Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Diskussionsforum (https://www.trojaner-board.de/diskussionsforum/)
-   -   Attention Required! Cloudflare (https://www.trojaner-board.de/195248-attention-required-cloudflare.html)

spoky001 23.03.2019 02:25
Attention Required! Cloudflare
 
Guten Morgen zusammen,

seit neustem habe ich das Problem mit der Attention Required! Seite. Wenn ich auf diverse Seiten gehe wie z.b. Mydealz.de kommt immer diese eine Seite wo ich dann z.b im Bild alle Autos Markieren soll. Ich habe erstmal versucht auf eigene Faust das Problem mit Hilfe des Forums hier zu lösen, jedoch ohne Erfolg. Ich habe jetzt erstmal wieder alle Programme von der Festplatte zur Beseitigung gelöscht und hoffe das ich das Problem mit euch gemeinsam lösen kann. Bitte verzeiht mir das ich es auf eigene Faust lösen wollte und seid mir nicht böse das ich nun auch keine Logs oder änliches für euch habe.:heilig:


Ich habe mir nun das Programm Farbar Recovery Scan Tool runtergeladen und einmal durchlaufen lassen hier sind die Logs dazu:

Der erste Log ist FRST, der zweite Addition


Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
durchgeführt von Micha (Administrator) auf ODIE (23-03-2019 02:20:09)
Gestartet von C:\Users\Michael\Downloads
Geladene Profile: Micha (Verfügbare Profile: Micha)
Platform: Windows Embedded 8.1 Industry Pro (Update) (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: "C:\Program Files\Firefox Developer Edition\firefox.exe" -osint -url "%1"
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer Inc. -> Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Razer USA Ltd. -> Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(TeamSpeak Systems GmbH -> TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Valve -> Valve Corporation) G:\Steam\Steam.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe
(Valve -> Valve Corporation) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Firefox Developer Edition\firefox.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Firefox Developer Edition\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Firefox Developer Edition\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Firefox Developer Edition\firefox.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Firefox Developer Edition\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Firefox Developer Edition\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Firefox Developer Edition\firefox.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [Kraken71ChromaHelper] => C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [1600096 2017-02-14] (Razer USA Ltd. -> Razer Inc)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [413320 2017-09-14] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) [Datei ist nicht signiert]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\Run: [Steam] => G:\Steam\steam.exe [3146016 2019-03-06] (Valve -> Valve Corporation)
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\Run: [Spotify] => C:\Users\Michael\AppData\Roaming\Spotify\Spotify.exe [25323240 2019-02-05] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\Run: [Discord] => C:\Users\Michael\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3462384 2019-02-12] (Razer USA Ltd. -> )
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3462384 2019-02-12] (Razer USA Ltd. -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-23] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.81\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Incorporated -> Adobe Systems, Inc.)
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2015-03-21]
Startup: C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2017-04-11]
ShortcutTarget: Twitch.lnk -> C:\Users\Michael\AppData\Roaming\Curse Client\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{A31B0DA0-E2C8-4503-945D-F93D7E37AC76}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/androidnews/
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-03-23] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-03-23] (Oracle America, Inc. -> Oracle Corporation)

FireFox:
========
FF DefaultProfile: 8w7o71rk.default
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\kd0t1pkr.dev-edition-default [2019-03-23]
FF Extension: (ADB Helper) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\kd0t1pkr.dev-edition-default\Extensions\adbhelper@mozilla.org.xpi [2018-03-18] [Legacy]
FF Extension: (Privacy Pass) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\kd0t1pkr.dev-edition-default\Extensions\{48748554-4c01-49e8-94af-79662bf34d50}.xpi [2019-03-23]
FF ProfilePath: C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\8w7o71rk.default [2019-03-23]
FF Extension: (Avira Browser Safety) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\8w7o71rk.default\Extensions\abs@avira.com [2019-03-23] [hxxps://download.avira.com/package/absnooffers/firefox/update_webext_no_offers.rdf]
FF Extension: (Avira Password Manager) - C:\Users\Michael\AppData\Roaming\Mozilla\Firefox\Profiles\8w7o71rk.default\Extensions\passwordmanager@avira.com [2019-03-23]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll [2019-03-13] (Adobe Systems Incorporated -> )
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-03-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-03-23] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll [2019-03-13] (Adobe Systems Incorporated -> )
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2011-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-03-23] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2019-03-23] (Google Inc -> Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> F:\VLC\npvlc.dll [2016-06-01] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
StartMenuInternet: FIREFOX.EXE - C:\Program Files\Firefox Developer Edition\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://google.de/"
CHR Profile: C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default [2019-03-23]
CHR Extension: (ProxFlow) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2019-02-19]
CHR Extension: (Präsentationen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Docs) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Google Drive) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-16]
CHR Extension: (YouTube) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Google-Suche) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-01-09]
CHR Extension: (Tabellen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (Google Docs Offline) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (AdBlock) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-03-23]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-10]
CHR Extension: (Google Mail) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-22]
CHR Extension: (Chrome Media Router) - C:\Users\Michael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-23]
CHR HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-02-28] (BattlEye Innovations e.K. -> )
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-06-23] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787336 2018-12-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [787336 2018-12-06] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [413320 2017-09-14] (Geek Software GmbH -> Geek Software GmbH)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [449664 2018-08-29] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [942720 2018-09-12] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2018-12-18] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [286960 2019-02-12] (Razer USA Ltd. -> )
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [535424 2019-01-28] (Razer USA Ltd. -> Razer Inc.)
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer Inc. -> Razer, Inc.)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2018-01-09] (Razer USA Ltd. -> Razer Inc)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AthDfu; C:\Windows\System32\Drivers\AthDfu.sys [55336 2012-08-22] (Atheros Communications Inc. -> Windows (R) Win 7 DDK provider)
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [600088 2015-04-29] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 EspoDriver; C:\Windows\system32\drivers\EspoDriver.sys [5791128 2019-02-10] (Esportal AB -> )
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [591360 2013-06-18] (Microsoft Windows -> Realtek )
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [45960 2019-01-16] (Razer USA Ltd. -> Razer Inc)
S3 rzdaendpt; C:\Windows\System32\drivers\rzdaendpt.sys [43720 2015-08-13] (Razer Inc. -> Razer Inc)
R3 RzDev_0203; C:\Windows\System32\drivers\RzDev_0203.sys [49648 2018-04-22] (Razer USA Ltd. -> Razer Inc)
S3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52248 2016-10-30] (Razer USA Ltd. -> Razer Inc)
R3 rzmpos; C:\Windows\System32\drivers\rzmpos.sys [48152 2016-10-30] (Razer USA Ltd. -> Razer Inc)
R3 RZSURROUNDVADService; C:\Windows\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider)
S3 rzvkeyboard; C:\Windows\System32\drivers\rzvkeyboard.sys [44232 2015-08-13] (Razer Inc. -> Razer Inc)
R3 Sftfs; C:\Windows\system32\DRIVERS\Sftfswin7.sys [767648 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftplay; C:\Windows\system32\DRIVERS\Sftplaywin7.sys [273576 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftredir; C:\Windows\System32\DRIVERS\Sftredirwin7.sys [29864 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
R3 Sftvol; C:\Windows\system32\DRIVERS\Sftvolwin7.sys [23208 2014-10-08] (Microsoft Corporation -> Microsoft Corporation)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Apple, Inc.) [Datei ist nicht signiert]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Windows -> Microsoft Corporation)
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\SDSDefs\20171017.003\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.5.2.15\Definitions\SDSDefs\20171017.003\EX64.SYS [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2019-03-23 02:20 - 2019-03-23 02:20 - 000023791 _____ C:\Users\Michael\Downloads\FRST.txt
2019-03-23 02:19 - 2019-03-23 02:20 - 000000000 ___DC C:\FRST
2019-03-23 02:19 - 2019-03-23 02:19 - 002434048 _____ (Farbar) C:\Users\Michael\Downloads\FRST64.exe
2019-03-23 01:51 - 2019-03-23 01:51 - 000003544 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-23 01:51 - 2019-03-23 01:51 - 000003416 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-23 01:51 - 2019-03-23 01:51 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-23 01:51 - 2019-03-23 01:51 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-23 01:50 - 2019-03-23 01:50 - 001136176 _____ (Google Inc.) C:\Users\Michael\Downloads\ChromeSetup.exe
2019-03-23 01:43 - 2019-03-23 01:43 - 007316688 _____ (Malwarebytes) C:\Users\Michael\Downloads\adwcleaner_7.2.7.0.exe
2019-03-23 01:43 - 2019-03-23 01:43 - 000006650 ____C C:\TDSSKiller.3.1.0.26_23.03.2019_01.43.15_log.txt
2019-03-23 01:39 - 2019-03-23 01:39 - 022851472 _____ (Malwarebytes ) C:\Users\Michael\Downloads\mbam-setup-2.2.1.1043.exe
2019-03-23 01:37 - 2019-03-23 01:38 - 000225298 ____C C:\TDSSKiller.3.1.0.26_23.03.2019_01.37.32_log.txt
2019-03-23 01:37 - 2019-03-23 01:37 - 005072904 _____ (AO Kaspersky Lab) C:\Users\Michael\Downloads\tdsskiller.exe
2019-03-23 01:28 - 2019-03-23 01:44 - 000000000 ___DC C:\Program Files\Firefox Developer Edition
2019-03-23 01:25 - 2019-03-23 01:25 - 462756582 _____ C:\Windows\MEMORY.DMP
2019-03-23 01:25 - 2019-03-23 01:25 - 000334832 _____ C:\Windows\Minidump\032319-26531-01.dmp
2019-03-23 01:16 - 2019-03-23 01:17 - 000000000 ___DC C:\AdwCleaner
2019-03-23 01:13 - 2019-03-23 01:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2019-03-23 01:13 - 2019-03-23 01:24 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2019-03-23 01:13 - 2019-03-23 01:13 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-03-23 01:10 - 2019-03-23 01:14 - 000483380 ____C C:\TDSSKiller.3.1.0.26_23.03.2019_01.10.46_log.txt
2019-03-23 01:09 - 2019-03-23 01:09 - 000006650 ____C C:\TDSSKiller.3.1.0.26_23.03.2019_01.09.24_log.txt
2019-03-23 00:07 - 2019-03-23 01:10 - 000000000 ____D C:\Users\Michael\AppData\Local\Opera Software
2019-03-23 00:07 - 2019-03-23 00:07 - 000000000 ____D C:\Users\Michael\AppData\Local\Avira
2019-03-23 00:06 - 2019-03-23 01:10 - 000000000 ____D C:\Users\Michael\AppData\Roaming\Opera Software
2019-03-22 23:59 - 2019-03-23 00:07 - 000000000 ____D C:\ProgramData\Avira
2019-03-22 23:59 - 2019-03-23 00:07 - 000000000 ____D C:\Program Files (x86)\Avira
2019-03-22 23:51 - 2019-03-22 23:51 - 000000000 ___DC C:\Program Files\Common Files\AVAST Software
2019-03-22 23:51 - 2019-03-22 23:51 - 000000000 ___DC C:\Program Files\AVAST Software
2019-03-22 23:50 - 2019-03-22 23:51 - 000000000 ____D C:\ProgramData\AVAST Software
2019-03-17 11:35 - 2019-03-17 11:36 - 000000000 ____D C:\Users\Michael\Desktop\Neuer Ordner
2019-03-13 23:15 - 2019-03-06 08:23 - 001737712 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-03-13 23:15 - 2019-03-06 08:23 - 001501056 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-03-13 23:15 - 2019-03-06 08:23 - 001371464 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-03-13 23:15 - 2019-03-06 08:22 - 001677232 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-03-13 23:15 - 2019-03-06 08:22 - 001537768 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-03-13 23:15 - 2019-03-06 08:18 - 007368440 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-03-13 23:15 - 2019-03-06 07:27 - 004167680 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-03-13 23:15 - 2019-03-06 07:26 - 000032896 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-03-13 23:15 - 2019-03-06 07:03 - 003324416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-03-13 23:15 - 2019-03-06 06:37 - 003617280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-03-13 23:15 - 2019-03-06 05:50 - 002780160 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2019-03-13 23:15 - 2019-03-06 05:39 - 002464256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2019-03-13 23:15 - 2019-02-26 08:57 - 025737216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-03-13 23:15 - 2019-02-26 08:33 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-03-13 23:15 - 2019-02-26 08:31 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-03-13 23:15 - 2019-02-26 08:31 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-03-13 23:15 - 2019-02-26 08:31 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-03-13 23:15 - 2019-02-26 08:25 - 020281856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-03-13 23:15 - 2019-02-26 08:22 - 005777920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-03-13 23:15 - 2019-02-26 08:20 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-03-13 23:15 - 2019-02-26 08:07 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-03-13 23:15 - 2019-02-26 08:04 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-03-13 23:15 - 2019-02-26 07:58 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-03-13 23:15 - 2019-02-26 07:57 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-03-13 23:15 - 2019-02-26 07:56 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-03-13 23:15 - 2019-02-26 07:56 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2019-03-13 23:15 - 2019-02-26 07:51 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2019-03-13 23:15 - 2019-02-26 07:46 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-03-13 23:15 - 2019-02-26 07:44 - 000381440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-03-13 23:15 - 2019-02-26 07:43 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-03-13 23:15 - 2019-02-26 07:43 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-03-13 23:15 - 2019-02-26 07:41 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-03-13 23:15 - 2019-02-26 07:41 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-03-13 23:15 - 2019-02-26 07:39 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-03-13 23:15 - 2019-02-26 07:39 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2019-03-13 23:15 - 2019-02-26 07:36 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2019-03-13 23:15 - 2019-02-26 07:35 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-03-13 23:15 - 2019-02-26 07:33 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-03-13 23:15 - 2019-02-26 07:31 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-03-13 23:15 - 2019-02-26 07:31 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-03-13 23:15 - 2019-02-26 07:31 - 000333312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-03-13 23:15 - 2019-02-26 07:29 - 013681664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-03-13 23:15 - 2019-02-26 07:29 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-03-13 23:15 - 2019-02-26 07:25 - 002882048 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2019-03-13 23:15 - 2019-02-26 07:20 - 001049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2019-03-13 23:15 - 2019-02-26 07:18 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-03-13 23:15 - 2019-02-26 07:12 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-03-13 23:15 - 2019-02-26 07:09 - 001332224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-03-13 23:15 - 2019-02-26 07:07 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-03-13 23:15 - 2019-02-26 07:06 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-03-13 23:15 - 2019-02-20 21:17 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-03-13 23:15 - 2019-02-15 20:58 - 000536584 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-03-13 23:15 - 2019-02-15 20:58 - 000466272 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-03-13 23:15 - 2019-02-15 20:58 - 000413176 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-03-13 23:15 - 2019-02-15 20:54 - 000038184 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2019-03-13 23:15 - 2019-02-15 20:51 - 000449744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-03-13 23:15 - 2019-02-15 20:51 - 000413576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-03-13 23:15 - 2019-02-15 20:51 - 000033504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2019-03-13 23:15 - 2019-02-15 20:50 - 000372328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-03-13 23:15 - 2019-02-09 20:36 - 000444392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-03-13 23:15 - 2019-02-09 20:36 - 000218056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-03-13 23:15 - 2019-02-09 19:53 - 000923384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-03-13 23:15 - 2019-02-09 19:51 - 002014696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-03-13 23:15 - 2019-02-09 19:26 - 000333560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-03-13 23:15 - 2019-02-09 18:49 - 000316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-03-13 23:15 - 2019-02-09 18:49 - 000200704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-03-13 23:15 - 2019-02-09 18:49 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-03-13 23:15 - 2019-02-09 18:46 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-03-13 23:15 - 2019-02-09 18:18 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-03-13 23:15 - 2019-02-09 18:03 - 000477696 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2019-03-13 23:15 - 2019-02-09 18:01 - 000825856 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll
2019-03-13 23:15 - 2019-02-09 17:56 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-03-13 23:15 - 2019-02-09 17:45 - 000367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2019-03-13 23:15 - 2019-02-09 17:18 - 000514048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2019-03-13 23:15 - 2019-02-09 17:16 - 000399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2019-03-13 23:15 - 2019-02-09 17:15 - 001095680 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2019-03-13 23:15 - 2019-02-09 01:38 - 002534936 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-03-13 23:15 - 2019-02-09 01:33 - 001901888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-03-13 23:15 - 2019-02-09 00:40 - 001137776 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-03-13 23:15 - 2019-02-09 00:40 - 000805168 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-03-13 23:15 - 2019-02-09 00:07 - 000614040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-03-13 23:15 - 2019-02-08 23:18 - 000862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-03-13 23:15 - 2019-02-08 22:39 - 001197056 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-03-13 23:15 - 2019-02-08 22:29 - 000863232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-03-13 23:15 - 2019-02-08 20:55 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-03-13 23:15 - 2019-02-08 19:54 - 001755136 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-03-13 23:15 - 2019-02-08 19:51 - 002348032 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-03-13 23:15 - 2019-02-08 19:32 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-03-13 23:15 - 2019-02-08 18:50 - 001493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-03-13 23:15 - 2019-02-08 18:45 - 001556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-03-13 23:15 - 2019-02-07 20:38 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2019-03-13 23:15 - 2019-02-07 01:40 - 001311240 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-03-13 23:15 - 2019-02-07 01:40 - 001308240 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-03-13 23:15 - 2019-02-06 20:32 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-03-13 23:15 - 2019-02-06 20:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys
2019-03-13 23:15 - 2019-02-06 20:31 - 000684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-03-13 23:15 - 2019-02-06 20:30 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-03-13 23:15 - 2019-02-06 20:30 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-03-13 23:15 - 2019-02-06 19:27 - 001040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-03-13 23:15 - 2019-02-06 18:52 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-03-13 23:15 - 2019-02-01 05:27 - 002447600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-03-13 23:15 - 2019-01-09 05:20 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\hcproviders.dll
2019-03-13 23:15 - 2019-01-09 05:10 - 000546816 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll
2019-03-13 23:15 - 2019-01-09 05:06 - 000894976 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll
2019-03-13 23:15 - 2019-01-09 04:52 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hcproviders.dll
2019-03-13 23:15 - 2019-01-09 04:45 - 000530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll
2019-03-13 23:15 - 2019-01-09 04:40 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll
2019-03-13 23:15 - 2019-01-08 07:02 - 001764504 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2019-03-13 23:15 - 2019-01-08 06:12 - 001489704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2019-03-13 23:15 - 2019-01-05 08:35 - 000152128 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-03-13 23:15 - 2019-01-04 15:15 - 001635328 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-03-13 23:15 - 2019-01-04 15:15 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-03-13 23:15 - 2019-01-04 15:15 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-03-13 23:15 - 2019-01-04 15:15 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-03-13 23:15 - 2019-01-04 15:15 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-03-13 23:15 - 2019-01-04 15:15 - 000451584 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-03-13 23:15 - 2019-01-04 15:15 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-03-13 23:15 - 2019-01-04 15:15 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll

==================== Ein Monat (geänderte) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2019-03-23 02:20 - 2018-10-29 19:33 - 000000000 _____ C:\Windows\system32\RzSurroundVADAudioDeviceManager_log.txt
2019-03-23 02:03 - 2015-03-20 01:49 - 000003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1535320351-1579653467-1232545827-1001
2019-03-23 01:58 - 2017-12-24 11:30 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-03-23 01:54 - 2014-03-18 10:54 - 001770840 _____ C:\Windows\system32\PerfStringBackup.INI
2019-03-23 01:54 - 2014-03-18 10:30 - 000758580 _____ C:\Windows\system32\perfh007.dat
2019-03-23 01:54 - 2014-03-18 10:30 - 000156584 _____ C:\Windows\system32\perfc007.dat
2019-03-23 01:54 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2019-03-23 01:51 - 2015-03-20 02:19 - 000000000 ____D C:\Program Files (x86)\Google
2019-03-23 01:50 - 2018-07-22 16:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-03-23 01:50 - 2016-12-07 21:31 - 000000000 ____D C:\Users\Michael\AppData\LocalLow\Mozilla
2019-03-23 01:50 - 2015-07-29 17:35 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-23 01:49 - 2018-07-22 16:23 - 000110968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2019-03-23 01:49 - 2018-07-22 16:23 - 000000000 ___DC C:\Program Files\Java
2019-03-23 01:49 - 2017-03-01 18:30 - 000000000 ____D C:\Users\Michael\AppData\Roaming\Curse Client
2019-03-23 01:48 - 2015-03-21 16:10 - 000000000 ____D C:\Users\Michael\AppData\Roaming\TS3Client
2019-03-23 01:48 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-03-23 01:44 - 2015-03-20 13:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-23 01:33 - 2015-03-20 13:14 - 000001018 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk
2019-03-23 01:25 - 2015-05-13 15:31 - 000000000 ____D C:\Windows\Minidump
2019-03-23 01:25 - 2015-03-20 01:39 - 000000000 ____D C:\Users\Michael
2019-03-23 01:24 - 2016-03-13 21:36 - 000000000 ____D C:\ProgramData\Package Cache
2019-03-23 01:24 - 2015-03-21 18:19 - 000000000 ____D C:\Users\Michael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-23 01:24 - 2015-03-21 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-23 01:24 - 2015-03-21 18:19 - 000000000 ____D C:\Program Files\WinRAR
2019-03-23 01:24 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-03-23 01:24 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-23 01:24 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\registration
2019-03-23 01:24 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\system32\Sysprep
2019-03-20 01:04 - 2013-08-22 14:25 - 000008192 ___SH C:\Windows\system32\config\BBI
2019-03-16 19:26 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2019-03-15 22:36 - 2013-08-22 15:44 - 000507248 _____ C:\Windows\system32\FNTCACHE.DAT
2019-03-15 01:41 - 2015-03-20 02:46 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-03-15 01:41 - 2015-03-20 02:46 - 000000000 ____D C:\Windows\system32\appraiser
2019-03-15 01:41 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData
2019-03-15 00:24 - 2016-03-14 22:24 - 000000000 ____D C:\Users\Michael\AppData\Local\CrashDumps
2019-03-15 00:24 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\NDF
2019-03-14 17:37 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2019-03-14 17:36 - 2015-03-20 02:27 - 000000000 ____D C:\Windows\system32\MRT
2019-03-14 17:34 - 2015-03-20 02:27 - 127411920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-03-13 23:10 - 2018-03-14 11:49 - 000004508 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-03-13 23:10 - 2015-03-22 02:09 - 000004342 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2019-03-13 23:10 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-03-13 23:10 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2019-03-13 23:04 - 2018-12-13 16:12 - 000513376 _____ C:\Windows\SysWOW64\locale.nls
2019-03-13 23:04 - 2018-12-13 16:12 - 000513376 _____ C:\Windows\system32\locale.nls
2019-03-12 01:18 - 2018-03-01 21:30 - 000000000 ____D C:\Users\Michael\AppData\Roaming\SoftGrid Client
2019-03-10 23:19 - 2015-03-20 13:18 - 000000000 ____D C:\Users\Michael\AppData\Local\Battle.net
2019-03-10 23:19 - 2015-03-20 13:18 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-03-02 16:01 - 2013-08-22 16:38 - 000835480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-03-02 16:01 - 2013-08-22 16:38 - 000179608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-25 21:50 - 2015-03-20 13:14 - 000000000 ____D C:\ProgramData\Mozilla

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-11-14 06:01 - 2015-11-14 06:01 - 000003329 _____ () C:\Users\Michael\AppData\Local\recently-used.xbel
2018-02-04 22:36 - 2018-02-04 22:36 - 000007605 _____ () C:\Users\Michael\AppData\Local\Resmon.ResmonCfg

Einige Dateien in TEMP:
====================
2018-03-30 18:30 - 2019-03-07 23:07 - 000000196 _____ () C:\Users\Michael\AppData\Local\Temp\00e481b5e22dbe1f649fcddd505d3eb7.dll
2018-06-16 17:59 - 2018-09-12 23:12 - 000000022 _____ () C:\Users\Michael\AppData\Local\Temp\07227ac75a3544e63de765f44a3eeb5e.dll
2018-03-30 18:30 - 2018-06-04 20:39 - 000000017 _____ () C:\Users\Michael\AppData\Local\Temp\0ab540099634c7ab84b2d01ff3de8408.dll
2015-03-20 02:49 - 2019-03-23 01:48 - 000619616 _____ () C:\Users\Michael\AppData\Local\Temp\0Kraken71ChromaDevProps.dll
2019-03-07 23:07 - 2019-03-07 23:07 - 000000022 _____ () C:\Users\Michael\AppData\Local\Temp\81608a1821a96fde502bf2b643596835.dll
2018-11-22 13:10 - 2018-11-22 13:10 - 000000022 _____ () C:\Users\Michael\AppData\Local\Temp\e4042a67dc86868e7bcdbccb14346196.dll
2018-10-29 19:35 - 2018-10-29 19:35 - 001892728 _____ (Oracle Corporation) C:\Users\Michael\AppData\Local\Temp\jre-8u191-windows-au.exe
2019-03-23 01:49 - 2019-03-23 01:49 - 001974624 _____ (Oracle Corporation) C:\Users\Michael\AppData\Local\Temp\jre-8u201-windows-au.exe
2017-11-10 21:55 - 2017-10-27 17:06 - 000760032 _____ (NVIDIA Corporation) C:\Users\Michael\AppData\Local\Temp\nvSCPAPI.dll
2017-11-10 21:55 - 2017-10-27 17:06 - 000874368 _____ (NVIDIA Corporation) C:\Users\Michael\AppData\Local\Temp\nvSCPAPI64.dll
2018-07-22 16:43 - 2017-10-27 17:06 - 000370296 _____ (NVIDIA Corporation) C:\Users\Michael\AppData\Local\Temp\nvStInst.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\dllhost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\dllhost.exe => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2019-03-22 10:32

==================== Ende von FRST.txt ============================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17.03.2019
durchgeführt von Micha (23-03-2019 02:20:50)
Gestartet von C:\Users\Michael\Downloads
Windows Embedded 8.1 Industry Pro (Update) (X64) (2015-03-20 00:39:25)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1535320351-1579653467-1232545827-500 - Administrator - Disabled)
Gast (S-1-5-21-1535320351-1579653467-1232545827-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1535320351-1579653467-1232545827-1005 - Limited - Enabled)
Micha (S-1-5-21-1535320351-1579653467-1232545827-1001 - Administrator - Enabled) => C:\Users\Michael

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{D4B07658-F443-4445-A261-E643996E139D}) (Version: 4.3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{A6B0442B-E159-444B-B49D-6B9AC531EAE3}) (Version: 4.3.2 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon MP630 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP630_series) (Version:  - )
Chroma Sync (HKLM-x32\...\{BC8D681E-1F5D-4C68-8E3E-A9A614D66C14}) (Version: 1.1.1 - Ultrabox Entertainment Limited)
Curse (HKLM-x32\...\{1F2611FB-6F69-4AA8-BECD-243BD8CB45F3}) (Version: 6.0.0.0 - Curse)
Curse Client (HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
Discord (HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\Discord) (Version: 0.0.304 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.36 - NVIDIA Corporation) Hidden
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Firefox Developer Edition 67.0 (x64 de) (HKLM\...\Firefox Developer Edition 67.0 (x64 de)) (Version: 67.0 - Mozilla)
GameDog (HKLM-x32\...\{301CAEE2-ED71-433E-8E18-1C60B6445664}) (Version: 2.1.5939.37049 - Wolfspirit)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.7194.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 67.0.0.7020 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.36 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation)
NVIDIA Grafiktreiber 398.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.36 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
PDF24 Creator 8.2.3 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge)
Razer Chroma SDK (HKLM-x32\...\Razer Chroma SDK) (Version: 2.22.2 - Razer Inc.)
Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.66 - Razer Inc)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.27 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.21.1 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.4.0216.021216 - Razer Inc.)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.)
Spotify (HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\Spotify) (Version: 1.0.93.244.g1e3a05e7 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Twitch (HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1535320351-1579653467-1232545827-1001_Classes\CLSID\{99e1be5f-523f-409e-99d3-7d0ab101abff}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-20] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-20] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-06-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-20] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-20] (win.rar GmbH -> Alexander Roshal)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {05B6DE07-812C-44E3-9DE5-C67E71EB3DAA} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {13605943-33A3-4B15-A516-55080FDFAD99} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {31FA8B4D-80D0-4D6A-AEEF-7B86B7E71156} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\ScheduleWepCEIP => C:\Windows\system32\WepsqmTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {3205A72F-818E-4562-84AB-EB1B22D3BF89} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3429B736-C199-49C0-937A-C722642AE159} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {39162A8D-9855-48F3-BA34-8A598C22A80B} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BC2A9D2-0590-4042-B993-53A70E301AF4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {7AE86AF0-0D66-4BAB-9947-A5AD13BB5663} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7E4F3889-3659-4A39-A03F-4F2266051F85} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8D42E2E6-F30D-45C8-A0B1-51E6CB7DDCE7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {8EECCCA2-EA3F-46D0-8E09-072CFD229A32} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {9903ED2A-1F3B-4A3D-9427-CEA321CECD99} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B79DD31A-F873-4731-993C-5E8387049F6B} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C0EEDCBD-E906-4769-94AC-827972C5AF29} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD0EF154-3D7B-46F1-B2BF-E31540E7FDB7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CD1A2E90-64FD-4653-9CB0-09FA8B4FB5FF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5F172F0-7E96-4343-A846-F1AA7ABB2A01} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DDD64B19-D6C7-4463-83B4-44CBF5A08FF9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {F4853418-CAAA-4BD7-8A48-EA27783D714A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F5F5B3BB-F6A0-4D14-837C-0289ED86A0B0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FCE95CF7-4E65-4624-8AD9-FA00390C8C27} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2017-02-16 21:35 - 2017-07-19 17:15 - 000157696 _____ () [Datei ist nicht signiert] C:\Users\Michael\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll
2016-11-16 13:58 - 2016-11-16 13:58 - 000250368 _____ (Windows (R) Codename Longhorn DDK provider) [Datei ist nicht signiert] C:\Program Files (x86)\Samsung\Kies\External\DeviceModules\UPNPDevice_Kies.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Michael\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Michael\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michael\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.

