Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Laptop langsam nach download

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.12.2016, 23:53   #1
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Hallo, ich habe mir vorhin etwas gedownloaded,aber nicht installiert,weil ich gemerkt habe,dass es ein Virus ist.Seitdem ist aber mein Laptop langsam.Habe ich evt. doch ein Virus?

Alt 13.12.2016, 10:40   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Und wie bitte hast du festgestellt, dass es ein Virus ist?
Was hast du da von wo runtergeladen?
__________________

__________________

Alt 13.12.2016, 11:08   #3
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Ich wollte mir ein Mod für ein Spiel runterladen.Es sollte sich um eine .fmf datei handeln.Als ich es schon runtergeladen habe und mir angezeigt wurde,dass ich eine .exe installieren soll habe ich es abgebrochen,allerdings hat Avira schon etwas gefunden und in Quarantäne geschoben.Ich poste mal den Aviralog von heute rein.Vielleicht hilft das.

Code:
ATTFilter
13.12.2016,10:09:12 [INFO] Die Datei 'C:\Users\1973pl\Downloads\winrar-x64-540d(1).exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 7D1530A53BE0271D9AA961E31A20C8659D6CC422AD44FFC1FFE4F032E263A327
13.12.2016,10:09:26 [INFO] Die Datei 'C:\Program Files\WinRAR\uninstall.exe' wurde durch Cloud-Sicherheit geprüft. SHA256 = 497BB2EF61C31572EC89ACEC1F1CF46EF290A6A48FF51613F10564452AC01223
13.12.2016,10:52:33 [INFO] FP-Server meldet Status "KEIN Fehlalarm" für Datei 'C:\Users\1973pl\AppData\Local\Mozilla\Firefox\Profiles\hmc0gz0g.default-1438966343523\cache2\entries\4D365983B8EFB3137CD7E595FBB00CB8E20E91AB'
13.12.2016,10:52:33 [FUND] Enthält Erkennungsmuster der Adware ADWARE/FileFinder.ID!
  C:\Users\1973pl\AppData\Local\Mozilla\Firefox\Profiles\hmc0gz0g.default-1438966343523\cache2\entries\4D365983B8EFB3137CD7E595FBB00CB8E20E91AB
      [INFO] Die Datei wird in das Quarantäneverzeichnis kopiert!
         
__________________

Alt 13.12.2016, 11:35   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Laptop langsam nach download - Standard

Laptop langsam nach download



"nicht installiert" ist in diesem Fall irrelevant weil einzig und allein es drauf ankommt, ob die schädliche Datei ausgeführt wurde. Und da hast du...


Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Alt 13.12.2016, 11:51   #5
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 07-12-2016
durchgeführt von 1973pl (Administrator) auf PETRA (13-12-2016 11:41:30)
Gestartet von C:\Users\1973pl\Downloads
Geladene Profile: 1973pl &  (Verfügbare Profile: 1973pl)
Platform: Windows 10 Home (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
() C:\Program Files (x86)\PHotkey\PHotkey.exe
() C:\Program Files (x86)\PHotkey\MsgTranAgt.exe
() C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe
(TODO: <Company name>) C:\Program Files (x86)\PHotkey\HCSynApi.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
() C:\Program Files (x86)\PHotkey\POsd.exe
() C:\Program Files (x86)\PHotkey\GPMTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Akamai Technologies, Inc.) C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe
(ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\ArcSoft TV 5.0\TMTV5Monitor.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\SndVol.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
() C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_207.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_207.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
() C:\Program Files (x86)\OBS\OBS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13192848 2012-08-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1215632 2012-08-17] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3952800 2015-08-21] (Synaptics Incorporated)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-20] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [258576 2012-07-30] (CyberLink Corp.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [916072 2016-11-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-06-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25838592 2016-11-28] (Dropbox, Inc.)
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-09] (Valve Corporation)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3044848 2016-12-06] (Electronic Arts)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\Run: [Akamai NetSession Interface] => C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-09] (Valve Corporation)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3044848 2016-12-06] (Electronic Arts)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Akamai NetSession Interface] => C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-09] (Valve Corporation)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3044848 2016-12-06] (Electronic Arts)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Akamai NetSession Interface] => C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileSyncShell64.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-28] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\FileSyncShell.dll [2016-12-09] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TMMonitor.lnk [2012-11-21]
ShortcutTarget: TMMonitor.lnk -> C:\Program Files (x86)\ArcSoft\ArcSoft TV 5.0\TMTV5Monitor.exe (ArcSoft, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{9a34807a-9833-43ac-a876-5346935872c5}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{d93110b3-007b-4a4a-8bac-33df59d2732d}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-10-11] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-09-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-10-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-10-23] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: hmc0gz0g.default-1438966343523
FF ProfilePath: C:\Users\1973pl\AppData\Roaming\Mozilla\Firefox\Profiles\hmc0gz0g.default-1438966343523 [2016-12-13]
FF Extension: (Adblock Plus) - C:\Users\1973pl\AppData\Roaming\Mozilla\Firefox\Profiles\hmc0gz0g.default-1438966343523\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23]
FF ProfilePath: C:\Users\1973pl\AppData\Roaming\Mozilla\Firefox\Profiles\gewfrniu.default-1441125199988 [2015-09-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-08] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1219160.dll [2015-07-23] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-10-23] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-02-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)

Chrome: 
=======
CHR Profile: C:\Users\1973pl\AppData\Local\Google\Chrome\User Data\Default [2016-12-08]
CHR Extension: (Adblock Plus) - C:\Users\1973pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-30]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\1973pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-30]
CHR Extension: (Chrome Media Router) - C:\Users\1973pl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-30]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [1089088 2016-11-02] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [475232 2016-11-02] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [475232 2016-11-02] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1488240 2016-11-02] (Avira Operations GmbH & Co. KG)
S2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [302680 2016-06-01] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3040496 2016-10-04] (Microsoft Corporation)
R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-13] (CyberLink)
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-13] (CyberLink)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [42096 2016-11-28] (Dropbox, Inc.)
R2 GFNEXSrv; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [805888 2012-11-29] () [Datei ist nicht signiert]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [330136 2015-10-12] (Intel Corporation)
R2 IISADMIN; C:\WINDOWS\system32\inetsrv\inetinfo.exe [16896 2015-10-14] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-11-17] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-11-17] (NVIDIA Corporation)
R3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2119688 2016-12-06] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2180624 2016-12-06] (Electronic Arts)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2012-10-19] ()
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [247968 2015-08-21] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [151352 2016-11-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [153392 2016-10-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [35488 2015-12-29] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [78208 2016-06-03] (Avira Operations GmbH & Co. KG)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [165504 2012-11-14] (ITE                      )
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-12-13] (Malwarebytes)
R3 NETwNe64; C:\WINDOWS\System32\drivers\NETwew01.sys [3354384 2015-06-18] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2016-11-17] (NVIDIA Corporation)
R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
U5 PROCMON23; C:\Windows\System32\Drivers\PROCMON23.sys [84792 2016-02-20] (Sysinternals - www.sysinternals.com)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [587264 2015-06-18] (Realtek                                            )
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [3772632 2015-06-18] (Realtek Semiconductor Corporation                           )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [44192 2015-08-21] (Synaptics Incorporated)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 usb3Hub; C:\WINDOWS\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
R3 XHCIPort; C:\WINDOWS\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-13 11:40 - 2016-12-13 11:40 - 02420224 _____ (Farbar) C:\Users\1973pl\Downloads\FRST64.exe
2016-12-13 11:25 - 2016-12-13 11:25 - 00016148 _____ C:\WINDOWS\system32\PETRA_1973pl_HistoryPrediction.bin
2016-12-13 10:08 - 2016-12-13 10:09 - 02309992 _____ C:\Users\1973pl\Downloads\winrar-x64-540d(1).exe
2016-12-13 09:45 - 2016-12-13 09:45 - 00000000 ____D C:\Users\Public\Documents\Sports Interactive
2016-12-13 09:45 - 2016-12-13 09:45 - 00000000 ____D C:\Users\1973pl\Documents\Sports Interactive
2016-12-13 09:45 - 2016-12-13 09:45 - 00000000 ____D C:\Users\1973pl\AppData\Local\Sports Interactive
2016-12-13 09:36 - 2016-12-13 09:36 - 00000000 ____D C:\Users\1973pl\AppData\Local\Chromium
2016-12-12 23:32 - 2016-12-12 23:32 - 03968464 _____ C:\Users\1973pl\Downloads\AdwCleaner_6.040.exe
2016-12-12 23:23 - 2016-12-12 23:23 - 00000000 ____D C:\Users\1973pl\AppData\Roaming\WinRAR
2016-12-12 23:21 - 2016-12-13 10:29 - 00000000 ____D C:\Program Files\WinRAR
2016-12-12 23:21 - 2016-12-12 23:21 - 02309992 _____ C:\Users\1973pl\Downloads\winrar-x64-540d.exe
2016-12-12 19:38 - 2016-12-12 19:38 - 00000116 _____ C:\Users\1973pl\Desktop\Herr Peters.txt
2016-12-10 12:41 - 2016-12-10 12:41 - 00000000 ____D C:\Users\1973pl\AppData\LocalLow\82 Apps
2016-12-06 19:24 - 2016-12-09 19:26 - 00003272 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-03 00:13 - 2016-12-03 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-12-02 18:53 - 2016-12-02 18:53 - 00000000 ____D C:\Users\1973pl\AppData\LocalLow\Unity
2016-12-02 13:41 - 2016-12-03 12:13 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-12-02 13:41 - 2016-12-02 13:41 - 00001084 _____ C:\Users\1973pl\Desktop\SpeedFan.lnk
2016-12-02 13:41 - 2016-12-02 13:41 - 00000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2016-12-02 13:40 - 2016-12-02 13:40 - 03086696 _____ C:\Users\1973pl\Downloads\instspeedfan452.exe
2016-11-29 14:44 - 2016-11-29 14:44 - 00003920 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-29 14:44 - 2016-11-29 14:44 - 00001493 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2016-11-29 14:44 - 2016-11-29 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-11-29 14:44 - 2016-11-17 14:42 - 01854400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-11-29 14:44 - 2016-11-17 14:42 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-11-29 14:44 - 2016-11-17 14:42 - 01452480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-11-29 14:44 - 2016-11-17 14:42 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-11-29 14:44 - 2016-11-17 14:42 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2016-11-29 14:43 - 2016-11-29 14:43 - 00003984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-29 14:43 - 2016-11-29 14:43 - 00003956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-29 14:43 - 2016-11-29 14:43 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-29 14:43 - 2016-11-29 14:43 - 00003732 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-29 14:43 - 2016-11-29 14:43 - 00003690 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2016-11-29 14:43 - 2016-11-17 14:42 - 00101824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-11-29 14:43 - 2016-11-17 14:42 - 00091584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-11-29 14:43 - 2016-11-16 17:42 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2016-11-29 14:42 - 2016-11-29 14:42 - 74516600 _____ (NVIDIA Corporation) C:\Users\1973pl\Downloads\GeForce_Experience_v3.1.2.31.exe
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00075888 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2016-11-28 15:05 - 2016-11-28 15:05 - 00042096 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2016-11-27 21:15 - 2016-11-27 21:15 - 00000000 ____D C:\Users\1973pl\AppData\LocalLow\Playsport Games
2016-11-23 23:12 - 2016-11-23 23:12 - 00000206 _____ C:\Users\1973pl\Desktop\Fallout Shelter.url
2016-11-23 23:07 - 2016-11-24 22:57 - 00000000 ____D C:\Program Files (x86)\Bethesda.net Launcher
2016-11-23 23:07 - 2016-11-23 23:09 - 00000000 ____D C:\Users\1973pl\AppData\Local\Bethesda.net Launcher
2016-11-23 23:07 - 2016-11-23 23:07 - 00001229 _____ C:\Users\Public\Desktop\Bethesda.net Launcher.lnk
2016-11-23 23:07 - 2016-11-23 23:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda.net Launcher
2016-11-23 23:06 - 2016-11-23 23:06 - 07575688 _____ (Bethesda Softworks ) C:\Users\1973pl\Downloads\BethesdaNetLauncher_Setup.exe
2016-11-18 19:13 - 2016-12-13 09:37 - 00000000 ____D C:\Users\1973pl\AppData\LocalLow\Mozilla
2016-11-18 09:44 - 2016-12-01 14:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-13 11:43 - 2015-05-04 23:12 - 00027280 _____ C:\Users\1973pl\Downloads\FRST.txt
2016-12-13 11:41 - 2015-05-04 23:12 - 00000000 ____D C:\FRST
2016-12-13 11:41 - 2015-04-16 06:14 - 00000000 ____D C:\Users\1973pl\AppData\Roaming\OBS
2016-12-13 11:40 - 2015-04-08 23:59 - 00000000 ____D C:\Users\1973pl\AppData\Roaming\Origin
2016-12-13 11:33 - 2014-06-14 22:31 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-13 11:26 - 2014-05-13 13:39 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-12-13 11:25 - 2015-08-07 12:46 - 00001130 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-12-13 11:25 - 2015-04-08 16:30 - 00000000 ____D C:\Users\1973pl\AppData\Roaming\TS3Client
2016-12-13 11:10 - 2015-09-05 18:45 - 00001226 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-12-13 10:56 - 2015-04-08 08:13 - 00000000 ____D C:\AdwCleaner
2016-12-13 09:45 - 2015-04-08 07:54 - 00000000 ____D C:\Program Files (x86)\Steam
2016-12-13 09:35 - 2015-04-08 23:16 - 00000000 ____D C:\ProgramData\Origin
2016-12-13 07:32 - 2015-07-10 19:10 - 00004154 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C738C1A3-886C-4436-98D0-E63BBECD72AA}
2016-12-13 01:25 - 2015-08-07 12:46 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-12-12 08:51 - 2015-09-05 18:53 - 00000000 ___RD C:\Users\1973pl\Dropbox
2016-12-12 08:50 - 2013-08-18 19:52 - 00000000 ____D C:\Users\1973pl\Documents\Youcam
2016-12-12 08:48 - 2015-09-25 04:02 - 00000000 ____D C:\ProgramData\NVIDIA
2016-12-12 08:48 - 2015-09-05 18:45 - 00001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-12-12 08:48 - 2015-04-10 06:35 - 00000000 __SHD C:\Users\1973pl\IntelGraphicsProfiles
2016-12-10 15:06 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-12-10 15:03 - 2015-07-30 22:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-10 15:02 - 2015-07-10 10:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-12-09 19:26 - 2015-09-25 16:17 - 00002429 _____ C:\Users\1973pl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-12-09 19:26 - 2015-02-24 09:41 - 00000000 ___RD C:\Users\1973pl\OneDrive
2016-12-06 19:34 - 2015-04-08 23:16 - 00000000 ____D C:\Program Files (x86)\Origin
2016-12-03 00:13 - 2015-09-05 18:45 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-12-02 20:35 - 2015-04-08 06:31 - 00000000 ____D C:\Users\1973pl\AppData\Local\Battle.net
2016-12-02 19:11 - 2015-04-08 06:30 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-12-02 18:49 - 2015-05-06 14:15 - 00000000 ____D C:\Users\1973pl\Documents\My Games
2016-12-02 18:11 - 2016-04-23 21:56 - 00000000 ____D C:\Users\1973pl\AppData\Roaming\StardewValley
2016-12-01 19:03 - 2016-05-05 03:17 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-12-01 14:27 - 2014-05-13 13:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-30 23:31 - 2015-09-25 04:09 - 00000000 ____D C:\Users\1973pl
2016-11-30 07:58 - 2015-09-01 18:29 - 00000000 ____D C:\Users\1973pl\AppData\Local\NVIDIA Corporation
2016-11-29 14:47 - 2015-09-01 18:28 - 00000000 ____D C:\Users\1973pl\AppData\Local\NVIDIA
2016-11-29 14:44 - 2015-09-25 04:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-11-29 14:44 - 2015-09-25 04:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-11-29 14:44 - 2015-09-25 04:01 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-11-29 14:43 - 2015-07-30 23:40 - 00000000 ____D C:\WINDOWS\INF
2016-11-29 14:31 - 2016-01-28 19:15 - 00000000 ____D C:\Users\1973pl\AppData\Local\CrashDumps
2016-11-29 14:05 - 2015-09-05 18:45 - 00004286 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-29 14:05 - 2015-09-05 18:45 - 00004054 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-28 08:31 - 2015-09-25 04:28 - 01888230 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-28 08:31 - 2015-09-10 06:10 - 00813448 _____ C:\WINDOWS\system32\perfh007.dat
2016-11-28 08:31 - 2015-09-10 06:10 - 00165842 _____ C:\WINDOWS\system32\perfc007.dat
2016-11-27 20:16 - 2015-07-30 23:42 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-11-23 09:51 - 2015-04-21 14:24 - 00000000 ____D C:\Users\1973pl\AppData\Roaming\Skype
2016-11-22 09:30 - 2015-04-28 02:10 - 00001753 _____ C:\Users\Public\Desktop\League of Legends.lnk
2016-11-19 20:38 - 2016-01-28 22:45 - 00000000 ____D C:\Users\1973pl\Documents\League of Legends
2016-11-19 16:16 - 2016-11-07 10:49 - 00000000 ____D C:\Users\1973pl\BrawlhallaReplays
2016-11-17 14:42 - 2015-09-01 18:22 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2016-11-16 19:14 - 2015-07-30 23:42 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-11-16 19:13 - 2015-02-22 17:45 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-11-15 19:46 - 2016-11-10 21:03 - 00000007 _____ C:\Users\1973pl\Desktop\Neues Textdokument (4).txt
2016-11-15 10:26 - 2015-08-07 12:50 - 00002268 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-15 10:26 - 2015-08-07 12:50 - 00002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-07-29 17:14 - 2015-07-29 17:14 - 0002069 _____ () C:\Users\1973pl\AppData\Local\recently-used.xbel
2016-02-20 19:10 - 2016-10-29 10:20 - 0007605 _____ () C:\Users\1973pl\AppData\Local\Resmon.ResmonCfg
2012-11-14 09:19 - 2012-11-14 09:19 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-06-30 00:58 - 2015-06-30 00:58 - 0000098 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc

