auch nicht daran erinnern es jemals aktiviert zu haben) Code:
ATTFilter - <Event xmlns="hxxp://schemas.microsoft.com/win/2004/08/events/event">
- <System>
<Provider Name="Microsoft-Windows-User Device Registration" Guid="{23b8d46b-67dd-40a3-b636-d43e50552c6d}" />
<EventID>360</EventID>
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x8000000000000000</Keywords>
<TimeCreated SystemTime="2020-04-28T14:02:19.616701900Z" />
<EventRecordID>73</EventRecordID>
<Correlation />
<Execution ProcessID="15992" ThreadID="4040" />
<Channel>Microsoft-Windows-User Device Registration/Admin</Channel>
<Computer>DESKTOP-OBO4HD2</Computer>
<Security UserID="S-1-5-21-4079327580-188762723-1416653193-1001" />
</System>
- <EventData>
<Data Name="Message">Windows Hello for Business-Bereitstellung wird nicht gestartet werden.</Data>
<Data Name="DeviceIsJoined">Not Tested</Data>
<Data Name="AADPrt">No</Data>
<Data Name="NgcPolicyEnabled">Not Tested</Data>
<Data Name="NgcPostLogonProvisioningEnabled">Not Tested</Data>
<Data Name="NgcHardwarePolicyMet">Not Tested</Data>
<Data Name="UserIsRemote">Yes</Data>
<Data Name="LogonCertRequired">Not Tested</Data>
<Data Name="MachinePolicySource">none</Data>
</EventData>
</Event>
|
|
28.04.2020, 19:59
| #7 |
 | Wlan Jammer - Nachwirkungen Die o.g. MAC-Adressen gehören zu Wifi-Modulen von espressif inc. und liteon technology corporation. Das könnten z.B. Staubsauger, Rasenmäher, Wifi-Boxen, Überwachungskameras oder ähnliches IoT-Zeugs von dir oder den Nachbarn sein. Das heisst erstmal gar nichts. Die gelöschten Devices aus der Fritte können wiederum auch alles mögliche alte Zeug sein, dass du nicht mehr verwendest oder an das du nicht sofort gedacht hast. Manchmal wundert man sich, was sich über die Jahre so ansammelt und kommt im ersten Moment nicht mehr drauf. Alles keine Beweise für einen WLAN-Hack...
__________________ "Consider again that dot. That's here. That's home. That's us. On it everyone you love, everyone you know, everyone you ever heard of, every human being who ever was, lived out their lives."— Carl Sagan |
|
28.04.2020, 20:22
| #8 | ||
| | Wlan Jammer - NachwirkungenZitat:
Weiter waren diese Geräte ja mit dem WLan AKTIV verbunden! Das ist bei jeglichen Geräten der Nachbarn "ausversehen" also gar nicht möglich... Meine eigenen Smarthome-Geräte waren/sind alle gesondert im Router benannt und wurden somit wiedererkannt! Zitat:
|
|
28.04.2020, 20:34
| #9 | |||
| | Wlan Jammer - NachwirkungenZitat:
Zitat:
Zitat:
------ ESP-XXXX sind die Kürzel für die Expressif-Wifi-Module. Die können sonstwo drin sein.
__________________ "Consider again that dot. That's here. That's home. That's us. On it everyone you love, everyone you know, everyone you ever heard of, every human being who ever was, lived out their lives."— Carl Sagan Geändert von Yatagan (28.04.2020 um 20:40 Uhr) |
|
28.04.2020, 20:53
| #10 | ||
| | Wlan Jammer - NachwirkungenZitat:
Alle im Wlan registrierten Geräte hatten eine von mir veränderte oder bekannte bzw beschreibenden Namen! Geräte wie ESP-36457 wurden von mir NIE registriert! Um das mal noch auf ein neues Level zu bringen... Ich hatte die "ESP"-Geräte bereits ein paar Tage zuvor im WLan Netzwerk gesehen und gelöscht. Folglich hatten sie sich also bis gestern wieder selbstständig eingeloggt! Zitat:
|
|
28.04.2020, 21:01
| #11 | |
| | Wlan Jammer - NachwirkungenZitat:
Du solltest Deine Smarthome-Geräte mal sämtlich durchchecken und z.B. nachforschen ob die Geräte Expressif- und Liteon-Module oder Controller verwenden. Ich vermute dringend, dass du dann die "Übeltäter" im eigenen Gerätepark aufspüren wirst.
__________________ "Consider again that dot. That's here. That's home. That's us. On it everyone you love, everyone you know, everyone you ever heard of, every human being who ever was, lived out their lives."— Carl Sagan Geändert von Yatagan (28.04.2020 um 21:17 Uhr) |
|
28.04.2020, 21:24
| #12 | ||
| | Wlan Jammer - NachwirkungenZitat:
Die WLan SSID ist auch manuell geändert - somit sollte es hier keine Geräte geben die sich mal "ausversehen" verbinden wollen, weil sie ein eingespeichertes Netzwerk mit gleichem Namen haben.. Zitat:
Geändert von Java.exe (28.04.2020 um 21:38 Uhr) |
|
28.04.2020, 21:37
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™  | Wlan Jammer - Nachwirkungen Also wenn du bei deinen tw. haarsträubenden Schlussfolgerungen bleiben willst, kannst du nur das tun: - neuen Router kaufen - alten Router rausreißen, neuen absichern und in Betrieb nehmen - alle Windows-PC neu aufsetzen Was du nicht rückgängig machen kannst: das Kopieren von irgendwelchen Dateien von deinen Windows-PCs oder was auch immer für Freigaben von irgendwelchen Geräten
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
28.04.2020, 21:38
| #14 | |
| | Wlan Jammer - NachwirkungenZitat:
Es kann z.B. auch an der Fritzbox liegen. Ich hatte ähnliches auch schon mit Geräten von mir die plötzlich mit kryptischen Namen angemeldet waren. Die Geräte sind ja bereits im Netzwerk bekannt und haben das Passwort gespeichert oder haben über ihren Controller / ihren Hub Zugriff darauf. Schau halt auf die MAC-Adressen und vergleiche diese mit denen deiner Geräte.
__________________ "Consider again that dot. That's here. That's home. That's us. On it everyone you love, everyone you know, everyone you ever heard of, every human being who ever was, lived out their lives."— Carl Sagan |
|
28.04.2020, 21:46
| #15 | |
| | Wlan Jammer - NachwirkungenZitat:
Okay klar - lasst es mich noch einmal anders fragen Wie kann ich einen Remote-Zugriff, der ohne Schadsoftware, also über Systemdienste erstellt wurde, ermitteln und ggbfs beenden ? |
|
| Themen zu Wlan Jammer - Nachwirkungen |
| administrator, adobe, avast, defender, download, explorer, firefox, google, helper, internet, kaspersky, malwarebytes, microsoft, mozilla, netzwerk, nvidia, ordner, prozesse, realtek, router, scan, sigcheck, software, system, windows, windowsapps, wlan |
Linear-Darstellung
