Teil 1
Code:
16:40:24.0082 0x03cc TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
16:40:24.0082 0x03cc UEFI system
16:40:28.0020 0x03cc ============================================================
16:40:28.0020 0x03cc Current date / time: 2018/05/22 16:40:28.0020
16:40:28.0020 0x03cc SystemInfo:
16:40:28.0020 0x03cc
16:40:28.0020 0x03cc OS Version: 10.0.16299 ServicePack: 0.0
16:40:29.0395 0x03cc Product type: Workstation
16:40:29.0411 0x03cc ComputerName: SEMIH-PC
16:40:29.0411 0x03cc UserName: Semih
16:40:29.0411 0x03cc Windows directory: C:\Windows
16:40:29.0411 0x03cc System windows directory: C:\Windows
16:40:29.0411 0x03cc Running under WOW64
16:40:29.0411 0x03cc Processor architecture: Intel x64
16:40:29.0411 0x03cc Number of processors: 4
16:40:29.0411 0x03cc Page size: 0x1000
16:40:29.0411 0x03cc Boot type: Normal boot
16:40:29.0411 0x03cc CodeIntegrityOptions = 0x0000C001
16:40:29.0411 0x03cc ============================================================
16:40:29.0411 0x03cc KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 16299.431, osProperties = 0x19
16:40:29.0536 0x03cc System UUID: {1F8F61DB-B7B8-00BE-11B6-E7796682FC76}
16:40:32.0599 0x03cc Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:40:32.0630 0x03cc ============================================================
16:40:32.0630 0x03cc \Device\Harddisk0\DR0:
16:40:32.0630 0x03cc GPT partitions:
16:40:32.0630 0x03cc \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {E44834B2-95A6-4D42-BEB3-50F362D79AD9}, Name: Basic data partition, StartLBA 0x11B800, BlocksNum 0xF9800
16:40:32.0630 0x03cc \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9ED88BD4-43D9-4043-BC33-0258619786CD}, Name: EFI system partition, StartLBA 0x215000, BlocksNum 0x32000
16:40:32.0630 0x03cc \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {7A274B1D-11E7-4F53-8EAD-BA9C24052DA6}, Name: Microsoft reserved partition, StartLBA 0x247000, BlocksNum 0x8000
16:40:32.0630 0x03cc \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {9F86256D-BEFF-402B-958E-535B26304BB9}, Name: Basic data partition, StartLBA 0x24F000, BlocksNum 0x572F7000
16:40:32.0630 0x03cc MBR partitions:
16:40:32.0630 0x03cc ============================================================
16:40:32.0708 0x03cc C: <-> \Device\Harddisk0\DR0\Partition4
16:40:32.0708 0x03cc ============================================================
16:40:32.0708 0x03cc Initialize success
16:40:32.0708 0x03cc ============================================================
16:41:09.0337 0x1be4 ============================================================
16:41:09.0337 0x1be4 Scan started
16:41:09.0337 0x1be4 Mode: Manual; SigCheck; TDLFS;
16:41:09.0337 0x1be4 ============================================================
16:41:09.0337 0x1be4 KSN ping started
16:41:09.0462 0x1be4 KSN ping finished: true
16:41:29.0603 0x1be4 ================ Scan system memory ========================
16:41:29.0603 0x1be4 System memory - ok
16:41:29.0603 0x1be4 ================ Scan services =============================
16:41:29.0869 0x1be4 [ 6F44B9A53C1EEB37A8ECF440D110BAC5, A9B7BF073D450FFF60DEDF7DA84EEB11E28CA76E035E00AEAEE913D10047D36C ] 10944986 C:\Windows\system32\drivers\59217902.sys
16:41:31.0291 0x1be4 [ 08312DEEF0D3F8647AA53AD90A69094E, E32620323E7EDD3CAB5B04B9E37DDE7CA87B45C2CB17520D69D03C17E1D5F65A ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
16:41:31.0447 0x1be4 1394ohci - ok
16:41:31.0494 0x1be4 [ 645009E711BBF117CCEE917A03FB0CDD, B531951443D961C08428CB0F77F57D9F33C37C0637F919A9DA9DB5DA18479F70 ] 3ware C:\Windows\system32\drivers\3ware.sys
16:41:31.0510 0x1be4 3ware - ok
16:41:31.0592 0x1be4 [ 6F44B9A53C1EEB37A8ECF440D110BAC5, A9B7BF073D450FFF60DEDF7DA84EEB11E28CA76E035E00AEAEE913D10047D36C ] 85215140 C:\Windows\system32\drivers\76667933.sys
16:41:31.0677 0x1be4 [ 334BAC25FE297342B119730E699B826C, 7ADC9240BFC835C48609BFCED422C4653BC2CA23F4474CD57A25D15EE44736B0 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:41:31.0763 0x1be4 ACPI - ok
16:41:31.0797 0x1be4 [ 44EA35A4B397898A83BF1B9B4B8DAE35, 023E3BC5CE47518269A812F156EFF1BD4CB14F1F5DD3FCC317DE046A519E20CE ] AcpiDev C:\Windows\System32\drivers\AcpiDev.sys
16:41:31.0864 0x1be4 AcpiDev - ok
16:41:31.0879 0x1be4 [ 91D113A1532B8AB1E25B7DE5AB3C2F83, 43134DB92D522FCF537FFA8E829021F43BDD90006D7F096BA483DA1DAD3D1CC3 ] acpiex C:\Windows\system32\Drivers\acpiex.sys
16:41:31.0911 0x1be4 acpiex - ok
16:41:31.0926 0x1be4 [ 620BB2682BA625DF037072D89F44F6EE, A1A72F663C75DC65B1BA278CD7F43FAE6D1BDAE2F3F1D8269F508DECB555FFF9 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
16:41:31.0957 0x1be4 acpipagr - ok
16:41:31.0989 0x1be4 [ B9805A3C479390CEAEA5AEF5E4A90A2E, D9256734BC46EA43133873BDDE56B9A3597F74CFE82500FFB374A8EE6293ADD3 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
16:41:32.0020 0x1be4 AcpiPmi - ok
16:41:32.0051 0x1be4 [ ABD4EB55C661143B015BD0B9B47B235C, 5F109BA04010E634D547E86AF67659EA06BD05FCF78A493DB190790C4D7E13EA ] acpitime C:\Windows\System32\drivers\acpitime.sys
16:41:32.0067 0x1be4 acpitime - ok
16:41:32.0161 0x1be4 [ 8C58BD711FAD5F11E8CFDBC5CED973A5, 340FCD2C492009D5D7732FBF94198C4767125A77E0C71BB20E5CB2BDA5AB57CF ] ADP80XX C:\Windows\system32\drivers\ADP80XX.SYS
16:41:32.0239 0x1be4 ADP80XX - ok
16:41:32.0317 0x1be4 [ 9619C0D7DB55CC3A636A24A7D82B0C8E, 12FA6F3CCABDC707F1ED1D48F9C53B84773D8E68719256192C64DE40D5DB909E ] AFD C:\Windows\system32\drivers\afd.sys
16:41:32.0426 0x1be4 AFD - ok
16:41:32.0458 0x1be4 [ DCE606F0E15E0FB75ECC02EBB3DEFA9C, CC851775136EC09CD41BF7EE1582BC6BE41086A807F5EBF3F97C60B57D5ADBC5 ] ahcache C:\Windows\system32\DRIVERS\ahcache.sys
16:41:32.0520 0x1be4 ahcache - ok
16:41:32.0551 0x1be4 [ 84FFB4AC2BA923364DF13F73751E05D1, EBD054282D93F290408A2343C0CBF98CEF7619A8252DC04E15322E51505D45AF ] AJRouter C:\Windows\System32\AJRouter.dll
16:41:32.0598 0x1be4 AJRouter - ok
16:41:32.0629 0x1be4 [ 084101AB03969D8ED00D5FFBE5F4C3DF, 6425FA16F0CBF5F3008780095364830EBF1F073BD5109764FE9E88245AFB9367 ] ALG C:\Windows\System32\alg.exe
16:41:32.0707 0x1be4 ALG - ok
16:41:32.0739 0x1be4 [ FB1548ED9CD0E1D0881D572328A53AF8, 1D5D6CF31ECE2890EC18042139EAF5B30FF831923CFCF90B9D92A49C4AF41964 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:41:32.0786 0x1be4 AMD External Events Utility - ok
16:41:32.0817 0x1be4 [ 49BFBF7E862E25207B44C068C5DE6CEB, 5F85DC50C2A9FB650BE8FFBC28C7AB8C8DB8B8BB0E6EE22E6F056E79C687BFA0 ] AmdAS4 C:\Windows\System32\drivers\AmdAS4.sys
16:41:32.0864 0x1be4 AmdAS4 - ok
16:41:32.0926 0x1be4 [ 654824DF0CE32C9D274C1943DEB19AEA, 298D21026D503CBCE7A5385E8466905C62EDC89EE7AAD824127A213A9662ED73 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
16:41:33.0004 0x1be4 AmdK8 - ok
16:41:33.0036 0x1be4 amdkmdag - ok
16:41:33.0114 0x1be4 [ 5F72D93E780AB93609070182ECB50338, D1609E2EF03A3807C2EEAE2C8D03D64106E887B0A8CB4796FB5AB506108A4FDB ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:41:33.0207 0x1be4 amdkmdap - ok
16:41:33.0254 0x1be4 [ 12C4246CE1B769B720BE0848F75AB4C1, EDB6C085FB1291FE5436360FFE227E9885C5698B2076C6C326316A4E672AE8AE ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
16:41:33.0301 0x1be4 AmdPPM - ok
16:41:33.0333 0x1be4 [ F1C16AABA27E9E153AEC7BD2AB853F30, 7CFDBD218E6C161747A21BBACC78BF1061F2427ED1247F1AE0879BE155C504E7 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:41:33.0379 0x1be4 amdsata - ok
16:41:33.0411 0x1be4 [ C834D0F1ECB8473E9E6D18EE1BCEECB2, C9B7B9279F96DE4DA1EE096B6463591B3A718F87CD75E544C5A07C3639D1F188 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:41:33.0457 0x1be4 amdsbs - ok
16:41:33.0473 0x1be4 [ 49203D2FFE30CBB36BE66A0E70F3D954, E5B5A3B3B4A8FF03B5C902642C776CECD554CA1DB25419111EDA83602986CCCE ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:41:33.0489 0x1be4 amdxata - ok
16:41:33.0536 0x1be4 [ 38DC4D8B1BD5DA43179EEA726BD05249, 4BCACD6A6EDCBC76F3132142E70E9BE828BAA2C2D91F634A322FADD330C7ACC0 ] AppID C:\Windows\system32\drivers\appid.sys
16:41:33.0551 0x1be4 AppID - ok
16:41:33.0598 0x1be4 [ BBB70415033710D6D7D58DDF2B0A06FA, 4CBB449D6A7970CF6BBFFAA96C3101EECD063A37DEBCB8D3C694BA1F4CCB8901 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:41:33.0614 0x1be4 AppIDSvc - ok
16:41:33.0661 0x1be4 [ 9D01D0608E39FCDE57969B0AA0191A56, E9D7F44A87D87F56CD3AA9D22C5466C04F2B9515124872BFA7FDE3FD81659DD4 ] Appinfo C:\Windows\System32\appinfo.dll
16:41:33.0739 0x1be4 Appinfo - ok
16:41:33.0786 0x1be4 [ 1E085E2302D568F0CE041732B3E887B0, 0D2A3675FDD04C800B302C84A43F233F0217EB4B1AD44B11AADDB0D5D8FA0DB2 ] applockerfltr C:\Windows\system32\drivers\applockerfltr.sys
16:41:33.0817 0x1be4 applockerfltr - ok