HKLM\...\StartupApproved\Run32: => "PDFPrint"
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1535320351-1579653467-1232545827-1001\...\StartupApproved\Run: => "Discord"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{09EF8D9D-C2C1-4B45-80E6-8C3B9323214F}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D4B1B2FF-A6C2-470F-9F03-C495DD7685F6}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E2469693-177A-41BB-8F90-80460D372E29}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{1757CA5F-2514-4658-9DC7-B3A5F17DCA64}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{7EA82848-1DE0-4C53-AD69-295CD6468A14}C:\users\michael\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michael\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{C221347F-2082-42D4-B497-B49B1DFA71FC}C:\users\michael\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\michael\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A37A1525-2005-4646-AEDD-72D1B8E30B6A}] => (Allow) G:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{B796713E-B13F-4A08-B76D-70DF1E56AF53}] => (Allow) G:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FF365FB5-51D1-47E3-B4EE-A8F0D1A5F8BA}] => (Allow) G:\Steam\bin\steamwebhelper.exe Keine Datei
FirewallRules: [{6FE14620-663B-4655-BFCE-37DE795B2AF4}] => (Allow) G:\Steam\bin\steamwebhelper.exe Keine Datei
FirewallRules: [{87971621-CB8C-49AE-AFB7-FA0A0669C527}] => (Allow) G:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{C79DF20A-B8E7-4067-8003-9030950AA317}] => (Allow) G:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{3BA298C6-BBCA-4380-9D60-B919217DFB5E}C:\users\michael\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\michael\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{3F97B4B6-BD91-40DD-BE6D-E6D272E3C5DC}C:\users\michael\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\michael\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1C98C1C4-770C-48C5-9D6B-4F2BBC97A28C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{79840204-C60E-4EBD-A124-4F04072029A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D403747E-E33C-4126-B407-F9487C0CC84C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7664B412-48E6-40FE-AE97-5E69C68955C7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{356A1BFA-0772-40B6-9C33-F0BE034D6F96}] => (Allow) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A1BAEE6C-A827-4170-A1F2-27B41B01A4C3}] => (Allow) G:\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{39AF1268-7142-4EF0-BEED-BC731978EB6C}C:\program files (x86)\ultrabox entertainment\chroma sync\chroma sync.exe] => (Allow) C:\program files (x86)\ultrabox entertainment\chroma sync\chroma sync.exe (Ultrabox Entertainment Limited) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{44DD4B49-6E38-42D6-A6A4-66FEAB9D6C1C}C:\program files (x86)\ultrabox entertainment\chroma sync\chroma sync.exe] => (Allow) C:\program files (x86)\ultrabox entertainment\chroma sync\chroma sync.exe (Ultrabox Entertainment Limited) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{D21F0A53-42A4-4824-B7B2-FD12D7A96159}C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe] => (Block) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe Keine Datei
FirewallRules: [UDP Query User{CEA8FA63-8CA9-467E-AF3F-2400337EDCBB}C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe] => (Block) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe Keine Datei
FirewallRules: [{99749CF5-9B7F-4232-93B7-F46B29FCA4EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AC712DCE-6EE4-4F86-8C10-9A4D04A6CB79}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B3DBF8F9-7D30-467C-A7A7-596FE9BC6FED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Keine Datei
FirewallRules: [{115095E6-5EB2-4DAE-A594-F3ACC793CFA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2701E45F-8777-405A-A7A2-305BD0E7C60A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{DE13F7FC-BC3F-4087-8ABD-D51C4C16A9B4}C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe Keine Datei
FirewallRules: [UDP Query User{05F3CDAE-CE7A-4D70-99C3-C1240A6E311B}C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe Keine Datei
FirewallRules: [TCP Query User{3B7459E0-B36E-45A2-93C5-13E416165352}C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe Keine Datei
FirewallRules: [UDP Query User{3057390D-9A2B-40D6-96F4-43A8E3913A67}C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe Keine Datei
FirewallRules: [{0CE351DE-2527-4A64-A5FB-03466A3B7EB0}] => (Allow) G:\Steam\steamapps\common\Batman2\Binaries\Win32\BatmanAC.exe (Warner Bros. Entertainment Inc. -> Rocksteady Studios Ltd.)
FirewallRules: [{9F8BC634-6CF2-4890-8437-D97486B369CD}] => (Allow) G:\Steam\steamapps\common\Batman2\Binaries\Win32\BatmanAC.exe (Warner Bros. Entertainment Inc. -> Rocksteady Studios Ltd.)
FirewallRules: [{D099B581-FAF1-416D-8E6A-F0158E9CB5E6}] => (Allow) G:\Steam\steamapps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe (Warner Bros. Interactive Entertainment, Inc. -> Rocksteady Studios Ltd.)
FirewallRules: [{BFC1BD76-9A6F-43A6-85A8-5D81AFE7EB06}] => (Allow) G:\Steam\steamapps\common\Batman Arkham City GOTY\Binaries\Win32\BatmanAC.exe (Warner Bros. Interactive Entertainment, Inc. -> Rocksteady Studios Ltd.)
FirewallRules: [{AC9399A9-40AA-47D8-9E7D-5879DCCAB536}] => (Allow) G:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{320C6647-800B-4B76-91F7-1CE1D90E747C}] => (Allow) G:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{8490C42E-A5A7-4505-AE6B-FC1965279C6F}G:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) G:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{7A4DD834-C316-4FD2-863C-D0D57AF187BC}G:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) G:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole, Inc. -> Bluehole GinnoGames, Inc.)
FirewallRules: [{D56E2C62-E6C1-42A0-AAF9-150C5D20F839}] => (Allow) G:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{0B4CA369-8E22-47FF-96DB-4058C861B7B6}] => (Allow) G:\Steam\steamapps\common\H1Z1\H1Z1_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [TCP Query User{F39E227C-46E4-4FAA-8D1E-174F82EB4C28}G:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) G:\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company LLC -> Daybreak Game Company)
FirewallRules: [UDP Query User{CAC59031-3B63-447A-9432-297017D3D03F}G:\steam\steamapps\common\h1z1\h1z1.exe] => (Allow) G:\steam\steamapps\common\h1z1\h1z1.exe (Daybreak Game Company LLC -> Daybreak Game Company)
FirewallRules: [TCP Query User{AC45851A-2F4C-4830-981C-C84902C065F3}D:\wow\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\wow\world of warcraft\utils\wowvoiceproxy.exe Keine Datei
FirewallRules: [UDP Query User{5F3CC204-F792-4105-BBF5-EF202B99451D}D:\wow\world of warcraft\utils\wowvoiceproxy.exe] => (Allow) D:\wow\world of warcraft\utils\wowvoiceproxy.exe Keine Datei
FirewallRules: [{92064F5D-6965-491C-863E-E37867241AF6}] => (Allow) G:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{F52F061D-67E7-4A94-8637-ADE00C59AF89}] => (Allow) G:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (Bluehole, Inc. -> PUBG Corporation )
FirewallRules: [{A892BDBF-12D7-413C-8105-893DB759127F}] => (Allow) G:\Steam\steamapps\common\RussianFishing4\rf4_x64.exe (Russian Fishing USA LLC -> )
FirewallRules: [{574A86FD-D962-49F4-B745-E8B92AE23070}] => (Allow) G:\Steam\steamapps\common\RussianFishing4\rf4_x64.exe (Russian Fishing USA LLC -> )
FirewallRules: [{1068AE67-B0AC-4998-8DFB-383264A459FB}] => (Allow) G:\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe () [Datei ist nicht signiert]
FirewallRules: [{D551F277-1189-447A-BA2D-80DA779F37BB}] => (Allow) G:\Steam\steamapps\common\Fishing Planet\FishingPlanet.exe () [Datei ist nicht signiert]
FirewallRules: [{6A18D56D-ECE1-4A4B-9376-9351507A0E77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5234FF49-B048-4D44-AEFD-3E5140289551}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A38E525D-29AF-4363-AC02-A89E7AA58F99}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{ADAFF4FC-29B3-48A8-933D-5A6C6E681983}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9AA5DDAB-F804-49F5-9CBD-627E5304D652}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6EFAAAF6-67C7-4A00-8568-A1FE1FF796BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DA39E4E7-4979-4D30-8764-56B16C5BDA73}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Wiederherstellungspunkte =========================

03-03-2019 16:07:30 Geplanter Prüfpunkt
11-03-2019 22:34:41 Geplanter Prüfpunkt
22-03-2019 10:48:35 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (03/23/2019 02:00:00 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1344) SRUJet: Fehler -1811 (0xfffff8ed) beim Öffnen von Protokolldatei C:\Windows\system32\SRU\SRU03FBA.log.

Error: (03/23/2019 01:19:58 AM) (Source: Windows Search Service) (EventID: 3100) (User: )
Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen.

Details:
        Zugriff verweigert  (HRESULT : 0x80070005) (0x80070005)

Error: (03/22/2019 10:48:37 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (03/15/2019 10:39:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm wab.exe, Version 6.3.9600.17415 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 22e8

Startzeit: 01d4db77739e5623

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\Windows Mail\wab.exe

Berichts-ID: c43e02bc-476a-11e9-86d5-0026832f2970

Vollständiger Name des fehlerhaften Pakets:

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/15/2019 12:24:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_winethc.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54504eb8
Name des fehlerhaften Moduls: USER32.dll, Version: 6.3.9600.19153, Zeitstempel: 0x5b93ffa7
Ausnahmecode: 0xc0000142
Fehleroffset: 0x00000000000ecf30
ID des fehlerhaften Prozesses: 0x1e18
Startzeit der fehlerhaften Anwendung: 0x01d4dabd1adbadb6
Pfad der fehlerhaften Anwendung: C:\Windows\System32\rundll32.exe
Pfad des fehlerhaften Moduls: USER32.dll
Berichtskennung: 58905f25-46b0-11e9-86d4-14dae9c2d68e
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (03/11/2019 11:19:21 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Die Open-Prozedur für den Dienst "WmiApRpl" in der DLL "C:\Windows\system32\wbem\wmiaprpl.dll" war nicht erfolgreich. Die Leistungsdaten für diesen Dienst sind nicht verfügbar. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Fehlercode.

Error: (03/11/2019 11:19:21 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Die erweiterbare Leistungsindikator-DLL rdyboost kann nicht geladen werden. Die ersten vier Bytes (DWORD) des Datenbereichs enthalten den Windows-Fehlercode.

Error: (03/11/2019 11:19:21 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.


Systemfehler:
=============
Error: (03/23/2019 01:47:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "RzSurroundVADStreamingService" wurde aufgrund folgenden Fehlers nicht gestartet:
Die Pipe wurde beendet.

Error: (03/23/2019 01:47:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Razer Synapse Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/23/2019 01:47:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Steam Client Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/23/2019 01:47:26 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/23/2019 01:47:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Client Virtualization Handler" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (03/23/2019 01:47:26 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/23/2019 01:47:26 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA Telemetry Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (03/23/2019 01:47:26 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Razer Game Manager" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Windows Defender:
===================================
Date: 2019-03-21 00:40:29.092
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {F4AB6693-239B-4AC7-BA96-E8B8EDA8342A}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Vollständige Überprüfung
Benutzer: ODIE\Micha

Date: 2019-03-17 12:57:25.096
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {0880724D-5329-4C29-8827-9B942B3101B7}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2019-03-10 13:22:37.050
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {0A6B486C-602E-470D-AE47-0378DFAB56D1}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2019-03-03 15:27:11.721
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {D636008C-1FBE-408C-8C44-3D17BA7AACC1}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2019-02-23 13:28:33.976
Description:
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {DE0B45E9-8501-4AD5-922D-B0B62733EC2E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM

Date: 2019-02-28 12:42:34.909
Description:
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion:
Vorherige Signaturversion: 1.289.106.0
Updatequelle: Microsoft Center zum Schutz vor Schadsoftware
Signaturtyp: AntiSpyware
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
Vorherige Modulversion: 1.1.15700.9
Fehlercode: 0x80070652
Fehlerbeschreibung: Es wird bereits anderweitig eine Installation ausgeführt. Beenden Sie den anderen Installationsvorgang, bevor Sie diese Installation fortsetzen.

Date: 2019-02-28 12:42:34.909
Description:
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion:
Vorherige Signaturversion: 1.289.106.0
Updatequelle: Microsoft Center zum Schutz vor Schadsoftware
Signaturtyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
Vorherige Modulversion: 1.1.15700.9
Fehlercode: 0x80070652
Fehlerbeschreibung: Es wird bereits anderweitig eine Installation ausgeführt. Beenden Sie den anderen Installationsvorgang, bevor Sie diese Installation fortsetzen.

Date: 2019-02-28 12:42:13.761
Description:
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion:
Vorherige Signaturversion:
Updatequelle: Benutzer
Signaturtyp:
Updatetyp:
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
Vorherige Modulversion:
Fehlercode: 0x80070652
Fehlerbeschreibung: Es wird bereits anderweitig eine Installation ausgeführt. Beenden Sie den anderen Installationsvorgang, bevor Sie diese Installation fortsetzen.

Date: 2019-02-28 12:42:13.761
Description:
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion:
Vorherige Signaturversion:
Updatequelle: Benutzer
Signaturtyp:
Updatetyp:
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Aktuelle Modulversion:
Vorherige Modulversion:
Fehlercode: 0x80070652
Fehlerbeschreibung: Es wird bereits anderweitig eine Installation ausgeführt. Beenden Sie den anderen Installationsvorgang, bevor Sie diese Installation fortsetzen.

Date: 2019-02-28 12:42:11.768
Description:
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion:
Vorherige Signaturversion: 1.289.21.0
Updatequelle: Microsoft Update-Server
Signaturtyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
Vorherige Modulversion: 1.1.15700.9
Fehlercode: 0x80240016
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".

CodeIntegrity:
===================================

Date: 2019-02-10 16:48:18.829
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-02-10 16:48:18.487
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-04 09:04:17.205
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-04 09:04:16.956
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-02-28 20:36:57.010
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-02-27 17:52:20.878
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-02-26 21:18:22.441
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-02-23 15:46:35.542
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 22%
Installierter physikalischer RAM: 16360.74 MB
Verfügbarer physikalischer RAM: 12648.84 MB
Summe virtueller Speicher: 32744.74 MB
Verfügbarer virtueller Speicher: 27555.42 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:117.38 GB) (Free:47.59 GB) NTFS
Drive d: () (Fixed) (Total:465.76 GB) (Free:350.7 GB) NTFS
Drive f: () (Fixed) (Total:976.22 GB) (Free:950.99 GB) NTFS
Drive g: () (Fixed) (Total:886.45 GB) (Free:701.44 GB) NTFS

\\?\Volume{d52fe080-ce98-11e4-824e-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.34 GB) (Free:0.31 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 3BCCDD74)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 117.4 GB) (Disk ID: DF789904)
Partition 1: (Not Active) - (Size=117.4 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 7167CB5A)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=976.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=886.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================

M-K-D-B 23.03.2019 17:08
:hallo:




Zitat:
Zitat von spoky001 (Beitrag 1714322)
seit neustem habe ich das Problem mit der Attention Required! Seite. Wenn ich auf diverse Seiten gehe wie z.b. Mydealz.de kommt immer diese eine Seite wo ich dann z.b im Bild alle Autos Markieren soll.
Einen ähnlich gelagerten Fall hatten wir vor kurzem. Das "Problem" hat sich nach kurzem von "alleine" gelöst.
Etwas Lesestoff

Wie kommst du darauf, dass das etwas mit Malware zu tun hat?



Zitat:
Zitat von spoky001 (Beitrag 1714322)
Ich habe erstmal versucht auf eigene Faust das Problem mit Hilfe des Forums hier zu lösen, jedoch ohne Erfolg. Ich habe jetzt erstmal wieder alle Programme von der Festplatte zur Beseitigung gelöscht und hoffe das ich das Problem mit euch gemeinsam lösen kann.

Bitte verzeiht mir das ich es auf eigene Faust lösen wollte und seid mir nicht böse das ich nun auch keine Logs oder änliches für euch habe.:heilig:
Wie sollen wir effektiv helfen, wenn du keine Logdateien präsentieren kannst? :)
Welche Tools wurden ausgeführt? Wurde etwas gefunden? Wenn ja, was?

Dein Verhalten macht den Anschein, als ob du etwas verheimlichen möchtest... ;)
Fangen wir doch mal mit deinem System an:
Zitat:
Zitat von spoky001 (Beitrag 1714322)
Platform: Windows Embedded 8.1 Industry Pro (Update) (X64) Sprache: Deutsch
Das ist aber kein Privatrechner, sondern eine gewerblich genutzer Rechner, richtig? Dafür ist die IT-Abteilung deiner Firma zuständig.

felix1 23.03.2019 20:40
Zitat:
Zitat von M-K-D-B (Beitrag 1714336)
Das ist aber kein Privatrechner, sondern eine gewerblich genutzer Rechner, richtig? Dafür ist die IT-Abteilung deiner Firma zuständig.
Zumal Windows Embedded 8.1 Industry Pro-Rechner meist schmalbrüstige Geräte sind, die dafür konzipiert sind, als Clients mit Servern zu arbeiten. Sie verfügen meist nicht über eigenständige Softwarepake wie Office usw.

spoky001 23.03.2019 21:14
Zitat:
Zitat von felix1 (Beitrag 1714343)
Zumal Windows Embedded 8.1 Industry Pro-Rechner meist schmalbrüstige Geräte sind, die dafür konzipiert sind, als Clients mit Servern zu arbeiten. Sie verfügen meist nicht über eigenständige Softwarepake wie Office usw.

Hallo und danke erstmal für eure Antworten, nein es handelt sich um ein Privat genutzten Rechner, es wäre schön wenn man als KFZ- Mechatroniker einen Rechner bekommen würde :D, das Windows Embedded 8.1 Industry habe ich von der Uni damals erhalten. Ich habe nichts zu verheimlichen.

M-K-D-B 23.03.2019 21:28
Ich sehe keine Malware in den Logdateien. :)

Ich denke, dass sich das Problem von alleine löst.
Man da nicht viel machen, außer vielleicht sich an den Betreiber des Servers zu wenden und ihn darauf hinweisen.









Dann wären wir durch!
Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber. :daumenhoc


Abschließend bitte noch einen Cleanup mit unserem TBCleanUpTool durchführen und unbedingt die Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt:

Lesestoff:
Anleitung: Cleanup & Maßnahmen zur Absicherung des Rechners




Wenn Du möchtest, kannst Du hier sagen, ob du mit mir und meiner Hilfe zufrieden warst...:dankeschoen:
Vielleicht möchtest du das Forum mit einer kleinen Spende https://www.trojaner-board.de/extra/spende.png unterstützen. :applaus:

Hinweis:
Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.

spoky001 23.03.2019 21:35
Zitat:
Zitat von M-K-D-B (Beitrag 1714336)
:hallo:


Wie kommst du darauf, dass das etwas mit Malware zu tun hat?

Vielen dank für die Begrüßung. Ich bin mir da selbst nicht sicher ich habe davon leider nicht so viel Ahnung.



Zitat:
Zitat von M-K-D-B (Beitrag 1714336)
Wie sollen wir effektiv helfen, wenn du keine Logdateien präsentieren kannst?
Welche Tools wurden ausgeführt? Wurde etwas gefunden? Wenn ja, was?

Ich habe jetzt mal Malwarebytes hier heruntergeladen, den Log werde ich hier gleich beifügen. Das Programm hat leider nichts gefunden. Seit dem ich das Problem habe kann ich z.b auf vielen Seiten die Cookies nicht akzeptieren. Wenn ich drauf drücke reagiert es leider nicht, es nervt ein wenig wenn die Pop Ups (falls man das so nennen darf) einfach stehen bleiben.


Zitat:
Zitat von M-K-D-B (Beitrag 1714336)

Das ist aber kein Privatrechner, sondern eine gewerblich genutzer Rechner, richtig? Dafür ist die IT-Abteilung deiner Firma zuständig.
Wie schon erwähnt handelt es sich um einen privaten Rechner, den Key für das Windows gab es damals von der Uni.

Zitat:
Zitat von M-K-D-B (Beitrag 1714336)


Vielendank für den Lesestoff, jedoch ist mein englisch sehr grauenhaft, sobald ich die Seite auf Deutsch stelle ist es leider weg. Google Übersetzer ist leider auch nicht so das wahre.
Hier ist der Scan-Bericht:

Code:
Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 23.03.19
Scan-Zeit: 21:19
Protokolldatei: edfe63b0-4da8-11e9-adb3-0026832f2970.json

-Softwaredaten-
Version: 3.7.1.2839
Komponentenversion: 1.0.563
Version des Aktualisierungspakets: 1.0.9816
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: ODIE\Micha

-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 287099
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 1 Min., 52 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswert: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Datei: 0
(keine bösartigen Elemente erkannt)

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)

WMI: 0
(keine bösartigen Elemente erkannt)


(end)
Jetzt habe ich noch den TDSSKiller durchlaufen lassen, auch hier der Log für euch, wie gesagt ich habe nichts zu verheimlichen.