Einige Dateien in TEMP:
====================
C:\Users\1973pl\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2016-12-08 09:15

==================== Ende von FRST.txt ============================
         


Alt 13.12.2016, 11:52   #6
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 07-12-2016
durchgeführt von 1973pl (13-12-2016 11:44:16)
Gestartet von C:\Users\1973pl\Downloads
Windows 10 Home (X64) (2015-09-25 13:43:52)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

1973pl (S-1-5-21-1766157453-2088857509-2423560725-1002 - Administrator - Enabled) => C:\Users\1973pl
Administrator (S-1-5-21-1766157453-2088857509-2423560725-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1766157453-2088857509-2423560725-503 - Limited - Disabled)
Gast (S-1-5-21-1766157453-2088857509-2423560725-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1766157453-2088857509-2423560725-1004 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.160 - Adobe Systems, Inc.)
Age of Empires II: HD Edition (HKLM\...\Steam App 221380) (Version:  - Skybox Labs)
Akamai NetSession Interface (HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\Akamai) (Version:  - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Akamai) (Version:  - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Akamai) (Version:  - Akamai Technologies, Inc)
ArcSoft TV 5.0 (HKLM-x32\...\{94ED52E0-24A0-4AD8-9BFD-0560CA680A80}) (Version: 5.0.8.145 - ArcSoft)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.23.58 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{3d9e0476-943f-4962-99dc-b9c937a43840}) (Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.65.9690 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.10.265 - Electronic Arts)
Battlerite (HKLM\...\Steam App 504370) (Version:  - Stunlock Studios)
Blade & Soul (HKLM-x32\...\InstallShield_{C3F383C1-D050-4A40-843F-8171A6A02C3A}) (Version: 1.0.63.260 - NC Interactive, LLC)
Blade & Soul (x32 Version: 1.0.63.260 - NC Interactive, LLC) Hidden
Brawlhalla (HKLM\...\Steam App 291550) (Version:  - Blue Mammoth Games)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version:  - Infinity Ward)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.3124 - CyberLink Corp.)
CyberLink PhotoNow (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.7717 - CyberLink Corp.)
CyberLink PowerDirector (Version: 9.0.0.3815c - CyberLink Corp.) Hidden
CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.0913 - CyberLink Corp.)
CyberLink PowerRecover (Version: 5.7.0.0913 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 15.4.22 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.59.1 - Dropbox, Inc.) Hidden
Duck Game (HKLM\...\Steam App 312530) (Version:  - Landon Podbielski)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version:  - SCS Software)
Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version:  - Paradox Development Studio)
F1 2013 (HKLM\...\Steam App 223670) (Version:  - Codemasters Birmingham)
Fallout Shelter (HKLM-x32\...\Fallout Shelter) (Version:  - Bethesda Softworks)
FIFA 17 (HKLM-x32\...\{8C0DD062-B659-409C-9AB7-8EBD1D64D2EB}) (Version: 1.0.46.21015 - Electronic Arts)
Football Manager 2017 (HKLM\...\Steam App 482730) (Version:  - Sports Interactive)
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Furi (HKLM\...\Steam App 423230) (Version:  - The Game Bakers)
FUSSBALL MANAGER 13 (HKLM-x32\...\{80AF0300-866F-400F-A350-D53E3C3E34E0}) (Version: 1.0.4.0 - Electronic Arts)
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
GameMaker: Studio (HKLM\...\Steam App 214850) (Version:  - YoYo Games Ltd.)
Garry's Mod (HKLM\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{1593C708-5535-47A4-8C0F-F8D4BE2B4560}) (Version: 15.05.6000.1620 - Intel Corporation)
IT9130 Driver v12.2.3.1 (HKLM-x32\...\IT9130 DriverInstaller_12.2.3.1) (Version:  - )
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lethal League (HKLM-x32\...\Steam App 261180) (Version:  - Team Reptile)
LIMBO (HKLM\...\Steam App 48000) (Version:  - Playdead)
Mad Games Tycoon (HKLM-x32\...\Steam App 341000) (Version:  - Eggcode)
Mediathek (HKLM-x32\...\{EFFED0C0-5299-422E-AFE6-8B8066D18A2A}) (Version: 1.4.0 - Medion)
Medion Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Medion Home Cinema 10 (x32 Version: 10.1924 - CyberLink Corp.) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4875.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24210 (HKLM-x32\...\{23658c02-145e-483d-ba6b-1eb82c580529}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Motorsport Manager (HKLM\...\Steam App 415200) (Version:  - Playsport Games)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 50.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 de)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Grafiktreiber 365.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 365.19 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4875.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4875.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4875.1001 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Ori and the Blind Forest: Definitive Edition (HKLM\...\Steam App 387290) (Version:  - Moon Studios GmbH)
Origin (HKLM-x32\...\Origin) (Version: 10.3.3.1921 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
PHotkey (HKLM-x32\...\{E50C224A-BBF2-428D-9DCF-DBF9DF85C40E}) (Version: 1.00.0081 - Pegatron Corporation)
Plague Inc: Evolved (HKLM\...\Steam App 246620) (Version:  - Ndemic Creations)
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)
Portal 2 (HKLM\...\Steam App 620) (Version:  - Valve)
Pro Gamer Manager (HKLM-x32\...\Steam App 408740) (Version:  - Millenway Studios)
Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6722 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.30136 - Realtek Semiconductor Corp.)
Reigns (HKLM\...\Steam App 474750) (Version:  - Nerial)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RimWorld (HKLM\...\Steam App 294100) (Version:  - Ludeon Studios)
Robot Roller-Derby Disco Dodgeball (HKLM\...\Steam App 270450) (Version:  - Erik Asmussen)
Rocket League (HKLM-x32\...\Steam App 252950) (Version:  - Psyonix)
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version:  - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version:  - 2K Games, Inc.)
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Stardew Valley (HKLM\...\Steam App 413150) (Version:  - ConcernedApe)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
Tabletop Simulator (HKLM-x32\...\Steam App 286160) (Version:  - Berserk Games)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
The Binding of Isaac: Rebirth (HKLM\...\Steam App 250900) (Version:  - Nicalis, Inc.)
The Howler (HKLM\...\Steam App 306040) (Version:  - Antanas Marcelionis)
Thumper (HKLM\...\Steam App 356400) (Version:  - Drool)
Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {07E5C26D-DF26-4356-968C-F34A11360935} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {0B9AE9AC-A72B-4122-B9EC-F4536A7D1D88} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {0E22486E-BD76-4AB8-82D9-FF0499C69DC1} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
Task: {19BA6E03-67A1-4F26-B568-5F1D17A5468E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08] (Adobe Systems Incorporated)
Task: {1E65201B-BF3D-4711-AD82-3944DF23C7DF} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {292462B6-BB95-4DA3-9BC2-CD4B78915C11} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {2E11EEEF-37AE-4F8E-8B5C-F65545D826C9} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {36128381-3D7D-4C90-81A9-34D02381C386} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {4E1B7ED5-46F7-4803-A596-2E58F2AB5C63} - System32\Tasks\{BE1D4D35-CB5F-4C9D-8888-F480237D0089} => pcalua.exe -a "C:\Users\Public\Daybreak Game Company\Installed Games\PlanetSide 2\Uninstaller.exe"
Task: {4FEA7563-E5D8-4B9B-AFCF-6C74140EC74A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-07] (Google Inc.)
Task: {59ED902A-BFE4-44DE-A625-6B6514DB63B2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {5E4D3901-C47F-495E-8771-679433B59FF6} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe
Task: {64AC1DD1-FAEE-479F-92D4-8B809E72175A} - System32\Tasks\{61770146-6546-4381-B7B7-40E10071C7C8} => pcalua.exe -a C:\Games\World_of_Warships\unins000.exe
Task: {650F81AB-B4D5-4391-926D-08E96BD679BA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-10-04] (Microsoft Corporation)
Task: {6A1BC448-C8BD-417A-8B1A-B47B260A5A0F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation)
Task: {73FBEF30-3C75-479F-A3B3-689483C6CB86} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {76E17B6A-26DD-4052-B8B1-3EE8B7A6C2FA} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {79D6AC9A-9835-42C5-AFA2-8BB1545D5F1B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-10-04] (Microsoft Corporation)
Task: {7C84DCAC-9F1D-4837-B092-E20BA9A68E5F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {81ED223E-4B08-4712-8410-32B27845A2C1} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation)
Task: {98B1FBC3-3227-46B3-9600-175F65C88D11} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {B5BBC2A3-78F4-4C07-879B-16AC830E2265} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {C994425A-3F26-410D-9E55-C42506FC47F9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {CE6CB0C2-889B-42BE-9161-F68A7D3E0EC9} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {D3F22577-37A8-42EA-9BFA-5D26D1D0CDCD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {DB80CAF6-DEDE-448F-B7FA-2B2538DB2354} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-07] (Google Inc.)
Task: {E62CA724-0BEC-4001-8C66-1B8DB67F4CFF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {EA9EA841-466F-461C-B01D-85D68B9882BE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {EC5535F1-BEC0-4EEA-8F63-5B93A6F1CA9A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\1973pl\Desktop\ALDI Nord Blumen Service.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www1.aldi-blumenservice.de
ShortcutWithArgument: C:\Users\1973pl\Desktop\ALDI Talk.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medionmobile.de
ShortcutWithArgument: C:\Users\1973pl\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\4ab94cee9417cc4d\IWannaBeTheCo-op.lnk -> C:\Users\1973pl\Documents\IWBTCoop1.11-win32\I Wanna Be The Co-op\I Wanna Be The Co-op v1.11.exe (The NWJS Community) -> --user-data-dir="C:\Users\1973pl\AppData\Local\IWannaBeTheCo-op\User Data" --profile-directory=Default --app-id=ekdnaabojekebacnjgiodcpppfjopfke
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEDIONhome.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medion.com
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Welcome.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-essen.de