16:41:33.0864 0x1be4 [ 043786FF3A1B6A066613E0B166F28F07, CB248FA46D3798487A543344095F8EC5ACD8A4A5B9FCC7C374CAFE9DB04C6281 ] AppMgmt C:\Windows\System32\appmgmts.dll
16:41:33.0895 0x1be4 AppMgmt - ok
16:41:33.0957 0x1be4 [ 1D123729F547EEDFBE3F510346848C38, B170860348FBAC054203A7B858866A12944D7046C01BA3A14AC0860D8C288770 ] AppReadiness C:\Windows\system32\AppReadiness.dll
16:41:34.0036 0x1be4 AppReadiness - ok
16:41:34.0098 0x1be4 [ 32C4D82E38968DA2235A0EEF9E4DE948, 7226E13FD2D34314AB353DBAB9C32D65683B5B2CCB49057B01525052C54E7E74 ] AppVClient C:\Windows\system32\AppVClient.exe
16:41:34.0176 0x1be4 AppVClient - ok
16:41:34.0223 0x1be4 [ 05B19AD776D80FF0FADB44608896C16F, B7DDDF06C0E525774DA3AE3EA718E0CCC2D6C27F7430103B578859FAAAF2941F ] AppvStrm C:\Windows\system32\drivers\AppvStrm.sys
16:41:34.0286 0x1be4 AppvStrm - ok
16:41:34.0333 0x1be4 [ 3EA678F2C70083FB1588772FE7FAFFE1, 8B236563E285352DE9DC056DC87872412D3A756E82DA9D0191931A19714B4078 ] AppvVemgr C:\Windows\system32\drivers\AppvVemgr.sys
16:41:34.0364 0x1be4 AppvVemgr - ok
16:41:34.0395 0x1be4 [ ADD72B1FFE20B37A13A5A861724ECA05, D48515E1CF9B6317031B1151AEB8C7042D5FD63ABAD755749FE4660979F4E20B ] AppvVfs C:\Windows\system32\drivers\AppvVfs.sys
16:41:35.0801 0x1be4 AppvVfs - ok
16:41:36.0036 0x1be4 [ E4A09D9DF9E4376A3DCF39C15FC95DA9, C205B1397C2FBEEDCB979AED9169BA971D5BD07CE7C1CCBF87E83B489FCDC2A7 ] AppXSvc C:\Windows\system32\appxdeploymentserver.dll
16:41:36.0254 0x1be4 AppXSvc - ok
16:41:37.0661 0x1be4 [ B42C83DE28776B80DBA1310C56DD4F74, 8E017B73D5AD644EC1D46BC1DC2CAF465A6793E2AD6DC35A2E3AB907E7719C40 ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:41:37.0723 0x1be4 arcsas - ok
16:41:37.0801 0x1be4 [ 0D51FFDAE7C906C308369EAB87358304, 684E0405D82C67285FA1586426EA6792BBE796524C10DD24C2AF48FEF4E3D92E ] AssignedAccessManagerSvc C:\Windows\System32\assignedaccessmanagersvc.dll
16:41:37.0864 0x1be4 AssignedAccessManagerSvc - ok
16:41:37.0911 0x1be4 [ C2151380227CD1F7DDA2401C1F151367, 0E76DCD69CAB960DC65942269081436A9DDA255E908E71A29E72DFCFC5CDCC7C ] AsyncMac C:\Windows\System32\drivers\asyncmac.sys
16:41:37.0957 0x1be4 AsyncMac - ok
16:41:37.0989 0x1be4 [ 6191B9B2EE0E8CB957C683B9B341CC86, E60ACC6E9C6E90F2E1DA0DE220C890B50887FD97E7884F8F4301FF2C9A2F408A ] atapi C:\Windows\system32\drivers\atapi.sys
16:41:38.0004 0x1be4 atapi - ok
16:41:38.0223 0x1be4 [ 835E2C1A3D32492E2B90BD4FE5527CB6, DE129E570C85EE8AAE8084B40F4E32766B4B789A2EED81E46311712B0826053D ] athr C:\Windows\System32\drivers\athw8x.sys
16:41:38.0504 0x1be4 athr - ok
16:41:39.0458 0x1be4 [ FD9A5BCC3AFB02E87668B749546B6229, 4BE969A11CEE8033F40EDE7E06A5904B328D3FC1842855C0DB38D5EEF458219C ] AtiHDAudioService C:\Windows\system32\drivers\AtihdWT6.sys
16:41:39.0504 0x1be4 AtiHDAudioService - ok
16:41:39.0567 0x1be4 [ 0A414BE36FFA16E9F20F94008E366AD6, FE254DDDEB22FFFBBFCC87FE035AE5C6F44F08C6FF0EDFBC0C584C0C47E6FF55 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
16:41:39.0645 0x1be4 AudioEndpointBuilder - ok
16:41:39.0770 0x1be4 [ 57D7504862058467BA8FB8D988E6D372, B0993D1040C91FFB9B5EDBFCBF9885887C90A01E9A7DD4218FA0D09A05C42097 ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:41:39.0879 0x1be4 Audiosrv - ok
16:41:40.0051 0x1be4 [ 947FF5992E26AFD4CAA34506678B70BC, 0B125EDBD6E740375E45AAA465DC83740F5CD43A55CDA404F7A81F37EE3BC57C ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:41:40.0114 0x1be4 AxInstSV - ok
16:41:40.0176 0x1be4 [ A921805C1ED3253DF48FCA4D724173EB, 7DB6A13228812550F066C76273ECA6B3FC12E7CC98C245D16B5A13FBCF6A509D ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:41:40.0239 0x1be4 b06bdrv - ok
16:41:40.0286 0x1be4 [ 3CC12A09AE7293F4CD1688117B46B9BB, 377B7FB7704BEA894801956756EF0EF2E8C938ABAA047F4729CDE91B44357CFB ] bam C:\Windows\system32\drivers\bam.sys
16:41:40.0317 0x1be4 bam - ok
16:41:40.0348 0x1be4 [ 2A7267AA15E508F6D05A5B562F1FD1CE, 7070123619A3F08864844FF89C9DEA1D4ED48D05D2B93E305774BE715583DD51 ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
16:41:40.0364 0x1be4 BasicDisplay - ok
16:41:40.0411 0x1be4 [ FAFAEDFC7CAFD8B8FADA6A81BAF92E3A, 11EA3C361DFE5CC177E7D8FD002DC6542E05D1C74977A4716BC1B3DA5CAE963F ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
16:41:40.0426 0x1be4 BasicRender - ok
16:41:40.0458 0x1be4 [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2 C:\Windows\System32\drivers\bcmfn2.sys
16:41:40.0473 0x1be4 bcmfn2 - ok
16:41:40.0520 0x1be4 [ 72963E0676003016B431306A6F4951BF, 3442A7C1AC1EE8E68F15C78CEBAC237D7535F834AA13F8BB602645DD183A73D3 ] BDESVC C:\Windows\System32\bdesvc.dll
16:41:40.0582 0x1be4 BDESVC - ok
16:41:40.0614 0x1be4 [ 355D162E52819C19396FB01A8E005A1F, F7911703B51832806F9A88ECD7912A66A02A7798931F27757046D62895FCA0BD ] Beep C:\Windows\system32\drivers\Beep.sys
16:41:40.0629 0x1be4 Beep - ok
16:41:40.0973 0x1be4 [ 17782D7A312DF421C517649722B8C361, 34215C5714477D3E774225B8D2F8FF696110BBB1B2828D9D1FD48A452EAC1716 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
16:41:41.0348 0x1be4 BEService - detected UnsignedFile.Multi.Generic ( 1 )
16:41:41.0520 0x1be4 Detect turned to UDS exact due to KSN untrusted
16:41:43.0473 0x1be4 BEService ( UDS:DangerousObject.Multi.Generic ) - infected
16:41:43.0473 0x1be4 Force sending object to P2P due to detect: BEService
16:41:46.0708 0x1be4 Object send P2P result: true
16:41:48.0489 0x1be4 [ F6262869E673CC957C5D820C67F34D2F, F4E94E60DA70CC0C2474D2BD8BA6D8F77A38FFCCDD841B8C1D29A12FC057194C ] BFE C:\Windows\System32\bfe.dll
16:41:48.0582 0x1be4 BFE - ok
16:41:48.0661 0x1be4 [ A0D1BF71E828CEFD7F9DC726AEAD80CE, 742F245105412476A8713ADFBBA5E6498B3B1A03DCF3EE58C15F5AC06C686B44 ] BITS C:\Windows\System32\qmgr.dll
16:41:48.0770 0x1be4 BITS - ok
16:41:50.0270 0x1be4 [ 8843185CC8F60801C06812799584F6EB, 35D893B9C53215548C95143377F8DDC98A45F2269839BA498F2FA22B409F13C0 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:41:50.0317 0x1be4 bowser - ok
16:41:50.0411 0x1be4 [ FA2702519B710C40E6E55F85F7F87BBC, 95EE006E89FDC78F17BD68DE9977030A0FD47343FDF8308A68742F9E3D13CDF2 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
16:41:50.0536 0x1be4 BrokerInfrastructure - ok
16:41:50.0567 0x1be4 [ 2BA1BED8E8168C301522AC7CFBFA2141, 07000BEF5ABCF7795B474B69B1113F7EE5C22CF0F8CAF4A3D5D872B0D452CDD0 ] Browser C:\Windows\System32\browser.dll
16:41:50.0629 0x1be4 Browser - ok
16:41:50.0676 0x1be4 [ 7EED7A90E85310BBBA38F082B4E8E507, 0CFDA667FB30A2C0344354B7B18A348F73CDF1509364F833E7AF4DE71DD5F2CF ] BrSerIb C:\Windows\system32\DRIVERS\BrSerIb.sys
16:41:50.0770 0x1be4 BrSerIb - ok
16:41:50.0801 0x1be4 [ D9F6B30AD93CBD165EC71FADF51DF25E, 9E38846451650F4F320CB1DEA9C010653A54D7419591719936BF53BEE269F1A8 ] BrUsbSIb C:\Windows\system32\DRIVERS\BrUsbSIb.sys
16:41:50.0817 0x1be4 BrUsbSIb - ok
16:41:50.0911 0x1be4 [ 7037B585F7D4AB58F1CFB1E7841E6FEF, DF01C722924404D0EC559B962CEAF655D13315A073810FA82649E2810E4A951D ] BtFilter C:\Windows\system32\DRIVERS\btfilter.sys
16:41:50.0973 0x1be4 BtFilter - ok
16:41:51.0005 0x1be4 [ A4863B7B1F0DB513D6E34547BACC211A, 41E74A60721CCBE0A4D487B3EE01BAC3108D9BA819BF58A64E963478C43828E9 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
16:41:51.0083 0x1be4 BthAvrcpTg - ok
16:41:51.0129 0x1be4 [ 82BD96D56574231AD0E9BBF293EA2E7F, EFC7121D6EC425F89BF10078F3716A63753303B6DAB6CC3EF90730E6CBED4630 ] BthEnum C:\Windows\System32\drivers\BthEnum.sys
16:41:51.0176 0x1be4 BthEnum - ok
16:41:51.0207 0x1be4 [ 9C9EE272C11252C651C5DE6A1AC1EDAA, DED378E894FA07B75F2E93490075879A50879CACACCF09F3F9EF37EDFA159233 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
16:41:51.0239 0x1be4 BthHFEnum - ok
16:41:51.0254 0x1be4 [ 69734E386826ED857C889330F35B4D9C, F0804D41D4BA6C9022B70D5092C4F14128D33F66C5D85DE10115A37C36927B70 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
16:41:51.0301 0x1be4 bthhfhid - ok
16:41:51.0348 0x1be4 [ BC58294295CBAD6637A526470305B5EA, FAA1A1C85D418B063D8A6E93558BA74D766081268354D63E28D372BD55D523DD ] BthHFSrv C:\Windows\System32\BthHFSrv.dll
16:41:51.0426 0x1be4 BthHFSrv - ok
16:41:51.0442 0x1be4 [ 338B8D45C7DFB03DB7957188E16C9661, C634A32E6C945760BD85E3862B88BDA3E63A33DAD69523FD14523C3D301E675C ] bthl2cap C:\Windows\system32\DRIVERS\bthl2cap.sys
16:41:51.0473 0x1be4 bthl2cap - ok
16:41:51.0504 0x1be4 [ 47BF82E2A6D11279C8501E08518AB835, 2B8D770AC694F31844A39BAC3B49C36523C9586D4B22C390009B057D4DA9D0F0 ] BthLEEnum C:\Windows\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
16:41:51.0567 0x1be4 BthLEEnum - ok
16:41:51.0598 0x1be4 [ A94AFAEA86F5F792BB4ECA095B231464, 588256D53CD50B8299FCABF624E8EF29761B16DE1999896DC647FBF8E2BAEA68 ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
16:41:51.0629 0x1be4 BTHMODEM - ok