Teil 1

Code:
21:25:28.0237 0x22e4  TDSS rootkit removing tool 3.1.0.26 Jan 16 2019 18:20:35
21:25:36.0687 0x22e4  ============================================================
21:25:36.0687 0x22e4  Current date / time: 2019/03/23 21:25:36.0687
21:25:36.0687 0x22e4  SystemInfo:
21:25:36.0687 0x22e4 
21:25:36.0687 0x22e4  OS Version: 6.3.9600 ServicePack: 0.0
21:25:36.0687 0x22e4  Product type: Workstation
21:25:36.0687 0x22e4  ComputerName: ODIE
21:25:36.0687 0x22e4  UserName: Micha
21:25:36.0687 0x22e4  Windows directory: C:\Windows
21:25:36.0687 0x22e4  System windows directory: C:\Windows
21:25:36.0687 0x22e4  Running under WOW64
21:25:36.0687 0x22e4  Processor architecture: Intel x64
21:25:36.0687 0x22e4  Number of processors: 8
21:25:36.0687 0x22e4  Page size: 0x1000
21:25:36.0687 0x22e4  Boot type: Normal boot
21:25:36.0687 0x22e4  CodeIntegrityOptions = 0x00000001
21:25:36.0687 0x22e4  ============================================================
21:25:36.0800 0x22e4  KLMD registered as C:\Windows\system32\drivers\86159688.sys
21:25:36.0800 0x22e4  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.19304, osProperties = 0x19
21:25:36.0952 0x22e4  System UUID: {45F41B4C-0A34-8915-4556-027A094D9042}
21:25:37.0407 0x22e4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:25:37.0415 0x22e4  Drive \Device\Harddisk1\DR1 - Size: 0x1D5849E000 ( 117.38 Gb ), SectorSize: 0x200, Cylinders: 0x3BDA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:25:37.0434 0x22e4  Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:25:37.0438 0x22e4  ============================================================
21:25:37.0438 0x22e4  \Device\Harddisk0\DR0:
21:25:37.0439 0x22e4  MBR partitions:
21:25:37.0439 0x22e4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
21:25:37.0439 0x22e4  \Device\Harddisk1\DR1:
21:25:37.0439 0x22e4  MBR partitions:
21:25:37.0439 0x22e4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xEAC1000
21:25:37.0439 0x22e4  \Device\Harddisk2\DR2:
21:25:37.0439 0x22e4  MBR partitions:
21:25:37.0439 0x22e4  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAF000
21:25:37.0439 0x22e4  \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0xAF800, BlocksNum 0x7A071000
21:25:37.0439 0x22e4  \Device\Harddisk2\DR2\Partition3: MBR, Type 0x7, StartLBA 0x7A120800, BlocksNum 0x6ECE7800
21:25:37.0439 0x22e4  ============================================================
21:25:37.0442 0x22e4  C: <-> \Device\Harddisk1\DR1\Partition1
21:25:37.0469 0x22e4  D: <-> \Device\Harddisk0\DR0\Partition1
21:25:37.0505 0x22e4  F: <-> \Device\Harddisk2\DR2\Partition2
21:25:37.0533 0x22e4  G: <-> \Device\Harddisk2\DR2\Partition3
21:25:37.0533 0x22e4  ============================================================
21:25:37.0534 0x22e4  Initialize success
21:25:37.0534 0x22e4  ============================================================
21:26:37.0748 0x1680  ============================================================
21:26:37.0748 0x1680  Scan started
21:26:37.0748 0x1680  Mode: Manual; SigCheck; TDLFS;
21:26:37.0748 0x1680  ============================================================
21:26:37.0748 0x1680  KSN ping started
21:26:37.0833 0x1680  KSN ping finished: true
21:26:39.0438 0x1680  ================ Scan BIOS =================================
21:26:39.0439 0x1680  BIOS info: vendor = American Megatrends Inc., version = 1704, releaseDate = 06/08/2011
21:26:39.0439 0x1680  Base board info: manufacturer = ASUSTeK Computer INC., product = P8P67 REV 3.1, version = Rev 1.xx
21:26:42.0163 0x1680  [ 0036E5EEB62049D6D62723019CBF3763, 500384DE5A7F2C078404BD04B98CCC22377844D68B92260C1F49F71D8EC3EE0A ] BIOS
21:26:42.0560 0x1680  BIOS - ok
21:26:42.0561 0x1680  ================ Scan system memory ========================
21:26:42.0562 0x1680  System memory - ok
21:26:42.0563 0x1680  ================ Scan services =============================
21:26:42.0624 0x1680  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
21:26:42.0657 0x1680  1394ohci - ok
21:26:42.0662 0x1680  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware          C:\Windows\system32\drivers\3ware.sys
21:26:42.0677 0x1680  3ware - ok
21:26:42.0695 0x1680  [ 508526EB2308D259DB8542FF50E9112C, DBF657F5D8890E2F58D3EE47B5F5A98DFB838CDD2871CE580B3FC1BDDC2A590E ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:26:42.0723 0x1680  ACPI - ok
21:26:42.0728 0x1680  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
21:26:42.0741 0x1680  acpiex - ok
21:26:42.0744 0x1680  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
21:26:42.0758 0x1680  acpipagr - ok
21:26:42.0761 0x1680  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi        C:\Windows\System32\drivers\acpipmi.sys
21:26:42.0779 0x1680  AcpiPmi - ok
21:26:42.0782 0x1680  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
21:26:42.0793 0x1680  acpitime - ok
21:26:42.0801 0x1680  [ 10A58DA77AE2073D1BAF4F13630EA516, CB914E1A70AA98CBAAE25192DF867D73605AA9AE5DB4EF77C274C266C2D0B2D8 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:26:42.0823 0x1680  AdobeARMservice - ok
21:26:42.0864 0x1680  [ FE8AAA4D35F26C0925A43E60CBDDE3BB, 230EB31C2E6141F9D743830ADF3A8F7283EA274FD335A6BE735801DFCC3352C8 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:26:43.0059 0x1680  AdobeFlashPlayerUpdateSvc - ok
21:26:43.0077 0x1680  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX        C:\Windows\system32\drivers\ADP80XX.SYS
21:26:43.0109 0x1680  ADP80XX - ok
21:26:43.0119 0x1680  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
21:26:43.0145 0x1680  AeLookupSvc - ok
21:26:43.0159 0x1680  [ B246BEE99740A2A357E21D863A18774D, CE000059C157101D6C429594E76A69C4E863A9E752015D542E4F308E8D515386 ] AFD            C:\Windows\system32\drivers\afd.sys
21:26:43.0213 0x1680  AFD - ok
21:26:43.0218 0x1680  [ 20FFFCA6E9870E358DBE402F7DBD3E6C, 8F964219C777C86ECC572E8B340C814CA09A0B88E4F1CF3DE4D5F1FD115D73ED ] agp440          C:\Windows\system32\drivers\agp440.sys
21:26:43.0231 0x1680  agp440 - ok
21:26:43.0235 0x1680  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache        C:\Windows\system32\DRIVERS\ahcache.sys
21:26:43.0252 0x1680  ahcache - ok
21:26:43.0258 0x1680  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG            C:\Windows\System32\alg.exe
21:26:43.0280 0x1680  ALG - ok
21:26:43.0286 0x1680  [ 4A3FAD94DC163A7C145EB7609D38925C, 81F4745EDC3267412016EE5FF954D9AAD60122421B5D3D9AA814DB2E464397A0 ] AmdK8          C:\Windows\System32\drivers\amdk8.sys
21:26:43.0316 0x1680  AmdK8 - ok
21:26:43.0323 0x1680  [ 466133F035543C450C6AC00B8860FDA4, 417F259B97E5AFD405ED9235551E31860A66D84868306AF90E94A46BAA0F6D75 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
21:26:43.0345 0x1680  AmdPPM - ok
21:26:43.0350 0x1680  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata        C:\Windows\system32\drivers\amdsata.sys
21:26:43.0361 0x1680  amdsata - ok
21:26:43.0369 0x1680  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:26:43.0384 0x1680  amdsbs - ok
21:26:43.0388 0x1680  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata        C:\Windows\system32\drivers\amdxata.sys
21:26:43.0397 0x1680  amdxata - ok
21:26:43.0403 0x1680  [ 2949C9F3F4E8C7A7D2F9F0C115A69C23, 7D015BE92F4EC7E6DE12C893AAB36EC9BBB0F2304F904EEE4C9F521E2FD7211C ] AppID          C:\Windows\system32\drivers\appid.sys
21:26:43.0446 0x1680  AppID - ok
21:26:43.0450 0x1680  [ 942C8297400FCFB13CEE3F3CD89C5CE5, AFD9EC35F6C44D86DD5943A2AB0B99B0C1B1783D70FD966F6467F97F0831403F ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:26:43.0462 0x1680  AppIDSvc - ok
21:26:43.0467 0x1680  [ 54ACF58A59A5FD3AD29EABBECA5B5BA4, B3B7572E93ACFF3CCB08968F33B796A6FC6DDCF75F48038A0626E46997AAD2D1 ] Appinfo        C:\Windows\System32\appinfo.dll
21:26:43.0488 0x1680  Appinfo - ok
21:26:43.0496 0x1680  [ 1A8EA3500576DD4B43E9318F10709E0E, 85F8581C319DE241B223366F08A5F9301858DA9DA1A0CAA10ED387A2B99EC216 ] AppMgmt        C:\Windows\System32\appmgmts.dll
21:26:43.0517 0x1680  AppMgmt - ok
21:26:43.0532 0x1680  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
21:26:43.0565 0x1680  AppReadiness - ok
21:26:43.0592 0x1680  [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc        C:\Windows\system32\appxdeploymentserver.dll
21:26:43.0639 0x1680  AppXSvc - ok
21:26:43.0646 0x1680  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:26:43.0662 0x1680  arcsas - ok
21:26:43.0666 0x1680  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi          C:\Windows\system32\drivers\atapi.sys
21:26:43.0679 0x1680  atapi - ok
21:26:43.0683 0x1680  [ 4ECC791539F23982411864037D1AC8FC, 063CBA00E453B5FF3CDFDFB5FA2E6A190A0DC3D399EC36F646262BE76F98A60C ] AthDfu          C:\Windows\System32\Drivers\AthDfu.sys
21:26:43.0699 0x1680  AthDfu - ok
21:26:43.0708 0x1680  [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
21:26:43.0729 0x1680  AudioEndpointBuilder - ok
21:26:43.0749 0x1680  [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:26:43.0781 0x1680  Audiosrv - ok
21:26:43.0788 0x1680  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:26:43.0806 0x1680  AxInstSV - ok
21:26:43.0821 0x1680  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv        C:\Windows\system32\drivers\bxvbda.sys
21:26:43.0844 0x1680  b06bdrv - ok
21:26:43.0847 0x1680  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
21:26:43.0864 0x1680  BasicDisplay - ok
21:26:43.0868 0x1680  [ BF002CF6CA41491665F7D3DCA51B7EFB, 4925B7689B47C583901CD75E7AB9160100838D5E33B829EB3CA4F71F7514958B ] BasicRender    C:\Windows\System32\drivers\BasicRender.sys
21:26:43.0904 0x1680  BasicRender - ok
21:26:43.0908 0x1680  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
21:26:43.0921 0x1680  bcmfn2 - ok
21:26:43.0931 0x1680  [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC          C:\Windows\System32\bdesvc.dll
21:26:43.0958 0x1680  BDESVC - ok
21:26:43.0962 0x1680  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
21:26:43.0978 0x1680  Beep - ok
21:26:44.0132 0x1680  [ 4C7A320A62D6C56CFFC7B8F0B83C2511, 02E163F1F5FACCE5406181BE8BF7D2376802EF2D0CCD79AC1B9562C49B265FCF ] BEService      C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
21:26:44.0441 0x1680  BEService - ok
21:26:44.0466 0x1680  [ 4BA5C192E77375B62D603B38B9D99128, E1BF8646DA927EF81A9B940D0FAE7E49116A713F335625C5E18224BBB79F165E ] BFE            C:\Windows\System32\bfe.dll
21:26:44.0506 0x1680  BFE - ok
21:26:44.0528 0x1680  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\Windows\System32\qmgr.dll
21:26:44.0566 0x1680  BITS - ok
21:26:44.0582 0x1680  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:26:44.0604 0x1680  Bonjour Service - ok
21:26:44.0610 0x1680  [ A9DB66E4A411D06B2EB41B3C39922BD0, B2BC8C4BF1E566325CDE327526A028B7B43708905F7B7D159DFD0F7BFC88B554 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:26:44.0660 0x1680  bowser - ok
21:26:44.0669 0x1680  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
21:26:44.0696 0x1680  BrokerInfrastructure - ok
21:26:44.0702 0x1680  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser        C:\Windows\System32\browser.dll
21:26:44.0726 0x1680  Browser - ok
21:26:44.0741 0x1680  [ 25B35FDD5FE5666DC49CCC0BC6A9AD81, 0F6A9783EF72AF53F20B19E51FE40A17F72FB9CC037670ADB77970AF9CA7E376 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
21:26:44.0765 0x1680  BtFilter - ok
21:26:44.0769 0x1680  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
21:26:44.0786 0x1680  BthAvrcpTg - ok
21:26:44.0790 0x1680  [ 12418846B057E4F92FC621F5C6CF737D, 0B8B0EADE4F2AD95D450A5C71C287C0F04F33897ABF27D3E3B6428A3C99C7B5D ] BthEnum        C:\Windows\System32\drivers\BthEnum.sys
21:26:44.0808 0x1680  BthEnum - ok
21:26:44.0814 0x1680  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum      C:\Windows\System32\drivers\bthhfenum.sys
21:26:44.0831 0x1680  BthHFEnum - ok
21:26:44.0834 0x1680  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
21:26:44.0848 0x1680  bthhfhid - ok
21:26:44.0860 0x1680  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
21:26:44.0881 0x1680  BthHFSrv - ok
21:26:44.0886 0x1680  [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
21:26:44.0901 0x1680  BTHMODEM - ok
21:26:44.0907 0x1680  [ D0AF91AF656E25AD8617EFA5B52EF457, FD723D99A0B8466BD991648DEED1831D32FD3A5995DD0E0837390746B8A7B439 ] BthPan          C:\Windows\System32\drivers\bthpan.sys
21:26:44.0930 0x1680  BthPan - ok
21:26:44.0960 0x1680  [ B810B2B39CCA90DC6BF42AF1658AE0D1, D184F927BCFBDE7063A0C9873BF2C174226E1AB5081A7108FCC66210CD117465 ] BTHPORT        C:\Windows\System32\Drivers\BTHport.sys
21:26:45.0022 0x1680  BTHPORT - ok
21:26:45.0028 0x1680  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv        C:\Windows\system32\bthserv.dll
21:26:45.0045 0x1680  bthserv - ok
21:26:45.0050 0x1680  [ 52A1B7ECAB4C9EF70FD41241691E09D3, F7A5BFE72D3151E73DD9922A76964C08AC1FDCB8460D9A17DCF8B7969006AD42 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
21:26:45.0077 0x1680  BTHUSB - ok
21:26:45.0082 0x1680  [ C17B61862B3C0D795A3FC68622D6729B, A8A65701400A799C8D56E86681C5A9889D5A56BD49F8414BA0EEB15E48DE0526 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:26:45.0116 0x1680  cdfs - ok
21:26:45.0124 0x1680  [ D61EDE3D49B04E703AEC3B111C763F42, A07780B7AAA982B1971C1FE3B597840541BF9FCE9D8322807C9C12300F9D2987 ] cdrom          C:\Windows\System32\drivers\cdrom.sys
21:26:45.0156 0x1680  cdrom - ok
21:26:45.0163 0x1680  [ ACFDC4EE40EC6E4A0AB91D923B8288C8, D31555AB31F504C247049219BE0ECDF26BB18E210BE7C45E8575FD166FD7EE23 ] CertPropSvc    C:\Windows\System32\certprop.dll
21:26:45.0189 0x1680  CertPropSvc - ok
21:26:45.0193 0x1680  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
21:26:45.0209 0x1680  circlass - ok
21:26:45.0221 0x1680  [ 83798256E1662C64991267FB95E1149F, F94E103CF66988B8235FCA0293C5F44C1A30D6D910ADBB05A9D638E0B0F64EE8 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
21:26:45.0238 0x1680  CLFS - ok
21:26:45.0245 0x1680  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
21:26:45.0267 0x1680  CmBatt - ok
21:26:45.0281 0x1680  [ 6B3BFBC8A93CA85851CAF9C5ACF89824, 6921D52AFCCDF3B712E5192C7278B5CE141CF37D90BA9932A12F218209CE2829 ] CNG            C:\Windows\system32\Drivers\cng.sys
21:26:45.0304 0x1680  CNG - ok
21:26:45.0309 0x1680  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
21:26:45.0324 0x1680  CompositeBus - ok
21:26:45.0327 0x1680  COMSysApp - ok
21:26:45.0330 0x1680  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
21:26:45.0350 0x1680  condrv - ok
21:26:45.0357 0x1680  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:26:45.0384 0x1680  CryptSvc - ok
21:26:45.0399 0x1680  [ E40884ED6E4FFD6593B800C220261698, B48A6636605C04164834C3E749691C18D3171B80C3E7DBB1D5D91BB87757D457 ] CSC            C:\Windows\system32\drivers\csc.sys
21:26:45.0441 0x1680  CSC - ok
21:26:45.0460 0x1680  [ 86079FF8A3B625ABAEB68841D2BF6FE6, 49FF4D458DF8FAB4ECA8CAD9BBF88C929C8B9AB7F063938A6A332B31F2C0F8EB ] CscService      C:\Windows\System32\cscsvc.dll
21:26:45.0496 0x1680  CscService - ok
21:26:45.0516 0x1680  [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:26:45.0546 0x1680  cvhsvc - ok
21:26:45.0552 0x1680  [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam            C:\Windows\system32\drivers\dam.sys
21:26:45.0562 0x1680  dam - ok
21:26:45.0581 0x1680  [ 3BC25B8189367964F8CEBCFAF05FB6D0, D7E492EDBF38931C123C8E3F0756F6996751A312218B98C42582172A411DF841 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:26:45.0625 0x1680  DcomLaunch - ok
21:26:45.0639 0x1680  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc      C:\Windows\System32\defragsvc.dll
21:26:45.0669 0x1680  defragsvc - ok
21:26:45.0682 0x1680  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\Windows\system32\das.dll
21:26:45.0712 0x1680  DeviceAssociationService - ok
21:26:45.0718 0x1680  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall  C:\Windows\system32\umpnpmgr.dll
21:26:45.0740 0x1680  DeviceInstall - ok
21:26:45.0746 0x1680  [ D1049D4D1311D43F6FCF180CAA5BF78B, E32D3B0FB3CFE2E9C243E7540B9A534B6B5B53759A3883A231EB69F4A8C823C1 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
21:26:45.0772 0x1680  Dfsc - ok
21:26:45.0778 0x1680  [ 5F78930AAB3900102EA8ACDD38F97324, 49CAE29CC7B1B846BDE603B1A411833162ACC1A9D1608BFDF67C2EA3A0EE0F85 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
21:26:45.0790 0x1680  dg_ssudbus - ok
21:26:45.0800 0x1680  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:26:45.0826 0x1680  Dhcp - ok
21:26:45.0858 0x1680  [ 3F317ADDC69826A8A8EBB9BC5B17826B, D789E4B96556797424D2573189A8CD0929525C3109BCC04E37C434212DF9A0EF ] DiagTrack      C:\Windows\system32\diagtrack.dll
21:26:45.0934 0x1680  DiagTrack - ok
21:26:45.0941 0x1680  [ BF6D8575DDF30384939B2D5251F27C1F, 1605530BC61FB726F1095C5B5C8E27B18C06BCE01948550988E9EDCEBBCC0B3D ] disk            C:\Windows\system32\drivers\disk.sys
21:26:45.0957 0x1680  disk - ok
21:26:45.0960 0x1680  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc          C:\Windows\System32\drivers\dmvsc.sys
21:26:45.0981 0x1680  dmvsc - ok
21:26:45.0989 0x1680  [ 2777CAC4B6E23C95A7C6E11701F4ED62, 0B6E2D46FD66BFB1AACF80A4E42B31470A6335FE484F469E478BFCDBA9B84F66 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:26:46.0017 0x1680  Dnscache - ok
21:26:46.0025 0x1680  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc        C:\Windows\System32\dot3svc.dll
21:26:46.0052 0x1680  dot3svc - ok
21:26:46.0060 0x1680  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS            C:\Windows\system32\dps.dll
21:26:46.0078 0x1680  DPS - ok
21:26:46.0081 0x1680  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
21:26:46.0093 0x1680  drmkaud - ok
21:26:46.0100 0x1680  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
21:26:46.0116 0x1680  DsmSvc - ok
21:26:46.0148 0x1680  [ B49A6DD8166B3D2115B86FD5E7293B9B, B149C621796E2D618E3195D1B02BA7F0884EF6EF7D6262374ADBCEE23053FBDE ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
21:26:46.0208 0x1680  DXGKrnl - ok
21:26:46.0214 0x1680  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost        C:\Windows\System32\eapsvc.dll
21:26:46.0238 0x1680  Eaphost - ok
21:26:46.0256 0x1680  [ 8546242AFC4D0E2A2B3EDEF04FB37713, 7CC189DDA2C15F2240C97B78EB27D2A00AC563BED7A7A7A33B736993DE8C7478 ] EasyAntiCheat  C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
21:26:46.0369 0x1680  EasyAntiCheat - ok
21:26:46.0432 0x1680  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv          C:\Windows\system32\drivers\evbda.sys
21:26:46.0525 0x1680  ebdrv - ok
21:26:46.0534 0x1680  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS            C:\Windows\System32\lsass.exe
21:26:46.0545 0x1680  EFS - ok
21:26:46.0550 0x1680  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass    C:\Windows\system32\drivers\EhStorClass.sys
21:26:46.0563 0x1680  EhStorClass - ok
21:26:46.0570 0x1680  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
21:26:46.0585 0x1680  EhStorTcgDrv - ok
21:26:46.0588 0x1680  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
21:26:46.0599 0x1680  ErrDev - ok
21:26:46.0715 0x1680  [ 401BFFB6391F1AB29F000CB18620CF2D, 7A9D36862CC6F47D2A78F54A201438B8331CABCAFBBA4A0338F41789DDA5BE0F ] EspoDriver      C:\Windows\system32\drivers\EspoDriver.sys
21:26:47.0052 0x1680  EspoDriver - ok
21:26:47.0066 0x1680  [ 74DBF5DE5CB747E73EC1FC6C3AC1CCFE, FDF2B5D381EE9BB1BE820D5BE86B6232030354B2CFBDC0494AC0BD4E85D9F32B ] ESProtectionDriver C:\Windows\system32\drivers\mbae64.sys
21:26:47.0077 0x1680  ESProtectionDriver - ok
21:26:47.0093 0x1680  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem    C:\Windows\system32\es.dll
21:26:47.0122 0x1680  EventSystem - ok
21:26:47.0130 0x1680  [ 2AF4299C296390EFCF9B72FA77E90019, 04C11EE58F612A09C6DBA958308B4E6AF0E3DFE5FC58E25EDFA3F6249BA45628 ] exfat          C:\Windows\system32\drivers\exfat.sys
21:26:47.0172 0x1680  exfat - ok
21:26:47.0181 0x1680  [ 858254B9CB16B912CAA4A6C4903971B9, C738CDCCFC0AEE289C0A775794D92069265F172FC9C8F7FF94968FCCB6016BC8 ] fastfat        C:\Windows\system32\drivers\fastfat.sys
21:26:47.0210 0x1680  fastfat - ok
21:26:47.0226 0x1680  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax            C:\Windows\system32\fxssvc.exe
21:26:47.0257 0x1680  Fax - ok
21:26:47.0261 0x1680  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc            C:\Windows\System32\drivers\fdc.sys
21:26:47.0272 0x1680  fdc - ok
21:26:47.0276 0x1680  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost        C:\Windows\system32\fdPHost.dll
21:26:47.0301 0x1680  fdPHost - ok
21:26:47.0306 0x1680  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:26:47.0318 0x1680  FDResPub - ok
21:26:47.0324 0x1680  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc          C:\Windows\system32\fhsvc.dll
21:26:47.0346 0x1680  fhsvc - ok
21:26:47.0351 0x1680  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:26:47.0365 0x1680  FileInfo - ok
21:26:47.0368 0x1680  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
21:26:47.0398 0x1680  Filetrace - ok
21:26:47.0401 0x1680  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
21:26:47.0416 0x1680  flpydisk - ok
21:26:47.0426 0x1680  [ E8F02B7A595B9E7F0A38BDB1C40C60A5, 64E64BA029B798739C38E524E24530EE570897E327B72854A8CBCE4FAD7AD1E5 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:26:47.0447 0x1680  FltMgr - ok
21:26:47.0476 0x1680  [ 223CD19D2F84B7B42081F4FB530B658F, 4A9D1A6688C3C8F0B866B0FE2715C9FBA62BE66D4ADCC327A8CABF9EA876A664 ] FontCache      C:\Windows\system32\FntCache.dll
21:26:47.0529 0x1680  FontCache - ok
21:26:47.0536 0x1680  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:26:47.0549 0x1680  FontCache3.0.0.0 - ok
21:26:47.0554 0x1680  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends      C:\Windows\system32\drivers\FsDepends.sys
21:26:47.0573 0x1680  FsDepends - ok
21:26:47.0577 0x1680  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:26:47.0587 0x1680  Fs_Rec - ok
21:26:47.0605 0x1680  [ 2C8D12C3C6E6FA87795B3328BDA85EB0, 042885D56D56BF43BE9C67721F2095FF896A91BE8C958058765D5191B6375A5F ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:26:47.0628 0x1680  fvevol - ok
21:26:47.0633 0x1680  [ 49E44F7804BD7575639A833ADC89A1B4, D89605DF3284A92623A42C906EABFAED4A206B089C76869D232F6AD711FEF6DB ] FxPPM          C:\Windows\System32\drivers\fxppm.sys
21:26:47.0653 0x1680  FxPPM - ok
21:26:47.0658 0x1680  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:26:47.0669 0x1680  gagp30kx - ok
21:26:47.0672 0x1680  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
21:26:47.0686 0x1680  gencounter - ok
21:26:47.0720 0x1680  [ 2B2B2EB1D6BEAA357E007921626DDAA7, 7D258BB20C8C6D487048C5DA1E860D3D4AD8E35153229A9854C55B636E77AFE4 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\elevation_service.exe
21:26:47.0901 0x1680  GoogleChromeElevationService - ok
21:26:47.0910 0x1680  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101    C:\Windows\system32\Drivers\msgpioclx.sys
21:26:47.0922 0x1680  GPIOClx0101 - ok
21:26:47.0951 0x1680  [ 2DAFF4F76A90E3C523C2FE50338537E9, 625745E538208B50E8F5A9A2C09C6CD03D51E424BB16BC6C5B156CBC25373B6D ] gpsvc          C:\Windows\System32\gpsvc.dll
21:26:47.0999 0x1680  gpsvc - ok
21:26:48.0010 0x1680  [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:26:48.0028 0x1680  gupdate - ok
21:26:48.0034 0x1680  [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:26:48.0043 0x1680  gupdatem - ok
21:26:48.0057 0x1680  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:26:48.0081 0x1680  HdAudAddService - ok
21:26:48.0086 0x1680  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
21:26:48.0105 0x1680  HDAudBus - ok
21:26:48.0109 0x1680  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt        C:\Windows\System32\drivers\HidBatt.sys
21:26:48.0122 0x1680  HidBatt - ok
21:26:48.0128 0x1680  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
21:26:48.0149 0x1680  HidBth - ok
21:26:48.0153 0x1680  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
21:26:48.0165 0x1680  hidi2c - ok
21:26:48.0169 0x1680  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr          C:\Windows\System32\drivers\hidir.sys
21:26:48.0181 0x1680  HidIr - ok
21:26:48.0184 0x1680  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv        C:\Windows\system32\hidserv.dll
21:26:48.0201 0x1680  hidserv - ok
21:26:48.0206 0x1680  [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
21:26:48.0236 0x1680  HidUsb - ok
21:26:48.0241 0x1680  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:26:48.0265 0x1680  hkmsvc - ok
21:26:48.0274 0x1680  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:26:48.0299 0x1680  HomeGroupListener - ok
21:26:48.0312 0x1680  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:26:48.0332 0x1680  HomeGroupProvider - ok
21:26:48.0337 0x1680  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:26:48.0350 0x1680  HpSAMD - ok
21:26:48.0374 0x1680  [ E45EB7AE6C890F2C8DE8F160AC641C8A, 3637D1FCE42A5600BD7FCC1F602C926968B327097CB36EE5FAC9140DD99EEC2D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:26:48.0410 0x1680  HTTP - ok
21:26:48.0414 0x1680  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:26:48.0423 0x1680  hwpolicy - ok
21:26:48.0427 0x1680  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
21:26:48.0440 0x1680  hyperkbd - ok
21:26:48.0443 0x1680  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
21:26:48.0459 0x1680  HyperVideo - ok
21:26:48.0465 0x1680  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
21:26:48.0493 0x1680  i8042prt - ok
21:26:48.0497 0x1680  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
21:26:48.0507 0x1680  iaLPSSi_GPIO - ok
21:26:48.0511 0x1680  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C    C:\Windows\System32\drivers\iaLPSSi_I2C.sys
21:26:48.0524 0x1680  iaLPSSi_I2C - ok
21:26:48.0540 0x1680  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
21:26:48.0560 0x1680  iaStorAV - ok
21:26:48.0573 0x1680  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV        C:\Windows\system32\drivers\iaStorV.sys
21:26:48.0591 0x1680  iaStorV - ok
21:26:48.0594 0x1680  IEEtwCollectorService - ok
21:26:48.0616 0x1680  [ 3B6E74B3BE0CA74525A37B5C8E510084, BEA54067BAA524A13A2F67EB76C6B206546BA06567446725CF8BA0D7F6A30311 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:26:48.0654 0x1680  IKEEXT - ok
21:26:48.0659 0x1680  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:26:48.0670 0x1680  intelide - ok
21:26:48.0674 0x1680  [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
21:26:48.0683 0x1680  intelpep - ok
21:26:48.0691 0x1680  [ 24FF99B76037E1449E4E2E6DDF03F417, D001CFF6CF40B47E8D235378A563DAE22D32B4AE1D50755436567B6B2BB188A3 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
21:26:48.0717 0x1680  intelppm - ok
21:26:48.0722 0x1680  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:26:48.0744 0x1680  IpFilterDriver - ok
21:26:48.0765 0x1680  [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:26:48.0800 0x1680  iphlpsvc - ok
21:26:48.0805 0x1680  [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV        C:\Windows\System32\drivers\IPMIDrv.sys
21:26:48.0826 0x1680  IPMIDRV - ok
21:26:48.0832 0x1680  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT          C:\Windows\system32\drivers\ipnat.sys
21:26:48.0851 0x1680  IPNAT - ok
21:26:48.0854 0x1680  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:26:48.0876 0x1680  IRENUM - ok
21:26:48.0880 0x1680  [ 00AD710037F4A4F00CDDD94CBA7BABEA, 234FD60D659D9338C9FA0A54D176840BFDDEEB358DAF67A8B13F7699D442CAC0 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:26:48.0892 0x1680  isapnp - ok
21:26:48.0905 0x1680  [ 6205F494094FC3DB755CB1139917D058, EFD5CBE86D4523F9693E26F78292A52B211B25451B47B26B8C3CBC00B3C86C25 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
21:26:48.0922 0x1680  iScsiPrt - ok
21:26:48.0927 0x1680  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
21:26:48.0938 0x1680  kbdclass - ok
21:26:48.0943 0x1680  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
21:26:48.0960 0x1680  kbdhid - ok
21:26:48.0963 0x1680  [ 16D1DB11507C2E4B43E13755325EDED9, A9216CC5201C7A84070A5F778F7CC509297BBB93F901E988E703BB45E7FA8663 ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
21:26:48.0976 0x1680  kbldfltr - ok
21:26:48.0981 0x1680  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic          C:\Windows\system32\DRIVERS\kdnic.sys
21:26:49.0000 0x1680  kdnic - ok
21:26:49.0004 0x1680  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\Windows\system32\lsass.exe
21:26:49.0014 0x1680  KeyIso - ok
21:26:49.0019 0x1680  [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:26:49.0033 0x1680  KSecDD - ok
21:26:49.0040 0x1680  [ A2EA29C09F31A60BF97EF2FF1F4A0DB1, 2C665B52485295D570DB6B4CCBCC40AA928340B2041B7CBA29E403B90AB99CC0 ] KSecPkg        C:\Windows\system32\Drivers\ksecpkg.sys
21:26:49.0064 0x1680  KSecPkg - ok
21:26:49.0067 0x1680  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk        C:\Windows\system32\drivers\ksthunk.sys
21:26:49.0079 0x1680  ksthunk - ok
21:26:49.0090 0x1680  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm          C:\Windows\system32\msdtckrm.dll
21:26:49.0111 0x1680  KtmRm - ok
21:26:49.0123 0x1680  [ B75ADC97905F43C7C946F1465A8697BD, AF50E3F5DBF222DB095B40FD4896650B5F8DD47153CB9A1ADE54D17FCE85C529 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:26:49.0152 0x1680  LanmanServer - ok
21:26:49.0161 0x1680  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:26:49.0180 0x1680  LanmanWorkstation - ok
21:26:49.0194 0x1680  [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc          C:\Windows\System32\GeofenceMonitorService.dll