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-09-10 06:12 - 2015-09-10 06:12 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2012-11-29 14:32 - 2012-11-29 14:53 - 00805888 _____ () C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
2015-02-22 17:45 - 2016-05-24 09:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-11-29 14:43 - 2016-11-17 14:42 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-29 14:43 - 2016-11-17 14:42 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-29 14:44 - 2016-11-17 14:42 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2012-11-14 08:45 - 2012-10-19 12:27 - 00386344 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-09-25 04:02 - 2016-05-10 00:35 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-11-29 14:32 - 2012-11-27 16:18 - 02215424 _____ () C:\Program Files (x86)\PHotkey\PHotkey.exe
2012-11-29 14:32 - 2010-01-12 18:36 - 00117256 _____ () C:\Program Files (x86)\PHotkey\MsgTranAgt.exe
2012-11-29 14:32 - 2010-01-12 18:36 - 00121864 _____ () C:\Program Files (x86)\PHotkey\MsgTranAgt64.exe
2015-10-01 15:15 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-01 15:15 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-12-09 19:24 - 2016-12-09 19:24 - 01678560 _____ () C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2012-11-29 14:32 - 2012-10-23 19:07 - 03471872 _____ () C:\Program Files (x86)\PHotkey\POSD.exe
2012-11-29 14:32 - 2012-08-08 19:10 - 07536128 _____ () C:\Program Files (x86)\PHotkey\GPMTray.exe
2015-10-01 15:14 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-10-01 15:15 - 2015-09-17 06:44 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 15:14 - 2015-09-17 06:42 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 15:14 - 2015-09-17 06:42 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 15:15 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-15 18:19 - 2016-12-06 19:33 - 00022024 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2014-02-28 10:14 - 2016-07-20 04:21 - 00174872 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll
2014-08-04 14:43 - 2016-07-20 04:21 - 00103192 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2014-08-04 14:43 - 2016-07-20 04:21 - 00107800 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2014-08-04 14:46 - 2016-07-20 04:21 - 00312088 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2014-08-04 14:46 - 2016-07-20 04:21 - 00485656 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2015-03-25 07:11 - 2015-03-25 07:11 - 01321984 _____ () C:\Program Files (x86)\OBS\OBS.exe
2015-10-12 13:35 - 2015-10-12 13:35 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\6dc6fa2248187d0cc70021a0ffe3e651\PSIClient.ni.dll
2012-11-14 09:20 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-09-15 18:19 - 2016-12-06 19:33 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2015-09-01 18:27 - 2016-11-17 14:42 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-11-29 14:43 - 2016-11-17 14:42 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-29 14:43 - 2016-11-17 14:42 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2012-11-29 14:32 - 2009-12-18 16:36 - 00973432 _____ () C:\Program Files (x86)\PHotkey\acAuth.dll
2012-11-29 14:32 - 2009-12-18 16:41 - 00129544 _____ () C:\Program Files (x86)\PHotkey\GFNEX.dll
2016-11-29 14:43 - 2016-11-17 11:20 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2016-11-29 14:43 - 2016-11-17 11:20 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-29 14:43 - 2016-11-17 11:20 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-29 14:43 - 2016-11-17 11:20 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-29 14:43 - 2016-11-17 11:20 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-29 14:43 - 2016-11-17 11:20 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-29 14:43 - 2016-11-17 11:20 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2016-12-09 19:24 - 2016-12-09 19:24 - 01244376 _____ () C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\ClientTelemetry.dll
2012-11-21 16:23 - 2007-04-19 10:33 - 00035584 _____ () C:\Program Files (x86)\ArcSoft\ArcSoft TV 5.0\uPiApi.dll
2012-11-21 16:23 - 2012-06-04 16:50 - 00016384 _____ () C:\Program Files (x86)\ArcSoft\ArcSoft TV 5.0\uTVMUIEngine.dll
2012-11-14 08:43 - 2012-06-08 04:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 12:34 - 2012-06-08 12:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2016-10-14 11:34 - 2016-10-29 00:50 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-12-03 00:12 - 2016-10-29 00:50 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-12-03 00:12 - 2016-10-29 00:51 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-12-03 00:12 - 2016-10-29 00:50 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2016-10-14 11:34 - 2016-10-29 00:50 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2016-10-14 11:34 - 2016-10-29 00:50 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2016-10-14 11:34 - 2016-10-29 00:50 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2016-10-14 11:34 - 2016-10-29 00:51 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-12-03 00:12 - 2016-10-29 00:50 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2016-12-03 00:12 - 2016-10-29 00:53 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-10-14 11:34 - 2016-10-29 00:52 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-12-03 00:12 - 2016-10-29 00:49 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-12-03 00:12 - 2016-11-28 15:16 - 00031568 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2016-12-03 00:12 - 2016-11-28 15:05 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2016-12-03 00:12 - 2016-11-28 15:16 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-12-03 00:12 - 2016-11-28 15:16 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2016-10-14 11:34 - 2016-10-29 00:51 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-12-03 00:12 - 2016-11-28 15:17 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 01972528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00133424 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2016-12-03 00:12 - 2016-10-29 00:56 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2016-12-03 00:12 - 2016-10-29 00:56 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-12-03 00:12 - 2016-11-28 15:16 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00168760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2016-10-14 11:34 - 2016-10-29 00:53 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00037192 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2016-10-14 11:34 - 2016-11-28 15:17 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2016-12-03 00:12 - 2016-11-28 15:16 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-09-15 18:19 - 2016-12-06 19:33 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2015-04-08 23:24 - 2016-06-20 15:06 - 00266240 _____ () C:\Program Files (x86)\Origin\imageformats\qmng.dll
2015-04-08 08:15 - 2016-12-08 16:13 - 00656160 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-04-08 08:15 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-04-08 08:15 - 2016-12-09 21:48 - 02322720 _____ () C:\Program Files (x86)\Steam\video.dll
2015-04-08 08:15 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-04-08 08:15 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-04-08 08:15 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-04-08 08:15 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-04-08 08:15 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-04-08 08:15 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-04-08 08:15 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-04-08 08:15 - 2016-12-09 21:48 - 00838432 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-09 00:06 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-12-13 09:35 - 2016-12-05 17:21 - 67304736 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2015-04-08 08:15 - 2016-12-09 21:48 - 00388384 _____ () C:\Program Files (x86)\Steam\steam.dll
2015-04-08 08:15 - 2015-09-25 00:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\amazon.de -> hxxps://amazon.de
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\amazon.de -> hxxps://amazon.de
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\amazon.de -> hxxps://amazon.de
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\sony.com -> sony.com