16:41:51.0692 0x1be4 [ 8E1D70E7778202D82A82E0E6710B827A, F10588CB1C5106BEE9009ACE798D349C7F786EFF9C4A0A312DF9D30BC1AAF9B3 ] BthPan C:\Windows\System32\drivers\bthpan.sys
16:41:51.0739 0x1be4 BthPan - ok
16:41:51.0848 0x1be4 [ CC98DC94BB904EEADD22242535DF83DB, 8F638CF720C9EEAE57DE10277C26D343D9EE08B61A3F4871822537ED089008EC ] BTHPORT C:\Windows\System32\drivers\BTHport.sys
16:41:51.0942 0x1be4 BTHPORT - ok
16:41:51.0989 0x1be4 [ 572BCA61B7E026E057AF7DF456AC7E0B, CA35DCC02BFE2D34C40449E47F0C8BA4AD709F01A952B9354332560CE72A1E4F ] bthserv C:\Windows\system32\bthserv.dll
16:41:52.0051 0x1be4 bthserv - ok
16:41:52.0098 0x1be4 [ 55C836530A9602255BFB4F5D9DA2B737, DB82CB1FB657955AE80A144CC30D5112CF90FBEFCE9E89CF7CEF2929EBE56B28 ] BTHUSB C:\Windows\System32\drivers\BTHUSB.sys
16:41:52.0114 0x1be4 BTHUSB - ok
16:41:52.0145 0x1be4 [ 39E7437FC59CDD7A303ABD514E462E8B, 9DCACFC12090BA03E3DD8E0EFE02382E3D42B528BDF6DD77318CAFACBA9EBA09 ] bttflt C:\Windows\system32\drivers\bttflt.sys
16:41:52.0161 0x1be4 bttflt - ok
16:41:52.0176 0x1be4 [ 522888590B0C19BC8128119060AE7901, 9C979FD442E7B189FD156BD5E5E4A3D10FDABB3C38094B9C67A702103D39B00F ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
16:41:52.0207 0x1be4 buttonconverter - ok
16:41:52.0239 0x1be4 [ 2AB01CE5E233A6FBA3E91BD57772AA4B, DC241810B774BCE651B525885480F05D15AE0E623D53E4CB02562A8424C067E2 ] CAD C:\Windows\System32\drivers\CAD.sys
16:41:52.0258 0x1be4 CAD - ok
16:41:52.0290 0x1be4 [ E2C8EE32C053892E685A989071AAE333, 842228C315BBD5FA802A81833BB0158774969FED4C5A706F9B904F7C70DB80A3 ] camsvc C:\Windows\system32\CapabilityAccessManager.dll
16:41:52.0340 0x1be4 camsvc - ok
16:41:52.0390 0x1be4 [ F6F97879F53AD57194C6BC8272FD73EA, C11CB040CC64ABC0A6EAD6D6985659896FBB5911D2E10B6584E0F90FE6813C57 ] CapImg C:\Windows\System32\drivers\capimg.sys
16:41:52.0460 0x1be4 CapImg - ok
16:41:52.0491 0x1be4 [ 9E82A95D77AC78C84BA75FF896B060BF, 87905E55724ADE5149D3BBC2DB76A7275580DE204BB561B8E1FCD631DEF3D9F9 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:41:52.0561 0x1be4 cdfs - ok
16:41:52.0624 0x1be4 [ 147CEBE0C5F7A80135C54715521AD9E1, 99ACF25165C0C17822B0FC06F662848CA0DFAD51B3E3B440005C2E033BFE4840 ] CDPSvc C:\Windows\System32\CDPSvc.dll
16:41:54.0061 0x1be4 CDPSvc - ok
16:41:54.0202 0x1be4 [ 6F9F9FA8976D9A45D3C75E7A49AC9995, 7350C4A0A1FEF73203F4AFF2689D59A34728F4F71849110235B1CA5FE0F5AF3D ] CDPUserSvc C:\Windows\System32\CDPUserSvc.dll
16:41:54.0280 0x1be4 CDPUserSvc - ok
16:41:57.0280 0x1be4 [ 6D83565C1652E80447EDEA6947FA89D7, A84A3EA45304A9E3F53DA9F4CB9F2D9FF8A2AD69A36AEA366D35A2F5C9FDF851 ] cdrom C:\Windows\System32\drivers\cdrom.sys
16:41:57.0342 0x1be4 cdrom - ok
16:41:57.0405 0x1be4 [ 6286CBE87B64AB7D1F59E3375A2FF3F4, 92C276A18F99D2A423BC3A99EBDA1239F3B335C1EB6EBAF2F2800A23188B26F2 ] CertPropSvc C:\Windows\System32\certprop.dll
16:41:57.0467 0x1be4 CertPropSvc - ok
16:41:57.0530 0x1be4 [ D81954CE5E016FD716EDDB2B2FD9BA58, C47FF6D6527605238EF46E9BDF4544E2B2F4F9C5BCE13881F569F996541D7FF7 ] cht4iscsi C:\Windows\system32\drivers\cht4sx64.sys
16:41:57.0577 0x1be4 cht4iscsi - ok
16:41:57.0686 0x1be4 [ F9A8570805807FFD66488F0A858E1308, 5D8363C5EEB7B92CFA219C466D04D8C625CACAFBDEA5857C5C9FA0C391AC2FEB ] cht4vbd C:\Windows\System32\drivers\cht4vx64.sys
16:41:57.0795 0x1be4 cht4vbd - ok
16:41:57.0999 0x1be4 [ 9798D58461706930190F1F2F6BF21D80, BD7552297A636E19F5D544BDBF3490DA544E76002F62B227FA5BDA7A11760040 ] circlass C:\Windows\System32\drivers\circlass.sys
16:41:58.0045 0x1be4 circlass - ok
16:41:58.0092 0x1be4 [ 6AF3865AEF65623814209794409AA15F, F95A18B08329A5A794AE7B59AE9193B479E9AF6904E2656701AFFE32C6658840 ] CldFlt C:\Windows\system32\drivers\cldflt.sys
16:41:58.0155 0x1be4 CldFlt - ok
16:41:58.0202 0x1be4 [ DCCB20720E8652F02C8B9C3D9A8A8193, 74243C3C948447F7E29FF2E0B3B49D183DED6D7FA4EE8D8FAACC72432CD647F2 ] CLFS C:\Windows\system32\drivers\CLFS.sys
16:41:58.0249 0x1be4 CLFS - ok
16:41:58.0655 0x1be4 [ AEA85358F32473F27F8DF052FDA17C7B, 215845D3E34C6CEB360126F06B21440F60B27F929C0D08AC0D747857CD5D8D92 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:41:58.0983 0x1be4 ClickToRunSvc - ok
16:42:00.0186 0x1be4 [ 0EFD85AB09099246CDF8DB63978CC00A, 1E402747B03E0B17D7AE76D52B9E1BE8DA7D29A92B8301DC9FC7A02C0E78757C ] ClipSVC C:\Windows\System32\ClipSVC.dll
16:42:00.0264 0x1be4 ClipSVC - ok
16:42:00.0311 0x1be4 [ 2BA3BA38B5A6A667B0EAEC477276707B, 80AD05C5C7E0398EB7320A82878700C6588B7411F3DEA02E5784CA599CB548C2 ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
16:42:00.0358 0x1be4 CmBatt - ok
16:42:00.0452 0x1be4 [ 5FD7E04967054728203265A310ED8D4A, 676C1A8D9DF8BBDC8BBEA3DD921736AF80FA7D5EFF5C0E6F2DE1C0010162800B ] CNG C:\Windows\system32\Drivers\cng.sys
16:42:00.0530 0x1be4 CNG - ok
16:42:00.0545 0x1be4 [ C65AF00EF12A1755E7CA370B0C71935D, C03315A5B999EB9AA5B5F1F000BD8A1C68DFC151B23AA2F29F69F7129407AA11 ] cnghwassist C:\Windows\system32\DRIVERS\cnghwassist.sys
16:42:00.0577 0x1be4 cnghwassist - ok
16:42:00.0702 0x1be4 [ 1B5D0CDBE1D4F5E7291816969F7AE3A9, A190580AB58C066EA4169577C57D4F6B3ED74E308C5F67F428BD5B91E887D975 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
16:42:00.0795 0x1be4 CnxtHdAudService - ok
16:42:02.0295 0x1be4 [ A50300498D56B2448F3593D25478D508, 841D66D4AB9749EE64802611157A9AAED1117B6B2C411B3DA272CE439E69AE45 ] CompositeBus C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_9c1fb8f4db31c348\CompositeBus.sys
16:42:02.0342 0x1be4 CompositeBus - ok
16:42:02.0358 0x1be4 COMSysApp - ok
16:42:02.0405 0x1be4 [ 65602B0DB49199647FECB2D1212147BE, DC25D2DED7C31B4691B61FC69BB12E50CA5EDA9705339CCC82BE145EFD6D47C5 ] condrv C:\Windows\system32\drivers\condrv.sys
16:42:02.0452 0x1be4 condrv - ok
16:42:02.0545 0x1be4 [ AB638EA8ECDBDC692C64F4FF4F940D1D, FE873A86E951C8886CF546E193814807DD356C20308655D4128B3DFCE16BF0BC ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
16:42:02.0608 0x1be4 CoreMessagingRegistrar - ok
16:42:02.0671 0x1be4 [ D64EF74FC6DA47EC2E460076F299E77D, 1F77E9F777FA6996222DE45B3AB2C01CD94C80A4A7F5CA092DDF1F18D74F93AA ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:42:02.0717 0x1be4 CryptSvc - ok
16:42:02.0780 0x1be4 [ 0AAC6E3138AB83C466281642D1A48F15, 31AEBAE422BFDC9EBE0B8CBAEE5ABAA27E8EA47387D4A24C91A3CE92EF7E0C92 ] CSC C:\Windows\system32\drivers\csc.sys
16:42:02.0874 0x1be4 CSC - ok
16:42:02.0936 0x1be4 [ 9D4FA712339A09110809A4CC270AF4F0, 6403633EB0061CE3E4665E7A757EB697FD47DEE540EEDEC035CC13184FC62947 ] CscService C:\Windows\System32\cscsvc.dll
16:42:03.0014 0x1be4 CscService - ok
16:42:03.0061 0x1be4 [ 5FCABDE89AC62A8818C803646FCEE23E, 070B110A0D4C93086472A3E582AA0B4E0EFAB05651EE30BD06E75D113D446BAA ] CxAudMsg C:\Windows\system32\CxAudMsg64.exe
16:42:03.0108 0x1be4 CxAudMsg - ok
16:42:03.0139 0x1be4 [ 72BE43ABD786E86AAE7EA2193201E100, A013CF10AA4158082B5D0D7F885969C5C92710A6084E57E9DDBDA84420D97367 ] dam C:\Windows\system32\drivers\dam.sys
16:42:03.0170 0x1be4 dam - ok
16:42:03.0202 0x1be4 [ A4700D1F78539C0ED32FA50E64F9C692, 5CB03B5F36307BA152245BAD29CB2AC703BBE8197ABC0338A7092ADEA1C3221A ] dc3d C:\Windows\System32\drivers\dc3d.sys
16:42:03.0233 0x1be4 dc3d - ok
16:42:03.0311 0x1be4 [ 79BDBB684629A526CCD958F06B9D6FAD, 489A85A5F63E5F012740B538878D6DAEBBB474D64F27A6847D3E387A704E5297 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:42:03.0452 0x1be4 DcomLaunch - ok
16:42:03.0670 0x1be4 [ F7FB921F438C3566CEC55657EA4E7D9C, 17FA956E3B89F9B6C154975E7E1AAFB204F5EDEACC14A8424827DE13440A9299 ] defragsvc C:\Windows\System32\defragsvc.dll
16:42:03.0827 0x1be4 defragsvc - ok
16:42:03.0889 0x1be4 [ B5F9123D6537856EA698386ABA27A232, C60DD499254B4A3741ECE71AF1685763BD6A6F828F879D54E175A6198C89ABF0 ] DeviceAssociationService C:\Windows\system32\das.dll
16:42:03.0952 0x1be4 DeviceAssociationService - ok
16:42:03.0983 0x1be4 [ 64A80A746FC460126FA4124AA2D93848, 851ECA69489FF9A834B6A5ACF9D51283FD3796E21316D8A22E57DED2F415782C ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
16:42:04.0030 0x1be4 DeviceInstall - ok
16:42:04.0077 0x1be4 [ A19F51A044B62C994144ED87A7A5A887, 91ECE0E067E138817CD46A876B2D28CB47A2CCBE9C924EA91A1966FDF69AF7DF ] DevicesFlowUserSvc C:\Windows\System32\DevicesFlowBroker.dll
16:42:04.0155 0x1be4 DevicesFlowUserSvc - ok
16:42:04.0217 0x1be4 [ 0D2A4CA81D1F7B5E5FBFE1E4F60246B8, EF425C2FB1191720F9B53EB26EC904F53851D296B222E20B0733615575D4B7E5 ] DevQueryBroker C:\Windows\system32\DevQueryBroker.dll
16:42:04.0249 0x1be4 DevQueryBroker - ok
16:42:04.0295 0x1be4 [ FAEC08F583CAD06D4F057DBB733A03A1, 3FB5FDB9B7B4B55916F102E6AA2FE387F2D552229FB1E6852E5DAC9A49B214A3 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
16:42:04.0342 0x1be4 Dfsc - ok
16:42:04.0389 0x1be4 [ FDB38FF469568190277A694D1BF599F5, 5512DB70C942FBFD78DBAE3DF379A2DDB9249B45BF5CE2CB305605C14CD1F25F ] Dhcp C:\Windows\system32\dhcpcore.dll