21:26:49.0226 0x1680  lfsvc - ok
21:26:49.0231 0x1680  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:26:49.0247 0x1680  lltdio - ok
21:26:49.0256 0x1680  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc        C:\Windows\System32\lltdsvc.dll
21:26:49.0277 0x1680  lltdsvc - ok
21:26:49.0281 0x1680  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts        C:\Windows\System32\lmhsvc.dll
21:26:49.0302 0x1680  lmhosts - ok
21:26:49.0309 0x1680  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS        C:\Windows\system32\drivers\lsi_sas.sys
21:26:49.0324 0x1680  LSI_SAS - ok
21:26:49.0328 0x1680  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:26:49.0341 0x1680  LSI_SAS2 - ok
21:26:49.0345 0x1680  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
21:26:49.0356 0x1680  LSI_SAS3 - ok
21:26:49.0360 0x1680  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS        C:\Windows\system32\drivers\lsi_sss.sys
21:26:49.0371 0x1680  LSI_SSS - ok
21:26:49.0390 0x1680  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM            C:\Windows\System32\lsm.dll
21:26:49.0426 0x1680  LSM - ok
21:26:49.0432 0x1680  [ B0AF753AF28303BB69C67BD85F06FFC9, 6B6805C17BC39F972BB7FF52BDF798B0B57EC5D5F3CE1C97415E86110235C603 ] luafv          C:\Windows\system32\drivers\luafv.sys
21:26:49.0496 0x1680  luafv - ok
21:26:49.0506 0x1680  [ AC5EE6C2018136DC8A3CBC7E5FEF5647, B03F284A3BF774725C27E162E03823BD14749F51BA3519D36CC389A2ACF5D8FB ] MBAMChameleon  C:\Windows\System32\Drivers\MbamChameleon.sys
21:26:49.0521 0x1680  MBAMChameleon - ok
21:26:49.0527 0x1680  [ A7F4BFED307FE44FC280917F2D4A1759, 1409BFC8C64E95E9AAFEA7F3CC03801BBA8BDBCE73BF103AB0318C3BAF0D8968 ] MBAMFarflt      C:\Windows\system32\DRIVERS\farflt.sys
21:26:49.0541 0x1680  MBAMFarflt - ok
21:26:49.0546 0x1680  [ D78F272D07EDBB7BD5A99C4346B799DA, E2F418CE71D214A62D59D9A65EE4194A3AD7C5E30DF102A0C5AE15B55D88F3E3 ] MBAMProtection  C:\Windows\system32\DRIVERS\mbam.sys
21:26:49.0555 0x1680  MBAMProtection - ok
21:26:49.0734 0x1680  [ 4223C695C09CC3027B839803BB0359A1, A6CD44D233429F40DF3D0E411C98D88F7188EF5F66052E2E3ED703BABADC9438 ] MBAMService    C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
21:26:49.0863 0x1680  MBAMService - ok
21:26:49.0882 0x1680  [ A71F1F650EC0CE9D8EF793D706F08786, 5CD0CC94C24F729B0CA65237F548CB6885C71B0085137287D64DCDB33DD06F36 ] MBAMSwissArmy  C:\Windows\System32\Drivers\mbamswissarmy.sys
21:26:49.0895 0x1680  MBAMSwissArmy - ok
21:26:49.0901 0x1680  [ B393DF0FAC3C525AD2B061C063E0DE41, 552606C532B68B9944AB0193B6A34A5BBAD5F3C793F2A9593449DF9574D7582E ] MBAMWebProtection C:\Windows\system32\DRIVERS\mwac.sys
21:26:49.0911 0x1680  MBAMWebProtection - ok
21:26:49.0915 0x1680  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas        C:\Windows\system32\drivers\megasas.sys
21:26:49.0929 0x1680  megasas - ok
21:26:49.0943 0x1680  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
21:26:49.0972 0x1680  megasr - ok
21:26:49.0977 0x1680  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys
21:26:49.0988 0x1680  MEIx64 - ok
21:26:49.0993 0x1680  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS          C:\Windows\system32\mmcss.dll
21:26:50.0012 0x1680  MMCSS - ok
21:26:50.0016 0x1680  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem          C:\Windows\system32\drivers\modem.sys
21:26:50.0029 0x1680  Modem - ok
21:26:50.0033 0x1680  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor        C:\Windows\System32\drivers\monitor.sys
21:26:50.0049 0x1680  monitor - ok
21:26:50.0054 0x1680  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
21:26:50.0063 0x1680  mouclass - ok
21:26:50.0068 0x1680  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
21:26:50.0086 0x1680  mouhid - ok
21:26:50.0092 0x1680  [ E5E8665272EBCD87A0A632314F0D221D, 37FDC4CEB8E5FC39C10DE875676863D090CFEA708AC3A8415114DCDD94BD7A1D ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:26:50.0108 0x1680  mountmgr - ok
21:26:50.0117 0x1680  [ A17344F45723B57F22C521D5512A3BD2, 631A572B42EFC35EA2A1F0A56EBE66E9C9E7A3B6D79879820C10D8888FD5DFC2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:26:50.0129 0x1680  MozillaMaintenance - ok
21:26:50.0134 0x1680  [ BC08EC552C7238F437902FD300811D7E, 50EA6962E04B8041F7CE6D13065EA1A893CFF35C0DFD3DE79001B31D39083289 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:26:50.0172 0x1680  mpsdrv - ok
21:26:50.0192 0x1680  [ 4D33C8B6159B61C7F13984ED10EA2A82, 2E6B8C104F34BFED3C521062F0F12B8D9B4A602221256C41791932771EB79B2C ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:26:50.0225 0x1680  MpsSvc - ok
21:26:50.0232 0x1680  [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:26:50.0253 0x1680  MRxDAV - ok
21:26:50.0265 0x1680  [ 58F495747F93F5ED547A08E414168905, CB97CCA5ED24BFDB3AB0D582DB0B80DB889A31ED31B8D8AB5B063B0D8BFE0C55 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:26:50.0300 0x1680  mrxsmb - ok
21:26:50.0309 0x1680  [ EF3625A402C6C7660F66EB2C148FECAE, 0456014B9314940882F6BA64A44E70CB48F6B33ACA6CF7CE182EC94BD882F9E2 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:26:50.0350 0x1680  mrxsmb10 - ok
21:26:50.0359 0x1680  [ B37B58F9F80A51098C42663D5FA5F2BA, 996E2D8344F0095C136D1670D63A476E6B6F6BBA9DD773EEE5F0FD580562B000 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:26:50.0393 0x1680  mrxsmb20 - ok
21:26:50.0399 0x1680  [ D0C29B221F3BE89C23D8101EFF825B85, 4E1792759A37D83BFE37ACAF9C0614A8A771B452816FFEB8D2CDDF93A76F2084 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
21:26:50.0428 0x1680  MsBridge - ok
21:26:50.0435 0x1680  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC          C:\Windows\System32\msdtc.exe
21:26:50.0450 0x1680  MSDTC - ok
21:26:50.0456 0x1680  [ 74FFF6220E4016FD6F2F9991BE54654B, 74955C73C1353ADB9F6AD2B2E8D9D21F2EDDBE85B13EE70A8349732F6368F523 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:26:50.0486 0x1680  Msfs - ok
21:26:50.0490 0x1680  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32    C:\Windows\System32\drivers\msgpiowin32.sys
21:26:50.0499 0x1680  msgpiowin32 - ok
21:26:50.0502 0x1680  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf      C:\Windows\System32\drivers\mshidkmdf.sys
21:26:50.0514 0x1680  mshidkmdf - ok
21:26:50.0517 0x1680  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf      C:\Windows\System32\drivers\mshidumdf.sys
21:26:50.0528 0x1680  mshidumdf - ok
21:26:50.0531 0x1680  [ 15552CD43BD9DA6C00659167403D19E6, B93BAE0FB5A132FA3F0218B07284117D424175DB0A69C4FB3E3C2E33F122207F ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:26:50.0543 0x1680  msisadrv - ok
21:26:50.0549 0x1680  [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
21:26:50.0574 0x1680  MSiSCSI - ok
21:26:50.0577 0x1680  msiserver - ok
21:26:50.0581 0x1680  [ DC38FC9A9CE8B22C6D10F45BE2263F0B, 57C09C4BFD0DE6DC1F0C047A5080F71DD31D7D21C8AB08B1FC5DB88D0B74F3D3 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
21:26:50.0593 0x1680  MsKeyboardFilter - ok
21:26:50.0596 0x1680  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
21:26:50.0607 0x1680  MSKSSRV - ok
21:26:50.0611 0x1680  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
21:26:50.0629 0x1680  MsLldp - ok
21:26:50.0633 0x1680  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:26:50.0643 0x1680  MSPCLOCK - ok
21:26:50.0646 0x1680  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
21:26:50.0658 0x1680  MSPQM - ok
21:26:50.0671 0x1680  [ E97AB73CF5D6B77783F33B488F027C5F, C1D3267B8C8DF0C0728341C6980239273CB0C28F78F8134C7FD9CC27EA127853 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
21:26:50.0709 0x1680  MsRPC - ok
21:26:50.0714 0x1680  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
21:26:50.0726 0x1680  mssmbios - ok
21:26:50.0729 0x1680  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
21:26:50.0743 0x1680  MSTEE - ok
21:26:50.0746 0x1680  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
21:26:50.0760 0x1680  MTConfig - ok
21:26:50.0764 0x1680  [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup            C:\Windows\system32\Drivers\mup.sys
21:26:50.0779 0x1680  Mup - ok
21:26:50.0783 0x1680  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
21:26:50.0794 0x1680  mvumis - ok
21:26:50.0806 0x1680  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\Windows\system32\qagentRT.dll
21:26:50.0832 0x1680  napagent - ok
21:26:50.0845 0x1680  [ F3A70F2C79D91B7C95F78E959DEDAD0E, CB1826614D1EEC1C2E8E6F8D2B8DE486CE7AF628DAC6969655E57EC4BAF70C9D ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
21:26:50.0885 0x1680  NativeWifiP - ok
21:26:50.0886 0x1680  NAVENG - ok
21:26:50.0890 0x1680  NAVEX15 - ok
21:26:50.0897 0x1680  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\Windows\System32\ncasvc.dll
21:26:50.0921 0x1680  NcaSvc - ok
21:26:50.0927 0x1680  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\Windows\System32\ncbservice.dll
21:26:50.0946 0x1680  NcbService - ok
21:26:50.0951 0x1680  [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
21:26:50.0968 0x1680  NcdAutoSetup - ok
21:26:50.0993 0x1680  [ FCE3B49118A5431585D8BD884A98CE46, F6E590BB03B5615BA9D502502019CD60B76629E4F7D577DC639C5619A5B40B3F ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:26:51.0050 0x1680  NDIS - ok
21:26:51.0055 0x1680  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap        C:\Windows\system32\DRIVERS\ndiscap.sys
21:26:51.0072 0x1680  NdisCap - ok
21:26:51.0078 0x1680  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
21:26:51.0099 0x1680  NdisImPlatform - ok
21:26:51.0102 0x1680  [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:26:51.0129 0x1680  NdisTapi - ok
21:26:51.0133 0x1680  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
21:26:51.0154 0x1680  Ndisuio - ok
21:26:51.0158 0x1680  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
21:26:51.0174 0x1680  NdisVirtualBus - ok
21:26:51.0181 0x1680  [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
21:26:51.0220 0x1680  NdisWan - ok
21:26:51.0226 0x1680  [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy  C:\Windows\system32\DRIVERS\ndiswan.sys
21:26:51.0239 0x1680  NdisWanLegacy - ok
21:26:51.0244 0x1680  [ 4F5178EEF4CC259F0A8CF56C2F16ADDB, 1940275E4AB0A863B146736A189F797EE06841DD74376AF6E09033FB1EEB6643 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
21:26:51.0275 0x1680  NDProxy - ok
21:26:51.0281 0x1680  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu            C:\Windows\system32\drivers\Ndu.sys
21:26:51.0308 0x1680  Ndu - ok
21:26:51.0312 0x1680  [ AD6A78E25BBC916354753A500C4E73C8, 52D10B07CA52B90E6934EC8916715B1BA78711A12600980A3A7A16EA5408F99A ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
21:26:51.0339 0x1680  NetBIOS - ok
21:26:51.0350 0x1680  [ 0FE750800DEEE91D22399D081371BA79, 7E1E01A5D5BAE68F975070D1676BD830ADF010E42A8046D4074D17B710230CD9 ] NetBT          C:\Windows\system32\DRIVERS\netbt.sys
21:26:51.0407 0x1680  NetBT - ok
21:26:51.0411 0x1680  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\Windows\system32\lsass.exe
21:26:51.0421 0x1680  Netlogon - ok
21:26:51.0430 0x1680  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\Windows\System32\netman.dll
21:26:51.0446 0x1680  Netman - ok
21:26:51.0461 0x1680  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\Windows\System32\netprofmsvc.dll
21:26:51.0488 0x1680  netprofm - ok
21:26:51.0502 0x1680  [ C986B84B68DDA3EECB65F4C330175522, 8F40D3F90BC61FC57BEA66280FF30DEFB1F37F53636992B1C61D01465684BB39 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:26:51.0520 0x1680  NetTcpPortSharing - ok
21:26:51.0525 0x1680  [ 39935F3D3582A8B3387E9A2ED4C85413, 4B0629CA22B9AEF90425991BC800043DBE18007AC90445809A8D5D122B41218D ] netvsc          C:\Windows\System32\drivers\netvsc63.sys
21:26:51.0554 0x1680  netvsc - ok
21:26:51.0565 0x1680  [ A0D7A655BC61C2421CB33F3A1CD97B8A, EF87D3CDB01789195E83FB629B0871ED03211C624BCF814260D86DDA57BD9B33 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:26:51.0584 0x1680  NlaSvc - ok
21:26:51.0589 0x1680  [ DC64DE793FF584167371FB11C2744191, 0FA1617F9B791E7D85FD45A7545F1F41FD27A65BC6782EE990AC6F5ED32197FA ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:26:51.0609 0x1680  Npfs - ok
21:26:51.0613 0x1680  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig      C:\Windows\System32\drivers\npsvctrig.sys
21:26:51.0630 0x1680  npsvctrig - ok
21:26:51.0633 0x1680  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi            C:\Windows\system32\nsisvc.dll
21:26:51.0651 0x1680  nsi - ok
21:26:51.0655 0x1680  [ 018510D88536798852DAE12F9BA6E138, C0D89C36F8737FD139CEA80BED65D1DB4248E667804645FF71C39BA92FEC4109 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:26:51.0681 0x1680  nsiproxy - ok
21:26:51.0723 0x1680  [ E49796C3293F1DC41DE12B67E237B992, 4D2CFD4968C9D0674982280ED1605F966A4D69685F70AEE59501AB6F75ACA714 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:26:51.0798 0x1680  Ntfs - ok
21:26:51.0804 0x1680  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
21:26:51.0816 0x1680  Null - ok
21:26:51.0828 0x1680  [ 4FD4739B359C2923965FE99B03AFD090, 02D52056A7605B9413747B41CBA2A904FAB025250FE64DFCD435606EF898A73D ] NVHDA          C:\Windows\system32\drivers\nvhda64v.sys
21:26:51.0842 0x1680  NVHDA - ok
21:26:52.0143 0x1680  [ DE3B81FBC9B8EBA4C22B13E530DBD8B9, 0D488E435A763EBBAC783CAF8003472400D4263FA48C6947E76E71FF6719DE7D ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:26:52.0514 0x1680  nvlddmkm - ok
21:26:52.0536 0x1680  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:26:52.0549 0x1680  nvraid - ok
21:26:52.0555 0x1680  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:26:52.0567 0x1680  nvstor - ok
21:26:52.0572 0x1680  [ 1A86FC8AD50913B2DDA78964858D5E90, 6BF4A8955DE28B920D6CE4DC075D60CE8A3FC99A8327D60B38230B09D369FD1B ] NvStreamKms    C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
21:26:52.0580 0x1680  NvStreamKms - ok
21:26:52.0597 0x1680  [ A60A8F056347EAC4A86AAE9A309FD9C1, 9BFEE84BC47B8EB83903C5E6E93692475A6157F55E9CC465E5C0114CD79DD277 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
21:26:52.0619 0x1680  NvTelemetryContainer - ok
21:26:52.0624 0x1680  [ 0C8042CA2D71370AF5684B9F7C171CD6, 8932E489C2DCF9E016E7BFAF64FB47DCBC4635A2F79AB48A31B725AA9480F018 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
21:26:52.0637 0x1680  nvvad_WaveExtensible - ok
21:26:52.0642 0x1680  [ F438902185093A11F1BEC238B6B5862A, 18E1CFF7899B0A5D4DBA1633FF0D46ECE47AD0828CEA8D8A3A8B3549BFD1C9E6 ] nvvhci          C:\Windows\System32\drivers\nvvhci.sys
21:26:52.0653 0x1680  nvvhci - ok
21:26:52.0659 0x1680  [ 9D1D5F4A66790A6B6B83B49497DB7A9F, CEFB57674BB681A0F446307E6D10D141DC2F5C5650A481FCF4D7FA877F421D0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:26:52.0671 0x1680  nv_agp - ok
21:26:52.0679 0x1680  [ D21AC5BC8098D309FF47132451390679, 5CE539E25DB04CF474317188F6BED5CF302FF2805932426207969998E9E61B4A ] ose            C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:26:52.0692 0x1680  ose - ok
21:26:52.0819 0x1680  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc        C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:26:52.0969 0x1680  osppsvc - ok
21:26:52.0983 0x1680  [ B0D4F47A4D74F6E6A3FF6B2D109D6734, B34F0AF0EAE3A39FCE8BF3871310A7308E2C0BEF3E2F4CAB5852F8D2B2A8B457 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:26:53.0013 0x1680  p2pimsvc - ok
21:26:53.0025 0x1680  [ 0B100C336809C1D7DBD108A75DAFFEF5, F8E5B7EBB5F751FD5BBBD0A5CE5CD60F2EE32CC75EFA68DAAD17E2B26B71AF4E ] p2psvc          C:\Windows\system32\p2psvc.dll
21:26:53.0051 0x1680  p2psvc - ok
21:26:53.0058 0x1680  [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport        C:\Windows\System32\drivers\parport.sys
21:26:53.0076 0x1680  Parport - ok
21:26:53.0081 0x1680  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr        C:\Windows\system32\drivers\partmgr.sys
21:26:53.0096 0x1680  partmgr - ok
21:26:53.0108 0x1680  [ 10D35971E29936AE422A9C728014E761, 7B1547312663D50D72B76A7C13A01E532F41132A8E108AF5C6C086B456C86ACA ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:26:53.0144 0x1680  PcaSvc - ok
21:26:53.0156 0x1680  [ 9C1015B033ABDFC59584F480207AECDD, 288011A1F5A6C6D530122210EF3CAD09DF0BDA15E490CD5C52209037B3A0714F ] pci            C:\Windows\system32\drivers\pci.sys
21:26:53.0182 0x1680  pci - ok
21:26:53.0186 0x1680  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:26:53.0195 0x1680  pciide - ok
21:26:53.0201 0x1680  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:26:53.0213 0x1680  pcmcia - ok
21:26:53.0216 0x1680  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw            C:\Windows\system32\drivers\pcw.sys
21:26:53.0226 0x1680  pcw - ok
21:26:53.0231 0x1680  [ E6B3ACBA06BAF48594557FCCBFA66FD2, 44A0FAC6169D9130870456DEFBFFE563FCCC4AD7A9754B455D5A1C1A77F0699D ] pdc            C:\Windows\system32\drivers\pdc.sys
21:26:53.0246 0x1680  pdc - ok
21:26:53.0258 0x1680  [ CC8466CA31E50A2A5554162DCD9A4B35, 041349FE9DC0E1B1F99B1BDC80C89F78D73906176AFA7712E197EC87B5AF64D3 ] PDF24          C:\Program Files (x86)\PDF24\pdf24.exe
21:26:53.0278 0x1680  PDF24 - ok
21:26:53.0293 0x1680  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:26:53.0323 0x1680  PEAUTH - ok
21:26:53.0367 0x1680  [ 866798D84132326AAC518D1E6179C91E, 64EBBBF7F456675F5302C2EADA592F66AF381A4CA07E8322D857655CB9C9F829 ] PeerDistSvc    C:\Windows\system32\peerdistsvc.dll
21:26:53.0441 0x1680  PeerDistSvc - ok
21:26:53.0478 0x1680  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:26:53.0499 0x1680  PerfHost - ok
21:26:53.0533 0x1680  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla            C:\Windows\system32\pla.dll
21:26:53.0578 0x1680  pla - ok
21:26:53.0585 0x1680  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:26:53.0597 0x1680  PlugPlay - ok
21:26:53.0601 0x1680  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg    C:\Windows\system32\pnrpauto.dll
21:26:53.0628 0x1680  PNRPAutoReg - ok
21:26:53.0638 0x1680  [ B0D4F47A4D74F6E6A3FF6B2D109D6734, B34F0AF0EAE3A39FCE8BF3871310A7308E2C0BEF3E2F4CAB5852F8D2B2A8B457 ] PNRPsvc        C:\Windows\system32\pnrpsvc.dll
21:26:53.0655 0x1680  PNRPsvc - ok
21:26:53.0666 0x1680  [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
21:26:53.0691 0x1680  PolicyAgent - ok
21:26:53.0697 0x1680  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power          C:\Windows\system32\umpo.dll
21:26:53.0716 0x1680  Power - ok
21:26:53.0780 0x1680  [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify    C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
21:26:53.0981 0x1680  PrintNotify - ok
21:26:53.0990 0x1680  [ 400E95F70BC0336D206139C930C3F7F6, 50D40C9E4B4BAEC25067B0A4E55A8FE0CEF6C6B66BDBAE62BBDB5A02C62DDF7E ] Processor      C:\Windows\System32\drivers\processr.sys
21:26:54.0013 0x1680  Processor - ok
21:26:54.0022 0x1680  [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc        C:\Windows\system32\profsvc.dll
21:26:54.0045 0x1680  ProfSvc - ok
21:26:54.0052 0x1680  [ DEF4D00D1E55B1E29138A1541D0B82D3, CB042B49BA34F501CAD5AE1277EBFC34BD7BC01C1251811733901566880FF280 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:26:54.0078 0x1680  Psched - ok
21:26:54.0089 0x1680  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE          C:\Windows\system32\qwave.dll
21:26:54.0116 0x1680  QWAVE - ok
21:26:54.0121 0x1680  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:26:54.0132 0x1680  QWAVEdrv - ok
21:26:54.0136 0x1680  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:26:54.0149 0x1680  RasAcd - ok
21:26:54.0155 0x1680  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto        C:\Windows\System32\rasauto.dll
21:26:54.0169 0x1680  RasAuto - ok
21:26:54.0184 0x1680  [ 0A655DD285E4E1E2975CEAB8FDE75295, 023B73A71CB48578702548F8F1096BDF72BE09D836F2D324DDA869E4F0354133 ] RasMan          C:\Windows\System32\rasmans.dll
21:26:54.0208 0x1680  RasMan - ok
21:26:54.0213 0x1680  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:26:54.0227 0x1680  RasPppoe - ok
21:26:54.0248 0x1680  [ E4050440AD55D6409A6591E31EEC5955, 9FB245886B6A09D13219D4707B82DE91E2ACF3C6C10001253E95DF2BD688B591 ] Razer Chroma SDK Server C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
21:26:54.0269 0x1680  Razer Chroma SDK Server - ok
21:26:54.0293 0x1680  [ EFDB55EE88C20633DBB41051EDE8D09D, 6754C8A9425AA24833024FCDECC881A1331E7EA59CCC7B34C0C01A42CE5294A9 ] Razer Chroma SDK Service C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
21:26:54.0327 0x1680  Razer Chroma SDK Service - ok
21:26:54.0339 0x1680  [ 940375C6FFC9EC7BDC6C2FF7963B2F5A, D37882E32AC4F63417A84809426ECB53668EA980673FE4D5D1591557B8F1C96C ] Razer Game Manager Service C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
21:26:54.0352 0x1680  Razer Game Manager Service - ok
21:26:54.0367 0x1680  [ 8585A022F2FEDBE6D6FD50F86B47F54A, C559F8FAF251A432E11301B0001AE82641DF9E0B9B4CEDCBD5C5228DEF582CF9 ] Razer Synapse Service C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
21:26:54.0382 0x1680  Razer Synapse Service - ok
21:26:54.0394 0x1680  [ 3560C2D5A5DAC09BF81F5C5CD0029192, BF07AE75CAC322304024AF2385034847F18615439894306CC96D3F6F3C088CB5 ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
21:26:54.0428 0x1680  rdbss - ok
21:26:54.0433 0x1680  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
21:26:54.0448 0x1680  rdpbus - ok
21:26:54.0455 0x1680  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR          C:\Windows\system32\drivers\rdpdr.sys
21:26:54.0478 0x1680  RDPDR - ok
21:26:54.0484 0x1680  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:26:54.0493 0x1680  RdpVideoMiniport - ok
21:26:54.0501 0x1680  [ 468F9F3886DD3320357ECDBFF838DBBF, B8A8198A3D7CF19D662718AC9D33AD3722D179DA88D9F3FCFFB67AAA3F95C153 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:26:54.0527 0x1680  rdyboost - ok
21:26:54.0547 0x1680  [ B5C2EA2F3FC153B8C2095B338ED0035F, 467977E9C37378BDFC2929F9DD8FEBE0D76F89C278EE0A5D9118A08F2B1285EF ] ReFS            C:\Windows\system32\drivers\ReFS.sys
21:26:54.0595 0x1680  ReFS - ok
21:26:54.0605 0x1680  [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:26:54.0633 0x1680  RemoteAccess - ok
21:26:54.0642 0x1680  [ 7594FEFBAD6BA4645CE7AA175C19BAD0, 32625BA39B905576F0465E261F15D222ED228A19071E3A1BC4286B5FECA0F948 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:26:54.0668 0x1680  RemoteRegistry - ok
21:26:54.0677 0x1680  [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
21:26:54.0695 0x1680  RFCOMM - ok
21:26:54.0700 0x1680  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:26:54.0726 0x1680  RpcEptMapper - ok
21:26:54.0730 0x1680  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\Windows\system32\locator.exe
21:26:54.0748 0x1680  RpcLocator - ok
21:26:54.0766 0x1680  [ 3BC25B8189367964F8CEBCFAF05FB6D0, D7E492EDBF38931C123C8E3F0756F6996751A312218B98C42582172A411DF841 ] RpcSs          C:\Windows\system32\rpcss.dll
21:26:54.0794 0x1680  RpcSs - ok
21:26:54.0799 0x1680  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:26:54.0816 0x1680  rspndr - ok
21:26:54.0832 0x1680  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168        C:\Windows\system32\DRIVERS\Rt630x64.sys
21:26:54.0855 0x1680  RTL8168 - ok
21:26:54.0876 0x1680  [ 6DCAA331BCBA7D6539550214B23A30F1, AB7D5344EF5580856A43C325CE15909E8A00FB88CFEEEE7335357C458F950A83 ] RzActionSvc    C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
21:26:54.0899 0x1680  RzActionSvc - ok
21:26:54.0905 0x1680  [ 2ABAF8ACE5B68436452DEC163C6E524A, 428246B155E16CF04D3C0775A6E9625FCEC5FEDDBFF2C75BEA060E77162C38C0 ] RzCommon        C:\Windows\System32\drivers\RzCommon.sys
21:26:54.0947 0x1680  RzCommon - ok
21:26:54.0951 0x1680  [ C780531A3929B27933DF647F7FAD227C, 824484C843ED2981471C023C2CC037EA0228227BCB0B9959B2B9AC550A76B934 ] rzdaendpt      C:\Windows\System32\drivers\rzdaendpt.sys
21:26:54.0964 0x1680  rzdaendpt - ok
21:26:54.0968 0x1680  [ 6A71BE2DBB3A733B745504B28D40912C, ED1E0529ADBA12A9D6B421791508170F7F5CDE35D2F08E7F02711950062B773D ] RzDev_0203      C:\Windows\System32\drivers\RzDev_0203.sys
21:26:54.0979 0x1680  RzDev_0203 - ok
21:26:54.0983 0x1680  [ 53AD100D0500FEA97C47EFA8FDD5F2B7, 373A698A50C9D6454081BDE146FF7DDC4A82BD90D28BABF0E293DC44DBAA4EB1 ] rzendpt        C:\Windows\System32\drivers\rzendpt.sys
21:26:54.0992 0x1680  rzendpt - ok
21:26:54.0996 0x1680  [ B1EC5E403363E26CC102B5241B9B246F, 3D72BF57E30C3EFB0E000234A9B3AC02765AFFC87F118E3B05244A444B91B7DC ] rzmpos          C:\Windows\System32\drivers\rzmpos.sys
21:26:55.0013 0x1680  rzmpos - ok
21:26:55.0019 0x1680  [ 8F8C6EDB43BA9E60917ED76EA2E02CDE, AED12241690DFE6FAFF54D85FFD0926B84135BBEE1F9C9ED9850E11F4D5330EE ] RzOvlMon        C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
21:26:55.0026 0x1680  RzOvlMon - ok
21:26:55.0031 0x1680  [ 9B07BB39BE7B684492EDDF4AA7CB3149, E9643182380BA2C02B6119B4A4E385C3C7E49B9C7F0B6A990E9E279F3D2BD648 ] RZSURROUNDVADService C:\Windows\system32\drivers\RzSurroundVAD.sys
21:26:55.0042 0x1680  RZSURROUNDVADService - ok
21:26:55.0148 0x1680  [ 0284855D732C769662B6EABA70E779ED, 7B4951B38CCB9DB00F38520B8B409ABBA81EFD501262C85DE65A9B4AA233BAEF ] RzSurroundVADStreamingService C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
21:26:55.0271 0x1680  RzSurroundVADStreamingService - ok
21:26:55.0283 0x1680  [ C87957DBF0B18C6445FC03220370C87F, 0A14CF8CE3C1207451B14F83AD0A81017D0B37240529C507C9C5BC3802658426 ] rzudd          C:\Windows\System32\drivers\rzudd.sys
21:26:55.0299 0x1680  rzudd - ok
21:26:55.0303 0x1680  [ 6988F8A7C8ACF1B9642428CC896DA646, E393B4DCF8B7A11594FC7AF28E92CD7A6E897BD3D53BFE3C00B9E366AF45ECBC ] rzvkeyboard    C:\Windows\System32\drivers\rzvkeyboard.sys
21:26:55.0312 0x1680  rzvkeyboard - ok
21:26:55.0315 0x1680  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap          C:\Windows\System32\drivers\vms3cap.sys
21:26:55.0326 0x1680  s3cap - ok
21:26:55.0330 0x1680  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs          C:\Windows\system32\lsass.exe
21:26:55.0340 0x1680  SamSs - ok
21:26:55.0345 0x1680  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:26:55.0357 0x1680  sbp2port - ok
21:26:55.0364 0x1680  [ 305B725E3FC1936162FE84A0BB526F22, 341E311BAF071F630E277BA41629883D5F8DB76E820425AB898BAC13D09971DC ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:26:55.0383 0x1680  SCardSvr - ok
21:26:55.0391 0x1680  [ 92D2FA1870F4EB4A9BA767DB6E0DEF6F, AB019E17D5F330CBB7F7CAF8CEB01F3F3DBBB181CDE19E4C2354AF51E66C8291 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
21:26:55.0409 0x1680  ScDeviceEnum - ok
21:26:55.0413 0x1680  [ DEA731D96816F1F67C32F49E4EF248DD, 6A977D80164616A85BDAE437A3D50E055720E3163941259F19E8719F54BE267D ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:26:55.0436 0x1680  scfilter - ok
21:26:55.0462 0x1680  [ 32B57B1230143F080CFD91AA1072A5AE, 08D547A08CEECE8A74ABD26C53C1C4DE93026F676F69B6D74812062B0A3FC1AF ] Schedule        C:\Windows\system32\schedsvc.dll
21:26:55.0511 0x1680  Schedule - ok
21:26:55.0519 0x1680  [ ACFDC4EE40EC6E4A0AB91D923B8288C8, D31555AB31F504C247049219BE0ECDF26BB18E210BE7C45E8575FD166FD7EE23 ] SCPolicySvc    C:\Windows\System32\certprop.dll
21:26:55.0535 0x1680  SCPolicySvc - ok
21:26:55.0545 0x1680  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus          C:\Windows\System32\drivers\sdbus.sys
21:26:55.0561 0x1680  sdbus - ok
21:26:55.0567 0x1680  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
21:26:55.0578 0x1680  sdstor - ok
21:26:55.0581 0x1680  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:26:55.0596 0x1680  secdrv - ok
21:26:55.0600 0x1680  [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon        C:\Windows\system32\seclogon.dll
21:26:55.0618 0x1680  seclogon - ok
21:26:55.0623 0x1680  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\Windows\System32\sens.dll
21:26:55.0638 0x1680  SENS - ok
21:26:55.0647 0x1680  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:26:55.0668 0x1680  SensrSvc - ok
21:26:55.0673 0x1680  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx          C:\Windows\system32\drivers\SerCx.sys
21:26:55.0689 0x1680  SerCx - ok
21:26:55.0697 0x1680  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
21:26:55.0708 0x1680  SerCx2 - ok
21:26:55.0712 0x1680  [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum        C:\Windows\System32\drivers\serenum.sys
21:26:55.0724 0x1680  Serenum - ok
21:26:55.0729 0x1680  [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial          C:\Windows\System32\drivers\serial.sys
21:26:55.0742 0x1680  Serial - ok
21:26:55.0746 0x1680  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\Windows\System32\drivers\sermouse.sys
21:26:55.0759 0x1680  sermouse - ok
21:26:55.0771 0x1680  [ A3955F30E33409E6F548592C187B21AC, EF87E0A71D23569CDCACD408278BD2274031D530689C36921CDCE4ED5BD20B3F ] SessionEnv      C:\Windows\system32\sessenv.dll
21:26:55.0799 0x1680  SessionEnv - ok
21:26:55.0804 0x1680  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy        C:\Windows\System32\drivers\sfloppy.sys
21:26:55.0821 0x1680  sfloppy - ok
21:26:55.0840 0x1680  [ 9242988D74674C2819D454F001457BAD, D353A30D224940B0C7750161782CE98D4C47ABC5C4E04B100F8ABB6A3402B5AD ] Sftfs          C:\Windows\system32\DRIVERS\Sftfswin7.sys
21:26:55.0866 0x1680  Sftfs - ok
21:26:55.0892 0x1680  [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist        C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:26:55.0914 0x1680  sftlist - ok
21:26:55.0923 0x1680  [ 44391FA910901E2B8A2F831340FD707A, 9ACAD655DCCCAF562CEDE9180B187C229FFCAF97BA87D78225253C7868698CB8 ] Sftplay        C:\Windows\system32\DRIVERS\Sftplaywin7.sys
21:26:55.0940 0x1680  Sftplay - ok