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1766157453-2088857509-2423560725-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\StartupApproved\Run: => "Skype"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [UDP Query User{88A59309-0B4A-4ACF-83EF-B5F6A18C0E2A}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{3797B292-7320-4C1A-BD45-09015D32AE46}C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe] => C:\program files (x86)\origin games\fifa 16 demo\fifa16_demo.exe
FirewallRules: [{890E9AD1-B9F4-433A-82BB-A97D6B78B734}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{634DB0DA-FE8B-4786-85AE-AF6B4BE03623}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B4B3C55C-A72A-4BCA-8B48-2CBB7BE6E8EF}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{0F2EFA79-7672-4ED8-9056-027F9D2BCDA0}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{886A1C1F-7A68-4CAD-9CE6-6579FA792D81}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{15937BD4-2224-4217-B40E-8A4BB5DD1193}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{AE0D0A94-FFCE-4221-B520-31BAB7FB6F75}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
FirewallRules: [TCP Query User{BD69929C-922D-452B-B4F6-3E6A8E688594}C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe] => C:\users\public\sony online entertainment\installed games\planetside 2\planetside2_x64.exe
FirewallRules: [{21ABBBC8-1479-4B3B-8CF1-2D7D6C32F729}] => C:\WarThunder\bpreport.exe
FirewallRules: [{F57C5E2E-9C78-4B86-93C1-79A3B47BD4F2}] => C:\WarThunder\bpreport.exe
FirewallRules: [UDP Query User{D94C91B8-E9BB-4597-ACE5-A0AFA3B1FCA3}C:\games\world_of_tanks\wotlauncher.exe] => C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{66E05D71-2763-47E5-B051-5ACBEC39859A}C:\games\world_of_tanks\wotlauncher.exe] => C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [{D1FF8F04-C380-4A33-B31F-4F643EB7F58E}] => C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{1B4663DD-279B-4572-A6B0-0D64E4BB560E}] => C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [UDP Query User{F0AE6940-D12E-4471-BBFE-578020663BB5}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [TCP Query User{FFA73896-BE1D-44E1-9AB6-4872FB1EEDC9}C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe] => C:\program files (x86)\steam\steamapps\common\gamemaker_studio\runner.exe
FirewallRules: [UDP Query User{B28FDFB6-C249-4B97-B449-403B3B162193}C:\games\world_of_warships\wowslauncher.exe] => C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [TCP Query User{BFE7B03A-F5D9-416A-A907-5EC51B9E57F1}C:\games\world_of_warships\wowslauncher.exe] => C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{17A074D7-FCAA-41E6-A03C-C63CB71AF6E1}C:\program files (x86)\origin games\fifa world\fifaworld.exe] => C:\program files (x86)\origin games\fifa world\fifaworld.exe
FirewallRules: [TCP Query User{D4E2E831-E73B-411D-8DB4-93ABE7CDDD74}C:\program files (x86)\origin games\fifa world\fifaworld.exe] => C:\program files (x86)\origin games\fifa world\fifaworld.exe
FirewallRules: [{C2E05714-0A8E-4D2F-A928-74EDC200B19D}] => C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{11752C38-6D3C-4E6D-B0F2-D6D0CD960F9E}] => C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{0F7986C9-3272-47AC-9922-76A63D48A655}] => C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{92662F06-480A-4EDD-9225-AE696DF94E21}] => C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{AB6B6306-016F-45CA-9220-2176F8D97FE2}] => C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe
FirewallRules: [{1E7AB1F8-F8D4-4AA2-8FF4-9BF40E8DA73A}] => C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\BrothersLauncher.exe
FirewallRules: [{A323F914-0671-4347-86D1-D6AC4CC44594}] => C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe
FirewallRules: [{FEBAFC8D-9FF9-4FE6-BB18-85E09768976B}] => C:\Program Files (x86)\Steam\steamapps\common\Brothers - A Tale of Two Sons\Binaries\Win32\Brothers.exe
FirewallRules: [UDP Query User{6A0D02FD-E2A9-424A-8EF2-229AE3ECFF18}C:\users\1973pl\appdata\local\akamai\netsession_win.exe] => C:\users\1973pl\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{AB10B496-EEC6-4B0B-914B-B59AFCABEB4F}C:\users\1973pl\appdata\local\akamai\netsession_win.exe] => C:\users\1973pl\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{4AC66860-0B9D-4E4A-A800-25A57235E941}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{C0626F6A-C409-4B55-8B1B-F4E9896A7367}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{88C1FCD3-A768-40B7-8A7E-EA2DDA386787}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm.exe] => C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm.exe
FirewallRules: [TCP Query User{92424320-2D15-41F6-B6E6-5EF8E5A842A3}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm.exe] => C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm.exe
FirewallRules: [UDP Query User{9DE22CA2-CD87-4BC5-A8DE-1B873C530735}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm.exe] => C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm.exe
FirewallRules: [TCP Query User{8D3B064F-3435-46E1-8A7C-03588A88A5EB}C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm.exe] => C:\program files (x86)\heroes of the storm\versions\base35360\heroesofthestorm.exe
FirewallRules: [{7963A537-B88C-45FF-B51A-09002323822F}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{50ADF052-963A-4E58-BB6B-3FDA68E10296}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [UDP Query User{4EA707DE-52F3-46FA-B7A2-87752F9289E6}C:\users\1973pl\appdata\local\akamai\netsession_win.exe] => C:\users\1973pl\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{5AB0F920-C63F-481B-BEB1-23B70048376C}C:\users\1973pl\appdata\local\akamai\netsession_win.exe] => C:\users\1973pl\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{C6AC77C9-8F1F-47E1-94EE-70C5BFBEA043}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{7A7E9EEB-F815-4CCE-8368-790D4039A5FD}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{C3B4B516-1912-4AC7-B7E2-D656BD82479C}C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [TCP Query User{A3C59CD7-5C75-484A-85D3-02C95B89C3F8}C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => C:\program files (x86)\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [{D339C2D5-BE7B-4B41-8E58-118F1D6202A3}] => C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{BD0A0ED1-5E86-462C-AD72-62E108C517BE}] => C:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{C18D1F24-3C12-467C-BC95-1FF7786E3A43}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{E5927AC1-9F11-402F-8D8D-15DC242D4743}] => LPort=2869
FirewallRules: [{DD411DF8-5638-4E1B-955B-A143E18D1E75}] => LPort=1900
FirewallRules: [{C18A70DD-534A-4C32-95DC-96DCBAAB8361}] => C:\Program Files\CyberLink\PowerDirector\PDR9.EXE
FirewallRules: [{10F51AF5-FA5D-4FC6-92B6-E2DA8AD9AC0A}] => C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{E7E9A7D0-1B2B-4085-86DA-F45AB299316B}] => C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{86039665-D3ED-4584-896E-E347897E04E9}] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
FirewallRules: [{D58EBA08-D403-45A4-9232-520EEB05E672}] => C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
FirewallRules: [{2FCFAA31-5F2E-4EE9-97F6-10EDF33A2D2E}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{51B1AE16-8E82-48D9-A12B-458A23A66B46}] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{94A3041B-663C-468A-ACA3-BB68068B32D7}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{869E3A75-1936-4059-A462-EABFC6E11A18}] => C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{1A4446BB-76FC-4370-B066-BD9E94BDFB96}] => C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{1965A604-AA3B-4D67-8717-8C818E9181AF}] => C:\Users\1973pl\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{62D75383-B513-4333-959B-E3410BA5EB80}] => C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{BFB1C70A-EB64-4121-A8BC-02BB421396B4}] => C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [TCP Query User{F152B99A-E8CE-47DD-B7ED-897BA9BFF9C2}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{C1501E65-35C4-4149-A064-A33B565EBD80}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{248383FE-B90F-4894-818C-EA0810CB17FB}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{9B998942-E255-4706-A73F-309EBFD92E9A}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{51BA7F8D-752C-4E22-9E0F-AFA9C61A1638}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{10F68AC6-FC10-461F-BB42-3F98CF6AE0F8}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BD5E3AF6-C59A-4B3D-B430-50DA723987DD}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{BA10C849-3F69-4AB4-A27A-C1CD1E1F10FE}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{1F49A8E4-6413-477F-8FBC-46496374F8B8}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{65979DF4-9450-4F21-920A-FC0BC1E94536}] => C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{0E5A910A-486A-4CE0-9BBB-24FFF61BB8A9}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{EB255023-9A4A-4B05-85BF-6F32C01A46F1}] => C:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [TCP Query User{D60D48B8-F8BC-4888-9375-30843456BB59}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [UDP Query User{567D9A45-D004-43F3-A7E9-DAB3DC4CF557}C:\program files (x86)\origin games\fifa 15\fifa15.exe] => C:\program files (x86)\origin games\fifa 15\fifa15.exe
FirewallRules: [TCP Query User{46E4CD15-A86A-4F91-BD98-5AE7A10AF886}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm.exe] => C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm.exe
FirewallRules: [UDP Query User{9E37645A-5722-4890-9407-EBBB6B9435E6}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm.exe] => C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm.exe
FirewallRules: [TCP Query User{13384991-9AB0-4BC2-9C8F-C471F8E6C061}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{67E5165D-410E-49EE-8708-0007B7A0476A}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [{8F99BDB3-0E45-417F-97B8-98B55883D1D6}] => C:\Program Files (x86)\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{9CC8DB7B-0189-4B8D-8B0A-8A7BC7187503}] => C:\Program Files (x86)\Steam\steamapps\common\lethalleague\LethalLeague.exe
FirewallRules: [{70D332E2-02F8-4AC9-A7DB-724C560649F9}] => C:\Program Files (x86)\Steam\steamapps\common\Pro Gamer Manager\PGM.exe
FirewallRules: [{FFF44CDE-A83B-43D1-B98E-04E1459FF979}] => C:\Program Files (x86)\Steam\steamapps\common\Pro Gamer Manager\PGM.exe
FirewallRules: [{C6E42D04-8EEB-4D06-8BD1-94D16C09FE65}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FFBB5D25-DE75-4AA5-A009-EC7713CB036C}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{6A82830F-1262-4F07-A089-43EEA4AEABA3}C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe] => C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [UDP Query User{7C939C01-1605-4868-B3C9-6FA595E16B98}C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe] => C:\program files (x86)\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [{DF4D6093-8057-41C5-8A74-742DA2321626}] => C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{E70E55BC-573D-4C4B-9033-7C68329D9C8F}] => C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{09C33669-3E25-4856-AFA5-77F5896CA613}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{27513B61-7CBA-4F32-9007-D7ED17C0333D}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4mp.exe
FirewallRules: [{D97DCAB8-21E5-4EF9-8C7F-831DB79346F2}] => C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{DA5196E4-14E2-4E43-8989-00B02964C184}] => C:\Program Files (x86)\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe
FirewallRules: [{9FF310CC-52C0-4D26-82CF-658D6B196F84}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{1E13A291-E003-4B7E-9872-934D855848B2}] => C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Modern Warfare 2\iw4sp.exe
FirewallRules: [{2BE583C1-B59C-49A6-AC86-7E00AFB1A3D7}] => C:\Program Files (x86)\Steam\steamapps\common\Mad Games Tycoon\MadGamesTycoon.exe
FirewallRules: [{CCC84D74-DC6A-4EA8-AA0F-72A53C036404}] => C:\Program Files (x86)\Steam\steamapps\common\Mad Games Tycoon\MadGamesTycoon.exe
FirewallRules: [{0969D5C7-9761-4D06-B3AC-5AF299CE8398}] => C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{3DC93415-E2FF-42BB-9CD9-2D4A71619B7D}] => C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe
FirewallRules: [{9397A1AA-4693-497D-B9ED-45E5F77C5DE4}] => C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{FAAAA482-1E48-49FC-B69A-946430F57441}] => C:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe
FirewallRules: [{B7C3DF5D-B83A-4C55-8C3F-845CC5271D06}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D94116D3-8BEA-4435-B2EB-991DFEC5E502}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{7C7CE38E-B8B7-4190-8C51-B4529287FC69}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D0E5E6C6-4837-422E-A140-482024A2D9DA}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{AB078F7C-C077-4840-8A31-44A6797CF9B4}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{CFF9F988-BD8A-4235-B9F8-C25A8D57F176}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{52B68850-3AFA-4008-B85F-FB92939BE112}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{3A0C3EFA-5617-43AB-BB8A-0C3B80628113}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{341F03AC-C0E1-4046-9712-FE29981BFDFA}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{34F89E8E-257F-4D76-AED8-362ADA7B5A67}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{3055C2AB-6C99-4CB8-829C-A82FED93137F}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{8C7BFA2B-8BFF-4D60-9553-2C5710678CB6}] => C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{41E79C66-59F1-4EAD-9093-0AB8A712AF58}] => C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [{AE83ADB3-3D48-432C-BA85-E5AF608498E1}] => C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe
FirewallRules: [TCP Query User{E7D533E9-1ED2-42DD-9CDC-9EB0D36CBF7C}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{80595C12-DA36-4537-AA27-3A68E8ECEF60}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{FF43322F-5BFB-4C9D-BD67-E739DD6AAA51}C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe] => C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe
FirewallRules: [UDP Query User{96D68793-960F-443F-98AD-FCD218F80D94}C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe] => C:\program files (x86)\starcraft ii\versions\base42253\sc2_x64.exe
FirewallRules: [{484314FC-DD57-40D6-92ED-3129F0DEC74D}] => C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{28A71A65-3052-4BBD-83C2-283AF88C7950}] => C:\Program Files (x86)\Steam\steamapps\common\Age2HD\Launcher.exe
FirewallRules: [{73573CCA-FB58-42D6-8345-97E7E1C36369}] => C:\Program Files (x86)\Origin Games\FIFA Manager 13\Manager13.exe
FirewallRules: [{D97E6C67-646A-4CCE-AAC7-2D3AE5717AFE}] => C:\Program Files (x86)\Origin Games\FIFA Manager 13\Manager13.exe
FirewallRules: [{41CA982C-BBAB-4AC8-988C-41AB1E526456}] => C:\Program Files (x86)\Steam\steamapps\common\Ori DE\oriDE.exe
FirewallRules: [{CC364935-C4A5-44D7-B39B-77C747B15004}] => C:\Program Files (x86)\Steam\steamapps\common\Ori DE\oriDE.exe
FirewallRules: [{8E694646-178C-4A43-A442-54ACACEF67CA}] => C:\Program Files (x86)\Steam\steamapps\common\gamemaker_studio\GameMakerPlayer.exe
FirewallRules: [{0E16DD6D-A218-4920-BE96-B5F4620227A2}] => C:\Program Files (x86)\Steam\steamapps\common\gamemaker_studio\GameMakerPlayer.exe
FirewallRules: [{DCC803EC-5F4D-4030-B2A0-65CF92F700BA}] => C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe
FirewallRules: [{91131123-1AC7-41A3-8ACB-67458D4E0815}] => C:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe
FirewallRules: [{E39B3C94-7B29-41FD-B269-AFC981557EAA}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5EBF6E00-8420-4C7E-B72D-A1F53D90E69F}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{537AB441-CD59-4F6F-8812-4474EBC45986}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{E760B657-6824-4966-B340-4B062E67BF3F}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{4C436BD4-2DAB-46E1-9F5F-98BE98B28C7E}] => C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{BA9D8B01-243D-4D9B-AD2A-55B92DD542FC}] => C:\Program Files (x86)\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{A56F8609-E562-4B35-A7BF-45EEBB4FD0A8}] => C:\Program Files (x86)\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [{34F21903-D19E-4C3F-AB1F-120273D11A84}] => C:\Program Files (x86)\Steam\steamapps\common\Howler\Howler.exe
FirewallRules: [{74463A21-3AD5-4D66-8644-E3BB22E60BEB}] => C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5792A998-E15B-42BA-85E3-726A8051E630}] => C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{83D5C10A-9816-41DE-8F14-552E3E06033D}] => C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{73EB7C25-3F16-41E9-8C9C-B99D2EEC83E7}] => C:\Program Files (x86)\Origin Games\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{E3BC5C08-BCDC-4927-A0DC-760B03432A54}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{2D06CDFC-3478-4099-A21B-4C68968E25C5}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{A2485327-1E61-48E6-957A-F4B00DA39966}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{A857398B-1E90-4CBA-8520-C7767D5BA136}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{0AC30736-7F62-4DC0-B129-A8ADA79D35C4}] => C:\Program Files (x86)\Steam\steamapps\common\Furi\Furi.exe
FirewallRules: [{B0BEBEC1-52B0-42BA-A16D-BD52FA55A0F8}] => C:\Program Files (x86)\Steam\steamapps\common\Furi\Furi.exe
FirewallRules: [{F7C44599-CEC3-4F4D-AC7C-29815824CB7A}] => C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B5E8A607-729E-433A-AB55-C2E18B00333A}] => C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{7795F957-8601-4F5C-9157-BB1419D84F9A}] => C:\Program Files (x86)\Steam\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{60FC8769-B158-44FA-9F3C-4294DFDE0D39}] => C:\Program Files (x86)\Steam\steamapps\common\RimWorld\RimWorldWin.exe
FirewallRules: [{7A153F93-7575-48EB-BB2A-89CA30276B01}] => C:\Program Files (x86)\Steam\steamapps\common\Reigns\Reigns.exe
FirewallRules: [{4D8F7B11-2DCC-407B-BFCE-EEFE017A971B}] => C:\Program Files (x86)\Steam\steamapps\common\Reigns\Reigns.exe
FirewallRules: [{63E4CE20-C882-46DA-B576-C7A11038B3CA}] => C:\Program Files (x86)\Steam\steamapps\common\f12013\F1_2013.exe
FirewallRules: [{ECC92899-3100-455F-BE11-126F2A6261E5}] => C:\Program Files (x86)\Steam\steamapps\common\f12013\F1_2013.exe
FirewallRules: [{58AA2BAC-E435-41F5-8D31-2F88B008EB3C}] => C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [{C82E5DFF-2D73-47F6-B8B8-169AB13D12DC}] => C:\Program Files (x86)\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe
FirewallRules: [TCP Query User{818D88AA-FE97-4573-82A9-C06C4C94DFFA}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{D20858B0-16B5-4FCD-808F-DEEC2B2DA8BE}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => C:\program files (x86)\origin games\fifa 16\fifa16.exe
FirewallRules: [TCP Query User{917FEDE7-56B4-4875-980F-0E6A4277A1A7}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{7332A459-8EFE-4007-8EC8-C4AF598DAF7D}C:\program files (x86)\overwatch\overwatch.exe] => C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{0E4FDD3B-B5C5-4A29-AD6E-D245FFF51217}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{4EA9616B-CF59-4A7B-86CB-723CAF3D768E}C:\program files (x86)\hearthstone\hearthstone.exe] => C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{E33196CE-948C-4D30-B21A-8C33CB8B0BB2}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => C:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [UDP Query User{63AB4D4B-C55F-4CA1-AB77-B3CDA2C5E4AA}C:\program files (x86)\origin games\fifa 17\fifa17.exe] => C:\program files (x86)\origin games\fifa 17\fifa17.exe
FirewallRules: [{923734F4-034C-4FA2-8824-6461238D277F}] => C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe
FirewallRules: [{F3B3E4B2-25C9-4B7D-8242-F9834D6A938D}] => C:\Program Files (x86)\Steam\steamapps\common\Battlerite\Battlerite.exe
FirewallRules: [{9D286608-8764-4985-B942-A2934C90683F}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4B7157B4-7D64-47CE-B2C2-4B8C4BEDEE13}] => C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2B6058C2-6EB1-4862-AEC6-3925B3752FB7}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{58CB7068-BA14-4BAA-BAD5-983695F2FAE2}] => C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{CE5BB44D-2715-4643-A609-477C0E05FA47}] => C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{B21F1FA5-BAB4-444F-A2B9-7BE9F3C75E88}] => C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{A5FD4A4D-3E85-4450-8257-AAD7AF383B08}] => C:\Program Files (x86)\Steam\steamapps\common\Thumper\THUMPER.exe
FirewallRules: [{3E385507-A054-46BA-BE0F-59F175FEF807}] => C:\Program Files (x86)\Steam\steamapps\common\Thumper\THUMPER.exe
FirewallRules: [TCP Query User{D0BD926C-6A69-4DDD-BFA2-08548DB82765}C:\program files (x86)\origin games\need for speed(tm) most wanted\nfs13.exe] => C:\program files (x86)\origin games\need for speed(tm) most wanted\nfs13.exe
FirewallRules: [UDP Query User{8A125C1B-F3F9-468D-B0C8-A399E0B878F3}C:\program files (x86)\origin games\need for speed(tm) most wanted\nfs13.exe] => C:\program files (x86)\origin games\need for speed(tm) most wanted\nfs13.exe
FirewallRules: [{921D4CA0-F533-4578-833F-A0C5F2FA59C1}] => C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{41A1C9B3-66C6-4B7E-AC2F-F6D142662A8D}] => C:\Program Files (x86)\Steam\steamapps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{71CFF58B-4E5C-47E4-9751-5D59E256D4EF}] => C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{CF05BCD0-FCE9-47F5-B757-B7CCB75F7965}] => C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe
FirewallRules: [{7BDF75EA-A624-49B8-866F-50F80BBAF380}] => C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{84D937A6-03C9-447F-8954-0CBEABC15F04}] => C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{6D78D814-4DDD-453B-9AFF-EA8BBB994092}] => C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{696A89B1-5B84-4CD6-8CA2-DDA24A2E8B63}] => C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{A4493F35-0A86-483D-B015-A9734CE3E68E}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4277A25E-B61A-4A17-B0B6-118125A6A7CA}] => C:\Program Files (x86)\Steam\steamapps\common\Motorsport Manager\MM.exe
FirewallRules: [{97F3C811-B5C3-4FA9-BC56-665415B40C28}] => C:\Program Files (x86)\Steam\steamapps\common\Motorsport Manager\MM.exe
FirewallRules: [{557E1426-A156-4E02-BC6D-386F6252F501}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{178F8E8D-5A73-4EB8-B744-EE37E8E95AC7}] => C:\Program Files (x86)\Steam\steamapps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{89C173B3-A830-4172-AF64-078808F3E4E0}] => C:\Program Files (x86)\Steam\steamapps\common\mark_of_the_ninja\bin\game.exe
FirewallRules: [{2FCDA02A-A8E9-4071-920D-B54602C01AE6}] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{A51C9997-6AD8-463A-B617-4F7E69B014B9}] => C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{2F75ACA0-0142-4853-87F0-97ADAFEE904F}] => C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{607E599B-B102-4918-9F1E-1592C90874E1}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{C74CCEFF-A2EC-49A1-81D0-C29147628F97}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{2910CFB8-B5FC-4845-B063-7EDA7B73148C}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{9DA886B6-488A-45D7-8F79-EDD4A78D54EE}] => C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{EF0CA74F-9CB6-49CD-8EF7-AD1722904458}] => C:\Program Files (x86)\Steam\steamapps\common\Disco Dodgeball\Disco Dodgeball.exe
FirewallRules: [{ED9F0B5D-A4C8-4034-AEF9-D07A20FA4D53}] => C:\Program Files (x86)\Steam\steamapps\common\Disco Dodgeball\Disco Dodgeball.exe
FirewallRules: [{29632873-082B-44AD-98A1-4DCE8DAE0D03}] => C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2017\fm.exe
FirewallRules: [{71009502-F07F-4D61-AEE0-C0FF888A84E2}] => C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2017\fm.exe
FirewallRules: [{17A12C70-89D8-4690-BECF-7781B734C065}] => C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{6A88072B-F822-422F-92A2-DF47E6630C8E}] => C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{37F3B941-6901-478F-AB47-604EC62521E5}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8859C270-B7DE-42CD-838E-8A5EB53F5AA4}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe

==================== Wiederherstellungspunkte =========================

25-11-2016 11:55:05 Geplanter Prüfpunkt
02-12-2016 18:21:35 DirectX wurde installiert
12-12-2016 09:34:10 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/13/2016 10:03:34 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm fm.exe, Version 17.1.2.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 20b8

Startzeit: 01d2551d1fc6979f

Beendigungszeit: 4294967295

Anwendungspfad: C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2017\fm.exe

Berichts-ID: 0579a76e-c113-11e6-befc-6036dd1bb9c0

Vollständiger Name des fehlerhaften Pakets: 

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (12/12/2016 09:34:33 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (12/11/2016 11:21:20 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SearchUI.exe, Version 10.0.10240.16515 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1414

Startzeit: 01d253976bf79065

Beendigungszeit: 4294967295

Anwendungspfad: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

Berichts-ID: 88fc752d-bf8b-11e6-befc-6036dd1bb9c0

Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy

Auf das fehlerhafte Paket bezogene Anwendungs-ID: CortanaUI

Error: (12/11/2016 11:21:10 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: petra)
Description: Das Paket „Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI“ wurde beendet, da das Anhalten zu lange dauerte.

Error: (12/11/2016 01:27:59 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: petra)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/10/2016 03:04:03 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) Das System kann die angegebene Datei nicht finden.