16:42:04.0436 0x1be4 Dhcp - ok
16:42:04.0499 0x1be4 [ 291147C456844E438FE2DB43D86B0D7E, 8E2AFDEA856811EB3800DC2C977A1059B73176ED644966BEC25A42095A8F745A ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
16:42:04.0561 0x1be4 diagnosticshub.standardcollector.service - ok
16:42:04.0608 0x1be4 [ E2BF09B816393AF73EDCB8ECF9BBDB2D, DBDFFC2450E4EC684DD59383799ACF1D207B0882C301B8D562FB76307AFCC553 ] diagsvc C:\Windows\system32\DiagSvc.dll
16:42:04.0655 0x1be4 diagsvc - ok
16:42:04.0811 0x1be4 [ 053832140D35F4AD8981CF36C892123C, 75CC7CCF271A015FB1F774A8ECA769E765C145070D0192AAAA455134A8EF6F0A ] DiagTrack C:\Windows\system32\diagtrack.dll
16:42:05.0233 0x1be4 DiagTrack - ok
16:42:05.0295 0x1be4 [ 8C7FF86607E367E6319F7F637115D665, D49EAA69A880A566558ED58F60B378AB9E2F950DC951741908DD0914121D6099 ] Disk C:\Windows\system32\drivers\disk.sys
16:42:05.0327 0x1be4 Disk - ok
16:42:05.0405 0x1be4 [ 5BC34122A1974DD18880C3EBE955BC20, B3950F17E76312E7BEDE7678507B432B99E568BA3651C0E59960D4F1B2627B77 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
16:42:05.0499 0x1be4 DmEnrollmentSvc - ok
16:42:05.0545 0x1be4 [ 64009621AAF4BC6626BC1A623A26FAD1, C94E63FB12AC58022C0C7F7721C7A38E9411DE94BFB12416091DC1A1F8C90414 ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
16:42:05.0577 0x1be4 dmvsc - ok
16:42:05.0624 0x1be4 [ 10E72E3315305461D3F0C7560AE98CA5, 702B5C056DB6B4E337231BBEA48E106FA95F26B48CDE91857305E4C6E4EE6A12 ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
16:42:05.0655 0x1be4 dmwappushservice - ok
16:42:05.0702 0x1be4 [ B307EE2CEF643264DF3DAAF5DD2D08E2, 4A362C947852C076B53AD4655DD4EDE7D6106AABAFAD6ED1D874DA4F33EC0F8B ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:42:05.0811 0x1be4 Dnscache - ok
16:42:05.0858 0x1be4 [ E1C233826ECA1E52672052C49BD42485, 20B573BD6C5C760C21863F7E8B5AA544661C38E240C41ABA1C69B61C68A8FDD0 ] dot3svc C:\Windows\System32\dot3svc.dll
16:42:05.0920 0x1be4 dot3svc - ok
16:42:05.0952 0x1be4 [ 6D8971C942FEE43A0AB6B3192534AFB4, 44D437DD32E1FDD7922B352CA6C19C83C1ADD825FB704B8E07BEF01E866E2B99 ] DPS C:\Windows\system32\dps.dll
16:42:05.0983 0x1be4 DPS - ok
16:42:06.0014 0x1be4 [ F4800922F4ABA619585CE320A72E6389, CA83BCAA8B37F303E89598F8C93B201A3F000A09F4A9963E370D7E59BD79D448 ] drmkaud C:\Windows\System32\drivers\drmkaud.sys
16:42:06.0030 0x1be4 drmkaud - ok
16:42:06.0077 0x1be4 [ BB73FD1329739982C2915AB827A01362, 70E69942AE14D5012D9A8B1C799B5B4B4FCC2E456D8940CB4C104D6AB7C4997B ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
16:42:06.0186 0x1be4 DsmSvc - ok
16:42:06.0233 0x1be4 [ 280297274D162AD79ED767D8CB22DE9C, E344797EDD9EC2ED3D1D07FF1B94DFB8BA318DDE8CD6CECA937A27B4B2E22A0E ] DsSvc C:\Windows\System32\DsSvc.dll
16:42:06.0327 0x1be4 DsSvc - ok
16:42:06.0389 0x1be4 [ A05724426389EBC1351E3D6F95CF3EAC, E638F97043274515F9A8A46B55C9478E886683580F33A0E90A3BDFBA6A4F6C26 ] DusmSvc C:\Windows\System32\dusmsvc.dll
16:42:06.0483 0x1be4 DusmSvc - ok
16:42:06.0655 0x1be4 [ B6B0F214C2D04B73449433E99D080422, D328B679CB21AABE733F87CD51EF3EA3C76178D3E1E2996BEF73AF4FE39DF80C ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:42:06.0827 0x1be4 DXGKrnl - ok
16:42:08.0124 0x1be4 [ FA94398748930D840FE35A44F1D225A7, E2D48460413904AAFB50E18A24471157D2A235F5CCDF89EE49BB139D1CA3B9F6 ] Eaphost C:\Windows\System32\eapsvc.dll
16:42:08.0186 0x1be4 Eaphost - ok
16:42:08.0295 0x1be4 [ C770155822E190FF8E231C4C8D28C92F, 0114CFF4501F2741AFC988C86308AE8AD34485316EADC073DDE53B1A91F32B5F ] EasyAntiCheat C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
16:42:08.0358 0x1be4 EasyAntiCheat - detected UnsignedFile.Multi.Generic ( 1 )
16:42:08.0514 0x1be4 Detect turned to UDS exact due to KSN untrusted
16:42:08.0514 0x1be4 EasyAntiCheat ( UDS:DangerousObject.Multi.Generic ) - infected
16:42:08.0514 0x1be4 Force sending object to P2P due to detect: EasyAntiCheat
16:42:10.0311 0x1be4 Object send P2P result: true
16:42:11.0467 0x1be4 [ 78AC59B45CFBFCC68DA7D397D6819D03, C423C3A49D8F9BF931C694309AA982A2A554E7F2CEEC44F9AA1C13F98F9D6FBF ] EasyAntiCheatSys C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys
16:42:11.0545 0x1be4 EasyAntiCheatSys - ok
16:42:13.0255 0x1be4 [ C99D40C97841E0A7F0F90B8629593A97, 2DE7FB6E3CD7B06079C2B05D8C10AD0EDF187684ED1DE5BEE98FAB9A4B331824 ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:42:14.0831 0x1be4 ebdrv - ok
16:42:14.0925 0x1be4 [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] EFS C:\Windows\System32\lsass.exe
16:42:14.0988 0x1be4 EFS - ok
16:42:15.0019 0x1be4 [ 260BBD6B1ED06298E509B452354EDB91, CF794D5AC62C6DBF356BC717910FD2B106A8BD90C3C03BA43859FD876F8820BC ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
16:42:15.0066 0x1be4 EhStorClass - ok
16:42:15.0113 0x1be4 [ F3BEBDC1B9DBA32F183079EAE6244837, 5DE0DA8D2A13BFA852355619C6DE5AC2FDFAB314A619A4F209842581E4D82DE1 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
16:42:15.0159 0x1be4 EhStorTcgDrv - ok
16:42:15.0206 0x1be4 [ A75880A9192B9DA69F46867B06276746, 53856262A5BD4BE93CB45D1F43B87F45CB01C02B7D94231CF05346B9BDF1F18D ] embeddedmode C:\Windows\System32\embeddedmodesvc.dll
16:42:15.0316 0x1be4 embeddedmode - ok
16:42:15.0378 0x1be4 [ 3BC17ABD52295C64A8BEE3CF4B244B12, 9153DF82C10B314983DB78AB88B468C39E213AE3C504AD865C54213F76F120D6 ] EntAppSvc C:\Windows\system32\EnterpriseAppMgmtSvc.dll
16:42:15.0456 0x1be4 EntAppSvc - ok
16:42:15.0472 0x1be4 [ 1B63CA857FD03FD0A5A1379F2996784F, 9EE5205DCFADAFC62D36528087FA4E023F7E48FF0D2A8333D8A6111AE09D21B8 ] ErrDev C:\Windows\System32\drivers\errdev.sys
16:42:15.0519 0x1be4 ErrDev - ok
16:42:15.0597 0x1be4 [ 6A5FA501A2D96001391FF3CBA32935AB, 018DB01ADE957A1A1FF5B168A2EC0EFEF8BFBE036079791FDF0C6AA6C12295BA ] EventSystem C:\Windows\system32\es.dll
16:42:15.0675 0x1be4 EventSystem - ok
16:42:15.0722 0x1be4 [ F1ACA42D448E3986565EA54275EEEA65, C85101D6E7A2204FD73AAACD972F610B6A4BCF7EB7512412FD34660DCB5E8C5C ] exfat C:\Windows\system32\drivers\exfat.sys
16:42:15.0769 0x1be4 exfat - ok
16:42:15.0800 0x1be4 [ 0AF4B36754A6EAE794EE4398E219A9E1, A818763D7AE6E7F4BC57294BB4D80FE9E04387BB3EBE8A6088D2AF746FF548A6 ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:42:15.0831 0x1be4 fastfat - ok
16:42:15.0894 0x1be4 [ B1A38C0D977D8738779CA3EFEBDFCA8C, EDD852EF89AFBDDBBBE002E6675EAFCC46742B6136EB22428C84D737C6229FEA ] Fax C:\Windows\system32\fxssvc.exe
16:42:15.0972 0x1be4 Fax - ok
16:42:16.0003 0x1be4 [ 7CD8426A33F06EB72BFEC51F7C264AF8, 4FDD5F6A8BDF25D965CE52132DD0EA77D335C1C5F77A7758F3F6E22DFC12BDF5 ] fdc C:\Windows\System32\drivers\fdc.sys
16:42:16.0019 0x1be4 fdc - ok
16:42:16.0050 0x1be4 [ 21EB16C5DDFBC19DEBE9EEC10EA423FB, 514327DA987793AFE1DFB4F2C0F033C349432E6F1F6AACBAE23E24E63EFA51B9 ] fdPHost C:\Windows\system32\fdPHost.dll
16:42:16.0081 0x1be4 fdPHost - ok
16:42:16.0097 0x1be4 [ 57F98EFE6CB82AE5400BA99C705AF45C, 7AB83C7AF4CA49BFC2976FB707B251C181279B7E16EBDD43AD0E1A4AB8C4DFC9 ] FDResPub C:\Windows\system32\fdrespub.dll
16:42:16.0128 0x1be4 FDResPub - ok
16:42:16.0144 0x1be4 [ 02F93E4B9EC2821B6670208044FF5332, 2D947C8AE51E749029B3180751E4486E27A19471A7A98087076103D307B5CE64 ] fhsvc C:\Windows\system32\fhsvc.dll
16:42:16.0191 0x1be4 fhsvc - ok
16:42:16.0222 0x1be4 [ DE51BBBCF358188F9736F031546F9908, E2B80DF63C039663085FA9D63F3F30736EC20C49BC678CBD7D7C7231107C3635 ] FileCrypt C:\Windows\system32\drivers\filecrypt.sys
16:42:16.0253 0x1be4 FileCrypt - ok
16:42:16.0284 0x1be4 [ 822F664952B0F8D11BB6BD2F11779602, B7E9908A305942194E64E834819186CBBF9DD4469B300DCC8D31E1E5674D6600 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:42:16.0300 0x1be4 FileInfo - ok
16:42:16.0316 0x1be4 [ 5A4935682A0D47A4EAC4BE3C2ACF74D6, 0DCF2E7928D11F49EBF906233894E81CFFE938ADFCA802CE0207CA58B4A02AAD ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:42:16.0347 0x1be4 Filetrace - ok
16:42:16.0378 0x1be4 [ 60641F22D1D38EAD197C25F0339C9712, 110ACEADAE92C384C80356C9DE88E3A94141881E8544DB65736875FFA2716F68 ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
16:42:16.0394 0x1be4 flpydisk - ok
16:42:16.0456 0x1be4 [ ECD2030E78AF8D696A2E59796CA0B798, 370D7829E9077109525E375A3860D96372936C60A1FD7D02D1C7AD381F6E0275 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:42:16.0488 0x1be4 FltMgr - ok
16:42:16.0644 0x1be4 [ D9E18DDDC08B77E634F2AFEF0CC551FF, 701BFDFAD6E86C48E02612E54F3F8819632FC13526893AD2BBAA51348F5E24FF ] FontCache C:\Windows\system32\FntCache.dll
16:42:16.0863 0x1be4 FontCache - ok
16:42:16.0956 0x1be4 [ A7C6894FFF261C0FEFDCB41BE83CF430, C3DB55140E4848873BC0004030933402CD396112C14F432258D875DB1608700E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:42:17.0003 0x1be4 FontCache3.0.0.0 - ok