21:26:55.0943 0x1680  [ 8654DBDC8ED8ED7257618D11B6C590BE, 1A410CCB7CDE99C607662E21054E959D3349647C5BD810CE744DA59EEB9C3FA2 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirwin7.sys
21:26:55.0966 0x1680  Sftredir - ok
21:26:55.0973 0x1680  [ 648F0152A7BAE175905C22E8BD839760, 6E3FC032212FD1F39FEE96D230F47BB25355587E8A73E34776CAEA8C0C1FB58E ] Sftvol          C:\Windows\system32\DRIVERS\Sftvolwin7.sys
21:26:55.0981 0x1680  Sftvol - ok
21:26:55.0988 0x1680  [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:26:55.0999 0x1680  sftvsa - ok
21:26:56.0014 0x1680  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:26:56.0040 0x1680  SharedAccess - ok
21:26:56.0057 0x1680  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:26:56.0088 0x1680  ShellHWDetection - ok
21:26:56.0092 0x1680  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:26:56.0102 0x1680  SiSRaid2 - ok
21:26:56.0107 0x1680  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:26:56.0120 0x1680  SiSRaid4 - ok
21:26:56.0124 0x1680  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost        C:\Windows\System32\smphost.dll
21:26:56.0165 0x1680  smphost - ok
21:26:56.0171 0x1680  [ 961507DB02D7AC0B7A7828D457143B8E, F423BE6287C65960A955EBB3BFBAC047313BEB2F54920A6E57E51FCCE855F5E0 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:26:56.0183 0x1680  SNMPTRAP - ok
21:26:56.0198 0x1680  [ F6AF6499C3788105EA7AF1DA27769A77, F847789B0AD498CC9C985F334F7BA0906ACB41FB356CC2EF2A00C62C75D94A79 ] spaceport      C:\Windows\system32\drivers\spaceport.sys
21:26:56.0219 0x1680  spaceport - ok
21:26:56.0224 0x1680  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx          C:\Windows\system32\drivers\SpbCx.sys
21:26:56.0234 0x1680  SpbCx - ok
21:26:56.0254 0x1680  [ 851F06253BED584E39F5126EB5C2D6DD, 5144AA4C45598B0749D4F2CF477BB8E9B75DFB858385888E31E703B7C8FB6463 ] Spooler        C:\Windows\System32\spoolsv.exe
21:26:56.0289 0x1680  Spooler - ok
21:26:56.0405 0x1680  [ 8B14E197DB9C8E2B5447CD8AFCE92E1F, CF22D703FA779BE84E3957E7A18EF4837B1328914B2634898BBCABE08BD239C1 ] sppsvc          C:\Windows\system32\sppsvc.exe
21:26:56.0572 0x1680  sppsvc - ok
21:26:56.0589 0x1680  [ 6E978E17F9C94F9C59200FF077BF4827, 67FC50049F2BB74A3B694481D838604E6BC6DC3C1ED99AA7DCA18DD4F026404D ] srv            C:\Windows\system32\DRIVERS\srv.sys
21:26:56.0630 0x1680  srv - ok
21:26:56.0645 0x1680  [ 20ED7E59F72B0401DD8E0AF697E4D1D0, 910A1049A9FA366022C7D03EEF65F76DFA3F973C4C16B742066316E96CB15DA9 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:26:56.0694 0x1680  srv2 - ok
21:26:56.0703 0x1680  [ 008861C301DA58782DE72B6783AE9706, 6BBCB0D1064F20CF356F35A7F5CD7AE76B1F43FD73AD238B844FB4DFA771AB6E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:26:56.0736 0x1680  srvnet - ok
21:26:56.0745 0x1680  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
21:26:56.0763 0x1680  SSDPSRV - ok
21:26:56.0769 0x1680  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc        C:\Windows\system32\sstpsvc.dll
21:26:56.0788 0x1680  SstpSvc - ok
21:26:56.0796 0x1680  [ F0B59ADCD06BCEB9D47311B7041CA2C9, 6299AB514CBE153C875F083ED789F6205C1781C0178759521F5A6D8007F5257C ] ssudmdm        C:\Windows\system32\DRIVERS\ssudmdm.sys
21:26:56.0812 0x1680  ssudmdm - ok
21:26:56.0831 0x1680  [ 7DB9E612A2742ACEAB080B882E83141C, FFD1FA36E732F55223F3F4B5F845331DBB3073B023C2C5BF51A0E7680DEE7FA7 ] ss_conn_service C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
21:26:56.0855 0x1680  ss_conn_service - ok
21:26:56.0888 0x1680  [ A873E161E3F8E14DB500DB8B0A182302, FEB62848BF883F38BAC51B0DD8CF8294B1C9CC709EF176727F82FF624CE96865 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:26:56.0931 0x1680  Steam Client Service - ok
21:26:56.0936 0x1680  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:26:56.0945 0x1680  stexstor - ok
21:26:56.0961 0x1680  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\Windows\System32\wiaservc.dll
21:26:56.0998 0x1680  stisvc - ok
21:26:57.0004 0x1680  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
21:26:57.0018 0x1680  storahci - ok
21:26:57.0023 0x1680  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt        C:\Windows\system32\drivers\vmstorfl.sys
21:26:57.0036 0x1680  storflt - ok
21:26:57.0041 0x1680  [ 1D5A045F59D216448FCDE3A8D69970E2, CEDEB0843D93339D10FE4BC209CCFCB6E12C6064FD62694DA7675082E8B8C915 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
21:26:57.0054 0x1680  stornvme - ok
21:26:57.0058 0x1680  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc        C:\Windows\system32\storsvc.dll
21:26:57.0079 0x1680  StorSvc - ok
21:26:57.0083 0x1680  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc        C:\Windows\system32\drivers\storvsc.sys
21:26:57.0093 0x1680  storvsc - ok
21:26:57.0098 0x1680  [ B3A905F6E860F1C58264592F8393E322, 5509CF740CEE087B526AEFA9ABEF234D52170D5EA1C97C1837D690DC6FFFFDAE ] storvsp        C:\Windows\System32\drivers\storvsp.sys
21:26:57.0120 0x1680  storvsp - ok
21:26:57.0125 0x1680  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc          C:\Windows\system32\svsvc.dll
21:26:57.0142 0x1680  svsvc - ok
21:26:57.0147 0x1680  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\Windows\System32\drivers\swenum.sys
21:26:57.0156 0x1680  swenum - ok
21:26:57.0173 0x1680  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv          C:\Windows\System32\swprv.dll
21:26:57.0202 0x1680  swprv - ok
21:26:57.0229 0x1680  [ 0404A539EC3D731EE42632AAFFF0666A, 5558B96C9A425ADEC69A020E0FEDB6D7562A60E403A2ECDCE58CAF2CA155549F ] SysMain        C:\Windows\system32\sysmain.dll
21:26:57.0270 0x1680  SysMain - ok
21:26:57.0281 0x1680  [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
21:26:57.0307 0x1680  SystemEventsBroker - ok
21:26:57.0314 0x1680  [ 54A1F83B166F1062000A0D816CB3B43A, 8A104B2141546984CFB988CC178EB1910F6B42A19CB75A30F4E74D5EE67901EB ] TabletInputService C:\Windows\System32\TabSvc.dll
21:26:57.0336 0x1680  TabletInputService - ok
21:26:57.0347 0x1680  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv        C:\Windows\System32\tapisrv.dll
21:26:57.0370 0x1680  TapiSrv - ok
21:26:57.0416 0x1680  [ C9BADF315D3887534B432063B82A8ED2, 590EA650655431F0689753A7CF8611339F903A22010EE6F8394C0380F83815B1 ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
21:26:57.0508 0x1680  Tcpip - ok
21:26:57.0555 0x1680  [ C9BADF315D3887534B432063B82A8ED2, 590EA650655431F0689753A7CF8611339F903A22010EE6F8394C0380F83815B1 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:26:57.0614 0x1680  TCPIP6 - ok
21:26:57.0622 0x1680  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:26:57.0641 0x1680  tcpipreg - ok
21:26:57.0648 0x1680  [ 576FA545FAB846B06E79B324160DE25C, 14F1FD2769E7F5362E6452CA061564EF3DEBFDF6BC8EFF0CD4E22068A460A727 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
21:26:57.0674 0x1680  tdx - ok
21:26:57.0678 0x1680  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
21:26:57.0688 0x1680  terminpt - ok
21:26:57.0711 0x1680  [ 4A26668577CC092A2E0C83D3979E626D, D16537A71A190A6B987CFA08AC59A8EB8A768888C1CC48A4AB858478F8180703 ] TermService    C:\Windows\System32\termsrv.dll
21:26:57.0750 0x1680  TermService - ok
21:26:57.0755 0x1680  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\Windows\system32\themeservice.dll
21:26:57.0769 0x1680  Themes - ok
21:26:57.0774 0x1680  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER    C:\Windows\system32\mmcss.dll
21:26:57.0788 0x1680  THREADORDER - ok
21:26:57.0796 0x1680  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
21:26:57.0818 0x1680  TimeBroker - ok
21:26:57.0826 0x1680  [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM            C:\Windows\system32\drivers\tpm.sys
21:26:57.0844 0x1680  TPM - ok
21:26:57.0849 0x1680  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\Windows\System32\trkwks.dll
21:26:57.0866 0x1680  TrkWks - ok
21:26:57.0872 0x1680  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:26:57.0892 0x1680  TrustedInstaller - ok
21:26:57.0896 0x1680  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:26:57.0923 0x1680  TsUsbFlt - ok
21:26:57.0928 0x1680  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD        C:\Windows\System32\drivers\TsUsbGD.sys
21:26:57.0949 0x1680  TsUsbGD - ok
21:26:57.0956 0x1680  [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:26:57.0975 0x1680  tunnel - ok
21:26:57.0979 0x1680  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:26:57.0992 0x1680  uagp35 - ok
21:26:57.0998 0x1680  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
21:26:58.0010 0x1680  UASPStor - ok
21:26:58.0018 0x1680  [ 42FF91AAAFB5BFA7FE0F5A31E8D83AE3, 11D4EF275357BB69F9431F9B24A5524A631D65610F8128F68290C6E839009BE2 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
21:26:58.0032 0x1680  UCX01000 - ok
21:26:58.0042 0x1680  [ 326805D03C5CC71967B21BEF33A02042, 00482C30FE75DB374BB75FF1E3166CB6B4804D7CF3195D04E5A87895541B31A0 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:26:58.0076 0x1680  udfs - ok
21:26:58.0080 0x1680  [ 5DFA6081BE0AE39EA5B3A38CAC6A961F, D2EC133CF68E794225DE4FAB678F9FECD20D82EC7539A450769076BA57C1914F ] UEFI            C:\Windows\System32\drivers\UEFI.sys
21:26:58.0093 0x1680  UEFI - ok
21:26:58.0099 0x1680  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect      C:\Windows\system32\UI0Detect.exe
21:26:58.0119 0x1680  UI0Detect - ok
21:26:58.0125 0x1680  [ 4EF2D1DCFFC75ADFFFDD471BD9EBEDCC, 9B47DB34537B08D2F934C5FA0503B3441F718F0F8CEDF2483F77C684BD2D63E5 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:26:58.0135 0x1680  uliagpkx - ok
21:26:58.0141 0x1680  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus          C:\Windows\System32\drivers\umbus.sys
21:26:58.0154 0x1680  umbus - ok
21:26:58.0158 0x1680  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
21:26:58.0170 0x1680  UmPass - ok
21:26:58.0180 0x1680  [ 87743CF5FF2FB3F2B424F0D8DFF8FD8C, C14C979612426D4449274C109FCF25D3BE170DC5CD7EF8E230C7E8D5681904D3 ] UmRdpService    C:\Windows\System32\umrdp.dll
21:26:58.0215 0x1680  UmRdpService - ok
21:26:58.0228 0x1680  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\Windows\System32\upnphost.dll
21:26:58.0248 0x1680  upnphost - ok
21:26:58.0253 0x1680  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64      C:\Windows\System32\Drivers\usbaapl64.sys
21:26:58.0281 0x1680  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
21:26:58.0372 0x1680  Detect skipped due to KSN trusted
21:26:58.0372 0x1680  USBAAPL64 - ok
21:26:58.0378 0x1680  [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:26:58.0396 0x1680  usbaudio - ok
21:26:58.0405 0x1680  [ 621317D14B93CBFBD5694767EFB6B40A, 84D3F4AA2CAFA11DF5EAD178889ACCAA2FF50D48AFE9518F63FBB862928630FB ] usbccgp        C:\Windows\System32\drivers\usbccgp.sys
21:26:58.0419 0x1680  usbccgp - ok
21:26:58.0426 0x1680  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
21:26:58.0446 0x1680  usbcir - ok
21:26:58.0452 0x1680  [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci        C:\Windows\System32\drivers\usbehci.sys
21:26:58.0463 0x1680  usbehci - ok
21:26:58.0480 0x1680  [ E30B159760053C5A1297D2CD08046CD7, E45472CEEC31616DBE2B38C4FD9B90179ED7FF29041F21FB124334B4A53AE48C ] usbhub          C:\Windows\System32\drivers\usbhub.sys
21:26:58.0505 0x1680  usbhub - ok
21:26:58.0519 0x1680  [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3        C:\Windows\System32\drivers\UsbHub3.sys
21:26:58.0543 0x1680  USBHUB3 - ok
21:26:58.0547 0x1680  [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci        C:\Windows\System32\drivers\usbohci.sys
21:26:58.0585 0x1680  usbohci - ok
21:26:58.0590 0x1680  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
21:26:58.0610 0x1680  usbprint - ok
21:26:58.0615 0x1680  [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan        C:\Windows\system32\DRIVERS\usbscan.sys
21:26:58.0634 0x1680  usbscan - ok
21:26:58.0642 0x1680  [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR        C:\Windows\System32\drivers\USBSTOR.SYS
21:26:58.0660 0x1680  USBSTOR - ok
21:26:58.0665 0x1680  [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci        C:\Windows\System32\drivers\usbuhci.sys
21:26:58.0690 0x1680  usbuhci - ok
21:26:58.0702 0x1680  [ 3413BCA17155F82614A3F18518923475, A3C8FAB425CDC088CE9CC33A23B242291469C17848B8BE8DDEAC276905F7BAA4 ] USBXHCI        C:\Windows\System32\drivers\USBXHCI.SYS
21:26:58.0722 0x1680  USBXHCI - ok
21:26:58.0725 0x1680  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\Windows\system32\lsass.exe
21:26:58.0735 0x1680  VaultSvc - ok
21:26:58.0739 0x1680  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:26:58.0749 0x1680  vdrvroot - ok
21:26:58.0776 0x1680  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds            C:\Windows\System32\vds.exe
21:26:58.0821 0x1680  vds - ok
21:26:58.0829 0x1680  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt    C:\Windows\system32\drivers\VerifierExt.sys
21:26:58.0845 0x1680  VerifierExt - ok
21:26:58.0862 0x1680  [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp          C:\Windows\System32\drivers\vhdmp.sys
21:26:58.0891 0x1680  vhdmp - ok
21:26:58.0894 0x1680  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:26:58.0905 0x1680  viaide - ok
21:26:58.0913 0x1680  [ B3E4A4979435A1D68B3F609DDFC3BC6F, 1B4C2402B537F13E024A4466D8DBAD53916A71B6EBCA996889E981E1BB17CA55 ] Vid            C:\Windows\System32\drivers\Vid.sys
21:26:58.0940 0x1680  Vid - ok
21:26:58.0945 0x1680  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus          C:\Windows\system32\drivers\vmbus.sys
21:26:58.0965 0x1680  vmbus - ok
21:26:58.0969 0x1680  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
21:26:58.0980 0x1680  VMBusHID - ok
21:26:58.0986 0x1680  [ 8BFFE6885F680EE9FE7091A704303F84, BECA3CFF03BEF164BC7C5B4788468C76391A3AE4FD6FE784C809562358CF04DD ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
21:26:59.0009 0x1680  vmbusr - ok
21:26:59.0022 0x1680  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
21:26:59.0055 0x1680  vmicguestinterface - ok
21:26:59.0067 0x1680  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat  C:\Windows\System32\ICSvc.dll
21:26:59.0087 0x1680  vmicheartbeat - ok
21:26:59.0099 0x1680  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
21:26:59.0123 0x1680  vmickvpexchange - ok
21:26:59.0134 0x1680  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv        C:\Windows\System32\ICSvc.dll
21:26:59.0157 0x1680  vmicrdv - ok
21:26:59.0169 0x1680  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
21:26:59.0191 0x1680  vmicshutdown - ok
21:26:59.0203 0x1680  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\Windows\System32\ICSvc.dll
21:26:59.0225 0x1680  vmictimesync - ok
21:26:59.0238 0x1680  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss        C:\Windows\System32\ICSvc.dll
21:26:59.0257 0x1680  vmicvss - ok
21:26:59.0263 0x1680  [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:26:59.0287 0x1680  volmgr - ok
21:26:59.0301 0x1680  [ 7DD4EAE2E680948D9AFF3E1B5234C1D3, 7B893CEF2B72458F5C716C811A24E4A8856E12E2AC9F551606A64B59C9DCF272 ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
21:26:59.0337 0x1680  volmgrx - ok
21:26:59.0348 0x1680  [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap        C:\Windows\system32\drivers\volsnap.sys
21:26:59.0370 0x1680  volsnap - ok
21:26:59.0375 0x1680  [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci            C:\Windows\System32\drivers\vpci.sys
21:26:59.0386 0x1680  vpci - ok
21:26:59.0391 0x1680  [ BA4D0CF5F303A70BE5F02858CB892BEA, F3368E7AB7C7A0D82C5DE79F0E6B4E2E4869017F9CC4DAA323A69989548F24B0 ] vpcivsp        C:\Windows\System32\drivers\vpcivsp.sys
21:26:59.0412 0x1680  vpcivsp - ok
21:26:59.0419 0x1680  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid        C:\Windows\system32\drivers\vsmraid.sys
21:26:59.0432 0x1680  vsmraid - ok
21:26:59.0462 0x1680  [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS            C:\Windows\system32\vssvc.exe
21:26:59.0509 0x1680  VSS - ok
21:26:59.0519 0x1680  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
21:26:59.0536 0x1680  VSTXRAID - ok
21:26:59.0540 0x1680  [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
21:26:59.0558 0x1680  vwifibus - ok
21:26:59.0569 0x1680  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time        C:\Windows\system32\w32time.dll
21:26:59.0598 0x1680  W32Time - ok
21:26:59.0602 0x1680  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
21:26:59.0613 0x1680  WacomPen - ok
21:26:59.0644 0x1680  [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine        C:\Windows\system32\wbengine.exe
21:26:59.0697 0x1680  wbengine - ok
21:26:59.0711 0x1680  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:26:59.0742 0x1680  WbioSrvc - ok
21:26:59.0753 0x1680  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
21:26:59.0774 0x1680  Wcmsvc - ok
21:26:59.0787 0x1680  [ A7F2B008F038EFFED5A847029852BC27, EC6C6DEC559AA0DD4307F87880939A84A4CFB13C73C92C444E9B53EBBDE80F79 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
21:26:59.0808 0x1680  wcncsvc - ok
21:26:59.0813 0x1680  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:26:59.0833 0x1680  WcsPlugInService - ok
21:26:59.0838 0x1680  [ F2E08D1C067FEFC3A42D21FD4810F1D3, A8AD114094D9AE3BC6F76940EF873FD21CCF130DE7F8712950F1962DCE25F1B3 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
21:26:59.0848 0x1680  WdBoot - ok
21:26:59.0866 0x1680  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:26:59.0902 0x1680  Wdf01000 - ok
21:26:59.0912 0x1680  [ E234820E6B84ABA5E84E00227F505AE8, 645B809B883D8F678F2535B575AA1D595F27EBFCE0A16433E9A54CC266BD74F2 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
21:26:59.0928 0x1680  WdFilter - ok
21:26:59.0933 0x1680  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:26:59.0949 0x1680  WdiServiceHost - ok
21:26:59.0953 0x1680  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost  C:\Windows\system32\wdi.dll
21:26:59.0969 0x1680  WdiSystemHost - ok
21:26:59.0975 0x1680  [ A74AD6D80AC26E1B5DD276FC927F2BAC, F73F090D46BB2AAA6A8D148C658B2EA8C07B16201BB800A9283F4017DC249809 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
21:26:59.0991 0x1680  WdNisDrv - ok
21:26:59.0997 0x1680  WdNisSvc - ok
21:27:00.0005 0x1680  [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient      C:\Windows\System32\webclnt.dll
21:27:00.0028 0x1680  WebClient - ok
21:27:00.0036 0x1680  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:27:00.0057 0x1680  Wecsvc - ok
21:27:00.0062 0x1680  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
21:27:00.0078 0x1680  WEPHOSTSVC - ok
21:27:00.0083 0x1680  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport  C:\Windows\System32\wercplsupport.dll
21:27:00.0106 0x1680  wercplsupport - ok
21:27:00.0112 0x1680  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\Windows\System32\WerSvc.dll
21:27:00.0130 0x1680  WerSvc - ok
21:27:00.0136 0x1680  [ B3E08E32BD082100928C6BA18AE5E526, 1D93EB34B5A6DE9CEF3A0F41C346E2172CA43A3EEDD9230CB24DB1AC6F1974DF ] WFPLWFS        C:\Windows\system32\DRIVERS\wfplwfs.sys
21:27:00.0148 0x1680  WFPLWFS - ok
21:27:00.0153 0x1680  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\Windows\System32\wiarpc.dll
21:27:00.0167 0x1680  WiaRpc - ok
21:27:00.0172 0x1680  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:27:00.0183 0x1680  WIMMount - ok
21:27:00.0184 0x1680  WinDefend - ok
21:27:00.0207 0x1680  [ 403B0E82CCB383DD02D9987B7247EF28, BE7A731A0A96949ABA8ACB8FD6D29F5E1F8FF6BA227C6E99C5A2CAE25F9C7F2C ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
21:27:00.0241 0x1680  WinHttpAutoProxySvc - ok
21:27:00.0257 0x1680  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
21:27:00.0281 0x1680  Winmgmt - ok
21:27:00.0331 0x1680  [ F81B96E455847919D2382098157DC20A, EDB286730D4F3D535F1F0B738DB39230B05B133FAFDD2F4904AD5B57C2705106 ] WinRM          C:\Windows\system32\WsmSvc.dll
21:27:00.0405 0x1680  WinRM - ok
21:27:00.0416 0x1680  [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:27:00.0443 0x1680  WinUsb - ok
21:27:00.0473 0x1680  [ 2A4A54CB5198AEF84DF56560C679EDD9, 829BED307F9E57EEC38CEF91978034CC6846493AE33E51E76A1AC36EB5B1F197 ] WlanSvc        C:\Windows\System32\wlansvc.dll
21:27:00.0518 0x1680  WlanSvc - ok
21:27:00.0554 0x1680  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc        C:\Windows\system32\wlidsvc.dll
21:27:00.0600 0x1680  wlidsvc - ok
21:27:00.0606 0x1680  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi        C:\Windows\System32\drivers\wmiacpi.sys
21:27:00.0619 0x1680  WmiAcpi - ok
21:27:00.0629 0x1680  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:27:00.0648 0x1680  wmiApSrv - ok
21:27:00.0650 0x1680  WMPNetworkSvc - ok
21:27:00.0657 0x1680  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof            C:\Windows\system32\drivers\Wof.sys
21:27:00.0674 0x1680  Wof - ok
21:27:00.0708 0x1680  [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
21:27:00.0760 0x1680  workfolderssvc - ok
21:27:00.0766 0x1680  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr        C:\Windows\system32\DRIVERS\wpcfltr.sys
21:27:00.0779 0x1680  wpcfltr - ok
21:27:00.0783 0x1680  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:27:00.0802 0x1680  WPCSvc - ok
21:27:00.0808 0x1680  [ 25BE82B325AC22FE563A58A1AC29F4C1, 4247BAA9A44C964446F81ED44F18B28F1F730F46851EC2B756BAC57FB9D86700 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:27:00.0832 0x1680  WPDBusEnum - ok
21:27:00.0836 0x1680  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr      C:\Windows\system32\drivers\WpdUpFltr.sys
21:27:00.0845 0x1680  WpdUpFltr - ok
21:27:00.0849 0x1680  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
21:27:00.0864 0x1680  ws2ifsl - ok
21:27:00.0872 0x1680  [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc          C:\Windows\System32\wscsvc.dll
21:27:00.0890 0x1680  wscsvc - ok
21:27:00.0893 0x1680  WSearch - ok
21:27:00.0960 0x1680  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService      C:\Windows\System32\WSService.dll
21:27:01.0056 0x1680  WSService - ok
21:27:01.0128 0x1680  [ EFF648D3BDFBF62058BD188B1A4D6695, 648AA8131EE70E048DC98356BF5F441DFEC5D6F50552FE3C59F052E9B1E430CD ] wuauserv        C:\Windows\system32\wuaueng.dll
21:27:01.0223 0x1680  wuauserv - ok
21:27:01.0231 0x1680  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:27:01.0248 0x1680  WudfPf - ok
21:27:01.0257 0x1680  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
21:27:01.0275 0x1680  WUDFRd - ok
21:27:01.0280 0x1680  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
21:27:01.0295 0x1680  wudfsvc - ok
21:27:01.0303 0x1680  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs      C:\Windows\System32\drivers\WUDFRd.sys
21:27:01.0318 0x1680  WUDFWpdFs - ok
21:27:01.0326 0x1680  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
21:27:01.0343 0x1680  WUDFWpdMtp - ok
21:27:01.0357 0x1680  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc        C:\Windows\System32\wwansvc.dll
21:27:01.0380 0x1680  WwanSvc - ok
21:27:01.0387 0x1680  ================ Scan global ===============================
21:27:01.0392 0x1680  [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\Windows\system32\basesrv.dll
21:27:01.0400 0x1680  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\Windows\system32\winsrv.dll
21:27:01.0409 0x1680  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\Windows\system32\sxssrv.dll
21:27:01.0422 0x1680  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\Windows\system32\services.exe
21:27:01.0431 0x1680  [ Global ] - ok
21:27:01.0431 0x1680  ================ Scan MBR ==================================
21:27:01.0449 0x1680  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
21:27:01.0536 0x1680  \Device\Harddisk0\DR0 - ok
21:27:01.0538 0x1680  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:27:01.0587 0x1680  \Device\Harddisk1\DR1 - ok
21:27:01.0610 0x1680  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
21:27:01.0845 0x1680  \Device\Harddisk2\DR2 - ok
21:27:01.0846 0x1680  ================ Scan VBR ==================================
21:27:01.0847 0x1680  [ 0417CA4064AA2574D0E0AA47668EE92E ] \Device\Harddisk0\DR0\Partition1
21:27:01.0849 0x1680  \Device\Harddisk0\DR0\Partition1 - ok
21:27:01.0850 0x1680  [ 0EF7F8609C9E74A4570600A1584BC193 ] \Device\Harddisk1\DR1\Partition1
21:27:01.0852 0x1680  \Device\Harddisk1\DR1\Partition1 - ok
21:27:01.0854 0x1680  [ FF2B672AFDE1A5B8ACF585AA2DD4ECC9 ] \Device\Harddisk2\DR2\Partition1
21:27:01.0855 0x1680  \Device\Harddisk2\DR2\Partition1 - ok
21:27:01.0857 0x1680  [ 13FAD177206029DC86669ADB18F45FE8 ] \Device\Harddisk2\DR2\Partition2
21:27:01.0858 0x1680  \Device\Harddisk2\DR2\Partition2 - ok
21:27:01.0859 0x1680  [ B935F10BED210F8ED5DBCA2A97B2D51B ] \Device\Harddisk2\DR2\Partition3
21:27:01.0860 0x1680  \Device\Harddisk2\DR2\Partition3 - ok
21:27:01.0860 0x1680  ================ Scan generic autorun ======================
21:27:01.0860 0x1680  WindowsDefender - ok
21:27:01.0901 0x1680  [ DF62EB390B67EEDFA9A59AD4C8226CB1, E491268B941C94FED97719F1D9072BECC2D214302ABF071C45C731382C02C966 ] C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
21:27:01.0944 0x1680  Kraken71ChromaHelper - ok
21:27:01.0953 0x1680  [ EE8626BAD390E3F3EBCA5816F133F14A, 2E6331418F6EE99539822E18FCACE74EEEC9A4970BBFB392C89AF32088753525 ] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
21:27:01.0968 0x1680  KiesTrayAgent - ok
21:27:01.0979 0x1680  [ CC8466CA31E50A2A5554162DCD9A4B35, 041349FE9DC0E1B1F99B1BDC80C89F78D73906176AFA7712E197EC87B5AF64D3 ] C:\Program Files (x86)\PDF24\pdf24.exe
21:27:01.0995 0x1680  PDFPrint - ok
21:27:01.0999 0x1680  [ EBC0E8C0A4DDA2C32A7D5863462A321A, 2F410138DB66D0219254339F1F098E401CEDAA032596F1F67BC54F394256FC68 ] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
21:27:02.0008 0x1680  amd_dc_opt - detected UnsignedFile.Multi.Generic ( 1 )
21:27:02.0078 0x1680  Detect skipped due to KSN trusted
21:27:02.0078 0x1680  amd_dc_opt - ok
21:27:02.0202 0x1680  [ 0E1D0CD691F2BEA3489E2DF5A41FEE21, 8CC1619122EA601D7268449C5D46F2E830B0557B528FD294301A6F753865759F ] G:\Steam\steam.exe
21:27:02.0262 0x1680  Steam - ok
21:27:02.0275 0x1680  Spotify - ok
21:27:02.0285 0x1680  Discord - ok
21:27:02.0366 0x1680  [ D135D636ECC60F2E477FD78A4084EC64, EC4039F18FF9EF89CB7175D7BA901FA9A374BCD1AD81A62D0B65B43F216066AE ] C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
21:27:02.0445 0x1680  Synapse3 - ok
21:27:02.0448 0x1680  Waiting for KSN requests completion. In queue: 150
21:27:03.0470 0x1680  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.209.0 ), 0x61100 ( enabled : updated )
21:27:03.0483 0x1680  Win FW state via NFP2: enabled ( trusted )
21:27:03.0584 0x1680  ============================================================
21:27:03.0584 0x1680  Scan finished
21:27:03.0584 0x1680  ============================================================
21:27:03.0590 0x1b7c  Detected object count: 0
21:27:03.0590 0x1b7c  Actual detected object count: 0
21:27:22.0856 0x2180  ============================================================
21:27:22.0856 0x2180  Scan started
21:27:22.0856 0x2180  Mode: Manual; SigCheck; TDLFS;
21:27:22.0856 0x2180  ============================================================
21:27:22.0856 0x2180  KSN ping started
21:27:22.0908 0x2180  KSN ping finished: true
21:27:24.0109 0x2180  ================ Scan BIOS =================================
21:27:24.0109 0x2180  BIOS info: vendor = American Megatrends Inc., version = 1704, releaseDate = 06/08/2011
21:27:24.0109 0x2180  Base board info: manufacturer = ASUSTeK Computer INC., product = P8P67 REV 3.1, version = Rev 1.xx
21:27:26.0677 0x2180  [ 0036E5EEB62049D6D62723019CBF3763, 500384DE5A7F2C078404BD04B98CCC22377844D68B92260C1F49F71D8EC3EE0A ] BIOS
21:27:27.0026 0x2180  BIOS - ok
21:27:27.0027 0x2180  ================ Scan system memory ========================
21:27:27.0028 0x2180  System memory - ok
21:27:27.0029 0x2180  ================ Scan services =============================
21:27:27.0090 0x2180  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
21:27:27.0111 0x2180  1394ohci - ok
21:27:27.0116 0x2180  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware          C:\Windows\system32\drivers\3ware.sys
21:27:27.0129 0x2180  3ware - ok
21:27:27.0148 0x2180  [ 508526EB2308D259DB8542FF50E9112C, DBF657F5D8890E2F58D3EE47B5F5A98DFB838CDD2871CE580B3FC1BDDC2A590E ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:27:27.0168 0x2180  ACPI - ok
21:27:27.0173 0x2180  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
21:27:27.0186 0x2180  acpiex - ok
21:27:27.0190 0x2180  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
21:27:27.0202 0x2180  acpipagr - ok
21:27:27.0205 0x2180  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi        C:\Windows\System32\drivers\acpipmi.sys
21:27:27.0217 0x2180  AcpiPmi - ok
21:27:27.0221 0x2180  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
21:27:27.0233 0x2180  acpitime - ok
21:27:27.0241 0x2180  [ 10A58DA77AE2073D1BAF4F13630EA516, CB914E1A70AA98CBAAE25192DF867D73605AA9AE5DB4EF77C274C266C2D0B2D8 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:27:27.0253 0x2180  AdobeARMservice - ok
21:27:27.0293 0x2180  [ FE8AAA4D35F26C0925A43E60CBDDE3BB, 230EB31C2E6141F9D743830ADF3A8F7283EA274FD335A6BE735801DFCC3352C8 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:27:27.0311 0x2180  AdobeFlashPlayerUpdateSvc - ok
21:27:27.0329 0x2180  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX        C:\Windows\system32\drivers\ADP80XX.SYS
21:27:27.0356 0x2180  ADP80XX - ok
21:27:27.0365 0x2180  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll

spoky001 23.03.2019 21:37
Teil 2
Code:
21:27:27.0384 0x2180  AeLookupSvc - ok
21:27:27.0398 0x2180  [ B246BEE99740A2A357E21D863A18774D, CE000059C157101D6C429594E76A69C4E863A9E752015D542E4F308E8D515386 ] AFD            C:\Windows\system32\drivers\afd.sys
21:27:27.0423 0x2180  AFD - ok
21:27:27.0428 0x2180  [ 20FFFCA6E9870E358DBE402F7DBD3E6C, 8F964219C777C86ECC572E8B340C814CA09A0B88E4F1CF3DE4D5F1FD115D73ED ] agp440          C:\Windows\system32\drivers\agp440.sys
21:27:27.0437 0x2180  agp440 - ok
21:27:27.0442 0x2180  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache        C:\Windows\system32\DRIVERS\ahcache.sys
21:27:27.0455 0x2180  ahcache - ok
21:27:27.0460 0x2180  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG            C:\Windows\System32\alg.exe
21:27:27.0474 0x2180  ALG - ok
21:27:27.0480 0x2180  [ 4A3FAD94DC163A7C145EB7609D38925C, 81F4745EDC3267412016EE5FF954D9AAD60122421B5D3D9AA814DB2E464397A0 ] AmdK8          C:\Windows\System32\drivers\amdk8.sys
21:27:27.0493 0x2180  AmdK8 - ok
21:27:27.0499 0x2180  [ 466133F035543C450C6AC00B8860FDA4, 417F259B97E5AFD405ED9235551E31860A66D84868306AF90E94A46BAA0F6D75 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
21:27:27.0513 0x2180  AmdPPM - ok
21:27:27.0517 0x2180  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata        C:\Windows\system32\drivers\amdsata.sys
21:27:27.0530 0x2180  amdsata - ok
21:27:27.0538 0x2180  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:27:27.0552 0x2180  amdsbs - ok
21:27:27.0565 0x2180  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata        C:\Windows\system32\drivers\amdxata.sys
21:27:27.0576 0x2180  amdxata - ok
21:27:27.0591 0x2180  [ 2949C9F3F4E8C7A7D2F9F0C115A69C23, 7D015BE92F4EC7E6DE12C893AAB36EC9BBB0F2304F904EEE4C9F521E2FD7211C ] AppID          C:\Windows\system32\drivers\appid.sys
21:27:27.0607 0x2180  AppID - ok
21:27:27.0614 0x2180  [ 942C8297400FCFB13CEE3F3CD89C5CE5, AFD9EC35F6C44D86DD5943A2AB0B99B0C1B1783D70FD966F6467F97F0831403F ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:27:27.0624 0x2180  AppIDSvc - ok
21:27:27.0629 0x2180  [ 54ACF58A59A5FD3AD29EABBECA5B5BA4, B3B7572E93ACFF3CCB08968F33B796A6FC6DDCF75F48038A0626E46997AAD2D1 ] Appinfo        C:\Windows\System32\appinfo.dll
21:27:27.0645 0x2180  Appinfo - ok
21:27:27.0653 0x2180  [ 1A8EA3500576DD4B43E9318F10709E0E, 85F8581C319DE241B223366F08A5F9301858DA9DA1A0CAA10ED387A2B99EC216 ] AppMgmt        C:\Windows\System32\appmgmts.dll
21:27:27.0665 0x2180  AppMgmt - ok
21:27:27.0679 0x2180  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
21:27:27.0702 0x2180  AppReadiness - ok
21:27:27.0730 0x2180  [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc        C:\Windows\system32\appxdeploymentserver.dll
21:27:27.0770 0x2180  AppXSvc - ok
21:27:27.0776 0x2180  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:27:27.0787 0x2180  arcsas - ok
21:27:27.0790 0x2180  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi          C:\Windows\system32\drivers\atapi.sys
21:27:27.0798 0x2180  atapi - ok
21:27:27.0804 0x2180  [ 4ECC791539F23982411864037D1AC8FC, 063CBA00E453B5FF3CDFDFB5FA2E6A190A0DC3D399EC36F646262BE76F98A60C ] AthDfu          C:\Windows\System32\Drivers\AthDfu.sys
21:27:27.0811 0x2180  AthDfu - ok
21:27:27.0819 0x2180  [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
21:27:27.0833 0x2180  AudioEndpointBuilder - ok
21:27:27.0854 0x2180  [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:27:27.0883 0x2180  Audiosrv - ok
21:27:27.0890 0x2180  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:27:27.0901 0x2180  AxInstSV - ok
21:27:27.0917 0x2180  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv        C:\Windows\system32\drivers\bxvbda.sys
21:27:27.0936 0x2180  b06bdrv - ok
21:27:27.0941 0x2180  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
21:27:27.0954 0x2180  BasicDisplay - ok
21:27:27.0958 0x2180  [ BF002CF6CA41491665F7D3DCA51B7EFB, 4925B7689B47C583901CD75E7AB9160100838D5E33B829EB3CA4F71F7514958B ] BasicRender    C:\Windows\System32\drivers\BasicRender.sys
21:27:27.0971 0x2180  BasicRender - ok
21:27:27.0975 0x2180  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
21:27:27.0982 0x2180  bcmfn2 - ok
21:27:27.0993 0x2180  [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC          C:\Windows\System32\bdesvc.dll
21:27:28.0014 0x2180  BDESVC - ok
21:27:28.0018 0x2180  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
21:27:28.0028 0x2180  Beep - ok
21:27:28.0180 0x2180  [ 4C7A320A62D6C56CFFC7B8F0B83C2511, 02E163F1F5FACCE5406181BE8BF7D2376802EF2D0CCD79AC1B9562C49B265FCF ] BEService      C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
21:27:28.0337 0x2180  BEService - ok
21:27:28.0363 0x2180  [ 4BA5C192E77375B62D603B38B9D99128, E1BF8646DA927EF81A9B940D0FAE7E49116A713F335625C5E18224BBB79F165E ] BFE            C:\Windows\System32\bfe.dll
21:27:28.0390 0x2180  BFE - ok
21:27:28.0411 0x2180  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\Windows\System32\qmgr.dll
21:27:28.0442 0x2180  BITS - ok
21:27:28.0459 0x2180  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:27:28.0477 0x2180  Bonjour Service - ok
21:27:28.0483 0x2180  [ A9DB66E4A411D06B2EB41B3C39922BD0, B2BC8C4BF1E566325CDE327526A028B7B43708905F7B7D159DFD0F7BFC88B554 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:27:28.0495 0x2180  bowser - ok
21:27:28.0503 0x2180  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
21:27:28.0520 0x2180  BrokerInfrastructure - ok
21:27:28.0526 0x2180  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser        C:\Windows\System32\browser.dll
21:27:28.0540 0x2180  Browser - ok
21:27:28.0555 0x2180  [ 25B35FDD5FE5666DC49CCC0BC6A9AD81, 0F6A9783EF72AF53F20B19E51FE40A17F72FB9CC037670ADB77970AF9CA7E376 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
21:27:28.0578 0x2180  BtFilter - ok
21:27:28.0582 0x2180  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
21:27:28.0593 0x2180  BthAvrcpTg - ok
21:27:28.0597 0x2180  [ 12418846B057E4F92FC621F5C6CF737D, 0B8B0EADE4F2AD95D450A5C71C287C0F04F33897ABF27D3E3B6428A3C99C7B5D ] BthEnum        C:\Windows\System32\drivers\BthEnum.sys
21:27:28.0608 0x2180  BthEnum - ok
21:27:28.0612 0x2180  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum      C:\Windows\System32\drivers\bthhfenum.sys
21:27:28.0625 0x2180  BthHFEnum - ok
21:27:28.0628 0x2180  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
21:27:28.0641 0x2180  bthhfhid - ok
21:27:28.0652 0x2180  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
21:27:28.0666 0x2180  BthHFSrv - ok
21:27:28.0671 0x2180  [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
21:27:28.0681 0x2180  BTHMODEM - ok
21:27:28.0687 0x2180  [ D0AF91AF656E25AD8617EFA5B52EF457, FD723D99A0B8466BD991648DEED1831D32FD3A5995DD0E0837390746B8A7B439 ] BthPan          C:\Windows\System32\drivers\bthpan.sys
21:27:28.0698 0x2180  BthPan - ok
21:27:28.0729 0x2180  [ B810B2B39CCA90DC6BF42AF1658AE0D1, D184F927BCFBDE7063A0C9873BF2C174226E1AB5081A7108FCC66210CD117465 ] BTHPORT        C:\Windows\System32\Drivers\BTHport.sys
21:27:28.0762 0x2180  BTHPORT - ok
21:27:28.0768 0x2180  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv        C:\Windows\system32\bthserv.dll
21:27:28.0781 0x2180  bthserv - ok
21:27:28.0787 0x2180  [ 52A1B7ECAB4C9EF70FD41241691E09D3, F7A5BFE72D3151E73DD9922A76964C08AC1FDCB8460D9A17DCF8B7969006AD42 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
21:27:28.0797 0x2180  BTHUSB - ok
21:27:28.0802 0x2180  [ C17B61862B3C0D795A3FC68622D6729B, A8A65701400A799C8D56E86681C5A9889D5A56BD49F8414BA0EEB15E48DE0526 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:27:28.0813 0x2180  cdfs - ok
21:27:28.0821 0x2180  [ D61EDE3D49B04E703AEC3B111C763F42, A07780B7AAA982B1971C1FE3B597840541BF9FCE9D8322807C9C12300F9D2987 ] cdrom          C:\Windows\System32\drivers\cdrom.sys
21:27:28.0836 0x2180  cdrom - ok
21:27:28.0843 0x2180  [ ACFDC4EE40EC6E4A0AB91D923B8288C8, D31555AB31F504C247049219BE0ECDF26BB18E210BE7C45E8575FD166FD7EE23 ] CertPropSvc    C:\Windows\System32\certprop.dll
21:27:28.0858 0x2180  CertPropSvc - ok
21:27:28.0862 0x2180  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
21:27:28.0873 0x2180  circlass - ok
21:27:28.0884 0x2180  [ 83798256E1662C64991267FB95E1149F, F94E103CF66988B8235FCA0293C5F44C1A30D6D910ADBB05A9D638E0B0F64EE8 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
21:27:28.0902 0x2180  CLFS - ok
21:27:28.0909 0x2180  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
21:27:28.0921 0x2180  CmBatt - ok
21:27:28.0936 0x2180  [ 6B3BFBC8A93CA85851CAF9C5ACF89824, 6921D52AFCCDF3B712E5192C7278B5CE141CF37D90BA9932A12F218209CE2829 ] CNG            C:\Windows\system32\Drivers\cng.sys
21:27:28.0960 0x2180  CNG - ok
21:27:28.0965 0x2180  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
21:27:28.0975 0x2180  CompositeBus - ok
21:27:28.0977 0x2180  COMSysApp - ok
21:27:28.0981 0x2180  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
21:27:28.0992 0x2180  condrv - ok
21:27:28.0999 0x2180  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:27:29.0015 0x2180  CryptSvc - ok
21:27:29.0029 0x2180  [ E40884ED6E4FFD6593B800C220261698, B48A6636605C04164834C3E749691C18D3171B80C3E7DBB1D5D91BB87757D457 ] CSC            C:\Windows\system32\drivers\csc.sys
21:27:29.0050 0x2180  CSC - ok
21:27:29.0069 0x2180  [ 86079FF8A3B625ABAEB68841D2BF6FE6, 49FF4D458DF8FAB4ECA8CAD9BBF88C929C8B9AB7F063938A6A332B31F2C0F8EB ] CscService      C:\Windows\System32\cscsvc.dll
21:27:29.0095 0x2180  CscService - ok
21:27:29.0115 0x2180  [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:27:29.0137 0x2180  cvhsvc - ok
21:27:29.0142 0x2180  [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam            C:\Windows\system32\drivers\dam.sys
21:27:29.0155 0x2180  dam - ok
21:27:29.0173 0x2180  [ 3BC25B8189367964F8CEBCFAF05FB6D0, D7E492EDBF38931C123C8E3F0756F6996751A312218B98C42582172A411DF841 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:27:29.0197 0x2180  DcomLaunch - ok
21:27:29.0215 0x2180  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc      C:\Windows\System32\defragsvc.dll
21:27:29.0238 0x2180  defragsvc - ok
21:27:29.0250 0x2180  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\Windows\system32\das.dll
21:27:29.0267 0x2180  DeviceAssociationService - ok
21:27:29.0273 0x2180  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall  C:\Windows\system32\umpnpmgr.dll
21:27:29.0286 0x2180  DeviceInstall - ok
21:27:29.0293 0x2180  [ D1049D4D1311D43F6FCF180CAA5BF78B, E32D3B0FB3CFE2E9C243E7540B9A534B6B5B53759A3883A231EB69F4A8C823C1 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
21:27:29.0307 0x2180  Dfsc - ok
21:27:29.0314 0x2180  [ 5F78930AAB3900102EA8ACDD38F97324, 49CAE29CC7B1B846BDE603B1A411833162ACC1A9D1608BFDF67C2EA3A0EE0F85 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
21:27:29.0324 0x2180  dg_ssudbus - ok
21:27:29.0334 0x2180  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:27:29.0350 0x2180  Dhcp - ok
21:27:29.0384 0x2180  [ 3F317ADDC69826A8A8EBB9BC5B17826B, D789E4B96556797424D2573189A8CD0929525C3109BCC04E37C434212DF9A0EF ] DiagTrack      C:\Windows\system32\diagtrack.dll
21:27:29.0445 0x2180  DiagTrack - ok
21:27:29.0453 0x2180  [ BF6D8575DDF30384939B2D5251F27C1F, 1605530BC61FB726F1095C5B5C8E27B18C06BCE01948550988E9EDCEBBCC0B3D ] disk            C:\Windows\system32\drivers\disk.sys
21:27:29.0466 0x2180  disk - ok
21:27:29.0470 0x2180  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc          C:\Windows\System32\drivers\dmvsc.sys
21:27:29.0479 0x2180  dmvsc - ok
21:27:29.0487 0x2180  [ 2777CAC4B6E23C95A7C6E11701F4ED62, 0B6E2D46FD66BFB1AACF80A4E42B31470A6335FE484F469E478BFCDBA9B84F66 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:27:29.0501 0x2180  Dnscache - ok
21:27:29.0510 0x2180  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc        C:\Windows\System32\dot3svc.dll
21:27:29.0527 0x2180  dot3svc - ok
21:27:29.0535 0x2180  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS            C:\Windows\system32\dps.dll
21:27:29.0548 0x2180  DPS - ok
21:27:29.0552 0x2180  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
21:27:29.0560 0x2180  drmkaud - ok
21:27:29.0567 0x2180  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
21:27:29.0583 0x2180  DsmSvc - ok
21:27:29.0615 0x2180  [ B49A6DD8166B3D2115B86FD5E7293B9B, B149C621796E2D618E3195D1B02BA7F0884EF6EF7D6262374ADBCEE23053FBDE ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
21:27:29.0656 0x2180  DXGKrnl - ok
21:27:29.0664 0x2180  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost        C:\Windows\System32\eapsvc.dll
21:27:29.0679 0x2180  Eaphost - ok
21:27:29.0696 0x2180  [ 8546242AFC4D0E2A2B3EDEF04FB37713, 7CC189DDA2C15F2240C97B78EB27D2A00AC563BED7A7A7A33B736993DE8C7478 ] EasyAntiCheat  C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
21:27:29.0726 0x2180  EasyAntiCheat - ok
21:27:29.0790 0x2180  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv          C:\Windows\system32\drivers\evbda.sys
21:27:29.0867 0x2180  ebdrv - ok
21:27:29.0874 0x2180  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS            C:\Windows\System32\lsass.exe
21:27:29.0887 0x2180  EFS - ok
21:27:29.0892 0x2180  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass    C:\Windows\system32\drivers\EhStorClass.sys
21:27:29.0904 0x2180  EhStorClass - ok
21:27:29.0910 0x2180  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
21:27:29.0921 0x2180  EhStorTcgDrv - ok
21:27:29.0924 0x2180  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
21:27:29.0933 0x2180  ErrDev - ok
21:27:30.0040 0x2180  [ 401BFFB6391F1AB29F000CB18620CF2D, 7A9D36862CC6F47D2A78F54A201438B8331CABCAFBBA4A0338F41789DDA5BE0F ] EspoDriver      C:\Windows\system32\drivers\EspoDriver.sys
21:27:30.0155 0x2180  EspoDriver - ok
21:27:30.0167 0x2180  [ 74DBF5DE5CB747E73EC1FC6C3AC1CCFE, FDF2B5D381EE9BB1BE820D5BE86B6232030354B2CFBDC0494AC0BD4E85D9F32B ] ESProtectionDriver C:\Windows\system32\drivers\mbae64.sys
21:27:30.0179 0x2180  ESProtectionDriver - ok
21:27:30.0194 0x2180  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem    C:\Windows\system32\es.dll
21:27:30.0217 0x2180  EventSystem - ok
21:27:30.0225 0x2180  [ 2AF4299C296390EFCF9B72FA77E90019, 04C11EE58F612A09C6DBA958308B4E6AF0E3DFE5FC58E25EDFA3F6249BA45628 ] exfat          C:\Windows\system32\drivers\exfat.sys
21:27:30.0240 0x2180  exfat - ok
21:27:30.0247 0x2180  [ 858254B9CB16B912CAA4A6C4903971B9, C738CDCCFC0AEE289C0A775794D92069265F172FC9C8F7FF94968FCCB6016BC8 ] fastfat        C:\Windows\system32\drivers\fastfat.sys
21:27:30.0263 0x2180  fastfat - ok
21:27:30.0278 0x2180  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax            C:\Windows\system32\fxssvc.exe
21:27:30.0302 0x2180  Fax - ok
21:27:30.0306 0x2180  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc            C:\Windows\System32\drivers\fdc.sys
21:27:30.0320 0x2180  fdc - ok
21:27:30.0324 0x2180  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost        C:\Windows\system32\fdPHost.dll
21:27:30.0335 0x2180  fdPHost - ok
21:27:30.0339 0x2180  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:27:30.0349 0x2180  FDResPub - ok
21:27:30.0355 0x2180  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc          C:\Windows\system32\fhsvc.dll
21:27:30.0367 0x2180  fhsvc - ok
21:27:30.0372 0x2180  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:27:30.0382 0x2180  FileInfo - ok
21:27:30.0385 0x2180  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
21:27:30.0399 0x2180  Filetrace - ok
21:27:30.0402 0x2180  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
21:27:30.0414 0x2180  flpydisk - ok
21:27:30.0424 0x2180  [ E8F02B7A595B9E7F0A38BDB1C40C60A5, 64E64BA029B798739C38E524E24530EE570897E327B72854A8CBCE4FAD7AD1E5 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:27:30.0442 0x2180  FltMgr - ok
21:27:30.0471 0x2180  [ 223CD19D2F84B7B42081F4FB530B658F, 4A9D1A6688C3C8F0B866B0FE2715C9FBA62BE66D4ADCC327A8CABF9EA876A664 ] FontCache      C:\Windows\system32\FntCache.dll
21:27:30.0508 0x2180  FontCache - ok
21:27:30.0516 0x2180  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:27:30.0524 0x2180  FontCache3.0.0.0 - ok
21:27:30.0529 0x2180  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends      C:\Windows\system32\drivers\FsDepends.sys
21:27:30.0538 0x2180  FsDepends - ok
21:27:30.0541 0x2180  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:27:30.0549 0x2180  Fs_Rec - ok
21:27:30.0564 0x2180  [ 2C8D12C3C6E6FA87795B3328BDA85EB0, 042885D56D56BF43BE9C67721F2095FF896A91BE8C958058765D5191B6375A5F ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:27:30.0585 0x2180  fvevol - ok
21:27:30.0589 0x2180  [ 49E44F7804BD7575639A833ADC89A1B4, D89605DF3284A92623A42C906EABFAED4A206B089C76869D232F6AD711FEF6DB ] FxPPM          C:\Windows\System32\drivers\fxppm.sys
21:27:30.0601 0x2180  FxPPM - ok
21:27:30.0606 0x2180  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:27:30.0617 0x2180  gagp30kx - ok
21:27:30.0620 0x2180  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
21:27:30.0632 0x2180  gencounter - ok
21:27:30.0661 0x2180  [ 2B2B2EB1D6BEAA357E007921626DDAA7, 7D258BB20C8C6D487048C5DA1E860D3D4AD8E35153229A9854C55B636E77AFE4 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\elevation_service.exe
21:27:30.0694 0x2180  GoogleChromeElevationService - ok
21:27:30.0702 0x2180  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101    C:\Windows\system32\Drivers\msgpioclx.sys
21:27:30.0715 0x2180  GPIOClx0101 - ok
21:27:30.0743 0x2180  [ 2DAFF4F76A90E3C523C2FE50338537E9, 625745E538208B50E8F5A9A2C09C6CD03D51E424BB16BC6C5B156CBC25373B6D ] gpsvc          C:\Windows\System32\gpsvc.dll
21:27:30.0776 0x2180  gpsvc - ok
21:27:30.0784 0x2180  [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:27:30.0794 0x2180  gupdate - ok
21:27:30.0800 0x2180  [ 79B804E8A81BFD9C6A3749B4F3EE86E2, BFBDD26604FC653E01976EF23C92CF7ADB59F9E80F47350F1A72B7876BBED60A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:27:30.0816 0x2180  gupdatem - ok
21:27:30.0829 0x2180  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:27:30.0846 0x2180  HdAudAddService - ok
21:27:30.0852 0x2180  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
21:27:30.0862 0x2180  HDAudBus - ok
21:27:30.0867 0x2180  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt        C:\Windows\System32\drivers\HidBatt.sys
21:27:30.0876 0x2180  HidBatt - ok
21:27:30.0882 0x2180  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
21:27:30.0893 0x2180  HidBth - ok
21:27:30.0897 0x2180  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
21:27:30.0907 0x2180  hidi2c - ok
21:27:30.0911 0x2180  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr          C:\Windows\System32\drivers\hidir.sys
21:27:30.0922 0x2180  HidIr - ok
21:27:30.0925 0x2180  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv        C:\Windows\system32\hidserv.dll
21:27:30.0936 0x2180  hidserv - ok
21:27:30.0940 0x2180  [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
21:27:30.0953 0x2180  HidUsb - ok
21:27:30.0958 0x2180  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:27:30.0972 0x2180  hkmsvc - ok
21:27:30.0981 0x2180  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:27:30.0995 0x2180  HomeGroupListener - ok
21:27:31.0006 0x2180  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:27:31.0027 0x2180  HomeGroupProvider - ok
21:27:31.0031 0x2180  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:27:31.0041 0x2180  HpSAMD - ok
21:27:31.0063 0x2180  [ E45EB7AE6C890F2C8DE8F160AC641C8A, 3637D1FCE42A5600BD7FCC1F602C926968B327097CB36EE5FAC9140DD99EEC2D ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:27:31.0093 0x2180  HTTP - ok
21:27:31.0097 0x2180  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:27:31.0105 0x2180  hwpolicy - ok
21:27:31.0109 0x2180  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
21:27:31.0121 0x2180  hyperkbd - ok
21:27:31.0124 0x2180  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
21:27:31.0133 0x2180  HyperVideo - ok
21:27:31.0140 0x2180  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
21:27:31.0151 0x2180  i8042prt - ok
21:27:31.0155 0x2180  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
21:27:31.0165 0x2180  iaLPSSi_GPIO - ok
21:27:31.0170 0x2180  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C    C:\Windows\System32\drivers\iaLPSSi_I2C.sys
21:27:31.0178 0x2180  iaLPSSi_I2C - ok
21:27:31.0193 0x2180  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
21:27:31.0214 0x2180  iaStorAV - ok
21:27:31.0225 0x2180  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV        C:\Windows\system32\drivers\iaStorV.sys
21:27:31.0244 0x2180  iaStorV - ok
21:27:31.0247 0x2180  IEEtwCollectorService - ok
21:27:31.0269 0x2180  [ 3B6E74B3BE0CA74525A37B5C8E510084, BEA54067BAA524A13A2F67EB76C6B206546BA06567446725CF8BA0D7F6A30311 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:27:31.0300 0x2180  IKEEXT - ok
21:27:31.0306 0x2180  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:27:31.0314 0x2180  intelide - ok
21:27:31.0318 0x2180  [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
21:27:31.0327 0x2180  intelpep - ok
21:27:31.0334 0x2180  [ 24FF99B76037E1449E4E2E6DDF03F417, D001CFF6CF40B47E8D235378A563DAE22D32B4AE1D50755436567B6B2BB188A3 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
21:27:31.0345 0x2180  intelppm - ok
21:27:31.0349 0x2180  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:27:31.0366 0x2180  IpFilterDriver - ok
21:27:31.0386 0x2180  [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:27:31.0415 0x2180  iphlpsvc - ok
21:27:31.0421 0x2180  [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV        C:\Windows\System32\drivers\IPMIDrv.sys
21:27:31.0434 0x2180  IPMIDRV - ok
21:27:31.0440 0x2180  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT          C:\Windows\system32\drivers\ipnat.sys
21:27:31.0452 0x2180  IPNAT - ok
21:27:31.0455 0x2180  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:27:31.0466 0x2180  IRENUM - ok
21:27:31.0470 0x2180  [ 00AD710037F4A4F00CDDD94CBA7BABEA, 234FD60D659D9338C9FA0A54D176840BFDDEEB358DAF67A8B13F7699D442CAC0 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:27:31.0478 0x2180  isapnp - ok
21:27:31.0489 0x2180  [ 6205F494094FC3DB755CB1139917D058, EFD5CBE86D4523F9693E26F78292A52B211B25451B47B26B8C3CBC00B3C86C25 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
21:27:31.0511 0x2180  iScsiPrt - ok
21:27:31.0517 0x2180  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
21:27:31.0529 0x2180  kbdclass - ok
21:27:31.0533 0x2180  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
21:27:31.0546 0x2180  kbdhid - ok
21:27:31.0550 0x2180  [ 16D1DB11507C2E4B43E13755325EDED9, A9216CC5201C7A84070A5F778F7CC509297BBB93F901E988E703BB45E7FA8663 ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
21:27:31.0559 0x2180  kbldfltr - ok
21:27:31.0563 0x2180  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic          C:\Windows\system32\DRIVERS\kdnic.sys
21:27:31.0573 0x2180  kdnic - ok
21:27:31.0576 0x2180  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\Windows\system32\lsass.exe
21:27:31.0586 0x2180  KeyIso - ok
21:27:31.0591 0x2180  [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:27:31.0601 0x2180  KSecDD - ok
21:27:31.0609 0x2180  [ A2EA29C09F31A60BF97EF2FF1F4A0DB1, 2C665B52485295D570DB6B4CCBCC40AA928340B2041B7CBA29E403B90AB99CC0 ] KSecPkg        C:\Windows\system32\Drivers\ksecpkg.sys
21:27:31.0622 0x2180  KSecPkg - ok
21:27:31.0625 0x2180  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk        C:\Windows\system32\drivers\ksthunk.sys
21:27:31.0635 0x2180  ksthunk - ok
21:27:31.0647 0x2180  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm          C:\Windows\system32\msdtckrm.dll
21:27:31.0666 0x2180  KtmRm - ok
21:27:31.0680 0x2180  [ B75ADC97905F43C7C946F1465A8697BD, AF50E3F5DBF222DB095B40FD4896650B5F8DD47153CB9A1ADE54D17FCE85C529 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:27:31.0699 0x2180  LanmanServer - ok
21:27:31.0872 0x2180  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:27:31.0892 0x2180  LanmanWorkstation - ok
21:27:31.0921 0x2180  [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc          C:\Windows\System32\GeofenceMonitorService.dll
21:27:31.0940 0x2180  lfsvc - ok
21:27:31.0945 0x2180  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:27:31.0958 0x2180  lltdio - ok
21:27:31.0966 0x2180  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc        C:\Windows\System32\lltdsvc.dll
21:27:31.0984 0x2180  lltdsvc - ok
21:27:31.0987 0x2180  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts        C:\Windows\System32\lmhsvc.dll
21:27:31.0998 0x2180  lmhosts - ok
21:27:32.0003 0x2180  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS        C:\Windows\system32\drivers\lsi_sas.sys
21:27:32.0016 0x2180  LSI_SAS - ok
21:27:32.0021 0x2180  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:27:32.0033 0x2180  LSI_SAS2 - ok
21:27:32.0038 0x2180  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
21:27:32.0050 0x2180  LSI_SAS3 - ok
21:27:32.0055 0x2180  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS        C:\Windows\system32\drivers\lsi_sss.sys
21:27:32.0065 0x2180  LSI_SSS - ok
21:27:32.0082 0x2180  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM            C:\Windows\System32\lsm.dll
21:27:32.0106 0x2180  LSM - ok
21:27:32.0112 0x2180  [ B0AF753AF28303BB69C67BD85F06FFC9, 6B6805C17BC39F972BB7FF52BDF798B0B57EC5D5F3CE1C97415E86110235C603 ] luafv          C:\Windows\system32\drivers\luafv.sys
21:27:32.0130 0x2180  luafv - ok
21:27:32.0139 0x2180  [ AC5EE6C2018136DC8A3CBC7E5FEF5647, B03F284A3BF774725C27E162E03823BD14749F51BA3519D36CC389A2ACF5D8FB ] MBAMChameleon  C:\Windows\System32\Drivers\MbamChameleon.sys
21:27:32.0149 0x2180  MBAMChameleon - ok
21:27:32.0155 0x2180  [ A7F4BFED307FE44FC280917F2D4A1759, 1409BFC8C64E95E9AAFEA7F3CC03801BBA8BDBCE73BF103AB0318C3BAF0D8968 ] MBAMFarflt      C:\Windows\system32\DRIVERS\farflt.sys
21:27:32.0165 0x2180  MBAMFarflt - ok
21:27:32.0170 0x2180  [ D78F272D07EDBB7BD5A99C4346B799DA, E2F418CE71D214A62D59D9A65EE4194A3AD7C5E30DF102A0C5AE15B55D88F3E3 ] MBAMProtection  C:\Windows\system32\DRIVERS\mbam.sys
21:27:32.0181 0x2180  MBAMProtection - ok
21:27:32.0347 0x2180  [ 4223C695C09CC3027B839803BB0359A1, A6CD44D233429F40DF3D0E411C98D88F7188EF5F66052E2E3ED703BABADC9438 ] MBAMService    C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
21:27:32.0473 0x2180  MBAMService - ok
21:27:32.0488 0x2180  [ A71F1F650EC0CE9D8EF793D706F08786, 5CD0CC94C24F729B0CA65237F548CB6885C71B0085137287D64DCDB33DD06F36 ] MBAMSwissArmy  C:\Windows\System32\Drivers\mbamswissarmy.sys
21:27:32.0504 0x2180  MBAMSwissArmy - ok
21:27:32.0509 0x2180  [ B393DF0FAC3C525AD2B061C063E0DE41, 552606C532B68B9944AB0193B6A34A5BBAD5F3C793F2A9593449DF9574D7582E ] MBAMWebProtection C:\Windows\system32\DRIVERS\mwac.sys
21:27:32.0522 0x2180  MBAMWebProtection - ok
21:27:32.0527 0x2180  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas        C:\Windows\system32\drivers\megasas.sys
21:27:32.0537 0x2180  megasas - ok
21:27:32.0552 0x2180  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
21:27:32.0572 0x2180  megasr - ok
21:27:32.0577 0x2180  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys
21:27:32.0589 0x2180  MEIx64 - ok
21:27:32.0594 0x2180  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS          C:\Windows\system32\mmcss.dll
21:27:32.0608 0x2180  MMCSS - ok
21:27:32.0613 0x2180  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem          C:\Windows\system32\drivers\modem.sys
21:27:32.0625 0x2180  Modem - ok
21:27:32.0628 0x2180  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor        C:\Windows\System32\drivers\monitor.sys
21:27:32.0637 0x2180  monitor - ok
21:27:32.0641 0x2180  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
21:27:32.0651 0x2180  mouclass - ok
21:27:32.0655 0x2180  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
21:27:32.0667 0x2180  mouhid - ok
21:27:32.0672 0x2180  [ E5E8665272EBCD87A0A632314F0D221D, 37FDC4CEB8E5FC39C10DE875676863D090CFEA708AC3A8415114DCDD94BD7A1D ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:27:32.0683 0x2180  mountmgr - ok
21:27:32.0692 0x2180  [ A17344F45723B57F22C521D5512A3BD2, 631A572B42EFC35EA2A1F0A56EBE66E9C9E7A3B6D79879820C10D8888FD5DFC2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:27:32.0704 0x2180  MozillaMaintenance - ok
21:27:32.0709 0x2180  [ BC08EC552C7238F437902FD300811D7E, 50EA6962E04B8041F7CE6D13065EA1A893CFF35C0DFD3DE79001B31D39083289 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:27:32.0720 0x2180  mpsdrv - ok
21:27:32.0739 0x2180  [ 4D33C8B6159B61C7F13984ED10EA2A82, 2E6B8C104F34BFED3C521062F0F12B8D9B4A602221256C41791932771EB79B2C ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:27:32.0765 0x2180  MpsSvc - ok
21:27:32.0772 0x2180  [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:27:32.0787 0x2180  MRxDAV - ok
21:27:32.0798 0x2180  [ 58F495747F93F5ED547A08E414168905, CB97CCA5ED24BFDB3AB0D582DB0B80DB889A31ED31B8D8AB5B063B0D8BFE0C55 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:27:32.0818 0x2180  mrxsmb - ok
21:27:32.0827 0x2180  [ EF3625A402C6C7660F66EB2C148FECAE, 0456014B9314940882F6BA64A44E70CB48F6B33ACA6CF7CE182EC94BD882F9E2 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:27:32.0842 0x2180  mrxsmb10 - ok
21:27:32.0850 0x2180  [ B37B58F9F80A51098C42663D5FA5F2BA, 996E2D8344F0095C136D1670D63A476E6B6F6BBA9DD773EEE5F0FD580562B000 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:27:32.0865 0x2180  mrxsmb20 - ok
21:27:32.0872 0x2180  [ D0C29B221F3BE89C23D8101EFF825B85, 4E1792759A37D83BFE37ACAF9C0614A8A771B452816FFEB8D2CDDF93A76F2084 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
21:27:32.0883 0x2180  MsBridge - ok
21:27:32.0889 0x2180  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC          C:\Windows\System32\msdtc.exe
21:27:32.0904 0x2180  MSDTC - ok
21:27:32.0909 0x2180  [ 74FFF6220E4016FD6F2F9991BE54654B, 74955C73C1353ADB9F6AD2B2E8D9D21F2EDDBE85B13EE70A8349732F6368F523 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:27:32.0919 0x2180  Msfs - ok
21:27:32.0923 0x2180  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32    C:\Windows\System32\drivers\msgpiowin32.sys
21:27:32.0931 0x2180  msgpiowin32 - ok
21:27:32.0935 0x2180  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf      C:\Windows\System32\drivers\mshidkmdf.sys
21:27:32.0946 0x2180  mshidkmdf - ok
21:27:32.0949 0x2180  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf      C:\Windows\System32\drivers\mshidumdf.sys
21:27:32.0959 0x2180  mshidumdf - ok
21:27:32.0962 0x2180  [ 15552CD43BD9DA6C00659167403D19E6, B93BAE0FB5A132FA3F0218B07284117D424175DB0A69C4FB3E3C2E33F122207F ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:27:32.0971 0x2180  msisadrv - ok
21:27:32.0977 0x2180  [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
21:27:32.0994 0x2180  MSiSCSI - ok
21:27:32.0996 0x2180  msiserver - ok
21:27:33.0000 0x2180  [ DC38FC9A9CE8B22C6D10F45BE2263F0B, 57C09C4BFD0DE6DC1F0C047A5080F71DD31D7D21C8AB08B1FC5DB88D0B74F3D3 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
21:27:33.0010 0x2180  MsKeyboardFilter - ok
21:27:33.0013 0x2180  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
21:27:33.0023 0x2180  MSKSSRV - ok
21:27:33.0027 0x2180  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
21:27:33.0037 0x2180  MsLldp - ok
21:27:33.0041 0x2180  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:27:33.0051 0x2180  MSPCLOCK - ok
21:27:33.0053 0x2180  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
21:27:33.0063 0x2180  MSPQM - ok
21:27:33.0073 0x2180  [ E97AB73CF5D6B77783F33B488F027C5F, C1D3267B8C8DF0C0728341C6980239273CB0C28F78F8134C7FD9CC27EA127853 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
21:27:33.0092 0x2180  MsRPC - ok
21:27:33.0097 0x2180  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
21:27:33.0106 0x2180  mssmbios - ok
21:27:33.0108 0x2180  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
21:27:33.0119 0x2180  MSTEE - ok
21:27:33.0122 0x2180  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
21:27:33.0136 0x2180  MTConfig - ok
21:27:33.0141 0x2180  [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup            C:\Windows\system32\Drivers\mup.sys
21:27:33.0155 0x2180  Mup - ok
21:27:33.0159 0x2180  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
21:27:33.0170 0x2180  mvumis - ok
21:27:33.0182 0x2180  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\Windows\system32\qagentRT.dll
21:27:33.0204 0x2180  napagent - ok
21:27:33.0216 0x2180  [ F3A70F2C79D91B7C95F78E959DEDAD0E, CB1826614D1EEC1C2E8E6F8D2B8DE486CE7AF628DAC6969655E57EC4BAF70C9D ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
21:27:33.0233 0x2180  NativeWifiP - ok
21:27:33.0235 0x2180  NAVENG - ok
21:27:33.0238 0x2180  NAVEX15 - ok
21:27:33.0245 0x2180  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\Windows\System32\ncasvc.dll
21:27:33.0257 0x2180  NcaSvc - ok
21:27:33.0264 0x2180  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\Windows\System32\ncbservice.dll
21:27:33.0279 0x2180  NcbService - ok
21:27:33.0284 0x2180  [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
21:27:33.0295 0x2180  NcdAutoSetup - ok
21:27:33.0319 0x2180  [ FCE3B49118A5431585D8BD884A98CE46, F6E590BB03B5615BA9D502502019CD60B76629E4F7D577DC639C5619A5B40B3F ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:27:33.0351 0x2180  NDIS - ok
21:27:33.0357 0x2180  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap        C:\Windows\system32\DRIVERS\ndiscap.sys
21:27:33.0367 0x2180  NdisCap - ok
21:27:33.0373 0x2180  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
21:27:33.0387 0x2180  NdisImPlatform - ok
21:27:33.0391 0x2180  [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:27:33.0404 0x2180  NdisTapi - ok
21:27:33.0408 0x2180  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
21:27:33.0419 0x2180  Ndisuio - ok
21:27:33.0422 0x2180  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
21:27:33.0437 0x2180  NdisVirtualBus - ok
21:27:33.0445 0x2180  [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
21:27:33.0458 0x2180  NdisWan - ok
21:27:33.0464 0x2180  [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy  C:\Windows\system32\DRIVERS\ndiswan.sys
21:27:33.0477 0x2180  NdisWanLegacy - ok
21:27:33.0481 0x2180  [ 4F5178EEF4CC259F0A8CF56C2F16ADDB, 1940275E4AB0A863B146736A189F797EE06841DD74376AF6E09033FB1EEB6643 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
21:27:33.0492 0x2180  NDProxy - ok
21:27:33.0497 0x2180  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu            C:\Windows\system32\drivers\Ndu.sys
21:27:33.0508 0x2180  Ndu - ok
21:27:33.0513 0x2180  [ AD6A78E25BBC916354753A500C4E73C8, 52D10B07CA52B90E6934EC8916715B1BA78711A12600980A3A7A16EA5408F99A ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
21:27:33.0532 0x2180  NetBIOS - ok
21:27:33.0542 0x2180  [ 0FE750800DEEE91D22399D081371BA79, 7E1E01A5D5BAE68F975070D1676BD830ADF010E42A8046D4074D17B710230CD9 ] NetBT          C:\Windows\system32\DRIVERS\netbt.sys
21:27:33.0560 0x2180  NetBT - ok
21:27:33.0564 0x2180  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\Windows\system32\lsass.exe
21:27:33.0577 0x2180  Netlogon - ok
21:27:33.0587 0x2180  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\Windows\System32\netman.dll
21:27:33.0602 0x2180  Netman - ok
21:27:33.0616 0x2180  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\Windows\System32\netprofmsvc.dll
21:27:33.0638 0x2180  netprofm - ok
21:27:33.0652 0x2180  [ C986B84B68DDA3EECB65F4C330175522, 8F40D3F90BC61FC57BEA66280FF30DEFB1F37F53636992B1C61D01465684BB39 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:27:33.0663 0x2180  NetTcpPortSharing - ok
21:27:33.0668 0x2180  [ 39935F3D3582A8B3387E9A2ED4C85413, 4B0629CA22B9AEF90425991BC800043DBE18007AC90445809A8D5D122B41218D ] netvsc          C:\Windows\System32\drivers\netvsc63.sys
21:27:33.0682 0x2180  netvsc - ok
21:27:33.0694 0x2180  [ A0D7A655BC61C2421CB33F3A1CD97B8A, EF87D3CDB01789195E83FB629B0871ED03211C624BCF814260D86DDA57BD9B33 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:27:33.0711 0x2180  NlaSvc - ok
21:27:33.0716 0x2180  [ DC64DE793FF584167371FB11C2744191, 0FA1617F9B791E7D85FD45A7545F1F41FD27A65BC6782EE990AC6F5ED32197FA ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:27:33.0727 0x2180  Npfs - ok
21:27:33.0731 0x2180  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig      C:\Windows\System32\drivers\npsvctrig.sys
21:27:33.0741 0x2180  npsvctrig - ok
21:27:33.0744 0x2180  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi            C:\Windows\system32\nsisvc.dll
21:27:33.0755 0x2180  nsi - ok
21:27:33.0759 0x2180  [ 018510D88536798852DAE12F9BA6E138, C0D89C36F8737FD139CEA80BED65D1DB4248E667804645FF71C39BA92FEC4109 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:27:33.0771 0x2180  nsiproxy - ok
21:27:33.0811 0x2180  [ E49796C3293F1DC41DE12B67E237B992, 4D2CFD4968C9D0674982280ED1605F966A4D69685F70AEE59501AB6F75ACA714 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:27:33.0862 0x2180  Ntfs - ok
21:27:33.0868 0x2180  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
21:27:33.0880 0x2180  Null - ok
21:27:33.0891 0x2180  [ 4FD4739B359C2923965FE99B03AFD090, 02D52056A7605B9413747B41CBA2A904FAB025250FE64DFCD435606EF898A73D ] NVHDA          C:\Windows\system32\drivers\nvhda64v.sys
21:27:33.0906 0x2180  NVHDA - ok
21:27:34.0211 0x2180  [ DE3B81FBC9B8EBA4C22B13E530DBD8B9, 0D488E435A763EBBAC783CAF8003472400D4263FA48C6947E76E71FF6719DE7D ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:27:34.0537 0x2180  nvlddmkm - ok
21:27:34.0560 0x2180  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:27:34.0571 0x2180  nvraid - ok
21:27:34.0577 0x2180  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:27:34.0591 0x2180  nvstor - ok
21:27:34.0596 0x2180  [ 1A86FC8AD50913B2DDA78964858D5E90, 6BF4A8955DE28B920D6CE4DC075D60CE8A3FC99A8327D60B38230B09D369FD1B ] NvStreamKms    C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
21:27:34.0604 0x2180  NvStreamKms - ok
21:27:34.0621 0x2180  [ A60A8F056347EAC4A86AAE9A309FD9C1, 9BFEE84BC47B8EB83903C5E6E93692475A6157F55E9CC465E5C0114CD79DD277 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
21:27:34.0641 0x2180  NvTelemetryContainer - ok
21:27:34.0646 0x2180  [ 0C8042CA2D71370AF5684B9F7C171CD6, 8932E489C2DCF9E016E7BFAF64FB47DCBC4635A2F79AB48A31B725AA9480F018 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
21:27:34.0655 0x2180  nvvad_WaveExtensible - ok
21:27:34.0660 0x2180  [ F438902185093A11F1BEC238B6B5862A, 18E1CFF7899B0A5D4DBA1633FF0D46ECE47AD0828CEA8D8A3A8B3549BFD1C9E6 ] nvvhci          C:\Windows\System32\drivers\nvvhci.sys
21:27:34.0669 0x2180  nvvhci - ok
21:27:34.0675 0x2180  [ 9D1D5F4A66790A6B6B83B49497DB7A9F, CEFB57674BB681A0F446307E6D10D141DC2F5C5650A481FCF4D7FA877F421D0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:27:34.0690 0x2180  nv_agp - ok
21:27:34.0697 0x2180  [ D21AC5BC8098D309FF47132451390679, 5CE539E25DB04CF474317188F6BED5CF302FF2805932426207969998E9E61B4A ] ose            C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:27:34.0708 0x2180  ose - ok
21:27:34.0834 0x2180  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc        C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:27:34.0927 0x2180  osppsvc - ok
21:27:34.0943 0x2180  [ B0D4F47A4D74F6E6A3FF6B2D109D6734, B34F0AF0EAE3A39FCE8BF3871310A7308E2C0BEF3E2F4CAB5852F8D2B2A8B457 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:27:34.0961 0x2180  p2pimsvc - ok
21:27:34.0973 0x2180  [ 0B100C336809C1D7DBD108A75DAFFEF5, F8E5B7EBB5F751FD5BBBD0A5CE5CD60F2EE32CC75EFA68DAAD17E2B26B71AF4E ] p2psvc          C:\Windows\system32\p2psvc.dll
21:27:34.0995 0x2180  p2psvc - ok
21:27:35.0001 0x2180  [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport        C:\Windows\System32\drivers\parport.sys
21:27:35.0012 0x2180  Parport - ok
21:27:35.0017 0x2180  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr        C:\Windows\system32\drivers\partmgr.sys
21:27:35.0027 0x2180  partmgr - ok
21:27:35.0040 0x2180  [ 10D35971E29936AE422A9C728014E761, 7B1547312663D50D72B76A7C13A01E532F41132A8E108AF5C6C086B456C86ACA ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:27:35.0058 0x2180  PcaSvc - ok