Error: (12/10/2016 03:01:40 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: petra)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (12/09/2016 09:35:32 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SearchUI.exe, Version 10.0.10240.16515 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1104

Startzeit: 01d251f6cfd5949f

Beendigungszeit: 4294967295

Anwendungspfad: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe

Berichts-ID: 6b9123f7-bdea-11e6-befb-6036dd1bb9c0

Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy

Auf das fehlerhafte Paket bezogene Anwendungs-ID: CortanaUI

Error: (12/09/2016 09:35:21 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: petra)
Description: Das Paket „Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI“ wurde beendet, da das Anhalten zu lange dauerte.

Error: (12/08/2016 11:40:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: petra)
Description: Bei der Aktivierung der App „Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.


Systemfehler:
=============
Error: (12/13/2016 09:36:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (12/13/2016 09:36:58 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.

Error: (12/11/2016 10:54:33 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_Session2 erreicht.

Error: (12/11/2016 10:54:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session2" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (12/11/2016 01:27:58 AM) (Source: DCOM) (EventID: 10010) (User: petra)
Description: Der Server "CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (12/11/2016 01:27:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_Session1" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (12/10/2016 03:05:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (12/10/2016 03:05:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Presentation Foundation-Schriftartcache 3.0.0.0 erreicht.

Error: (12/10/2016 03:04:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Origin Web Helper Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.

Error: (12/10/2016 03:04:28 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Origin Web Helper Service erreicht.


CodeIntegrity:
===================================
  Date: 2016-10-11 11:43:52.705
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.688
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.668
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.650
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.625
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.608
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.570
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.552
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.531
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-10-11 11:43:52.514
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i3-3110M CPU @ 2.40GHz
Prozentuale Nutzung des RAM: 54%
Installierter physikalischer RAM: 8072.9 MB
Verfügbarer physikalischer RAM: 3703.47 MB
Summe virtueller Speicher: 9352.9 MB
Verfügbarer virtueller Speicher: 4539.54 MB

==================== Laufwerke ================================

Drive c: (Boot) (Fixed) (Total:868.59 GB) (Free:496.24 GB) NTFS
Drive d: (Recover) (Fixed) (Total:60 GB) (Free:40.01 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 462A80D0)

Partition: GPT.

==================== Ende von Addition.txt ============================
         

Alt 13.12.2016, 12:36   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Laptop langsam nach download - Standard

Laptop langsam nach download



+++ WICHTIGER HINWEIS +++


Während der Analyse und Bereinigung nimmst du KEINERLEI Änderungen auf eigene Faust vor, d.h. du installierst oder deinstallierst keine Software ohne Absprache.
Auch veränderst du keine Systemeinstellungen, solange wir deinen Fall bearbeiten. Änderungen, Installationen oder Deinstallationen machst du AUSSCHLIESSLICH nur auf Anweisung!
Es wird erforderlich sein, deinen Virenscanner zu deaktivieren und in bestimmten Fällen auch zu deinstallieren, damit vernünftig bereinigt werden kann. Dein System ist daher erst wenn wir hier fertig sind wieder für den alltäglichen Gebrauch wie surfen oder mailen von mir freigegeben.

Gelesen und verstanden?




Bitte Avira deinstallieren. Das Teil empfehlen wir schon seit Jahren aus mehreren Gründen nicht mehr. Ein Grund ist ne rel. hohe Fehlalarmquote, der zweite Hauptgrund ist, dass die immer noch mit ASK zusammenarbeiten (Avira Suchfunktion geht über ASK). Auch andere Freewareanbieter wie AVG, Avast oder Panda sprangen auf diesen Zug auf; so was ist bei Sicherheitssoftware einfach inakzeptabel. Vgl. Antivirensoftware: Schutz Für Ihre Dateien, Aber Auf Kosten Ihrer Privatsphäre? | Emsisoft Blog

Gib Bescheid wenn Avira weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!

Alt 13.12.2016, 12:44   #8
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Verstanden und Avira ist weg

Alt 13.12.2016, 13:01   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Laptop langsam nach download - Standard

Laptop langsam nach download



1. Schritt: Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers




2. Schritt: Kaspersky TDSS-Killer

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.




Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Alt 15.12.2016, 11:41   #10
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Code:
ATTFilter
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.3.1001

(c) Malwarebytes Corporation 2011-2012

OS version: 10.0.9200 Windows 10 x64

Account is Administrative

Internet Explorer version: 11.0.10240.16431

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.395000 GHz
Memory total: 8465047552, free: 5865926656

Downloaded database version: v2016.12.15.08
Downloaded database version: v2016.11.20.01
Downloaded database version: v2016.11.29.02
=======================================
Driver version: 0.3.0.4
------------ Kernel report ------------
     12/15/2016 10:26:13
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kd.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\System32\drivers\werkernel.sys
\SystemRoot\System32\drivers\CLFS.SYS
\SystemRoot\System32\drivers\tm.sys
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\System32\drivers\cmimcext.sys
\SystemRoot\System32\drivers\ntosext.sys
\SystemRoot\system32\CI.dll
\SystemRoot\System32\drivers\msrpc.sys
\SystemRoot\System32\drivers\FLTMGR.SYS
\SystemRoot\System32\drivers\ksecdd.sys
\SystemRoot\System32\drivers\clipsp.sys
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\System32\Drivers\acpiex.sys
\SystemRoot\System32\Drivers\WppRecorder.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\ACPI.sys
\SystemRoot\System32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\WindowsTrustedRT.sys
\SystemRoot\System32\drivers\WindowsTrustedRTProxy.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\drivers\msisadrv.sys
\SystemRoot\System32\drivers\pci.sys
\SystemRoot\System32\drivers\vdrvroot.sys
\SystemRoot\system32\drivers\pdc.sys
\SystemRoot\system32\drivers\CEA.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\System32\drivers\spaceport.sys
\SystemRoot\System32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\System32\drivers\iaStorA.sys
\SystemRoot\System32\drivers\storport.sys
\SystemRoot\System32\drivers\EhStorClass.sys
\SystemRoot\System32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Wof.sys
\SystemRoot\system32\drivers\WdFilter.sys
\SystemRoot\System32\Drivers\NTFS.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\System32\drivers\wfplwfs.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\System32\drivers\volsnap.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\system32\DRIVERS\nvpciflt.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\disk.sys
\SystemRoot\System32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\drivers\cdrom.sys
\SystemRoot\system32\drivers\filecrypt.sys
\SystemRoot\system32\drivers\tbs.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\BasicDisplay.sys
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\BasicRender.sys
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\drivers\vwififlt.sys
\SystemRoot\System32\drivers\pacer.sys
\SystemRoot\system32\drivers\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\System32\drivers\npsvctrig.sys
\SystemRoot\System32\drivers\mssmbios.sys
\SystemRoot\System32\drivers\gpuenergydrv.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\CLVirtualDrive.sys
\SystemRoot\system32\DRIVERS\ahcache.sys
\SystemRoot\System32\drivers\XHCIPort.sys
\SystemRoot\System32\drivers\USBD.SYS
\SystemRoot\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
\SystemRoot\System32\drivers\kdnic.sys
\SystemRoot\System32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\nvlddmkm.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\USBXHCI.SYS
\SystemRoot\system32\drivers\ucx01000.sys
\SystemRoot\System32\drivers\HECIx64.sys
\SystemRoot\System32\drivers\usbehci.sys
\SystemRoot\System32\drivers\USBPORT.SYS
\SystemRoot\System32\drivers\HDAudBus.sys
\SystemRoot\System32\drivers\portcls.sys
\SystemRoot\System32\drivers\drmk.sys
\SystemRoot\System32\drivers\ks.sys
\SystemRoot\System32\drivers\NETwew01.sys
\SystemRoot\System32\drivers\vwifibus.sys
\SystemRoot\System32\drivers\rt640x64.sys
\SystemRoot\System32\drivers\i8042prt.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\System32\drivers\mouclass.sys
\SystemRoot\System32\drivers\kbdclass.sys
\SystemRoot\SysWOW64\drivers\Afc.sys
\SystemRoot\system32\DRIVERS\Smb_driver_Intel.sys
\SystemRoot\System32\drivers\CmBatt.sys
\SystemRoot\System32\drivers\BATTC.SYS
\SystemRoot\System32\drivers\wmiacpi.sys
\SystemRoot\System32\drivers\intelppm.sys
\SystemRoot\system32\drivers\nvvad64v.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\System32\drivers\NdisVirtualBus.sys
\SystemRoot\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
\SystemRoot\System32\drivers\iwdbus.sys
\SystemRoot\System32\drivers\rdpbus.sys
\SystemRoot\System32\drivers\AMPPAL.sys
\SystemRoot\System32\drivers\usbhub.sys
\SystemRoot\System32\drivers\usb3Hub.sys
\SystemRoot\System32\drivers\UsbHub3.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\system32\DRIVERS\IntcDAud.sys
\SystemRoot\System32\drivers\hidusb.sys
\SystemRoot\System32\drivers\HIDCLASS.SYS
\SystemRoot\System32\drivers\HIDPARSE.SYS
\SystemRoot\System32\drivers\xusb22.sys
\SystemRoot\System32\drivers\mouhid.sys
\SystemRoot\System32\drivers\usbccgp.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\system32\DRIVERS\ibtfltcoex.sys
\SystemRoot\System32\Drivers\BTHUSB.sys
\SystemRoot\System32\Drivers\bthport.sys
\SystemRoot\System32\drivers\kbdhid.sys
\SystemRoot\system32\DRIVERS\BthLEEnum.sys
\SystemRoot\System32\drivers\rfcomm.sys
\SystemRoot\System32\drivers\BthEnum.sys
\SystemRoot\System32\drivers\bthpan.sys
\SystemRoot\System32\Drivers\fastfat.SYS
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_iaStorA.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\win32kfull.sys
\SystemRoot\System32\win32kbase.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\System32\drivers\dxgmms2.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\system32\drivers\storqosflt.sys
\SystemRoot\system32\drivers\lltdio.sys
\SystemRoot\system32\drivers\mslldp.sys
\SystemRoot\system32\drivers\rspndr.sys
\SystemRoot\system32\drivers\ndisuio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\??\C:\Program Files (x86)\PHotkey\PEGAGFN.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\drivers\Ndu.sys
\SystemRoot\system32\drivers\mmcss.sys
\SystemRoot\system32\drivers\peauth.sys
\??\C:\WINDOWS\SysWOW64\speedfan.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\system32\Drivers\WdNisDrv.sys
\SystemRoot\System32\drivers\condrv.sys
\SystemRoot\System32\drivers\vwifimp.sys
\SystemRoot\System32\drivers\tunnel.sys
\SystemRoot\System32\drivers\monitor.sys
\SystemRoot\System32\drivers\rdpvideominiport.sys
\SystemRoot\System32\cdd.dll
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
----------- End -----------
Done!

Scan started
Database versions:
  main:    v2016.12.15.08
  rootkit: v2016.11.20.01

<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffe000e7629060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
--------- Disk Stack ------
DevicePointer: 0xffffe000e7629b10, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffe000e7629060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
DevicePointer: 0xffffe000e65b7c40, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xffffe000e65b12f0, DeviceName: \Device\00000033\, DriverName: \Driver\iaStorA\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
This drive is a GPT Drive.
MBR Signature: 55AA
Disk Signature: 462A80D0

GPT Protective MBR Partition information:

    Partition 0 type is EFI-GPT (0xee)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 1  Numsec = 1953525166

    Partition 1 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

GPT Partition information:

    GPT Header Signature 4546492050415254
    GPT Header Revision 65536 Size 92 CRC 2890326036
    GPT Header CurrentLba = 1 BackupLba 1953525167
    GPT Header FirstUsableLba 34  LastUsableLba 1953525134
    GPT Header Guid 6709e16a-258-4527-8881-68d91d2b196
    GPT Header Contains 128 partition entries starting at LBA 2
    GPT Header Partition entry size = 128

    Backup GPT header Signature 4546492050415254
    Backup GPT header Revision 65536 Size 92 CRC 2890326036
    Backup GPT header CurrentLba = 1953525167 BackupLba 1
    Backup GPT header FirstUsableLba 34  LastUsableLba 1953525134
    Backup GPT header Guid 6709e16a-258-4527-8881-68d91d2b196
    Backup GPT header Contains 128 partition entries starting at LBA 1953525135
    Backup GPT header Partition entry size = 128

    Partition 0 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
    Partition ID fdd69436-40eb-4163-b4f1-726e79301392
    FirstLBA 2048  Last LBA 1023999
    Attributes 0
    Partition Name                 Basic data partition

    Partition 1 Type c12a7328-f81f-11d2-ba4b-0a0c93ec93b
    Partition ID 9ba23542-a15d-40df-a09e-7c6f1558281c
    FirstLBA 1024000  Last LBA 1228799
    Attributes 0
    Partition Name                 EFI system partition

    GPT Partition 1 is bootable
    Partition 2 Type e3c9e316-b5c-4db8-817d-f92df0215ae
    Partition ID 2cecf08e-9f9f-4f9b-8c53-f8d3f1b4dc21
    FirstLBA 1228800  Last LBA 1490943
    Attributes 0
    Partition Name         Microsoft reserved partition

    Partition 3 Type 8d7f0cc6-879e-47f6-a767-ed8fd3b659
    Partition ID d0e7321a-699f-4997-b81c-4716dc3efc2
    FirstLBA 1490944  Last LBA 3588095
    Attributes 1
    Partition Name                 Basic data partition

    Partition 4 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
    Partition ID 9fda5e6-9445-4ad3-a445-e473693e103
    FirstLBA 3588096  Last LBA 1825148674
    Attributes 0
    Partition Name                 Basic data partition

    Partition 5 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
    Partition ID 25e9de84-752d-43dd-b725-d1436b6167b9
    FirstLBA 1825148928  Last LBA 1826766847
    Attributes 1
    Partition Name                                     

    Partition 6 Type de94bba4-6d1-4d40-a16a-bfd5179d6ac
    Partition ID 289895e3-e50d-45e5-996d-16fe9d694287
    FirstLBA 1826766848  Last LBA 1827692543
    Attributes 1
    Partition Name                                     

    Partition 7 Type ebd0a0a2-b9e5-4433-87c0-68b6b72699c7
    Partition ID f0a537f2-c7ae-4f4f-905b-d1dd5233878
    FirstLBA 1827692544  Last LBA 1953513471
    Attributes 0
    Partition Name                 Basic data partition

Disk Size: 1000204886016 bytes
Sector size: 512 bytes

Done!
File "C:\Windows\System32\config\systemprofile\AppData\Local\DataSharing\Storage\DSTokenDB2.dat" is sparse (flags = 32768)
File "C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-3B5FEADA9445203341449FF4D04C2A5AE872ECF5.bin.79" is compressed (flags = 1)
File "C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-3B5FEADA9445203341449FF4D04C2A5AE872ECF5.bin.7C" is compressed (flags = 1)
File "C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-3B5FEADA9445203341449FF4D04C2A5AE872ECF5.bin.83" is compressed (flags = 1)
Scan finished
=======================================


Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished
         
Code:
ATTFilter
11:26:57.0086 0x09d4  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
11:26:57.0099 0x09d4  UEFI system
11:27:00.0373 0x09d4  ============================================================
11:27:00.0373 0x09d4  Current date / time: 2016/12/15 11:27:00.0373
11:27:00.0373 0x09d4  SystemInfo:
11:27:00.0373 0x09d4  
11:27:00.0373 0x09d4  OS Version: 10.0.10240 ServicePack: 0.0
11:27:00.0373 0x09d4  Product type: Workstation
11:27:00.0373 0x09d4  ComputerName: PETRA
11:27:00.0373 0x09d4  UserName: 1973pl
11:27:00.0373 0x09d4  Windows directory: C:\WINDOWS
11:27:00.0373 0x09d4  System windows directory: C:\WINDOWS
11:27:00.0373 0x09d4  Running under WOW64
11:27:00.0373 0x09d4  Processor architecture: Intel x64
11:27:00.0373 0x09d4  Number of processors: 4
11:27:00.0373 0x09d4  Page size: 0x1000
11:27:00.0373 0x09d4  Boot type: Normal boot
11:27:00.0374 0x09d4  CodeIntegrityOptions = 0x00000001
11:27:00.0374 0x09d4  ============================================================
11:27:00.0996 0x09d4  KLMD registered as C:\WINDOWS\system32\drivers\63733889.sys
11:27:00.0996 0x09d4  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 10240.16545, osProperties = 0x19
11:27:02.0573 0x09d4  System UUID: {D1C99AB6-37B1-631E-B4F8-DAC289BC79A4}
11:27:03.0602 0x09d4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:27:03.0607 0x09d4  ============================================================
11:27:03.0607 0x09d4  \Device\Harddisk0\DR0:
11:27:03.0607 0x09d4  GPT partitions:
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {FDD69436-40EB-4163-B4F1-726E79301392}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9BA23542-A15D-40DF-A09E-7C6F1558281C}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x32000
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {2CECF08E-9F9F-4F9B-8C53-F8D3F1B4DC21}, Name: Microsoft reserved partition, StartLBA 0x12C000, BlocksNum 0x40000
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {8D7F0CC6-879E-47F6-A767-0ED8FD3B0659}, UniqueGUID: {D0E7321A-699F-4997-B81C-47160DC3EFC2}, Name: Basic data partition, StartLBA 0x16C000, BlocksNum 0x200000
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {09FDA5E6-9445-4AD3-A445-E473693E1003}, Name: Basic data partition, StartLBA 0x36C000, BlocksNum 0x6C92CF03
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {25E9DE84-752D-43DD-B725-D1436B6167B9}, Name: , StartLBA 0x6CC99000, BlocksNum 0x18B000
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {289895E3-E50D-45E5-996D-16FE9D694287}, Name: , StartLBA 0x6CE24000, BlocksNum 0xE2000
11:27:03.0608 0x09d4  \Device\Harddisk0\DR0\Partition8: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F0A537F2-C7AE-4F4F-905B-D1DD05233878}, Name: Basic data partition, StartLBA 0x6CF06000, BlocksNum 0x77FE000
11:27:03.0608 0x09d4  MBR partitions:
11:27:03.0608 0x09d4  ============================================================
11:27:03.0641 0x09d4  C: <-> \Device\Harddisk0\DR0\Partition5
11:27:03.0689 0x09d4  D: <-> \Device\Harddisk0\DR0\Partition8
11:27:03.0689 0x09d4  ============================================================
11:27:03.0689 0x09d4  Initialize success
11:27:03.0689 0x09d4  ============================================================
11:27:09.0126 0x18b0  ============================================================
11:27:09.0126 0x18b0  Scan started
11:27:09.0126 0x18b0  Mode: Manual; 
11:27:09.0126 0x18b0  ============================================================
11:27:09.0126 0x18b0  KSN ping started
11:27:11.0576 0x18b0  KSN ping finished: true
11:27:14.0650 0x18b0  ================ Scan system memory ========================
11:27:14.0650 0x18b0  System memory - ok
11:27:14.0650 0x18b0  ================ Scan services =============================
11:27:15.0010 0x18b0  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
11:27:15.0017 0x18b0  1394ohci - ok
11:27:15.0062 0x18b0  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
11:27:15.0065 0x18b0  3ware - ok
11:27:15.0166 0x18b0  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
11:27:15.0179 0x18b0  ACPI - ok
11:27:15.0203 0x18b0  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
11:27:15.0206 0x18b0  acpiex - ok
11:27:15.0216 0x18b0  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
11:27:15.0218 0x18b0  acpipagr - ok
11:27:15.0257 0x18b0  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
11:27:15.0258 0x18b0  AcpiPmi - ok
11:27:15.0336 0x18b0  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
11:27:15.0337 0x18b0  acpitime - ok
11:27:15.0473 0x18b0  [ B79750091FC0842182FE49D263791294, 32FC260A74C9C45CD1E8998523642C285866378FCD9478FEFD15A0CC42EC0E0B ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:27:15.0481 0x18b0  AdobeFlashPlayerUpdateSvc - ok
11:27:15.0608 0x18b0  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
11:27:15.0634 0x18b0  ADP80XX - ok
11:27:15.0699 0x18b0  [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc             C:\WINDOWS\syswow64\drivers\Afc.sys
11:27:15.0701 0x18b0  Afc - ok
11:27:15.0729 0x18b0  [ 6C12C7E01A4F64E0AA9C88AF66955CC9, 81A413702909341F8694823EC83FBA0089523D7EC927B80E55E0779BB83AD263 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
11:27:15.0742 0x18b0  AFD - ok
11:27:15.0778 0x18b0  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
11:27:15.0781 0x18b0  agp440 - ok
11:27:15.0802 0x18b0  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
11:27:15.0808 0x18b0  ahcache - ok
11:27:15.0832 0x18b0  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
11:27:15.0833 0x18b0  AJRouter - ok
11:27:15.0868 0x18b0  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
11:27:15.0872 0x18b0  ALG - ok
11:27:15.0935 0x18b0  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
11:27:15.0939 0x18b0  AmdK8 - ok
11:27:15.0958 0x18b0  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
11:27:15.0962 0x18b0  AmdPPM - ok
11:27:15.0974 0x18b0  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
11:27:15.0977 0x18b0  amdsata - ok
11:27:16.0004 0x18b0  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
11:27:16.0012 0x18b0  amdsbs - ok
11:27:16.0031 0x18b0  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
11:27:16.0033 0x18b0  amdxata - ok
11:27:16.0076 0x18b0  [ 0C3D62CB6B8F2B3CC42369BAC0F58AD5, F0121EACB6060DF1F6C5F79C15D5B483F301EF85B3C79F67806520BE9CEE398E ] AMPPAL          C:\WINDOWS\System32\drivers\AMPPAL.sys
11:27:16.0082 0x18b0  AMPPAL - ok
11:27:16.0204 0x18b0  [ E4AFE476D9F758514A8A571DF6A24372, A37055A2CDB577CC8B76D4B020924A6C68D94166C1C9A64F7C0E9E16692709FC ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
11:27:16.0206 0x18b0  AppHostSvc - ok
11:27:16.0238 0x18b0  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
11:27:16.0242 0x18b0  AppID - ok
11:27:16.0293 0x18b0  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
11:27:16.0296 0x18b0  AppIDSvc - ok
11:27:16.0330 0x18b0  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
11:27:16.0333 0x18b0  Appinfo - ok
11:27:16.0420 0x18b0  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
11:27:16.0435 0x18b0  AppReadiness - ok
11:27:16.0538 0x18b0  [ C0BC21B9D557E46E5C331209950AF90D, 9634D17515918483521D1AE9F271836CA64764103216B42E592305B85E506271 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
11:27:16.0586 0x18b0  AppXSvc - ok
11:27:16.0612 0x18b0  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
11:27:16.0616 0x18b0  arcsas - ok
11:27:16.0673 0x18b0  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
11:27:16.0674 0x18b0  AsyncMac - ok
11:27:16.0712 0x18b0  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
11:27:16.0714 0x18b0  atapi - ok
11:27:16.0789 0x18b0  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
11:27:16.0803 0x18b0  AudioEndpointBuilder - ok
11:27:16.0903 0x18b0  [ 7614E6E6B53E8FE6E6B8A6D6D3CC2018, DF3445145E38BB22E08F11638DA6C37C9EDC1109207569F7921CDD525238CA39 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
11:27:16.0929 0x18b0  Audiosrv - ok
11:27:16.0971 0x18b0  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
11:27:16.0975 0x18b0  AxInstSV - ok
11:27:17.0058 0x18b0  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
11:27:17.0073 0x18b0  b06bdrv - ok
11:27:17.0113 0x18b0  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
11:27:17.0115 0x18b0  BasicDisplay - ok
11:27:17.0131 0x18b0  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
11:27:17.0133 0x18b0  BasicRender - ok
11:27:17.0147 0x18b0  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
11:27:17.0148 0x18b0  bcmfn2 - ok
11:27:17.0173 0x18b0  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
11:27:17.0182 0x18b0  BDESVC - ok
11:27:17.0221 0x18b0  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
11:27:17.0222 0x18b0  Beep - ok
11:27:17.0331 0x18b0  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
11:27:17.0354 0x18b0  BFE - ok
11:27:17.0432 0x18b0  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
11:27:17.0620 0x18b0  BITS - ok
11:27:17.0682 0x18b0  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
11:27:17.0684 0x18b0  bowser - ok
11:27:17.0764 0x18b0  [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
11:27:17.0776 0x18b0  BrokerInfrastructure - ok
11:27:17.0843 0x18b0  [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser         C:\WINDOWS\System32\browser.dll
11:27:17.0852 0x18b0  Browser - ok
11:27:17.0899 0x18b0  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
11:27:17.0902 0x18b0  BthAvrcpTg - ok
11:27:17.0918 0x18b0  [ 74C9D52F3F594529465E18B2BFF80487, F1ECD8B730AD8B90673735FD6D2D9F6F0754F8BAB7135B16A41128145D5F9377 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
11:27:17.0921 0x18b0  BthEnum - ok
11:27:17.0935 0x18b0  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
11:27:17.0937 0x18b0  BthHFEnum - ok
11:27:17.0955 0x18b0  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
11:27:17.0956 0x18b0  bthhfhid - ok
11:27:18.0006 0x18b0  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
11:27:18.0015 0x18b0  BthHFSrv - ok
11:27:18.0041 0x18b0  [ 986F756D10B5A2B3971A03BD6308B94F, BEDEFD7470155621365439858B35239D4474487873431E67B01A4B7D56E7CE76 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
11:27:18.0049 0x18b0  BthLEEnum - ok
11:27:18.0062 0x18b0  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
11:27:18.0065 0x18b0  BTHMODEM - ok
11:27:18.0088 0x18b0  [ 38C97371F058E889F730BF35530732F4, 7CD16DF9C51D40CF80392E6DF444D6F5546B0E8B6A6DAC6DFD70BB45E014FA27 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
11:27:18.0093 0x18b0  BthPan - ok
11:27:18.0168 0x18b0  [ FCC211B0F46D831506D0D76539203899, A2609658AE36EB0FE4CFAA00684986193FEACED7BA8D869A9DF8D03312E53169 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
11:27:18.0194 0x18b0  BTHPORT - ok
11:27:18.0239 0x18b0  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
11:27:18.0242 0x18b0  bthserv - ok
11:27:18.0273 0x18b0  [ 5866AE46EEF644E6DE5C95942AE419D7, 0726C0845D2BA4247AB26ACF05006F6FA96015158CD49795801BB906DA80C007 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
11:27:18.0275 0x18b0  BTHUSB - ok
11:27:18.0303 0x18b0  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
11:27:18.0305 0x18b0  buttonconverter - ok
11:27:18.0323 0x18b0  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
11:27:18.0328 0x18b0  CapImg - ok
11:27:18.0343 0x18b0  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
11:27:18.0347 0x18b0  cdfs - ok
11:27:18.0389 0x18b0  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
11:27:18.0400 0x18b0  CDPSvc - ok
11:27:18.0418 0x18b0  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
11:27:18.0423 0x18b0  cdrom - ok
11:27:18.0448 0x18b0  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
11:27:18.0454 0x18b0  CertPropSvc - ok
11:27:18.0472 0x18b0  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
11:27:18.0474 0x18b0  circlass - ok
11:27:18.0521 0x18b0  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
11:27:18.0530 0x18b0  CLFS - ok
11:27:18.0723 0x18b0  [ 99C73D65BF6E6AE66D1B4337D8260C97, D13E9861125ABFA892F7FCED1E007FD5FBEE27954C9084286FFD186193157D3A ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
11:27:18.0781 0x18b0  ClickToRunSvc - ok
11:27:18.0849 0x18b0  [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
11:27:18.0865 0x18b0  ClipSVC - ok
11:27:18.0900 0x18b0  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
11:27:18.0903 0x18b0  CLVirtualDrive - ok
11:27:18.0938 0x18b0  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
11:27:18.0939 0x18b0  CmBatt - ok
11:27:18.0975 0x18b0  [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
11:27:18.0995 0x18b0  CNG - ok
11:27:19.0049 0x18b0  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
11:27:19.0054 0x18b0  cnghwassist - ok
11:27:19.0225 0x18b0  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
11:27:19.0227 0x18b0  CompositeBus - ok
11:27:19.0231 0x18b0  COMSysApp - ok
11:27:19.0258 0x18b0  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
11:27:19.0260 0x18b0  condrv - ok
11:27:19.0325 0x18b0  [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
11:27:19.0346 0x18b0  CoreMessagingRegistrar - ok
11:27:19.0441 0x18b0  [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
11:27:19.0858 0x18b0  cphs - ok
11:27:19.0907 0x18b0  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
11:27:19.0909 0x18b0  CryptSvc - ok
11:27:20.0014 0x18b0  [ 7F5CD87CA5BDB4D83F992D8C77201483, 01818EF455833CA3396C8EA4696B8DC28E3A6A3618C081D046C8F207FACAB788 ] CyberLink PowerDVD 10 MS Monitor Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
11:27:20.0016 0x18b0  CyberLink PowerDVD 10 MS Monitor Service - ok
11:27:20.0033 0x18b0  [ 9FAF58E876A3B1DB3030A0A5805F2D86, 682939B774DF6A28268897A7E113F6D2DF9AD73DBF1994F937FB48818478B7FE ] CyberLink PowerDVD 10 MS Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
11:27:20.0039 0x18b0  CyberLink PowerDVD 10 MS Service - ok
11:27:20.0051 0x18b0  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
11:27:20.0053 0x18b0  dam - ok
11:27:20.0117 0x18b0  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
11:27:20.0120 0x18b0  dbupdate - ok
11:27:20.0129 0x18b0  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
11:27:20.0132 0x18b0  dbupdatem - ok
11:27:20.0136 0x18b0  dbx - ok
11:27:20.0175 0x18b0  [ 62C2617E1927776851B108717166BBA4, 5ED905AD21D2BA4308561BDFD2868A15A1F2062DFE1D28689D4082700C85500A ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
11:27:20.0177 0x18b0  DbxSvc - ok
11:27:20.0241 0x18b0  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
11:27:20.0268 0x18b0  DcomLaunch - ok
11:27:20.0319 0x18b0  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
11:27:20.0326 0x18b0  DcpSvc - ok