16:42:17.0050 0x1be4 [ 95F8BF9B335A0BE8920BE160F95B2503, 596B02CFF111C2610E73FA2EBDBB7E6C5C190A9DD9E2FE4CAC6ED475691B7A43 ] FrameServer C:\Windows\system32\FrameServer.dll
16:42:17.0144 0x1be4 FrameServer - ok
16:42:17.0175 0x1be4 [ 0425D9D2A679060CC9755449779FBA54, F0BFEE92081BDF82AAD58AD1B21659F465DCE6F9F9F16ABBE9A84C17978AA3A0 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:42:17.0191 0x1be4 FsDepends - ok
16:42:17.0222 0x1be4 [ B962036CAADC05E466FEB165E0974587, EAA88EBBAAFF31A5E35B3B23B12E94EE3C659399CDDAADBF4B6146AE091CA5AA ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:42:17.0253 0x1be4 Fs_Rec - ok
16:42:17.0316 0x1be4 [ 2C8891C306C8F43A273BDB7C490E1C92, DD8D905956652D276796F5638980E3219EF2D8C2B65A8DE537D549BF5C306BE4 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:42:17.0378 0x1be4 fvevol - ok
16:42:17.0410 0x1be4 [ DFAB4D8FE39C64EAD3A4DCBA25AAFEE0, BABCAE227CD2E87E37C708539C2232251B37F35EFFE2B927914D72517F161E44 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
16:42:17.0441 0x1be4 gencounter - ok
16:42:17.0488 0x1be4 [ 8B34E3F794F652082D7E8AF112F71681, C6CFA239BDF46827BFC89DC9A9BF45B0EBCE3EF1BB7DCA33980A632E549B37F5 ] genericusbfn C:\Windows\System32\drivers\genericusbfn.sys
16:42:17.0519 0x1be4 genericusbfn - ok
16:42:17.0534 0x1be4 [ 127C23F4720C8902A3AB0FEE12205317, E3BF55D81B04572D11B41CDA2DB4509FD252561EB29ED22CC6F616E856E3D86E ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
16:42:17.0566 0x1be4 GPIOClx0101 - ok
16:42:17.0644 0x1be4 [ 846347C05DBC7C49143D9723EC3714E9, DCC888F1262CA50DA3109D132A9C04F83A961720647E9882D3EFCBF8E3D703B5 ] gpsvc C:\Windows\System32\gpsvc.dll
16:42:17.0769 0x1be4 gpsvc - ok
16:42:17.0816 0x1be4 [ 582578F031109BE65C15E1D8A45BA547, 4BB1E20A2BDF8F504FF787EF338B6180DD537F53A0DC843B96AEFD8BBE970653 ] GpuEnergyDrv C:\Windows\system32\drivers\gpuenergydrv.sys
16:42:17.0863 0x1be4 GpuEnergyDrv - ok
16:42:17.0894 0x1be4 [ 141904F0581468B39B579EA33CA57549, 1D947A6079CED7840B0FF4720C36D873F5A69EA6C94E4C15ADF1A7C0CD0CD0EA ] GraphicsPerfSvc C:\Windows\System32\GraphicsPerfSvc.dll
16:42:17.0956 0x1be4 GraphicsPerfSvc - ok
16:42:18.0019 0x1be4 [ AB4781D43818DA6BC41C2C9F273EEA46, FA64715F6168A275E93909869D090D5DEB538B2B83B97D055FF9D10251F9367D ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:42:18.0066 0x1be4 gupdate - detected UnsignedFile.Multi.Generic ( 1 )
16:42:18.0238 0x1be4 Detect turned to UDS exact due to KSN untrusted
16:42:18.0238 0x1be4 gupdate ( UDS:DangerousObject.Multi.Generic ) - infected
16:42:18.0238 0x1be4 Force sending object to P2P due to detect: gupdate
16:42:20.0034 0x1be4 Object send P2P result: true
16:42:21.0066 0x1be4 [ AB4781D43818DA6BC41C2C9F273EEA46, FA64715F6168A275E93909869D090D5DEB538B2B83B97D055FF9D10251F9367D ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:42:21.0097 0x1be4 gupdatem - detected UnsignedFile.Multi.Generic ( 1 )
16:42:21.0097 0x1be4 Detect turned to UDS exact due to KSN untrusted
16:42:21.0113 0x1be4 gupdatem ( UDS:DangerousObject.Multi.Generic ) - infected
16:42:21.0113 0x1be4 Force sending object to P2P due to detect: gupdatem
16:42:22.0597 0x1be4 Object send P2P result: true
16:42:24.0206 0x1be4 [ 0D4E1DE424440F1FC83E27EB30870B2E, 0BF0C2F14FDE5013C8169CE1AC623A920A2BAAA8C7CB92DAFECEB537D28D1574 ] HdAudAddService C:\Windows\System32\drivers\HdAudio.sys
16:42:24.0316 0x1be4 HdAudAddService - ok
16:42:24.0347 0x1be4 [ 99A34FD1F6431A10D8C3BB50E170D0F2, 14BFF99BBF9ED53D3A157B096CDE0394824260021BA96E1F2C7B1CFB598DD850 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
16:42:24.0394 0x1be4 HDAudBus - ok
16:42:24.0409 0x1be4 [ 2443FC6EEB9CF092B62127D867901B02, ABD5E907FF066B95C5697C4E470B4EA19976DEC90C8159B963A82EDA218AB114 ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
16:42:24.0425 0x1be4 HidBatt - ok
16:42:24.0472 0x1be4 [ 205043CDC16ADE85E252DD54AE925161, F377F046EFEE53C7786AF15C0BB5BADE36511427575A712B0098A883F3715DB3 ] HidBth C:\Windows\System32\drivers\hidbth.sys
16:42:24.0503 0x1be4 HidBth - ok
16:42:24.0519 0x1be4 [ B521DDDC9038C066B1B957BF063A531A, C5FE68FB22C28C4D06A0792FD5AC9A1F0EC01EF26E1D37B9DF05F22D8B7DFF8C ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
16:42:24.0550 0x1be4 hidi2c - ok
16:42:24.0581 0x1be4 [ 5AC0EBFA76E93273A806176D3178E986, 679BFEFF9F4172EBB14A6C2E8381F54FBDC9E8705E8B0F306723DDF48B6E5143 ] hidinterrupt C:\Windows\System32\drivers\hidinterrupt.sys
16:42:24.0597 0x1be4 hidinterrupt - ok
16:42:24.0613 0x1be4 [ 366AC0E05EBF5D5C375F65CD8BC7F0DF, A6B751864E33EBB5DE2E09403A8C26E72DD5510F3A380FA502393FC11A14A433 ] HidIr C:\Windows\System32\drivers\hidir.sys
16:42:24.0644 0x1be4 HidIr - ok
16:42:24.0675 0x1be4 [ 75F4CCB7FF03603E91DD0C7FF83DAABF, 10508A6C36163C9D40C16A47AB4CA8C03C89BB7795690818E5C562E3FF828D5B ] hidserv C:\Windows\system32\hidserv.dll
16:42:24.0722 0x1be4 hidserv - ok
16:42:24.0753 0x1be4 [ 7CB54D02746024648FCE184FC3F941FF, 6C7B8E6AD3C05D66868D0268C9C8183021AB241E576184FAD0BD50ED4E18E9ED ] HidUsb C:\Windows\System32\drivers\hidusb.sys
16:42:24.0784 0x1be4 HidUsb - ok
16:42:24.0831 0x1be4 [ 459EC4290CF0D8269DB28FBFD6284C58, F1C34F11E18F6D48C8378F77DE167AD208E9E7C3022DCA714FF0403AEFF80857 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:42:24.0878 0x1be4 HomeGroupListener - ok
16:42:24.0941 0x1be4 [ 24C900B7296AA9867FB761A5801AFBD1, 4A765E905D0F7C4B450A28FB85F413F4EAD2B53240E804FA531626ABB0518381 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:42:24.0988 0x1be4 HomeGroupProvider - ok
16:42:25.0035 0x1be4 [ 835FB95D85D362057A72D21A48C2C7F8, 06A57F9E459E52DAA7B27F232DBC1E0ED0E04759D34AF3E15A645D11DFDD6A58 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:42:25.0050 0x1be4 HpSAMD - ok
16:42:26.0597 0x1be4 [ CA46DB64D8FE96C8F935E6F798741398, 83622DF6F51FE3D1B0F90964110A9F8BD6DBC64552E65995364A6DB76E993E8A ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:42:26.0675 0x1be4 HTTP - ok
16:42:26.0722 0x1be4 [ 8B8395999252DE3BA4EBC1A5F28827F3, 95B9B330C43438C6203FD08A441C3CC269CFBA812FC804805786F0243BA1949C ] HvHost C:\Windows\System32\hvhostsvc.dll
16:42:26.0738 0x1be4 HvHost - ok
16:42:26.0769 0x1be4 [ 9F2CFC90306532866C62BDCDFD2532AA, F27B1087B1E3E06FB49092BBF2DD8CF5B6ADD4CE061FE10C3ED44C58B92BE007 ] hvservice C:\Windows\system32\drivers\hvservice.sys
16:42:26.0800 0x1be4 hvservice - ok
16:42:26.0831 0x1be4 [ 3737FE486929AFC48F1D10677B698E52, 9E8792F3A494AE3E7CDA65E93B561B6FFFB9C781606F5863D524DDD24CFEB9C3 ] HwNClx0101 C:\Windows\system32\Drivers\mshwnclx.sys
16:42:26.0894 0x1be4 HwNClx0101 - ok
16:42:26.0941 0x1be4 [ 3C65EBF7F1BFD98426C355D66876ECEE, CA1DC462C4D96176C81EF3448238B76B4CDA3C521533973B281359D7F436B8A5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:42:26.0956 0x1be4 hwpolicy - ok
16:42:27.0003 0x1be4 [ E3BDE6C567ED5CD7B15B2E522C120D02, 954EC837636D0F08A3596E4270F37E03C99F8D1A7E80D0D323E0CB793324D776 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
16:42:27.0081 0x1be4 hyperkbd - ok
16:42:27.0113 0x1be4 [ 1D7BBC4C6F33A4A6189AEA1509615DF9, 66D6E64353CE80949082E594061BCA077849840B175F18F0743285B389F57250 ] HyperVideo C:\Windows\System32\drivers\HyperVideo.sys
16:42:27.0159 0x1be4 HyperVideo - ok
16:42:27.0191 0x1be4 [ 56FF074E50F9042FD2856AB3418F4B18, 239C9BF23DE2E36FD7112C425CDF18F29B751D75EF3551AEFB048FAD2B0A55E2 ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
16:42:27.0238 0x1be4 i8042prt - ok
16:42:27.0269 0x1be4 [ B5EC43755E62591197DE5CBBDAA9FEB7, 1B4E0EAB677B09A050925879ECDA311404270DCF020AAD390692427198C73C9F ] iagpio C:\Windows\System32\drivers\iagpio.sys
16:42:27.0300 0x1be4 iagpio - ok
16:42:27.0316 0x1be4 [ D8CA23F9C5FEF44296FDE1E005C06EC0, 0D7B03EF9E19B9B2A28C3318560488B3F9573CF364A533A9B4A2CD0A7FFA4F84 ] iai2c C:\Windows\System32\drivers\iai2c.sys
16:42:27.0363 0x1be4 iai2c - ok
16:42:27.0378 0x1be4 [ 7B769C9D19C013F94874C4B15D59A005, 53A15F0480AEC43B5A01CFB17360188885B6ECBFFF6E566D27E5B6D4C7737243 ] iaLPSS2i_GPIO2 C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys
16:42:27.0409 0x1be4 iaLPSS2i_GPIO2 - ok
16:42:27.0425 0x1be4 [ E0F1B3A2A70FABE3BE1C9140BB55E607, 34E5B055619F3A26B7BB6054EA49D40B7D6DAFE234F57F358FE7C8EE83E10618 ] iaLPSS2i_GPIO2_BXT_P C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
16:42:27.0456 0x1be4 iaLPSS2i_GPIO2_BXT_P - ok
16:42:27.0488 0x1be4 [ 89A869BCC0588A3009ECB875B09ECD39, 5ECC2C6E661B326511682D8EA1C82F942C63835890687285FEF455C5C9DC2476 ] iaLPSS2i_I2C C:\Windows\System32\drivers\iaLPSS2i_I2C.sys
16:42:27.0519 0x1be4 iaLPSS2i_I2C - ok
16:42:27.0550 0x1be4 [ 2E693DF3C02A0859DB8DE25772751100, 3EFFDA44B247E04258429ADC85E88E23F926FD487A3A85BF879E6E5802197B3F ] iaLPSS2i_I2C_BXT_P C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