21:27:35.0070 0x2180  [ 9C1015B033ABDFC59584F480207AECDD, 288011A1F5A6C6D530122210EF3CAD09DF0BDA15E490CD5C52209037B3A0714F ] pci            C:\Windows\system32\drivers\pci.sys
21:27:35.0085 0x2180  pci - ok
21:27:35.0088 0x2180  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:27:35.0096 0x2180  pciide - ok
21:27:35.0102 0x2180  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:27:35.0115 0x2180  pcmcia - ok
21:27:35.0118 0x2180  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw            C:\Windows\system32\drivers\pcw.sys
21:27:35.0127 0x2180  pcw - ok
21:27:35.0132 0x2180  [ E6B3ACBA06BAF48594557FCCBFA66FD2, 44A0FAC6169D9130870456DEFBFFE563FCCC4AD7A9754B455D5A1C1A77F0699D ] pdc            C:\Windows\system32\drivers\pdc.sys
21:27:35.0142 0x2180  pdc - ok
21:27:35.0154 0x2180  [ CC8466CA31E50A2A5554162DCD9A4B35, 041349FE9DC0E1B1F99B1BDC80C89F78D73906176AFA7712E197EC87B5AF64D3 ] PDF24          C:\Program Files (x86)\PDF24\pdf24.exe
21:27:35.0176 0x2180  PDF24 - ok
21:27:35.0192 0x2180  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:27:35.0216 0x2180  PEAUTH - ok
21:27:35.0260 0x2180  [ 866798D84132326AAC518D1E6179C91E, 64EBBBF7F456675F5302C2EADA592F66AF381A4CA07E8322D857655CB9C9F829 ] PeerDistSvc    C:\Windows\system32\peerdistsvc.dll
21:27:35.0308 0x2180  PeerDistSvc - ok
21:27:35.0343 0x2180  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:27:35.0355 0x2180  PerfHost - ok
21:27:35.0388 0x2180  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla            C:\Windows\system32\pla.dll
21:27:35.0429 0x2180  pla - ok
21:27:35.0436 0x2180  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:27:35.0451 0x2180  PlugPlay - ok
21:27:35.0455 0x2180  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg    C:\Windows\system32\pnrpauto.dll
21:27:35.0468 0x2180  PNRPAutoReg - ok
21:27:35.0479 0x2180  [ B0D4F47A4D74F6E6A3FF6B2D109D6734, B34F0AF0EAE3A39FCE8BF3871310A7308E2C0BEF3E2F4CAB5852F8D2B2A8B457 ] PNRPsvc        C:\Windows\system32\pnrpsvc.dll
21:27:35.0502 0x2180  PNRPsvc - ok
21:27:35.0514 0x2180  [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
21:27:35.0532 0x2180  PolicyAgent - ok
21:27:35.0538 0x2180  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power          C:\Windows\system32\umpo.dll
21:27:35.0553 0x2180  Power - ok
21:27:35.0613 0x2180  [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify    C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
21:27:35.0675 0x2180  PrintNotify - ok
21:27:35.0684 0x2180  [ 400E95F70BC0336D206139C930C3F7F6, 50D40C9E4B4BAEC25067B0A4E55A8FE0CEF6C6B66BDBAE62BBDB5A02C62DDF7E ] Processor      C:\Windows\System32\drivers\processr.sys
21:27:35.0695 0x2180  Processor - ok
21:27:35.0704 0x2180  [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc        C:\Windows\system32\profsvc.dll
21:27:35.0720 0x2180  ProfSvc - ok
21:27:35.0726 0x2180  [ DEF4D00D1E55B1E29138A1541D0B82D3, CB042B49BA34F501CAD5AE1277EBFC34BD7BC01C1251811733901566880FF280 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:27:35.0740 0x2180  Psched - ok
21:27:35.0749 0x2180  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE          C:\Windows\system32\qwave.dll
21:27:35.0764 0x2180  QWAVE - ok
21:27:35.0769 0x2180  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:27:35.0778 0x2180  QWAVEdrv - ok
21:27:35.0781 0x2180  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:27:35.0794 0x2180  RasAcd - ok
21:27:35.0800 0x2180  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto        C:\Windows\System32\rasauto.dll
21:27:35.0812 0x2180  RasAuto - ok
21:27:35.0825 0x2180  [ 0A655DD285E4E1E2975CEAB8FDE75295, 023B73A71CB48578702548F8F1096BDF72BE09D836F2D324DDA869E4F0354133 ] RasMan          C:\Windows\System32\rasmans.dll
21:27:35.0845 0x2180  RasMan - ok
21:27:35.0850 0x2180  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:27:35.0863 0x2180  RasPppoe - ok
21:27:35.0882 0x2180  [ E4050440AD55D6409A6591E31EEC5955, 9FB245886B6A09D13219D4707B82DE91E2ACF3C6C10001253E95DF2BD688B591 ] Razer Chroma SDK Server C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
21:27:35.0901 0x2180  Razer Chroma SDK Server - ok
21:27:35.0925 0x2180  [ EFDB55EE88C20633DBB41051EDE8D09D, 6754C8A9425AA24833024FCDECC881A1331E7EA59CCC7B34C0C01A42CE5294A9 ] Razer Chroma SDK Service C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
21:27:35.0951 0x2180  Razer Chroma SDK Service - ok
21:27:35.0963 0x2180  [ 940375C6FFC9EC7BDC6C2FF7963B2F5A, D37882E32AC4F63417A84809426ECB53668EA980673FE4D5D1591557B8F1C96C ] Razer Game Manager Service C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
21:27:35.0976 0x2180  Razer Game Manager Service - ok
21:27:35.0990 0x2180  [ 8585A022F2FEDBE6D6FD50F86B47F54A, C559F8FAF251A432E11301B0001AE82641DF9E0B9B4CEDCBD5C5228DEF582CF9 ] Razer Synapse Service C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
21:27:36.0003 0x2180  Razer Synapse Service - ok
21:27:36.0014 0x2180  [ 3560C2D5A5DAC09BF81F5C5CD0029192, BF07AE75CAC322304024AF2385034847F18615439894306CC96D3F6F3C088CB5 ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
21:27:36.0033 0x2180  rdbss - ok
21:27:36.0039 0x2180  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
21:27:36.0051 0x2180  rdpbus - ok
21:27:36.0059 0x2180  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR          C:\Windows\system32\drivers\rdpdr.sys
21:27:36.0074 0x2180  RDPDR - ok
21:27:36.0080 0x2180  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:27:36.0091 0x2180  RdpVideoMiniport - ok
21:27:36.0099 0x2180  [ 468F9F3886DD3320357ECDBFF838DBBF, B8A8198A3D7CF19D662718AC9D33AD3722D179DA88D9F3FCFFB67AAA3F95C153 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:27:36.0114 0x2180  rdyboost - ok
21:27:36.0136 0x2180  [ B5C2EA2F3FC153B8C2095B338ED0035F, 467977E9C37378BDFC2929F9DD8FEBE0D76F89C278EE0A5D9118A08F2B1285EF ] ReFS            C:\Windows\system32\drivers\ReFS.sys
21:27:36.0163 0x2180  ReFS - ok
21:27:36.0173 0x2180  [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:27:36.0190 0x2180  RemoteAccess - ok
21:27:36.0198 0x2180  [ 7594FEFBAD6BA4645CE7AA175C19BAD0, 32625BA39B905576F0465E261F15D222ED228A19071E3A1BC4286B5FECA0F948 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:27:36.0211 0x2180  RemoteRegistry - ok
21:27:36.0219 0x2180  [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
21:27:36.0234 0x2180  RFCOMM - ok
21:27:36.0241 0x2180  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:27:36.0256 0x2180  RpcEptMapper - ok
21:27:36.0259 0x2180  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\Windows\system32\locator.exe
21:27:36.0271 0x2180  RpcLocator - ok
21:27:36.0289 0x2180  [ 3BC25B8189367964F8CEBCFAF05FB6D0, D7E492EDBF38931C123C8E3F0756F6996751A312218B98C42582172A411DF841 ] RpcSs          C:\Windows\system32\rpcss.dll
21:27:36.0314 0x2180  RpcSs - ok
21:27:36.0319 0x2180  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:27:36.0339 0x2180  rspndr - ok
21:27:36.0354 0x2180  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168        C:\Windows\system32\DRIVERS\Rt630x64.sys
21:27:36.0377 0x2180  RTL8168 - ok
21:27:36.0398 0x2180  [ 6DCAA331BCBA7D6539550214B23A30F1, AB7D5344EF5580856A43C325CE15909E8A00FB88CFEEEE7335357C458F950A83 ] RzActionSvc    C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
21:27:36.0416 0x2180  RzActionSvc - ok
21:27:36.0421 0x2180  [ 2ABAF8ACE5B68436452DEC163C6E524A, 428246B155E16CF04D3C0775A6E9625FCEC5FEDDBFF2C75BEA060E77162C38C0 ] RzCommon        C:\Windows\System32\drivers\RzCommon.sys
21:27:36.0429 0x2180  RzCommon - ok
21:27:36.0432 0x2180  [ C780531A3929B27933DF647F7FAD227C, 824484C843ED2981471C023C2CC037EA0228227BCB0B9959B2B9AC550A76B934 ] rzdaendpt      C:\Windows\System32\drivers\rzdaendpt.sys
21:27:36.0444 0x2180  rzdaendpt - ok
21:27:36.0448 0x2180  [ 6A71BE2DBB3A733B745504B28D40912C, ED1E0529ADBA12A9D6B421791508170F7F5CDE35D2F08E7F02711950062B773D ] RzDev_0203      C:\Windows\System32\drivers\RzDev_0203.sys
21:27:36.0456 0x2180  RzDev_0203 - ok
21:27:36.0460 0x2180  [ 53AD100D0500FEA97C47EFA8FDD5F2B7, 373A698A50C9D6454081BDE146FF7DDC4A82BD90D28BABF0E293DC44DBAA4EB1 ] rzendpt        C:\Windows\System32\drivers\rzendpt.sys
21:27:36.0472 0x2180  rzendpt - ok
21:27:36.0476 0x2180  [ B1EC5E403363E26CC102B5241B9B246F, 3D72BF57E30C3EFB0E000234A9B3AC02765AFFC87F118E3B05244A444B91B7DC ] rzmpos          C:\Windows\System32\drivers\rzmpos.sys
21:27:36.0485 0x2180  rzmpos - ok
21:27:36.0490 0x2180  [ 8F8C6EDB43BA9E60917ED76EA2E02CDE, AED12241690DFE6FAFF54D85FFD0926B84135BBEE1F9C9ED9850E11F4D5330EE ] RzOvlMon        C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
21:27:36.0499 0x2180  RzOvlMon - ok
21:27:36.0504 0x2180  [ 9B07BB39BE7B684492EDDF4AA7CB3149, E9643182380BA2C02B6119B4A4E385C3C7E49B9C7F0B6A990E9E279F3D2BD648 ] RZSURROUNDVADService C:\Windows\system32\drivers\RzSurroundVAD.sys
21:27:36.0512 0x2180  RZSURROUNDVADService - ok
21:27:36.0615 0x2180  [ 0284855D732C769662B6EABA70E779ED, 7B4951B38CCB9DB00F38520B8B409ABBA81EFD501262C85DE65A9B4AA233BAEF ] RzSurroundVADStreamingService C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
21:27:36.0715 0x2180  RzSurroundVADStreamingService - ok
21:27:36.0727 0x2180  [ C87957DBF0B18C6445FC03220370C87F, 0A14CF8CE3C1207451B14F83AD0A81017D0B37240529C507C9C5BC3802658426 ] rzudd          C:\Windows\System32\drivers\rzudd.sys
21:27:36.0741 0x2180  rzudd - ok
21:27:36.0745 0x2180  [ 6988F8A7C8ACF1B9642428CC896DA646, E393B4DCF8B7A11594FC7AF28E92CD7A6E897BD3D53BFE3C00B9E366AF45ECBC ] rzvkeyboard    C:\Windows\System32\drivers\rzvkeyboard.sys
21:27:36.0754 0x2180  rzvkeyboard - ok
21:27:36.0757 0x2180  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap          C:\Windows\System32\drivers\vms3cap.sys
21:27:36.0767 0x2180  s3cap - ok
21:27:36.0771 0x2180  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs          C:\Windows\system32\lsass.exe
21:27:36.0783 0x2180  SamSs - ok
21:27:36.0789 0x2180  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:27:36.0802 0x2180  sbp2port - ok
21:27:36.0809 0x2180  [ 305B725E3FC1936162FE84A0BB526F22, 341E311BAF071F630E277BA41629883D5F8DB76E820425AB898BAC13D09971DC ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:27:36.0826 0x2180  SCardSvr - ok
21:27:36.0833 0x2180  [ 92D2FA1870F4EB4A9BA767DB6E0DEF6F, AB019E17D5F330CBB7F7CAF8CEB01F3F3DBBB181CDE19E4C2354AF51E66C8291 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
21:27:36.0845 0x2180  ScDeviceEnum - ok
21:27:36.0849 0x2180  [ DEA731D96816F1F67C32F49E4EF248DD, 6A977D80164616A85BDAE437A3D50E055720E3163941259F19E8719F54BE267D ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:27:36.0859 0x2180  scfilter - ok
21:27:36.0884 0x2180  [ 32B57B1230143F080CFD91AA1072A5AE, 08D547A08CEECE8A74ABD26C53C1C4DE93026F676F69B6D74812062B0A3FC1AF ] Schedule        C:\Windows\system32\schedsvc.dll
21:27:36.0919 0x2180  Schedule - ok
21:27:36.0926 0x2180  [ ACFDC4EE40EC6E4A0AB91D923B8288C8, D31555AB31F504C247049219BE0ECDF26BB18E210BE7C45E8575FD166FD7EE23 ] SCPolicySvc    C:\Windows\System32\certprop.dll
21:27:36.0943 0x2180  SCPolicySvc - ok
21:27:36.0953 0x2180  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus          C:\Windows\System32\drivers\sdbus.sys
21:27:36.0970 0x2180  sdbus - ok
21:27:36.0976 0x2180  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
21:27:36.0986 0x2180  sdstor - ok
21:27:36.0989 0x2180  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:27:37.0001 0x2180  secdrv - ok
21:27:37.0005 0x2180  [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon        C:\Windows\system32\seclogon.dll
21:27:37.0016 0x2180  seclogon - ok
21:27:37.0022 0x2180  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\Windows\System32\sens.dll
21:27:37.0036 0x2180  SENS - ok
21:27:37.0045 0x2180  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:27:37.0059 0x2180  SensrSvc - ok
21:27:37.0063 0x2180  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx          C:\Windows\system32\drivers\SerCx.sys
21:27:37.0073 0x2180  SerCx - ok
21:27:37.0079 0x2180  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
21:27:37.0092 0x2180  SerCx2 - ok
21:27:37.0096 0x2180  [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum        C:\Windows\System32\drivers\serenum.sys
21:27:37.0106 0x2180  Serenum - ok
21:27:37.0112 0x2180  [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial          C:\Windows\System32\drivers\serial.sys
21:27:37.0125 0x2180  Serial - ok
21:27:37.0129 0x2180  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\Windows\System32\drivers\sermouse.sys
21:27:37.0142 0x2180  sermouse - ok
21:27:37.0156 0x2180  [ A3955F30E33409E6F548592C187B21AC, EF87E0A71D23569CDCACD408278BD2274031D530689C36921CDCE4ED5BD20B3F ] SessionEnv      C:\Windows\system32\sessenv.dll
21:27:37.0176 0x2180  SessionEnv - ok
21:27:37.0179 0x2180  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy        C:\Windows\System32\drivers\sfloppy.sys
21:27:37.0191 0x2180  sfloppy - ok
21:27:37.0208 0x2180  [ 9242988D74674C2819D454F001457BAD, D353A30D224940B0C7750161782CE98D4C47ABC5C4E04B100F8ABB6A3402B5AD ] Sftfs          C:\Windows\system32\DRIVERS\Sftfswin7.sys
21:27:37.0231 0x2180  Sftfs - ok
21:27:37.0246 0x2180  [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist        C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:27:37.0263 0x2180  sftlist - ok
21:27:37.0272 0x2180  [ 44391FA910901E2B8A2F831340FD707A, 9ACAD655DCCCAF562CEDE9180B187C229FFCAF97BA87D78225253C7868698CB8 ] Sftplay        C:\Windows\system32\DRIVERS\Sftplaywin7.sys
21:27:37.0283 0x2180  Sftplay - ok
21:27:37.0287 0x2180  [ 8654DBDC8ED8ED7257618D11B6C590BE, 1A410CCB7CDE99C607662E21054E959D3349647C5BD810CE744DA59EEB9C3FA2 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirwin7.sys
21:27:37.0298 0x2180  Sftredir - ok
21:27:37.0302 0x2180  [ 648F0152A7BAE175905C22E8BD839760, 6E3FC032212FD1F39FEE96D230F47BB25355587E8A73E34776CAEA8C0C1FB58E ] Sftvol          C:\Windows\system32\DRIVERS\Sftvolwin7.sys
21:27:37.0313 0x2180  Sftvol - ok
21:27:37.0320 0x2180  [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:27:37.0333 0x2180  sftvsa - ok
21:27:37.0346 0x2180  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:27:37.0363 0x2180  SharedAccess - ok
21:27:37.0379 0x2180  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:27:37.0402 0x2180  ShellHWDetection - ok
21:27:37.0406 0x2180  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:27:37.0418 0x2180  SiSRaid2 - ok
21:27:37.0422 0x2180  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:27:37.0432 0x2180  SiSRaid4 - ok
21:27:37.0436 0x2180  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost        C:\Windows\System32\smphost.dll
21:27:37.0446 0x2180  smphost - ok
21:27:37.0452 0x2180  [ 961507DB02D7AC0B7A7828D457143B8E, F423BE6287C65960A955EBB3BFBAC047313BEB2F54920A6E57E51FCCE855F5E0 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:27:37.0464 0x2180  SNMPTRAP - ok
21:27:37.0477 0x2180  [ F6AF6499C3788105EA7AF1DA27769A77, F847789B0AD498CC9C985F334F7BA0906ACB41FB356CC2EF2A00C62C75D94A79 ] spaceport      C:\Windows\system32\drivers\spaceport.sys
21:27:37.0497 0x2180  spaceport - ok
21:27:37.0502 0x2180  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx          C:\Windows\system32\drivers\SpbCx.sys
21:27:37.0514 0x2180  SpbCx - ok
21:27:37.0532 0x2180  [ 851F06253BED584E39F5126EB5C2D6DD, 5144AA4C45598B0749D4F2CF477BB8E9B75DFB858385888E31E703B7C8FB6463 ] Spooler        C:\Windows\System32\spoolsv.exe
21:27:37.0561 0x2180  Spooler - ok
21:27:37.0679 0x2180  [ 8B14E197DB9C8E2B5447CD8AFCE92E1F, CF22D703FA779BE84E3957E7A18EF4837B1328914B2634898BBCABE08BD239C1 ] sppsvc          C:\Windows\system32\sppsvc.exe
21:27:37.0828 0x2180  sppsvc - ok
21:27:37.0846 0x2180  [ 6E978E17F9C94F9C59200FF077BF4827, 67FC50049F2BB74A3B694481D838604E6BC6DC3C1ED99AA7DCA18DD4F026404D ] srv            C:\Windows\system32\DRIVERS\srv.sys
21:27:37.0867 0x2180  srv - ok
21:27:37.0883 0x2180  [ 20ED7E59F72B0401DD8E0AF697E4D1D0, 910A1049A9FA366022C7D03EEF65F76DFA3F973C4C16B742066316E96CB15DA9 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:27:37.0908 0x2180  srv2 - ok
21:27:37.0918 0x2180  [ 008861C301DA58782DE72B6783AE9706, 6BBCB0D1064F20CF356F35A7F5CD7AE76B1F43FD73AD238B844FB4DFA771AB6E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:27:37.0931 0x2180  srvnet - ok
21:27:37.0941 0x2180  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
21:27:37.0957 0x2180  SSDPSRV - ok
21:27:37.0963 0x2180  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc        C:\Windows\system32\sstpsvc.dll
21:27:37.0984 0x2180  SstpSvc - ok
21:27:37.0991 0x2180  [ F0B59ADCD06BCEB9D47311B7041CA2C9, 6299AB514CBE153C875F083ED789F6205C1781C0178759521F5A6D8007F5257C ] ssudmdm        C:\Windows\system32\DRIVERS\ssudmdm.sys
21:27:38.0002 0x2180  ssudmdm - ok
21:27:38.0022 0x2180  [ 7DB9E612A2742ACEAB080B882E83141C, FFD1FA36E732F55223F3F4B5F845331DBB3073B023C2C5BF51A0E7680DEE7FA7 ] ss_conn_service C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
21:27:38.0049 0x2180  ss_conn_service - ok
21:27:38.0084 0x2180  [ A873E161E3F8E14DB500DB8B0A182302, FEB62848BF883F38BAC51B0DD8CF8294B1C9CC709EF176727F82FF624CE96865 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:27:38.0120 0x2180  Steam Client Service - ok
21:27:38.0124 0x2180  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:27:38.0133 0x2180  stexstor - ok
21:27:38.0150 0x2180  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\Windows\System32\wiaservc.dll
21:27:38.0173 0x2180  stisvc - ok
21:27:38.0179 0x2180  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
21:27:38.0189 0x2180  storahci - ok
21:27:38.0194 0x2180  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt        C:\Windows\system32\drivers\vmstorfl.sys
21:27:38.0206 0x2180  storflt - ok
21:27:38.0211 0x2180  [ 1D5A045F59D216448FCDE3A8D69970E2, CEDEB0843D93339D10FE4BC209CCFCB6E12C6064FD62694DA7675082E8B8C915 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
21:27:38.0221 0x2180  stornvme - ok
21:27:38.0224 0x2180  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc        C:\Windows\system32\storsvc.dll
21:27:38.0237 0x2180  StorSvc - ok
21:27:38.0241 0x2180  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc        C:\Windows\system32\drivers\storvsc.sys
21:27:38.0252 0x2180  storvsc - ok
21:27:38.0256 0x2180  [ B3A905F6E860F1C58264592F8393E322, 5509CF740CEE087B526AEFA9ABEF234D52170D5EA1C97C1837D690DC6FFFFDAE ] storvsp        C:\Windows\System32\drivers\storvsp.sys
21:27:38.0267 0x2180  storvsp - ok
21:27:38.0270 0x2180  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc          C:\Windows\system32\svsvc.dll
21:27:38.0284 0x2180  svsvc - ok
21:27:38.0288 0x2180  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\Windows\System32\drivers\swenum.sys
21:27:38.0301 0x2180  swenum - ok
21:27:38.0318 0x2180  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv          C:\Windows\System32\swprv.dll
21:27:38.0342 0x2180  swprv - ok
21:27:38.0367 0x2180  [ 0404A539EC3D731EE42632AAFFF0666A, 5558B96C9A425ADEC69A020E0FEDB6D7562A60E403A2ECDCE58CAF2CA155549F ] SysMain        C:\Windows\system32\sysmain.dll
21:27:38.0400 0x2180  SysMain - ok
21:27:38.0411 0x2180  [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
21:27:38.0426 0x2180  SystemEventsBroker - ok
21:27:38.0435 0x2180  [ 54A1F83B166F1062000A0D816CB3B43A, 8A104B2141546984CFB988CC178EB1910F6B42A19CB75A30F4E74D5EE67901EB ] TabletInputService C:\Windows\System32\TabSvc.dll
21:27:38.0451 0x2180  TabletInputService - ok
21:27:38.0460 0x2180  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv        C:\Windows\System32\tapisrv.dll
21:27:38.0480 0x2180  TapiSrv - ok
21:27:38.0528 0x2180  [ C9BADF315D3887534B432063B82A8ED2, 590EA650655431F0689753A7CF8611339F903A22010EE6F8394C0380F83815B1 ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
21:27:38.0591 0x2180  Tcpip - ok
21:27:38.0639 0x2180  [ C9BADF315D3887534B432063B82A8ED2, 590EA650655431F0689753A7CF8611339F903A22010EE6F8394C0380F83815B1 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:27:38.0698 0x2180  TCPIP6 - ok
21:27:38.0707 0x2180  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:27:38.0718 0x2180  tcpipreg - ok
21:27:38.0725 0x2180  [ 576FA545FAB846B06E79B324160DE25C, 14F1FD2769E7F5362E6452CA061564EF3DEBFDF6BC8EFF0CD4E22068A460A727 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
21:27:38.0737 0x2180  tdx - ok
21:27:38.0741 0x2180  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
21:27:38.0754 0x2180  terminpt - ok
21:27:38.0778 0x2180  [ 4A26668577CC092A2E0C83D3979E626D, D16537A71A190A6B987CFA08AC59A8EB8A768888C1CC48A4AB858478F8180703 ] TermService    C:\Windows\System32\termsrv.dll
21:27:38.0808 0x2180  TermService - ok
21:27:38.0813 0x2180  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\Windows\system32\themeservice.dll
21:27:38.0825 0x2180  Themes - ok
21:27:38.0831 0x2180  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER    C:\Windows\system32\mmcss.dll
21:27:38.0842 0x2180  THREADORDER - ok
21:27:38.0852 0x2180  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
21:27:38.0866 0x2180  TimeBroker - ok
21:27:38.0874 0x2180  [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM            C:\Windows\system32\drivers\tpm.sys
21:27:38.0888 0x2180  TPM - ok
21:27:38.0895 0x2180  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\Windows\System32\trkwks.dll
21:27:38.0907 0x2180  TrkWks - ok
21:27:38.0912 0x2180  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:27:38.0928 0x2180  TrustedInstaller - ok
21:27:38.0932 0x2180  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:27:38.0945 0x2180  TsUsbFlt - ok
21:27:38.0949 0x2180  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD        C:\Windows\System32\drivers\TsUsbGD.sys
21:27:38.0962 0x2180  TsUsbGD - ok
21:27:38.0968 0x2180  [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:27:38.0980 0x2180  tunnel - ok
21:27:38.0985 0x2180  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:27:38.0998 0x2180  uagp35 - ok
21:27:39.0003 0x2180  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
21:27:39.0012 0x2180  UASPStor - ok
21:27:39.0021 0x2180  [ 42FF91AAAFB5BFA7FE0F5A31E8D83AE3, 11D4EF275357BB69F9431F9B24A5524A631D65610F8128F68290C6E839009BE2 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
21:27:39.0038 0x2180  UCX01000 - ok
21:27:39.0047 0x2180  [ 326805D03C5CC71967B21BEF33A02042, 00482C30FE75DB374BB75FF1E3166CB6B4804D7CF3195D04E5A87895541B31A0 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:27:39.0066 0x2180  udfs - ok
21:27:39.0071 0x2180  [ 5DFA6081BE0AE39EA5B3A38CAC6A961F, D2EC133CF68E794225DE4FAB678F9FECD20D82EC7539A450769076BA57C1914F ] UEFI            C:\Windows\System32\drivers\UEFI.sys
21:27:39.0083 0x2180  UEFI - ok
21:27:39.0090 0x2180  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect      C:\Windows\system32\UI0Detect.exe
21:27:39.0103 0x2180  UI0Detect - ok
21:27:39.0108 0x2180  [ 4EF2D1DCFFC75ADFFFDD471BD9EBEDCC, 9B47DB34537B08D2F934C5FA0503B3441F718F0F8CEDF2483F77C684BD2D63E5 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:27:39.0121 0x2180  uliagpkx - ok
21:27:39.0125 0x2180  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus          C:\Windows\System32\drivers\umbus.sys
21:27:39.0136 0x2180  umbus - ok
21:27:39.0139 0x2180  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
21:27:39.0153 0x2180  UmPass - ok
21:27:39.0162 0x2180  [ 87743CF5FF2FB3F2B424F0D8DFF8FD8C, C14C979612426D4449274C109FCF25D3BE170DC5CD7EF8E230C7E8D5681904D3 ] UmRdpService    C:\Windows\System32\umrdp.dll
21:27:39.0178 0x2180  UmRdpService - ok
21:27:39.0189 0x2180  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\Windows\System32\upnphost.dll
21:27:39.0211 0x2180  upnphost - ok
21:27:39.0216 0x2180  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64      C:\Windows\System32\Drivers\usbaapl64.sys
21:27:39.0223 0x2180  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
21:27:39.0223 0x2180  Detect skipped due to KSN trusted
21:27:39.0223 0x2180  USBAAPL64 - ok
21:27:39.0230 0x2180  [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:27:39.0242 0x2180  usbaudio - ok
21:27:39.0250 0x2180  [ 621317D14B93CBFBD5694767EFB6B40A, 84D3F4AA2CAFA11DF5EAD178889ACCAA2FF50D48AFE9518F63FBB862928630FB ] usbccgp        C:\Windows\System32\drivers\usbccgp.sys
21:27:39.0269 0x2180  usbccgp - ok
21:27:39.0276 0x2180  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
21:27:39.0287 0x2180  usbcir - ok
21:27:39.0292 0x2180  [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci        C:\Windows\System32\drivers\usbehci.sys
21:27:39.0302 0x2180  usbehci - ok
21:27:39.0319 0x2180  [ E30B159760053C5A1297D2CD08046CD7, E45472CEEC31616DBE2B38C4FD9B90179ED7FF29041F21FB124334B4A53AE48C ] usbhub          C:\Windows\System32\drivers\usbhub.sys
21:27:39.0337 0x2180  usbhub - ok
21:27:39.0351 0x2180  [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3        C:\Windows\System32\drivers\UsbHub3.sys
21:27:39.0369 0x2180  USBHUB3 - ok
21:27:39.0373 0x2180  [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci        C:\Windows\System32\drivers\usbohci.sys
21:27:39.0383 0x2180  usbohci - ok
21:27:39.0387 0x2180  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
21:27:39.0402 0x2180  usbprint - ok
21:27:39.0406 0x2180  [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan        C:\Windows\system32\DRIVERS\usbscan.sys
21:27:39.0419 0x2180  usbscan - ok
21:27:39.0426 0x2180  [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR        C:\Windows\System32\drivers\USBSTOR.SYS
21:27:39.0438 0x2180  USBSTOR - ok
21:27:39.0442 0x2180  [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci        C:\Windows\System32\drivers\usbuhci.sys
21:27:39.0455 0x2180  usbuhci - ok
21:27:39.0467 0x2180  [ 3413BCA17155F82614A3F18518923475, A3C8FAB425CDC088CE9CC33A23B242291469C17848B8BE8DDEAC276905F7BAA4 ] USBXHCI        C:\Windows\System32\drivers\USBXHCI.SYS
21:27:39.0481 0x2180  USBXHCI - ok
21:27:39.0486 0x2180  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\Windows\system32\lsass.exe
21:27:39.0498 0x2180  VaultSvc - ok
21:27:39.0503 0x2180  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:27:39.0515 0x2180  vdrvroot - ok
21:27:39.0542 0x2180  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds            C:\Windows\System32\vds.exe
21:27:39.0582 0x2180  vds - ok
21:27:39.0590 0x2180  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt    C:\Windows\system32\drivers\VerifierExt.sys
21:27:39.0601 0x2180  VerifierExt - ok
21:27:39.0619 0x2180  [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp          C:\Windows\System32\drivers\vhdmp.sys
21:27:39.0642 0x2180  vhdmp - ok
21:27:39.0646 0x2180  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:27:39.0656 0x2180  viaide - ok
21:27:39.0665 0x2180  [ B3E4A4979435A1D68B3F609DDFC3BC6F, 1B4C2402B537F13E024A4466D8DBAD53916A71B6EBCA996889E981E1BB17CA55 ] Vid            C:\Windows\System32\drivers\Vid.sys
21:27:39.0679 0x2180  Vid - ok
21:27:39.0684 0x2180  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus          C:\Windows\system32\drivers\vmbus.sys
21:27:39.0696 0x2180  vmbus - ok
21:27:39.0700 0x2180  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
21:27:39.0712 0x2180  VMBusHID - ok
21:27:39.0718 0x2180  [ 8BFFE6885F680EE9FE7091A704303F84, BECA3CFF03BEF164BC7C5B4788468C76391A3AE4FD6FE784C809562358CF04DD ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
21:27:39.0732 0x2180  vmbusr - ok
21:27:39.0746 0x2180  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
21:27:39.0766 0x2180  vmicguestinterface - ok
21:27:39.0780 0x2180  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat  C:\Windows\System32\ICSvc.dll
21:27:39.0802 0x2180  vmicheartbeat - ok
21:27:39.0815 0x2180  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
21:27:39.0839 0x2180  vmickvpexchange - ok
21:27:39.0852 0x2180  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv        C:\Windows\System32\ICSvc.dll
21:27:39.0874 0x2180  vmicrdv - ok
21:27:39.0886 0x2180  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
21:27:39.0909 0x2180  vmicshutdown - ok
21:27:39.0922 0x2180  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\Windows\System32\ICSvc.dll
21:27:39.0942 0x2180  vmictimesync - ok
21:27:39.0954 0x2180  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss        C:\Windows\System32\ICSvc.dll
21:27:39.0976 0x2180  vmicvss - ok
21:27:39.0982 0x2180  [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:27:39.0992 0x2180  volmgr - ok
21:27:40.0004 0x2180  [ 7DD4EAE2E680948D9AFF3E1B5234C1D3, 7B893CEF2B72458F5C716C811A24E4A8856E12E2AC9F551606A64B59C9DCF272 ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
21:27:40.0022 0x2180  volmgrx - ok
21:27:40.0035 0x2180  [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap        C:\Windows\system32\drivers\volsnap.sys
21:27:40.0049 0x2180  volsnap - ok
21:27:40.0054 0x2180  [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci            C:\Windows\System32\drivers\vpci.sys
21:27:40.0068 0x2180  vpci - ok
21:27:40.0074 0x2180  [ BA4D0CF5F303A70BE5F02858CB892BEA, F3368E7AB7C7A0D82C5DE79F0E6B4E2E4869017F9CC4DAA323A69989548F24B0 ] vpcivsp        C:\Windows\System32\drivers\vpcivsp.sys
21:27:40.0084 0x2180  vpcivsp - ok
21:27:40.0090 0x2180  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid        C:\Windows\system32\drivers\vsmraid.sys
21:27:40.0102 0x2180  vsmraid - ok
21:27:40.0131 0x2180  [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS            C:\Windows\system32\vssvc.exe
21:27:40.0170 0x2180  VSS - ok
21:27:40.0181 0x2180  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
21:27:40.0195 0x2180  VSTXRAID - ok
21:27:40.0198 0x2180  [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
21:27:40.0212 0x2180  vwifibus - ok
21:27:40.0224 0x2180  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time        C:\Windows\system32\w32time.dll
21:27:40.0244 0x2180  W32Time - ok
21:27:40.0248 0x2180  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
21:27:40.0261 0x2180  WacomPen - ok
21:27:40.0292 0x2180  [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine        C:\Windows\system32\wbengine.exe
21:27:40.0329 0x2180  wbengine - ok
21:27:40.0343 0x2180  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:27:40.0363 0x2180  WbioSrvc - ok
21:27:40.0375 0x2180  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
21:27:40.0395 0x2180  Wcmsvc - ok
21:27:40.0407 0x2180  [ A7F2B008F038EFFED5A847029852BC27, EC6C6DEC559AA0DD4307F87880939A84A4CFB13C73C92C444E9B53EBBDE80F79 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
21:27:40.0431 0x2180  wcncsvc - ok
21:27:40.0436 0x2180  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:27:40.0447 0x2180  WcsPlugInService - ok
21:27:40.0452 0x2180  [ F2E08D1C067FEFC3A42D21FD4810F1D3, A8AD114094D9AE3BC6F76940EF873FD21CCF130DE7F8712950F1962DCE25F1B3 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
21:27:40.0461 0x2180  WdBoot - ok
21:27:40.0479 0x2180  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:27:40.0502 0x2180  Wdf01000 - ok
21:27:40.0512 0x2180  [ E234820E6B84ABA5E84E00227F505AE8, 645B809B883D8F678F2535B575AA1D595F27EBFCE0A16433E9A54CC266BD74F2 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
21:27:40.0530 0x2180  WdFilter - ok
21:27:40.0535 0x2180  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:27:40.0551 0x2180  WdiServiceHost - ok
21:27:40.0556 0x2180  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost  C:\Windows\system32\wdi.dll
21:27:40.0569 0x2180  WdiSystemHost - ok
21:27:40.0574 0x2180  [ A74AD6D80AC26E1B5DD276FC927F2BAC, F73F090D46BB2AAA6A8D148C658B2EA8C07B16201BB800A9283F4017DC249809 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
21:27:40.0585 0x2180  WdNisDrv - ok
21:27:40.0587 0x2180  WdNisSvc - ok
21:27:40.0595 0x2180  [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient      C:\Windows\System32\webclnt.dll
21:27:40.0612 0x2180  WebClient - ok
21:27:40.0621 0x2180  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:27:40.0635 0x2180  Wecsvc - ok
21:27:40.0639 0x2180  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
21:27:40.0653 0x2180  WEPHOSTSVC - ok
21:27:40.0658 0x2180  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport  C:\Windows\System32\wercplsupport.dll
21:27:40.0671 0x2180  wercplsupport - ok
21:27:40.0677 0x2180  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\Windows\System32\WerSvc.dll
21:27:40.0691 0x2180  WerSvc - ok
21:27:40.0697 0x2180  [ B3E08E32BD082100928C6BA18AE5E526, 1D93EB34B5A6DE9CEF3A0F41C346E2172CA43A3EEDD9230CB24DB1AC6F1974DF ] WFPLWFS        C:\Windows\system32\DRIVERS\wfplwfs.sys
21:27:40.0712 0x2180  WFPLWFS - ok
21:27:40.0716 0x2180  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\Windows\System32\wiarpc.dll
21:27:40.0728 0x2180  WiaRpc - ok
21:27:40.0731 0x2180  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:27:40.0742 0x2180  WIMMount - ok
21:27:40.0744 0x2180  WinDefend - ok
21:27:40.0765 0x2180  [ 403B0E82CCB383DD02D9987B7247EF28, BE7A731A0A96949ABA8ACB8FD6D29F5E1F8FF6BA227C6E99C5A2CAE25F9C7F2C ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
21:27:40.0793 0x2180  WinHttpAutoProxySvc - ok
21:27:40.0808 0x2180  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
21:27:40.0821 0x2180  Winmgmt - ok
21:27:40.0872 0x2180  [ F81B96E455847919D2382098157DC20A, EDB286730D4F3D535F1F0B738DB39230B05B133FAFDD2F4904AD5B57C2705106 ] WinRM          C:\Windows\system32\WsmSvc.dll
21:27:40.0930 0x2180  WinRM - ok
21:27:40.0940 0x2180  [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
21:27:40.0951 0x2180  WinUsb - ok
21:27:40.0981 0x2180  [ 2A4A54CB5198AEF84DF56560C679EDD9, 829BED307F9E57EEC38CEF91978034CC6846493AE33E51E76A1AC36EB5B1F197 ] WlanSvc        C:\Windows\System32\wlansvc.dll
21:27:41.0020 0x2180  WlanSvc - ok
21:27:41.0054 0x2180  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc        C:\Windows\system32\wlidsvc.dll
21:27:41.0092 0x2180  wlidsvc - ok
21:27:41.0097 0x2180  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi        C:\Windows\System32\drivers\wmiacpi.sys
21:27:41.0107 0x2180  WmiAcpi - ok
21:27:41.0115 0x2180  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:27:41.0128 0x2180  wmiApSrv - ok
21:27:41.0132 0x2180  WMPNetworkSvc - ok
21:27:41.0139 0x2180  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof            C:\Windows\system32\drivers\Wof.sys
21:27:41.0150 0x2180  Wof - ok
21:27:41.0186 0x2180  [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
21:27:41.0226 0x2180  workfolderssvc - ok
21:27:41.0232 0x2180  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr        C:\Windows\system32\DRIVERS\wpcfltr.sys
21:27:41.0242 0x2180  wpcfltr - ok
21:27:41.0245 0x2180  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:27:41.0264 0x2180  WPCSvc - ok
21:27:41.0269 0x2180  [ 25BE82B325AC22FE563A58A1AC29F4C1, 4247BAA9A44C964446F81ED44F18B28F1F730F46851EC2B756BAC57FB9D86700 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:27:41.0280 0x2180  WPDBusEnum - ok
21:27:41.0284 0x2180  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr      C:\Windows\system32\drivers\WpdUpFltr.sys
21:27:41.0295 0x2180  WpdUpFltr - ok
21:27:41.0299 0x2180  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
21:27:41.0311 0x2180  ws2ifsl - ok
21:27:41.0317 0x2180  [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc          C:\Windows\System32\wscsvc.dll
21:27:41.0332 0x2180  wscsvc - ok
21:27:41.0336 0x2180  WSearch - ok
21:27:41.0402 0x2180  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService      C:\Windows\System32\WSService.dll
21:27:41.0489 0x2180  WSService - ok
21:27:41.0560 0x2180  [ EFF648D3BDFBF62058BD188B1A4D6695, 648AA8131EE70E048DC98356BF5F441DFEC5D6F50552FE3C59F052E9B1E430CD ] wuauserv        C:\Windows\system32\wuaueng.dll
21:27:41.0639 0x2180  wuauserv - ok
21:27:41.0648 0x2180  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:27:41.0662 0x2180  WudfPf - ok
21:27:41.0670 0x2180  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
21:27:41.0686 0x2180  WUDFRd - ok
21:27:41.0691 0x2180  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
21:27:41.0704 0x2180  wudfsvc - ok
21:27:41.0711 0x2180  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs      C:\Windows\System32\drivers\WUDFRd.sys
21:27:41.0724 0x2180  WUDFWpdFs - ok
21:27:41.0732 0x2180  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
21:27:41.0745 0x2180  WUDFWpdMtp - ok
21:27:41.0758 0x2180  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc        C:\Windows\System32\wwansvc.dll
21:27:41.0781 0x2180  WwanSvc - ok
21:27:41.0787 0x2180  ================ Scan global ===============================
21:27:41.0791 0x2180  [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\Windows\system32\basesrv.dll
21:27:41.0798 0x2180  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\Windows\system32\winsrv.dll
21:27:41.0806 0x2180  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\Windows\system32\sxssrv.dll
21:27:41.0818 0x2180  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\Windows\system32\services.exe
21:27:41.0824 0x2180  [ Global ] - ok
21:27:41.0825 0x2180  ================ Scan MBR ==================================
21:27:41.0826 0x2180  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
21:27:41.0871 0x2180  \Device\Harddisk0\DR0 - ok
21:27:41.0873 0x2180  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:27:41.0918 0x2180  \Device\Harddisk1\DR1 - ok
21:27:41.0920 0x2180  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
21:27:42.0027 0x2180  \Device\Harddisk2\DR2 - ok
21:27:42.0027 0x2180  ================ Scan VBR ==================================
21:27:42.0028 0x2180  [ 0417CA4064AA2574D0E0AA47668EE92E ] \Device\Harddisk0\DR0\Partition1
21:27:42.0029 0x2180  \Device\Harddisk0\DR0\Partition1 - ok
21:27:42.0031 0x2180  [ 0EF7F8609C9E74A4570600A1584BC193 ] \Device\Harddisk1\DR1\Partition1
21:27:42.0033 0x2180  \Device\Harddisk1\DR1\Partition1 - ok
21:27:42.0035 0x2180  [ FF2B672AFDE1A5B8ACF585AA2DD4ECC9 ] \Device\Harddisk2\DR2\Partition1
21:27:42.0036 0x2180  \Device\Harddisk2\DR2\Partition1 - ok
21:27:42.0037 0x2180  [ 13FAD177206029DC86669ADB18F45FE8 ] \Device\Harddisk2\DR2\Partition2
21:27:42.0038 0x2180  \Device\Harddisk2\DR2\Partition2 - ok
21:27:42.0040 0x2180  [ B935F10BED210F8ED5DBCA2A97B2D51B ] \Device\Harddisk2\DR2\Partition3
21:27:42.0041 0x2180  \Device\Harddisk2\DR2\Partition3 - ok
21:27:42.0041 0x2180  ================ Scan generic autorun ======================
21:27:42.0041 0x2180  WindowsDefender - ok
21:27:42.0080 0x2180  [ DF62EB390B67EEDFA9A59AD4C8226CB1, E491268B941C94FED97719F1D9072BECC2D214302ABF071C45C731382C02C966 ] C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe
21:27:42.0113 0x2180  Kraken71ChromaHelper - ok
21:27:42.0122 0x2180  [ EE8626BAD390E3F3EBCA5816F133F14A, 2E6331418F6EE99539822E18FCACE74EEEC9A4970BBFB392C89AF32088753525 ] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
21:27:42.0144 0x2180  KiesTrayAgent - ok
21:27:42.0156 0x2180  [ CC8466CA31E50A2A5554162DCD9A4B35, 041349FE9DC0E1B1F99B1BDC80C89F78D73906176AFA7712E197EC87B5AF64D3 ] C:\Program Files (x86)\PDF24\pdf24.exe
21:27:42.0171 0x2180  PDFPrint - ok
21:27:42.0175 0x2180  [ EBC0E8C0A4DDA2C32A7D5863462A321A, 2F410138DB66D0219254339F1F098E401CEDAA032596F1F67BC54F394256FC68 ] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
21:27:42.0180 0x2180  amd_dc_opt - detected UnsignedFile.Multi.Generic ( 1 )
21:27:42.0180 0x2180  Detect skipped due to KSN trusted
21:27:42.0180 0x2180  amd_dc_opt - ok
21:27:42.0289 0x2180  [ 0E1D0CD691F2BEA3489E2DF5A41FEE21, 8CC1619122EA601D7268449C5D46F2E830B0557B528FD294301A6F753865759F ] G:\Steam\steam.exe
21:27:42.0349 0x2180  Steam - ok
21:27:42.0362 0x2180  Spotify - ok
21:27:42.0369 0x2180  Discord - ok
21:27:42.0453 0x2180  [ D135D636ECC60F2E477FD78A4084EC64, EC4039F18FF9EF89CB7175D7BA901FA9A374BCD1AD81A62D0B65B43F216066AE ] C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
21:27:42.0527 0x2180  Synapse3 - ok
21:27:42.0532 0x2180  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.209.0 ), 0x61100 ( enabled : updated )
21:27:42.0534 0x2180  Win FW state via NFP2: enabled ( trusted )
21:27:42.0628 0x2180  ============================================================
21:27:42.0628 0x2180  Scan finished
21:27:42.0628 0x2180  ============================================================
21:27:42.0632 0x246c  Detected object count: 0
21:27:42.0632 0x246c  Actual detected object count: 0
[/CODE]