11:27:20.0384 0x18b0  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
11:27:20.0397 0x18b0  defragsvc - ok
11:27:20.0450 0x18b0  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
11:27:20.0464 0x18b0  DeviceAssociationService - ok
11:27:20.0510 0x18b0  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
11:27:20.0515 0x18b0  DeviceInstall - ok
11:27:20.0558 0x18b0  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
11:27:20.0561 0x18b0  DevQueryBroker - ok
11:27:20.0601 0x18b0  [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
11:27:20.0604 0x18b0  Dfsc - ok
11:27:20.0647 0x18b0  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
11:27:20.0658 0x18b0  Dhcp - ok
11:27:20.0733 0x18b0  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
11:27:20.0735 0x18b0  diagnosticshub.standardcollector.service - ok
11:27:20.0799 0x18b0  [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
11:27:20.0843 0x18b0  DiagTrack - ok
11:27:20.0877 0x18b0  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
11:27:20.0880 0x18b0  disk - ok
11:27:20.0933 0x18b0  [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
11:27:20.0943 0x18b0  DmEnrollmentSvc - ok
11:27:20.0955 0x18b0  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
11:27:20.0957 0x18b0  dmvsc - ok
11:27:20.0997 0x18b0  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
11:27:21.0000 0x18b0  dmwappushservice - ok
11:27:21.0035 0x18b0  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
11:27:21.0044 0x18b0  Dnscache - ok
11:27:21.0061 0x18b0  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
11:27:21.0067 0x18b0  dot3svc - ok
11:27:21.0115 0x18b0  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
11:27:21.0121 0x18b0  DPS - ok
11:27:21.0160 0x18b0  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
11:27:21.0162 0x18b0  drmkaud - ok
11:27:21.0210 0x18b0  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
11:27:21.0218 0x18b0  DsmSvc - ok
11:27:21.0234 0x18b0  [ F2328181D289CE83E9979733EAB6742A, 73B1CDA6ED8C42B36126909F1335B72126A5DDC6FC7CE8BA2CA274A2B92E82FD ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
11:27:21.0239 0x18b0  DsSvc - ok
11:27:21.0343 0x18b0  [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
11:27:21.0400 0x18b0  DXGKrnl - ok
11:27:21.0452 0x18b0  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
11:27:21.0455 0x18b0  Eaphost - ok
11:27:21.0618 0x18b0  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
11:27:21.0697 0x18b0  ebdrv - ok
11:27:21.0738 0x18b0  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
11:27:21.0741 0x18b0  EFS - ok
11:27:21.0753 0x18b0  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
11:27:21.0756 0x18b0  EhStorClass - ok
11:27:21.0777 0x18b0  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
11:27:21.0781 0x18b0  EhStorTcgDrv - ok
11:27:21.0825 0x18b0  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
11:27:21.0827 0x18b0  embeddedmode - ok
11:27:21.0847 0x18b0  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
11:27:21.0854 0x18b0  EntAppSvc - ok
11:27:21.0873 0x18b0  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
11:27:21.0874 0x18b0  ErrDev - ok
11:27:21.0920 0x18b0  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
11:27:21.0931 0x18b0  EventSystem - ok
11:27:21.0972 0x18b0  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
11:27:21.0980 0x18b0  exfat - ok
11:27:22.0019 0x18b0  [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
11:27:22.0029 0x18b0  fastfat - ok
11:27:22.0078 0x18b0  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
11:27:22.0095 0x18b0  Fax - ok
11:27:22.0112 0x18b0  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
11:27:22.0113 0x18b0  fdc - ok
11:27:22.0142 0x18b0  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
11:27:22.0144 0x18b0  fdPHost - ok
11:27:22.0157 0x18b0  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
11:27:22.0159 0x18b0  FDResPub - ok
11:27:22.0177 0x18b0  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
11:27:22.0182 0x18b0  fhsvc - ok
11:27:22.0229 0x18b0  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
11:27:22.0231 0x18b0  FileCrypt - ok
11:27:22.0275 0x18b0  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
11:27:22.0277 0x18b0  FileInfo - ok
11:27:22.0293 0x18b0  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
11:27:22.0295 0x18b0  Filetrace - ok
11:27:22.0311 0x18b0  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
11:27:22.0313 0x18b0  flpydisk - ok
11:27:22.0339 0x18b0  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
11:27:22.0348 0x18b0  FltMgr - ok
11:27:22.0435 0x18b0  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
11:27:22.0477 0x18b0  FontCache - ok
11:27:22.0625 0x18b0  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:27:22.0626 0x18b0  FontCache3.0.0.0 - ok
11:27:22.0635 0x18b0  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
11:27:22.0637 0x18b0  FsDepends - ok
11:27:22.0654 0x18b0  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:27:22.0656 0x18b0  Fs_Rec - ok
11:27:22.0690 0x18b0  [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
11:27:22.0705 0x18b0  fvevol - ok
11:27:22.0741 0x18b0  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
11:27:22.0744 0x18b0  gagp30kx - ok
11:27:22.0777 0x18b0  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
11:27:22.0778 0x18b0  gencounter - ok
11:27:22.0792 0x18b0  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
11:27:22.0793 0x18b0  genericusbfn - ok
11:27:22.0851 0x18b0  [ 9162ECA694162A77679950CF2E27D3C1, 7EADEDE34A8E7458D2DDEE294D0789E9FD1EE822AB627D7E4ECAEDDD5D3EE81D ] GFNEXSrv        C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
11:27:22.0869 0x18b0  GFNEXSrv - ok
11:27:22.0924 0x18b0  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
11:27:22.0930 0x18b0  GPIOClx0101 - ok
11:27:23.0028 0x18b0  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
11:27:23.0060 0x18b0  gpsvc - ok
11:27:23.0100 0x18b0  [ BA2455D93BD57989A04FE4094AA6F941, B579FB367C063EA30C034381148410D49D38E183A5A4D51D2334A81DAEE95CEC ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
11:27:23.0101 0x18b0  GpuEnergyDrv - ok
11:27:23.0181 0x18b0  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:27:23.0184 0x18b0  gupdate - ok
11:27:23.0191 0x18b0  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:27:23.0194 0x18b0  gupdatem - ok
11:27:23.0227 0x18b0  [ 7797D1580D933056023B822BB5CD0FE2, 24585AAFB43862AE4B9228B513658D906550EC8A475C67182933FB233621A85D ] Hamachi         C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
11:27:23.0229 0x18b0  Hamachi - ok
11:27:23.0264 0x18b0  [ C277A49F8A8295840DEBC9240B75A282, 8B2BA0E6A8300323765D95ECD843105B0FC4B80B85EE2220E677C4E9A760C9D8 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
11:27:23.0266 0x18b0  HDAudBus - ok
11:27:23.0290 0x18b0  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
11:27:23.0292 0x18b0  HidBatt - ok
11:27:23.0332 0x18b0  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
11:27:23.0336 0x18b0  HidBth - ok
11:27:23.0353 0x18b0  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
11:27:23.0355 0x18b0  hidi2c - ok
11:27:23.0376 0x18b0  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
11:27:23.0378 0x18b0  hidinterrupt - ok
11:27:23.0398 0x18b0  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
11:27:23.0400 0x18b0  HidIr - ok
11:27:23.0461 0x18b0  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
11:27:23.0462 0x18b0  hidserv - ok
11:27:23.0476 0x18b0  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
11:27:23.0477 0x18b0  HidUsb - ok
11:27:23.0524 0x18b0  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
11:27:23.0532 0x18b0  HomeGroupListener - ok
11:27:23.0592 0x18b0  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
11:27:23.0605 0x18b0  HomeGroupProvider - ok
11:27:23.0620 0x18b0  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
11:27:23.0623 0x18b0  HpSAMD - ok
11:27:23.0666 0x18b0  [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
11:27:23.0688 0x18b0  HTTP - ok
11:27:23.0728 0x18b0  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
11:27:23.0730 0x18b0  hwpolicy - ok
11:27:23.0746 0x18b0  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
11:27:23.0747 0x18b0  hyperkbd - ok
11:27:23.0756 0x18b0  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
11:27:23.0758 0x18b0  HyperVideo - ok
11:27:23.0777 0x18b0  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
11:27:23.0780 0x18b0  i8042prt - ok
11:27:23.0793 0x18b0  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
11:27:23.0794 0x18b0  iaLPSSi_GPIO - ok
11:27:23.0814 0x18b0  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
11:27:23.0818 0x18b0  iaLPSSi_I2C - ok
11:27:23.0903 0x18b0  [ 6C91E425ACE29594BD574DE38AC9B76D, 697784E4C7AF08B1F35662D8AD871E6890CECE22B6E64985B7C1A66C10DA390D ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
11:27:23.0927 0x18b0  iaStorA - ok
11:27:23.0964 0x18b0  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
11:27:23.0981 0x18b0  iaStorAV - ok
11:27:24.0072 0x18b0  [ 0AB254994A460550258446950BB58311, BD10811912680DD3B814B7D1303785C996D892C79108110A2257E9BD0C28245C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
11:27:24.0073 0x18b0  IAStorDataMgrSvc - ok
11:27:24.0124 0x18b0  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
11:27:24.0135 0x18b0  iaStorV - ok
11:27:24.0156 0x18b0  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
11:27:24.0167 0x18b0  ibbus - ok
11:27:24.0207 0x18b0  [ 62F0CB0A54EAF37E15EC385300957BB8, 55FCF7068D84D5AEEAF3149A5349BF13F1D18E34956217916ED7C1950885E63C ] ibtfltcoex      C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys
11:27:24.0209 0x18b0  ibtfltcoex - ok
11:27:24.0242 0x18b0  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
11:27:24.0251 0x18b0  icssvc - ok
11:27:24.0255 0x18b0  IEEtwCollectorService - ok
11:27:24.0386 0x18b0  [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
11:27:24.0527 0x18b0  igfx - ok
11:27:24.0581 0x18b0  [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
11:27:24.0590 0x18b0  igfxCUIService1.0.0.0 - ok
11:27:24.0660 0x18b0  [ A8A7DF276A5EAEF006A0663AA800DCEC, 2E19C90045A8C0AF18C9FE18FD66E7F677D7FA15FDF9FF6302A536BD5AE27C14 ] IISADMIN        C:\WINDOWS\system32\inetsrv\inetinfo.exe
11:27:24.0661 0x18b0  IISADMIN - ok
11:27:24.0741 0x18b0  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
11:27:24.0764 0x18b0  IKEEXT - ok
11:27:24.0808 0x18b0  [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
11:27:24.0838 0x18b0  intaud_WaveExtensible - ok
11:27:24.0987 0x18b0  [ 900A45658DCB6BAE1003764991BB5FAB, 125D048024946C13643E8D6E719687F31CD0EB10591C5AFA1AE0FD9EB7216816 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
11:27:25.0145 0x18b0  IntcAzAudAddService - ok
11:27:25.0207 0x18b0  [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
11:27:25.0219 0x18b0  IntcDAud - ok
11:27:25.0329 0x18b0  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:27:25.0344 0x18b0  Intel(R) Capability Licensing Service Interface - ok
11:27:25.0362 0x18b0  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
11:27:25.0364 0x18b0  intelide - ok
11:27:25.0379 0x18b0  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
11:27:25.0381 0x18b0  intelpep - ok
11:27:25.0400 0x18b0  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
11:27:25.0404 0x18b0  intelppm - ok
11:27:25.0436 0x18b0  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
11:27:25.0438 0x18b0  IoQos - ok
11:27:25.0469 0x18b0  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:27:25.0472 0x18b0  IpFilterDriver - ok
11:27:25.0537 0x18b0  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
11:27:25.0560 0x18b0  iphlpsvc - ok
11:27:25.0579 0x18b0  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
11:27:25.0582 0x18b0  IPMIDRV - ok
11:27:25.0605 0x18b0  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
11:27:25.0609 0x18b0  IPNAT - ok
11:27:25.0629 0x18b0  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
11:27:25.0631 0x18b0  IRENUM - ok
11:27:25.0651 0x18b0  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
11:27:25.0653 0x18b0  isapnp - ok
11:27:25.0675 0x18b0  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
11:27:25.0682 0x18b0  iScsiPrt - ok
11:27:25.0711 0x18b0  [ 492F2DF02CD817CE8D544F96097BD77A, 6EF37BD62A49C9F55845A56498A93A26C109BEC2EBCB65A49908BECEC6FC6371 ] IT9135BDA       C:\WINDOWS\System32\Drivers\IT9135BDA.sys
11:27:25.0716 0x18b0  IT9135BDA - ok
11:27:25.0757 0x18b0  [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
11:27:25.0758 0x18b0  iwdbus - ok
11:27:25.0826 0x18b0  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
11:27:25.0829 0x18b0  jhi_service - ok
11:27:25.0875 0x18b0  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
11:27:25.0876 0x18b0  kbdclass - ok
11:27:25.0893 0x18b0  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
11:27:25.0894 0x18b0  kbdhid - ok
11:27:25.0914 0x18b0  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
11:27:25.0916 0x18b0  kdnic - ok
11:27:25.0932 0x18b0  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
11:27:25.0934 0x18b0  KeyIso - ok
11:27:25.0949 0x18b0  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
11:27:25.0952 0x18b0  KSecDD - ok
11:27:25.0973 0x18b0  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
11:27:25.0977 0x18b0  KSecPkg - ok
11:27:25.0992 0x18b0  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
11:27:25.0993 0x18b0  ksthunk - ok
11:27:26.0045 0x18b0  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
11:27:26.0056 0x18b0  KtmRm - ok
11:27:26.0106 0x18b0  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
11:27:26.0117 0x18b0  LanmanServer - ok
11:27:26.0166 0x18b0  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
11:27:26.0174 0x18b0  LanmanWorkstation - ok
11:27:26.0219 0x18b0  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
11:27:26.0221 0x18b0  lfsvc - ok
11:27:26.0226 0x18b0  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
11:27:26.0228 0x18b0  LicenseManager - ok
11:27:26.0269 0x18b0  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
11:27:26.0271 0x18b0  lltdio - ok
11:27:26.0298 0x18b0  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
11:27:26.0307 0x18b0  lltdsvc - ok
11:27:26.0348 0x18b0  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
11:27:26.0350 0x18b0  lmhosts - ok
11:27:26.0390 0x18b0  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:27:26.0395 0x18b0  LMS - ok
11:27:26.0438 0x18b0  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
11:27:26.0442 0x18b0  LSI_SAS - ok
11:27:26.0463 0x18b0  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
11:27:26.0468 0x18b0  LSI_SAS2i - ok
11:27:26.0479 0x18b0  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