16:42:27.0581 0x1be4 iaLPSS2i_I2C_BXT_P - ok
16:42:27.0597 0x1be4 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
16:42:27.0613 0x1be4 iaLPSSi_GPIO - ok
16:42:27.0628 0x1be4 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\Windows\System32\drivers\iaLPSSi_I2C.sys
16:42:27.0644 0x1be4 iaLPSSi_I2C - ok
16:42:27.0691 0x1be4 [ 435883A27A376B125BD4DF888417C85F, 091F9285FCF1D5605D03CB68C062A2DE6FF2D705FF43E983A8A7B5DFA0872A96 ] iaStorAV C:\Windows\system32\drivers\iaStorAV.sys
16:42:27.0753 0x1be4 iaStorAV - ok
16:42:27.0784 0x1be4 [ 7118E4390C4ACDE61E280CE52BCAF44E, 11123C1555344A191283187BF1F4A8D731E29EE27C7A7A7916873E8D2E95D978 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:42:27.0831 0x1be4 iaStorV - ok
16:42:27.0863 0x1be4 [ 9DBE8C359ABACE1BE1BBAB687D114506, D2E5CB2BFC42627C1BB38A68F925DD534AEFFF9354AFD184005EC338E8E6B232 ] ibbus C:\Windows\System32\drivers\ibbus.sys
16:42:27.0909 0x1be4 ibbus - ok
16:42:27.0941 0x1be4 [ 0CF99D60588AF7F198C135BABCA287F2, C72235865426659957909E8465B7D208EB5CAA21B529F07BB055D33028326D9C ] icssvc C:\Windows\System32\tetheringservice.dll
16:42:27.0988 0x1be4 icssvc - ok
16:42:28.0019 0x1be4 [ 6248F7270A37B8890C7A058AAD4D6620, 8C1A4BD7485DECA364D960DEE573D283E8ED4EA2AFEFDEEAD340F182D471B761 ] IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys
16:42:28.0050 0x1be4 IDMWFP - ok
16:42:28.0113 0x1be4 [ 4D8123F7262C87B3CAE5A62AF74F7939, 8F003562F50218307ECC48A7BF43BE1DA88352D2749902A029081804B71C85DB ] IKEEXT C:\Windows\System32\ikeext.dll
16:42:28.0253 0x1be4 IKEEXT - ok
16:42:28.0300 0x1be4 [ 42CAF6216A6E516DC56BA319ACC7EEC5, DF60FF41F06D1101E4A81F7416DB5A34D7BA885CBA874BC15AD43FB4080F2958 ] IndirectKmd C:\Windows\System32\drivers\IndirectKmd.sys
16:42:28.0331 0x1be4 IndirectKmd - ok
16:42:28.0425 0x1be4 [ 02D6C68057FDED7E08FD3CAEE564B6C8, 8DF7C7D6C5970DE16ABE32FAFEDEB467A243283C227FAFF25D7258875A2F459C ] InstallService C:\Windows\system32\InstallService.dll
16:42:28.0566 0x1be4 InstallService - ok
16:42:28.0613 0x1be4 [ 40943C1CD031ACE06A8374AD56B9E5EA, 05E5AD4330F272C421A8726E9E6555115D8717DC5AFDE3CC1DB53A3D7518BF62 ] intelide C:\Windows\system32\drivers\intelide.sys
16:42:28.0628 0x1be4 intelide - ok
16:42:28.0659 0x1be4 [ 327D9CCF5492543AEF3979F9EEAD02BE, 1C6CD9ECB785D022A38DF683FACCA737469BF72E42365CD6DB8C2675F2ED1F1C ] intelpep C:\Windows\system32\drivers\intelpep.sys
16:42:28.0691 0x1be4 intelpep - ok
16:42:28.0722 0x1be4 [ 7344528DFD4484CF86F36E24E7CB59B1, 821947C152E7A2B4782199E033EAEE8D3F43A5EC4CC369334A6C0793C62DA069 ] intelppm C:\Windows\System32\drivers\intelppm.sys
16:42:28.0753 0x1be4 intelppm - ok
16:42:28.0784 0x1be4 [ 8387E90B551B9B7F32EDC69909591E9E, 7086B6F2B728D7C46F0A1E7E4F81B3D33C25BD5F8A2A4ECEBA55F8C68F164500 ] invdimm C:\Windows\System32\drivers\invdimm.sys
16:42:28.0816 0x1be4 invdimm - ok
16:42:28.0847 0x1be4 [ E207078E0E1BB3524277DB9077E4148E, 309320950095AF83DCBE08BFDD4BFE4EBADBF48CA255871A6B37BAAA7B4A5B38 ] iorate C:\Windows\system32\drivers\iorate.sys
16:42:28.0863 0x1be4 iorate - ok
16:42:28.0909 0x1be4 [ FD8F64B7B345E539F2EA7F72846F83B4, 95F232BC2454D68F1A154C9BD8FCCF60D36F5424B798661D6F1DD8E052ED0D04 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:42:28.0941 0x1be4 IpFilterDriver - ok
16:42:28.0988 0x1be4 [ 1C5867DC4091C2E23329AB984BF95604, 56FA9888A7A969539833644AD50730BBA5E770AC6097AFB490E34196596C55E0 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:42:29.0097 0x1be4 iphlpsvc - ok
16:42:29.0128 0x1be4 [ 8AAB863E72A4F9C578FED2EE3541545B, B3278B790DF9F77F8FDDBECAD22E0D2E080D74B8E61EFF112055478B3B0B2329 ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
16:42:29.0159 0x1be4 IPMIDRV - ok
16:42:29.0175 0x1be4 [ 7BEC2AF23F586EFF0DB4DBF4331B0C70, D02506CAB19AD1D3ABBB35FCC569ED613EB9D6828E9BC0389EC8A8DFC548334B ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:42:29.0222 0x1be4 IPNAT - ok
16:42:29.0238 0x1be4 [ 35A54F19E703D4FE5919F812F6CC5D0A, B0AC1C97D115F57390BD2B4F9114429CF1729EB8D658B3EAEC8ECF28A24369F7 ] IPT C:\Windows\System32\drivers\ipt.sys
16:42:29.0284 0x1be4 IPT - ok
16:42:29.0331 0x1be4 [ F6C47021C41F721B628161B64D7DECB9, 625227F18518098C00AF2C6F4EE5D96711D26080459AD2C9F7CF2A5778DEF191 ] IpxlatCfgSvc C:\Windows\System32\IpxlatCfg.dll
16:42:29.0363 0x1be4 IpxlatCfgSvc - ok
16:42:29.0394 0x1be4 [ BF933330256DEDAFA939BEBC46D060C7, F9B47A83945DF2A043384626A2EB47AE9F915048636334D9768A0B4901C84E08 ] irda C:\Windows\system32\drivers\irda.sys
16:42:29.0425 0x1be4 irda - ok
16:42:29.0456 0x1be4 [ F88664A2A82DDA456180FFF95A771765, 004BBC715FE6EC0D4D2CAE978EA64C6CEA130EE10C356B7FACF0C98B51E8AECB ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:42:29.0503 0x1be4 IRENUM - ok
16:42:29.0519 0x1be4 [ 4F500A0171606B0E37964694140FCA16, 6E29A7348395EE3EB85E2BA97E581FBF605CE1BA4651F5848976AD293CC797E3 ] irmon C:\Windows\System32\irmon.dll
16:42:29.0550 0x1be4 irmon - ok
16:42:29.0581 0x1be4 [ A3B7A93F32E110949CA01DDE7C6B991B, 5F38B882DBAB4BDFCAB289721D6D5A0D85675BA580AC96FB74ED826A4800C998 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:42:29.0613 0x1be4 isapnp - ok
16:42:29.0644 0x1be4 [ 13BAA9B1970343AE7B7028B611E52133, 3B8A5993CCF3CBF38AAE6F8813283DFA3DF2DC4B2DDA7C3421263D0D891946DC ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
16:42:29.0675 0x1be4 iScsiPrt - ok
16:42:29.0722 0x1be4 [ E320F986BBE0CD9324EA0A193EBF29B1, 9B4C7F1493377CE532361F88A0C88798F24E7EFB093DA2F0A6CB1575B9E3535C ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
16:42:29.0738 0x1be4 kbdclass - ok
16:42:29.0753 0x1be4 [ AFF5DDCC1A79217C9526FF5E01A69E89, 2BCD49DD8DD977B97521465B981332CA8FA8D16AB45B45993C87647FA3E9DAF0 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
16:42:29.0784 0x1be4 kbdhid - ok
16:42:29.0800 0x1be4 [ 916E62AF3386F7A74603E5C545F6FF2D, C5CA784F60B8CA3DE0672A816DCE14F1AD6B6783A5E6B556ED7C91337F65144F ] kdnic C:\Windows\System32\drivers\kdnic.sys
16:42:29.0847 0x1be4 kdnic - ok
16:42:29.0863 0x1be4 [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] KeyIso C:\Windows\system32\lsass.exe
16:42:29.0894 0x1be4 KeyIso - ok
16:42:29.0941 0x1be4 [ BE46CEF0F176D215B3FDF1C664B3D6A7, 4989CE6CC5803A1E26AC197CDA234B91BC3A33E5C456E2FCE6E7744000BF0987 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:42:29.0956 0x1be4 KSecDD - ok
16:42:30.0003 0x1be4 [ 5F0A90AC0AA8C772B20AD71B87422838, 176F7C6E322098DF5033CFF0BAA267BA9D7AF7E635F3D28BC0E5F11DFECD8015 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:42:30.0034 0x1be4 KSecPkg - ok
16:42:30.0066 0x1be4 [ DD8C4726127CFE313233372D70787C37, 2420616FEEFC08A3F47420193A3A592D4AC5D2C817D27E5B7E4FD64153751AFB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:42:30.0097 0x1be4 ksthunk - ok
16:42:30.0128 0x1be4 [ 6EAF246BC12DB548AC65A4CEFB14B547, F1487051FE459DB5A751DA2A6FF1E552F92226933AF8C037FA7D660B049896A3 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:42:30.0191 0x1be4 KtmRm - ok
16:42:30.0206 0x1be4 [ 4E444F41E69BBE2E0BAE34D5DFCB5732, ACAEFB839CF7A3113D026B9A715994C3DFF8797D73B991253959EF606C4FBC00 ] L1C C:\Windows\System32\drivers\L1C63x64.sys
16:42:30.0238 0x1be4 L1C - ok
16:42:30.0284 0x1be4 [ 2EC02DFC530560D0C01C7428E4CC9D27, 74EABA6EEEE771F19D75D9B64972B94C5308EEA5D51C0C2DB360570F1CB36F69 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:42:30.0347 0x1be4 LanmanServer - ok
16:42:30.0378 0x1be4 [ F8097F90811E9BB10F5B96262399F3C7, 1BDFB850ACE73E8882BBC3B18A5A7BCEE68696917D8462A159CE2763133DC516 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:42:30.0441 0x1be4 LanmanWorkstation - ok
16:42:30.0488 0x1be4 [ D81931EF9914A135F9ECF409DC826266, 8BA15C12B374DE555CB7D3CDFDDC42FE583625A9C29BCCDDEB432223E4DEEB2D ] lfsvc C:\Windows\System32\lfsvc.dll
16:42:30.0519 0x1be4 lfsvc - ok
16:42:30.0550 0x1be4 [ 6A361ED0DE59D58CC633F7BB40AB950D, AF5315AFAAE41AAB55BB7243FD9EA2949C7F114C0ED24073751733B5A11142BA ] LicenseManager C:\Windows\system32\LicenseManagerSvc.dll
16:42:32.0019 0x1be4 LicenseManager - ok
16:42:32.0097 0x1be4 [ 56B6326B15A14043C82ED9EA3B817E2C, F3F99397B12529FAF4B77E11A3279B882F9BF986D0DDB3F1847B8EE96C6E40FF ] lltdio C:\Windows\system32\drivers\lltdio.sys
16:42:33.0613 0x1be4 lltdio - ok
16:42:33.0722 0x1be4 [ 48199253D7F6119F88294F8845F0808D, 85C014250C14425BEFF2D8B2CCF6A29D9A5DA329ECD00F1E6D4F8DB809194FAC ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:42:33.0784 0x1be4 lltdsvc - ok
16:42:35.0206 0x1be4 [ DCF6F1AA7A51CC08FED089363F83316E, C80FB26A6172510F3AD5E4D636AA49AD5D931FB47BECD9E8507F781D88917710 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:42:35.0269 0x1be4 lmhosts - ok