Das ist schön das ich doch nichts zu befürchten habe. Hatte sehr große sorgen das ich mir was Großes eingefangen habe. Danke M-K-D-B

felix1 23.03.2019 22:48
Poste doch endlich mal belastbare Fakten zur eingsetzten Hardware.

M-K-D-B 24.03.2019 08:36
Ich habe das Thema in den Diskussionsbereich verschoben, da es sich nicht um ein Malwareproblem handelt.

Yatagan 24.03.2019 09:08
Könnte auch an der Art liegen, wie du ins Netz gehst.
Nutzt du z.B. VPN-Dienste, Proxies, TOR oder sonstige Anonymisierer, kann es sein dass die dadurch präsentierte IP von den Websites als potentiell botverdächtig eingestuft wird. Dann werden gern Captchas zwischengeschaltet.

spoky001 24.03.2019 11:35
Zitat:
Zitat von felix1 (Beitrag 1714349)
Poste doch endlich mal belastbare Fakten zur eingsetzten Hardware.

Intel i7 2600k, 16GB Ram, 64- Bit Betriebssystem Windows Embedded 8.1, Gefroce GTX 770. Falls etwas fehlt einfach bescheid sagen. Router Unitymedia Connectbox. Verbunden via Lan Kabel.


Wenn du eventuell ein besseren bzw. anderen weg meinst meine Hardware hier zu posten, wäre ich dir für den Hinweis oder Tipp sehr dankbar.

Zitat:
Zitat von Yatagan (Beitrag 1714359)
Könnte auch an der Art liegen, wie du ins Netz gehst.
Nutzt du z.B. VPN-Dienste, Proxies, TOR oder sonstige Anonymisierer, kann es sein dass die dadurch präsentierte IP von den Websites als potentiell botverdächtig eingestuft wird. Dann werden gern Captchas zwischengeschaltet.
Ich benutze Chrome und Firefox um ins Internet zu gehen, VPN Dienste, Proxies oder sonstige Anonymisierer sind mir nicht bekannt. Tor hatte ich mal vor langer Zeit auf dem PC. Ist aber schon seit längerem deinstaliert.

Bringt eventuell ein Neu Installation des PC etwas?

Schöne Grüße und vielen dank im Voraus

Michael

Yatagan 24.03.2019 12:37
Wie lange besteht das Problem schon? Evtl. hast du aktuell eine IP oder IPs aus einem Bereich, von der oder aus dem zuvor z.B. vermehrt DDOS-Attacken gefahren wurden.
Du könntest versuchen, eine neue IP zu beziehen (Vorgehen wie von Unitymedia vorgegeben) und gucken, ob das Problem persistiert.
Sonst direkt an Unitymedia wenden.

felix1 24.03.2019 22:00
Zitat:
Zitat von spoky001 (Beitrag 1714361)
Intel i7 2600k, 16GB Ram, 64- Bit Betriebssystem Windows Embedded 8.1, Gefroce GTX 770. Falls etwas fehlt einfach bescheid sagen. Router Unitymedia Connectbox. Verbunden via Lan Kabel.
Bringt eventuell ein Neu Installation des PC etwas?

Schöne Grüße und vielen dank im Voraus

Michael
Es fehlt noch die Größe der HD. Bedenke auch, das Embedet-Systeme keine vollwertigen Windowssysteme sind. Sie sind für Thin-Clients konzipiert.


Alle Zeitangaben in WEZ +1. Es ist jetzt 06:00 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29