16:42:35.0347 0x1be4 [ 20048BEE892138A745B1C23EBB0E069F, B526035CE839BADA6ABC0A0CBFFDFA5267F4EB668AE201871E61E0011518843E ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:42:35.0378 0x1be4 LSI_SAS - ok
16:42:35.0394 0x1be4 [ 9EAB16572B576979D585DDEDB12417CD, 97C37DFEA309E27E4AC50D1F4C7C3D1FB9661E0DEBB442D620D8E460F9FC9966 ] LSI_SAS2i C:\Windows\system32\drivers\lsi_sas2i.sys
16:42:35.0425 0x1be4 LSI_SAS2i - ok
16:42:35.0441 0x1be4 [ 3B7B359C0870317106DF3438D4FF491D, 5EDF767D79EF49210DD3BCC00D7629600DD522B29A2B9A9D7805076ECDCBFD1D ] LSI_SAS3i C:\Windows\system32\drivers\lsi_sas3i.sys
16:42:35.0456 0x1be4 LSI_SAS3i - ok
16:42:35.0472 0x1be4 [ 2DE03BA338A4B0ACDB416A30F1C7D56F, CF2218EA8C67CC13893B286B0904F28FBFE5AA818CC3AD1C77120B7B6E80031F ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
16:42:35.0503 0x1be4 LSI_SSS - ok
16:42:35.0550 0x1be4 [ A4ADC59A58724CDA67A7AB93457EEE43, C5CEFD57A31A7C377ACF3F5A071646DA358079F9BEB602B96C14392FC2D57539 ] LSM C:\Windows\System32\lsm.dll
16:42:35.0659 0x1be4 LSM - ok
16:42:35.0691 0x1be4 [ 9A497169E145FCE2D8AA7DBC67377F64, 3FA4CE7455ACBB32DECA8BC7EAD0EC1A0E123CBCBF8781FBB16453455AB9F0FE ] luafv C:\Windows\system32\drivers\luafv.sys
16:42:35.0738 0x1be4 luafv - ok
16:42:35.0784 0x1be4 [ 3520DE00ABC5EFF0DBAFD41129AD970F, 821F9D9AAA6D8B08BEBFB76DAE5A8CCFB598789510A93D3DD4F149A39EE5D6B5 ] MapsBroker C:\Windows\System32\moshost.dll
16:42:35.0863 0x1be4 MapsBroker - ok
16:42:37.0300 0x1be4 [ BF56CB9D02DEE8CA9CBA50220BE16F15, C6380ED59AD7B9CC9451A24808E193454CF15D90A2C1DAF22FBD3380B150F96F ] mausbhost C:\Windows\System32\drivers\mausbhost.sys
16:42:37.0363 0x1be4 mausbhost - ok
16:42:37.0394 0x1be4 [ 01BDEE1FFF6D2216797DFEE4ABD937D9, ED247E6F87ECA39A7D479CA7E386D85CE8B2978164E4E9876196176F393E1235 ] mausbip C:\Windows\System32\drivers\mausbip.sys
16:42:37.0409 0x1be4 mausbip - ok
16:42:37.0441 0x1be4 MBAMService - ok
16:42:37.0441 0x1be4 [ C7B8B5053D646CBD30BE1BA6B487D396, E3864D4CE619D67E284C64A4EAA8843FB49BC2B8CC8659F4C4B89DB6701468CB ] megasas C:\Windows\system32\drivers\megasas.sys
16:42:37.0472 0x1be4 megasas - ok
16:42:37.0503 0x1be4 [ EB8ED3204499DDB2D3BA094A4563EE3E, A5D0095D575B241CA66CAD86280170803E7042F51D3654FCB03D7EA2347E261B ] megasas2i C:\Windows\system32\drivers\MegaSas2i.sys
16:42:37.0519 0x1be4 megasas2i - ok
16:42:37.0581 0x1be4 [ F1C1D4E752DE1D58295040E5BE8813AF, 4DE17C5FCE63AFD545B16FA16A38F7395F29155FE165E7B21BC028CCD2A4B18E ] megasr C:\Windows\system32\drivers\megasr.sys
16:42:37.0628 0x1be4 megasr - ok
16:42:38.0988 0x1be4 [ 4965456A1B4B3039E4B9AB233F5E9B1E, 3C303FE2BF9B38D73D005EA673C9500731125D793F4C77130F9BA8D745579591 ] MessagingService C:\Windows\System32\MessagingService.dll
16:42:39.0066 0x1be4 MessagingService - ok
16:42:39.0144 0x1be4 [ 16B078D1089FEA98710C9D07C152DCEE, A42C28E12F1BB21E907C1308447AD63DDF8FA5B2734A199A6EBE3824F3D1235C ] mlx4_bus C:\Windows\System32\drivers\mlx4_bus.sys
16:42:39.0206 0x1be4 mlx4_bus - ok
16:42:39.0238 0x1be4 [ 20C57CE47B1A877C48A4B68E9A4E21FA, 35F98286F0665C5E06914F04F174476FBB41823564EDC55E351FCE211E2C765F ] MMCSS C:\Windows\system32\drivers\mmcss.sys
16:42:39.0269 0x1be4 MMCSS - ok
16:42:39.0300 0x1be4 [ A4467A5C080318F0CCCF5ED463821F8B, C8ECD63245B19807BAA92C3F3F87643A2F6B178395ABB15BD54D9DE68CC1A09B ] Modem C:\Windows\system32\drivers\modem.sys
16:42:39.0316 0x1be4 Modem - ok
16:42:39.0363 0x1be4 [ 78BE85C1F1C7F3AF6C87BCE127007D5A, 5D5229FBCDC855BFF9BA3247BF4EF8E22764CFC1EC974FD5AB2D9E6293EF15A1 ] monitor C:\Windows\System32\drivers\monitor.sys
16:42:39.0394 0x1be4 monitor - ok
16:42:39.0409 0x1be4 [ 8E262B34A8BD184B4B3025AA8C396B00, B48AB637A92894318DC0A33CE55519D8FBD7B31177FA3C4CA33D8609D4FC0058 ] mouclass C:\Windows\System32\drivers\mouclass.sys
16:42:39.0425 0x1be4 mouclass - ok
16:42:39.0456 0x1be4 [ C094A555F148495EA130D3BBC5232D5E, 32E823C20FED94DB23F72F67DF1A2C043CA6179A543F3BD24FCB5500BA00A37C ] mouhid C:\Windows\System32\drivers\mouhid.sys
16:42:39.0503 0x1be4 mouhid - ok
16:42:39.0534 0x1be4 [ 8209AC7D3F8AF41E3A14D022CD1F2040, D5B325AB8E7B354BCA3550ACD03FF5AC27B5C04A1D10C9FA4686EEA34D7293FE ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:42:39.0566 0x1be4 mountmgr - ok
16:42:39.0613 0x1be4 [ 4A333A7ADC8AEF95CDDCFD2B25B084B7, A65BD3DC2AD7401BED086C93EA80D0338A159EE87F8D9066D648DC41B5623B59 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:42:39.0628 0x1be4 MozillaMaintenance - detected UnsignedFile.Multi.Generic ( 1 )
16:42:39.0988 0x1be4 Detect turned to UDS exact due to KSN untrusted
16:42:39.0988 0x1be4 MozillaMaintenance ( UDS:DangerousObject.Multi.Generic ) - infected
16:42:40.0003 0x1be4 Force sending object to P2P due to detect: MozillaMaintenance
16:42:41.0284 0x1be4 Object send P2P result: true
16:42:42.0706 0x1be4 [ F36E4074C66DD31855A8D79EF0AE8066, 01C01B3EAEFADBCDACA5BE7CB2AA199667786C1AD637CF6792BF715242BEFEAD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:42:42.0769 0x1be4 mpsdrv - ok
16:42:42.0831 0x1be4 [ 4ABF7D7C44354807174EC36965B49C76, 3F57C8794F2CBFFE098B614418BBA8FC051E8DD798313228B4E03E101FCD9791 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:42:42.0925 0x1be4 MpsSvc - ok
16:42:42.0972 0x1be4 [ 215D672CB71987CD98EB2298EFB84DDC, 7E23C36DBB7C80556560E1DECE5E8F5D3D422F3D1FFE9CEA511A0BCD9D69D304 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:42:43.0003 0x1be4 MRxDAV - ok
16:42:43.0050 0x1be4 [ 71729B1EE949E1B092CB5CB75CC63715, BEA57BD3C2BEF261021DE706E67FF2836F52A7B21B2B3B2F0F5D76D20685614F ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:42:43.0097 0x1be4 mrxsmb - ok
16:42:43.0128 0x1be4 [ 6537678DEEA2A5B079052D75E21E46DA, A509481D509597A8A58C536C689A23086ECB2C15B4BE1AA80DBBF82B73673A2A ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:42:44.0597 0x1be4 mrxsmb10 - ok
16:42:44.0660 0x1be4 [ EC70CED325D4DF908F265A9526016254, 257F73C62460B7CED87E8090977B77986FF55FC6E6EFBACCD7D0A33E366767D6 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:42:44.0707 0x1be4 mrxsmb20 - ok
16:42:46.0082 0x1be4 [ 167408B38458ECAE545C57527BC99024, CB699B6C6F5B6DCDE85F8F0E40DD31B8066600A0833E5CD99ADE31DEC516B34F ] MsBridge C:\Windows\system32\drivers\bridge.sys
16:42:46.0160 0x1be4 MsBridge - ok
16:42:46.0207 0x1be4 [ D5778559A0F34EE0BF0457293C6B5F4F, 73C0829F641F62CBFC0523ED54D94121E3A694ECCF148DBF4A5743631BADB714 ] MSDTC C:\Windows\System32\msdtc.exe
16:42:46.0301 0x1be4 MSDTC - ok
16:42:46.0363 0x1be4 [ DC23D3D24C64BF3A314E34887AD86732, 5CF60E096CF13976759CBBBAEA1DBBE189A77843C6B32828C77F7BFB6506CCAD ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:42:46.0410 0x1be4 Msfs - ok
16:42:46.0457 0x1be4 [ 6DDDFCAB646BBBCFC583135C4430E10F, 5EFD3F4F84EBEEC58914D5CC89622D69F2DBDFB7EB9AD8D9A0868127187FD673 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
16:42:46.0488 0x1be4 msgpiowin32 - ok
16:42:46.0504 0x1be4 [ 01C6A86BEA8279E557A5056148F068BF, 42983A61654F51515AC6DD64A68D319883FD02B3EC575F7EA7A907576866F0AF ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:42:46.0535 0x1be4 mshidkmdf - ok
16:42:46.0551 0x1be4 [ F65ABC7DE945047147F17330F79732CB, 050C64D7284D767C951E94EFBA579D0E066C36CA1899A2C64CEA41A34B8E9EF2 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
16:42:46.0582 0x1be4 mshidumdf - ok
16:42:46.0613 0x1be4 [ 05B23012427801E710BDD12720B9020B, 48FB22CFDF61AAE4221B3B23E539C08083289FB0CB5ABF249700DDF968C7250A ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:42:46.0629 0x1be4 msisadrv - ok
16:42:46.0676 0x1be4 [ 21B88DF67507BD4DFF8A5487074BB31F, 5F2E1FB6227873DCA97D1BE6271E900AFA6BCE54D765C9BDBA07B74FC87B147B ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:42:46.0722 0x1be4 MSiSCSI - ok
16:42:46.0722 0x1be4 msiserver - ok
16:42:46.0754 0x1be4 [ 021C34C1968B78ACFBF30553EE78A1D3, 035C8D6F06A3697F0A902FB14F10091D026DB0A7492FAECD12D5A7F683C48A20 ] MSKSSRV C:\Windows\System32\drivers\MSKSSRV.sys
16:42:46.0801 0x1be4 MSKSSRV - ok
16:42:46.0832 0x1be4 [ C3F5EA6B9041A30B4F11BE2E7863E487, 07324A9D81D30A173D3F369AA1A304AD7713C7CCF9909C6427718F0F90CE49C9 ] MsLldp C:\Windows\system32\drivers\mslldp.sys
16:42:46.0879 0x1be4 MsLldp - ok
16:42:46.0910 0x1be4 [ 601D666820F0408B896791D19BE6D258, DD6BA3962A6D387D9F06B6D7006DBB2BF46D84A8FA91C628DA9D96117F14F4F0 ] MSPCLOCK C:\Windows\System32\drivers\MSPCLOCK.sys
16:42:46.0972 0x1be4 MSPCLOCK - ok
16:42:47.0004 0x1be4 [ 46E61FBA0097E48E5628C74A3F72233A, 21BD64041781085A7873ADA34C3648FBBBED386A071C69F21D98F2A0C3120DC6 ] MSPQM C:\Windows\System32\drivers\MSPQM.sys
16:42:47.0051 0x1be4 MSPQM - ok
16:42:47.0097 0x1be4 [ 3B6127DB162A2B1B0DA2F35BA77F12F1, 76465FB9A18538FBF8A62D317ACEE93AA5DF2B4D84E74A2AB3FFEE5C94F7992B ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:42:47.0160 0x1be4 MsRPC - ok
16:42:47.0191 0x1be4 [ 29DC5DFDF305E73A40AB13D102736EEA, 3F17F1841E5BD266962D106342CE811497E46C3EBCD9A6CDF5B4FB4B8D64DE21 ] MsSecFlt C:\Windows\system32\drivers\mssecflt.sys
16:42:47.0238 0x1be4 MsSecFlt - ok
16:42:47.0269 0x1be4 [ CBD56E0B55FB3672BA80382EC2F8835C, 1956E9B20A363B715C2111138D2085AA28FEDA7A82228CB4D8CE7ACC578E4DDB ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
16:42:47.0301 0x1be4 mssmbios - ok
16:42:47.0332 0x1be4 [ 5734B2A36D3BB13A638E5305EEEC582D, 613D559ED892EC4ABDF80F2435892895677F97902E699BE30283C150ABA49877 ] MSTEE C:\Windows\System32\drivers\MSTEE.sys
16:42:47.0394 0x1be4 MSTEE - ok
16:42:47.0488 0x1be4 [ 85270E0DC6907C6B99F72A36F17AED34, 58C0BBF9CC9E42266C8AF9AB9FEC77442F96C7C6D0DFCFAAB763DAD30B1B7939 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
16:42:47.0551 0x1be4 MTConfig - ok
16:42:47.0582 0x1be4 [ DD673D9422457EFCCDEE45C73C0DF241, 7FDE57422416F4339344F765A1A4A9D1D59D66D74121F6082ECA562F91E71445 ] Mup C:\Windows\system32\Drivers\mup.sys
16:42:47.0613 0x1be4 Mup - ok
16:42:47.0629 0x1be4 [ 3C57FF3BCF496D24C39C2198158864BB, 8671DF39AE5DD83033EC70BF8A502ED027B33B90FFC28AC2C79EC8F2F9128C14 ] mvumis C:\Windows\system32\drivers\mvumis.sys
16:42:47.0660 0x1be4 mvumis - ok
16:42:47.0707 0x1be4 [ FD916B66910494DFF70C944FC38A2623, 134E9309DA253E5512F8EFE525ECB701E82CB64003DD8DC20E8395A29BDC9324 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:42:47.0769 0x1be4 NativeWifiP - ok
16:42:47.0847 0x1be4 [ 870B3D0E1A8F6F01356BD75F2E47E0C1, 88EC0AA1144F1523B7DDD6BCAF8771CB246153B14E950AA6F4859FB8287D6634 ] NaturalAuthentication C:\Windows\System32\NaturalAuth.dll
16:42:47.0957 0x1be4 NaturalAuthentication - ok
16:42:47.0988 0x1be4 [ FBA9F5B9F59A665F248F70B905EDCE14, D2C1795192809F6413E080A9ADC949A4D99D0FC6BE668870127161474FF40596 ] NcaSvc C:\Windows\System32\ncasvc.dll
16:42:48.0051 0x1be4 NcaSvc - ok
16:42:48.0082 0x1be4 [ 2A265F3FE5F77F22CEA9D2785E0399C1, 24FF1D06A2A05DC7A2D7552E0B45CF6F689A4FC9A135474B587FA7649BCFED3D ] NcbService C:\Windows\System32\ncbservice.dll
16:42:48.0160 0x1be4 NcbService - ok
16:42:48.0176 0x1be4 [ 3C7E074AE41D8DFB41A9E65904D8BF43, 34890591FDCEC035D3BB021DB035A4728C415A70F55D88F21E39073040C912AB ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
16:42:48.0207 0x1be4 NcdAutoSetup - ok
16:42:48.0238 0x1be4 [ 77B047B109CE758A017F58FAE5038D0D, 8E9E4ED5128C506B696FD5F0E8AD0D11FF53B5DD2F88860FF8F60307A7E08DEA ] ndfltr C:\Windows\System32\drivers\ndfltr.sys
16:42:48.0254 0x1be4 ndfltr - ok
16:42:48.0379 0x1be4 [ 25D126EFFEC0B117DA4C81F7AE6C99FC, 86B7472B4C4B7564FD921FD48125D3692249B269BEE0DEF55097123309EF2306 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:42:48.0457 0x1be4 NDIS - ok
16:42:48.0488 0x1be4 [ 067AE5BA349CC35AF8975D22DC483DDF, FEC185ECDA27041506DF74528AA65B32FEBB06E32A55C8F7BA161A755C6659CF ] NdisCap C:\Windows\system32\drivers\ndiscap.sys
16:42:48.0519 0x1be4 NdisCap - ok
16:42:48.0535 0x1be4 [ 6FC4D7EB5D38CFB7966405036116F065, B3E9083ABE7AD797FA54FB1308AA57D49C9B7BA662B09607666B23777F6167C8 ] NdisImPlatform C:\Windows\system32\drivers\NdisImPlatform.sys
16:42:48.0582 0x1be4 NdisImPlatform - ok
16:42:48.0629 0x1be4 [ ED7CC4E16B76B2603C9F827188EA63B4, A6E739D219F50866051A08867844BDA878D6FEA33E91DEAC1948A55CDC5BEB9F ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:42:48.0676 0x1be4 NdisTapi - ok
16:42:48.0738 0x1be4 [ E9676E94DEA144259344A15D68785B17, 8FFF34D44E4E7E2EBE9C9337BA8E713ACD6344551C709A5537900290C51B66B3 ] Ndisuio C:\Windows\system32\drivers\ndisuio.sys
16:42:48.0894 0x1be4 Ndisuio - ok
16:42:48.0926 0x1be4 [ DC1D26D62F40B7552BCF49D92774F0C5, 3DD7CE2AD578101EFF8C1448800A1317F01893AF6E559C4DCCD9F6ACE4B027E4 ] NdisVirtualBus C:\Windows\System32\drivers\NdisVirtualBus.sys
16:42:48.0972 0x1be4 NdisVirtualBus - ok
16:42:49.0004 0x1be4 [ 66F56AC744101DB870934D0EB31C2426, 932013EE8542E6770657A904B09E2BD2052E8C04216289EB5F011770A46CA6F9 ] NdisWan C:\Windows\System32\drivers\ndiswan.sys
16:42:49.0035 0x1be4 NdisWan - ok
16:42:49.0051 0x1be4 [ 66F56AC744101DB870934D0EB31C2426, 932013EE8542E6770657A904B09E2BD2052E8C04216289EB5F011770A46CA6F9 ] ndiswanlegacy C:\Windows\system32\DRIVERS\ndiswan.sys
16:42:49.0097 0x1be4 ndiswanlegacy - ok
16:42:49.0129 0x1be4 [ 8ABF5B8D5839F8DAE2E0D3165AE732F6, CD382FFF8A71FD85B92EEE76647481AC45BD2A5815C012520A89A18EEE6E01AC ] ndproxy C:\Windows\system32\DRIVERS\NDProxy.sys
16:42:49.0176 0x1be4 ndproxy - ok
16:42:49.0207 0x1be4 [ A791792DC412CCD83DA0AF6871682552, FE1A30A6D1501463CF8AAC3AD8CE114ACFEDD38CF9BD6B2247B84E41D74A9E6B ] Ndu C:\Windows\system32\drivers\Ndu.sys
16:42:49.0238 0x1be4 Ndu - ok
16:42:49.0269 0x1be4 [ BE79982A50AC88BC0765F3AFECFCB596, 1E7CACB1095C3F1D10766E15B31DEE195C1E6954D4E7ADA141CA4C15EE3DA445 ] NetAdapterCx C:\Windows\system32\drivers\NetAdapterCx.sys
16:42:49.0316 0x1be4 NetAdapterCx - ok
16:42:49.0348 0x1be4 [ 80475A12D4AA90937CE69265BAFA993F, 8100BF2A621D43C5E79C58183F9F7E882076BEA2D524D3AED87C8D0790F0F154 ] NetBIOS C:\Windows\system32\drivers\netbios.sys
16:42:49.0379 0x1be4 NetBIOS - ok
16:42:49.0426 0x1be4 [ 2A56FA2634A9650EF4ED5DFE976397BA, 428957C3F2ECF3C0C7E098E4E5CA6AACF07104D1E42CBBBBBC172FA1C24A7293 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:42:49.0472 0x1be4 NetBT - ok
16:42:49.0504 0x1be4 [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] Netlogon C:\Windows\system32\lsass.exe
16:42:49.0519 0x1be4 Netlogon - ok
16:42:49.0551 0x1be4 [ 94BC40F88309B0B7DFE68B2C2BB15EB6, 7E485F6A3F0B1C34C59D1F36EDE05ED9724E23FF63EA273910A02D8177905D9B ] Netman C:\Windows\System32\netman.dll
16:42:49.0597 0x1be4 Netman - ok
16:42:49.0644 0x1be4 [ 79ED54CA41486399361778D533E55A99, 17467C0C0D4D099DC7BF2BDE46086AF4AFC28895C62A35AA6A3906C19418AA32 ] netprofm C:\Windows\System32\netprofmsvc.dll
16:42:49.0707 0x1be4 netprofm - ok
16:42:49.0754 0x1be4 [ B368E739AF3F577EA8D1B256F91036AD, 48BF739A0448F57B2BB0DA891D478D284A5C7F44C61D6E4F8131EED4DF7CFFDA ] NetSetupSvc C:\Windows\System32\NetSetupSvc.dll
16:42:49.0816 0x1be4 NetSetupSvc - ok
16:42:49.0863 0x1be4 [ 97FF2186BBAA215727300404862D297B, 1D4F3475252C2315EF51B7B76206776BFF4462C0B31328E266BF5F4ACC2475D1 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:42:49.0926 0x1be4 NetTcpPortSharing - ok
16:42:49.0972 0x1be4 [ 8AED8AF4CBF661E82CF74CBF198B0C56, 7208216C9E6A938E2CCB2F510D4A6F00F35E1AAF3FE0E6D7272F5543B843EBFC ] netvsc C:\Windows\System32\drivers\netvsc.sys
16:42:50.0019 0x1be4 netvsc - ok
16:42:50.0082 0x1be4 [ E27ACE78CA1BDF4FBBF3323D6E9AFCDB, 7930C172AD493E39712A0F4B1AF4ADFB4ABD499B00FEEA2E1D5C9E5A26105EFC ] NgcCtnrSvc C:\Windows\System32\NgcCtnrSvc.dll
16:42:50.0160 0x1be4 NgcCtnrSvc - ok
16:42:51.0613 0x1be4 [ A557C92583E81CA97D2C0F2467E7C2F9, F78B07DB33253142C6CB2DE1BFA1C54EB7CB5D64C94C9B73182C7D49314061EF ] NgcSvc C:\Windows\system32\ngcsvc.dll
16:42:51.0707 0x1be4 NgcSvc - ok
16:42:51.0785 0x1be4 [ 7F609310AC1EC8D66D912438AC792392, C61FAD8431F3E627E9D81DFF95A37C057ED4EB3F3F78A598D5BD236D194EB612 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:42:51.0863 0x1be4 NlaSvc - ok
16:42:51.0894 0x1be4 [ EFF488F6DA45224965B30CE1AB464C08, AC1D0C3175958CD3F9E311C545044B9A847D6F8C89907CAB2CD3C73EC6E1836B ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:42:51.0926 0x1be4 Npfs - ok
16:42:51.0941 0x1be4 [ 5CB8082E51DE7D19042F0FF8C517CB0D, C0C5389E097D520018C346ECBF8AF9928FB44D9AD7B0EFD2D44E910214580A1A ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
16:42:51.0972 0x1be4 npsvctrig - ok
16:42:51.0988 0x1be4 [ 54407F4E774AE8AD37885BBCC0FFDB3E, 7A22A15A5EC874682FF04B35A69867A476FE88A97E27AA3A9C3F32E4B31D160F ] nsi C:\Windows\system32\nsisvc.dll
16:42:52.0035 0x1be4 nsi - ok
16:42:52.0066 0x1be4 [ 201F3764A379001168DFB2B90F7C1E57, BC5662D43B073B41E3810938FAE511E82AD3F69DDE8B73C23D7EDBB3E6364B5B ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:42:52.0082 0x1be4 nsiproxy - ok
16:42:52.0254 0x1be4 [ BEE4FDB8DE2C90728D93393E4A3B88C2, 6E453C760965599FDC670FD8162B3A0FB127AC87D59CD6547E058F588904F307 ] NTFS C:\Windows\system32\drivers\NTFS.sys
16:42:52.0394 0x1be4 NTFS - ok
16:42:52.0519 0x1be4 [ A0706FEA552415DB973DB27BDF2FF4F1, 52304E25745F96F3248E609E11F37CC112DC69A4DE47D70A3EE9E043428768F8 ] NuidFltr C:\Windows\System32\drivers\NuidFltr.sys
16:42:52.0566 0x1be4 NuidFltr - ok
16:42:52.0598 0x1be4 [ 6D8A287B88F76EB47ACC6BF8E318E1FD, 73A8A8AD677D9BC432159B0099C2BF3928C14D2E5C88E5BCC8B96FCDFA3ED691 ] Null C:\Windows\system32\drivers\Null.sys
16:42:52.0629 0x1be4 Null - ok
16:42:52.0676 0x1be4 [ 532F27A2B62D70C327E763F035AED6C1, 9FB6C8040D48384BC72A2021EAD7D48B5E876731849FBA68338EC3562E7CB659 ] nvdimmn C:\Windows\System32\drivers\nvdimmn.sys
16:42:52.0691 0x1be4 nvdimmn - ok]
|