11:27:26.0482 0x18b0  LSI_SAS3i - ok
11:27:26.0502 0x18b0  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
11:27:26.0505 0x18b0  LSI_SSS - ok
11:27:26.0535 0x18b0  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
11:27:26.0553 0x18b0  LSM - ok
11:27:26.0576 0x18b0  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
11:27:26.0580 0x18b0  luafv - ok
11:27:26.0617 0x18b0  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
11:27:26.0620 0x18b0  MapsBroker - ok
11:27:26.0632 0x18b0  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
11:27:26.0634 0x18b0  megasas - ok
11:27:26.0656 0x18b0  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
11:27:26.0673 0x18b0  megasr - ok
11:27:26.0711 0x18b0  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
11:27:26.0714 0x18b0  MEIx64 - ok
11:27:26.0755 0x18b0  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
11:27:26.0771 0x18b0  mlx4_bus - ok
11:27:26.0805 0x18b0  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
11:27:26.0807 0x18b0  MMCSS - ok
11:27:26.0827 0x18b0  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
11:27:26.0829 0x18b0  Modem - ok
11:27:26.0844 0x18b0  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
11:27:26.0846 0x18b0  monitor - ok
11:27:26.0859 0x18b0  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
11:27:26.0861 0x18b0  mouclass - ok
11:27:26.0881 0x18b0  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
11:27:26.0883 0x18b0  mouhid - ok
11:27:26.0893 0x18b0  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
11:27:26.0898 0x18b0  mountmgr - ok
11:27:26.0984 0x18b0  [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:27:26.0991 0x18b0  MozillaMaintenance - ok
11:27:27.0017 0x18b0  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
11:27:27.0019 0x18b0  mpsdrv - ok
11:27:27.0080 0x18b0  [ A0DBB9386BEA8DA1A159C2A2E07081A3, 9D3F26005A76A72F9512F040D45C16124D17F8C8DA45C51FFAF74F066357D0A4 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
11:27:27.0124 0x18b0  MpsSvc - ok
11:27:27.0165 0x18b0  [ C1E74DD1D84861D8F12FF8BC0BA11975, 5912A0455C840F5C8AD6383823C9C7DE6FF8B5CAF1B72EA181864999891EAF30 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
11:27:27.0170 0x18b0  MRxDAV - ok
11:27:27.0221 0x18b0  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:27:27.0233 0x18b0  mrxsmb - ok
11:27:27.0266 0x18b0  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
11:27:27.0273 0x18b0  mrxsmb10 - ok
11:27:27.0302 0x18b0  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
11:27:27.0309 0x18b0  mrxsmb20 - ok
11:27:27.0364 0x18b0  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
11:27:27.0369 0x18b0  MsBridge - ok
11:27:27.0438 0x18b0  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
11:27:27.0443 0x18b0  MSDTC - ok
11:27:27.0463 0x18b0  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
11:27:27.0465 0x18b0  Msfs - ok
11:27:27.0504 0x18b0  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
11:27:27.0506 0x18b0  msgpiowin32 - ok
11:27:27.0526 0x18b0  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
11:27:27.0526 0x18b0  mshidkmdf - ok
11:27:27.0547 0x18b0  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
11:27:27.0548 0x18b0  mshidumdf - ok
11:27:27.0578 0x18b0  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
11:27:27.0579 0x18b0  msisadrv - ok
11:27:27.0629 0x18b0  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
11:27:27.0635 0x18b0  MSiSCSI - ok
11:27:27.0639 0x18b0  msiserver - ok
11:27:27.0664 0x18b0  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:27:27.0666 0x18b0  MSKSSRV - ok
11:27:27.0702 0x18b0  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
11:27:27.0704 0x18b0  MsLldp - ok
11:27:27.0743 0x18b0  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:27:27.0744 0x18b0  MSPCLOCK - ok
11:27:27.0768 0x18b0  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
11:27:27.0769 0x18b0  MSPQM - ok
11:27:27.0814 0x18b0  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
11:27:27.0824 0x18b0  MsRPC - ok
11:27:27.0848 0x18b0  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
11:27:27.0850 0x18b0  mssmbios - ok
11:27:27.0878 0x18b0  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
11:27:27.0879 0x18b0  MSTEE - ok
11:27:27.0919 0x18b0  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
11:27:27.0920 0x18b0  MTConfig - ok
11:27:27.0956 0x18b0  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
11:27:27.0959 0x18b0  Mup - ok
11:27:27.0992 0x18b0  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
11:27:27.0995 0x18b0  mvumis - ok
11:27:28.0056 0x18b0  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
11:27:28.0069 0x18b0  NativeWifiP - ok
11:27:28.0108 0x18b0  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
11:27:28.0114 0x18b0  NcaSvc - ok
11:27:28.0135 0x18b0  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
11:27:28.0144 0x18b0  NcbService - ok
11:27:28.0164 0x18b0  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
11:27:28.0168 0x18b0  NcdAutoSetup - ok
11:27:28.0201 0x18b0  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
11:27:28.0205 0x18b0  ndfltr - ok
11:27:28.0284 0x18b0  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
11:27:28.0312 0x18b0  NDIS - ok
11:27:28.0350 0x18b0  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
11:27:28.0352 0x18b0  NdisCap - ok
11:27:28.0365 0x18b0  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
11:27:28.0369 0x18b0  NdisImPlatform - ok
11:27:28.0381 0x18b0  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:27:28.0383 0x18b0  NdisTapi - ok
11:27:28.0401 0x18b0  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
11:27:28.0403 0x18b0  Ndisuio - ok
11:27:28.0438 0x18b0  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
11:27:28.0439 0x18b0  NdisVirtualBus - ok
11:27:28.0456 0x18b0  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
11:27:28.0461 0x18b0  NdisWan - ok
11:27:28.0470 0x18b0  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:27:28.0473 0x18b0  ndiswanlegacy - ok
11:27:28.0490 0x18b0  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
11:27:28.0493 0x18b0  ndproxy - ok
11:27:28.0508 0x18b0  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
11:27:28.0512 0x18b0  Ndu - ok
11:27:28.0525 0x18b0  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
11:27:28.0528 0x18b0  NetBIOS - ok
11:27:28.0552 0x18b0  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
11:27:28.0559 0x18b0  NetBT - ok
11:27:28.0571 0x18b0  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
11:27:28.0573 0x18b0  Netlogon - ok
11:27:28.0622 0x18b0  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
11:27:28.0630 0x18b0  Netman - ok
11:27:28.0691 0x18b0  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
11:27:28.0706 0x18b0  netprofm - ok
11:27:28.0720 0x18b0  [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
11:27:28.0725 0x18b0  NetSetupSvc - ok
11:27:28.0768 0x18b0  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:27:28.0803 0x18b0  NetTcpPortSharing - ok
11:27:28.0822 0x18b0  [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
11:27:28.0826 0x18b0  netvsc - ok
11:27:28.0974 0x18b0  [ 0F76FA3A3F8D169B1CA6F54DC7561CD5, F6C49E5D4F627FD539670DFCBC20C69F627A90CBA473873640D4DD378EE34ED5 ] NETwNe64        C:\WINDOWS\System32\drivers\NETwew01.sys
11:27:29.0047 0x18b0  NETwNe64 - ok
11:27:29.0104 0x18b0  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
11:27:29.0112 0x18b0  NgcCtnrSvc - ok
11:27:29.0126 0x18b0  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
11:27:29.0128 0x18b0  NgcSvc - ok
11:27:29.0171 0x18b0  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
11:27:29.0182 0x18b0  NlaSvc - ok
11:27:29.0222 0x18b0  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
11:27:29.0224 0x18b0  Npfs - ok
11:27:29.0228 0x18b0  npggsvc - ok
11:27:29.0269 0x18b0  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
11:27:29.0270 0x18b0  npsvctrig - ok
11:27:29.0323 0x18b0  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
11:27:29.0326 0x18b0  nsi - ok
11:27:29.0335 0x18b0  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
11:27:29.0337 0x18b0  nsiproxy - ok
11:27:29.0419 0x18b0  [ 466EC5659C02ED53DBD47DC1BC2B8086, 1F35DE75386F7D029C01D67B09D5E5157141C6892858885C11972CE73D6078AC ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
11:27:29.0468 0x18b0  NTFS - ok
11:27:29.0508 0x18b0  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
11:27:29.0509 0x18b0  Null - ok
11:27:29.0622 0x18b0  [ 1D8ED7BA5326A99939C3C7B29119EBAD, 02C1AD40B7F1BA87BF1CFAB4501AC4FEA24EB08E5224FE429F443D89F562D68C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
11:27:29.0630 0x18b0  NvContainerLocalSystem - ok
11:27:29.0646 0x18b0  [ 1D8ED7BA5326A99939C3C7B29119EBAD, 02C1AD40B7F1BA87BF1CFAB4501AC4FEA24EB08E5224FE429F443D89F562D68C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
11:27:29.0654 0x18b0  NvContainerNetworkService - ok
11:27:29.0754 0x18b0  [ 5A8E7AA19BD999C01A6F947F7464545A, EBD6C69DA260A6C4E07D3B3D615936E1E04E3C3B5BBDDE27BFA387F38C0807AB ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
11:27:29.0777 0x18b0  NVIDIA Wireless Controller Service - ok
11:27:30.0255 0x18b0  [ 0CD412D41220FEE9DD1166F7CE7B1DAB, 23CAB64C3DB3C90CAF2DE4100E192295B8F603B8347F8AC6FDC36C2C6D2520D2 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
11:27:30.0710 0x18b0  nvlddmkm - ok
11:27:30.0770 0x18b0  [ 14632E55F8E76E3CEFFD058EC0A545E6, 563E4EFC171D5BFEC77BA43E0426A38759B13A8BCA9C6E135E9E0356BBE6D897 ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
11:27:30.0773 0x18b0  nvpciflt - ok
11:27:30.0811 0x18b0  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
11:27:30.0817 0x18b0  nvraid - ok
11:27:30.0832 0x18b0  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
11:27:30.0837 0x18b0  nvstor - ok
11:27:30.0892 0x18b0  [ 30AFB1ED5380F237A2CFA82D6FF37173, 93E3E000218270596D09970EAE3E667E59123022D46F276B24221332203C045F ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
11:27:30.0894 0x18b0  NvStreamKms - ok
11:27:30.0968 0x18b0  [ 82EDBE5035039977247E13D31050A227, 2B8EFF2BAD16D61E4B166725148D280D66CD50776824EF26AC9C13EFD2ABA4B4 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
11:27:30.0992 0x18b0  nvsvc - ok
11:27:31.0032 0x18b0  [ CDB8AFAE146C9A0E4604400CA2CFA736, 8473597F44F4593E7AD01442C613070F32EE03D3DD69A4B3F1C7195109FD5E05 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
11:27:31.0034 0x18b0  nvvad_WaveExtensible - ok
11:27:31.0066 0x18b0  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
11:27:31.0071 0x18b0  nv_agp - ok
11:27:31.0126 0x18b0  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
11:27:31.0133 0x18b0  OneSyncSvc - ok
11:27:31.0337 0x18b0  [ AD851D818F399DD946A9C17AB2156F22, 4A541E7A3A3164581BFB9080DE0976E18F6DD00E39458EBBCBD3B2445708BEB5 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
11:27:31.0391 0x18b0  Origin Client Service - ok
11:27:31.0484 0x18b0  [ 788363C87EBD90AC1EAD2DC5A9A40759, B565663B459414C5C9F81451D9A127D62CDF605BC2A9E686F74A2E4FD44A9B43 ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
11:27:31.0560 0x18b0  Origin Web Helper Service - ok
11:27:31.0624 0x18b0  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:27:31.0628 0x18b0  ose - ok
11:27:31.0675 0x18b0  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
11:27:31.0687 0x18b0  p2pimsvc - ok
11:27:31.0752 0x18b0  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
11:27:31.0765 0x18b0  p2psvc - ok
11:27:31.0807 0x18b0  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
11:27:31.0814 0x18b0  Parport - ok
11:27:31.0833 0x18b0  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
11:27:31.0837 0x18b0  partmgr - ok
11:27:31.0869 0x18b0  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
11:27:31.0883 0x18b0  PcaSvc - ok
11:27:31.0905 0x18b0  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
11:27:31.0913 0x18b0  pci - ok
11:27:31.0932 0x18b0  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
11:27:31.0933 0x18b0  pciide - ok
11:27:31.0956 0x18b0  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
11:27:31.0960 0x18b0  pcmcia - ok
11:27:31.0980 0x18b0  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
11:27:31.0981 0x18b0  pcw - ok
11:27:32.0022 0x18b0  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
11:27:32.0025 0x18b0  pdc - ok
11:27:32.0085 0x18b0  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
11:27:32.0102 0x18b0  PEAUTH - ok
11:27:32.0129 0x18b0  [ EE926C59CBD4DC4DC9FBB85014A2F1A5, 777459BD30A480E03EA5D0BBA431C2CD573403687FAA0B29F172086A0304E230 ] PEGAGFN         C:\Program Files (x86)\PHotkey\PEGAGFN.sys
11:27:32.0130 0x18b0  PEGAGFN - ok
11:27:32.0161 0x18b0  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
11:27:32.0163 0x18b0  percsas2i - ok
11:27:32.0176 0x18b0  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
11:27:32.0178 0x18b0  percsas3i - ok
11:27:32.0278 0x18b0  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
11:27:32.0303 0x18b0  PerfHost - ok
11:27:32.0358 0x18b0  [ 839BD56425530973FF3F6F7C0057CD22, 9BADF39BC4628409CFCD5F1300C6040C49B2ED72D0FA389C6BB042E5B17E1A40 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
11:27:32.0367 0x18b0  PimIndexMaintenanceSvc - ok
11:27:32.0465 0x18b0  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
11:27:32.0503 0x18b0  pla - ok
11:27:32.0557 0x18b0  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
11:27:32.0561 0x18b0  PlugPlay - ok
11:27:32.0577 0x18b0  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
11:27:32.0580 0x18b0  PNRPAutoReg - ok
11:27:32.0606 0x18b0  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
11:27:32.0615 0x18b0  PNRPsvc - ok
11:27:32.0664 0x18b0  [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
11:27:32.0677 0x18b0  PolicyAgent - ok
11:27:32.0697 0x18b0  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
11:27:32.0702 0x18b0  Power - ok
11:27:32.0745 0x18b0  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
11:27:32.0748 0x18b0  PptpMiniport - ok
11:27:32.0919 0x18b0  [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
11:27:32.0996 0x18b0  PrintNotify - ok
11:27:33.0037 0x18b0  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
11:27:33.0041 0x18b0  Processor - ok
11:27:33.0090 0x18b0  [ 27D0B024BB356C6BEB1214B61E47DE02, 8CBDD62E243CC652F2197AE83DEDD21D91D2792558A6D7D1CC680B37607DEF4B ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
11:27:33.0099 0x18b0  ProfSvc - ok
11:27:33.0140 0x18b0  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
11:27:33.0145 0x18b0  Psched - ok
11:27:33.0190 0x18b0  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
11:27:33.0199 0x18b0  QWAVE - ok
11:27:33.0222 0x18b0  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
11:27:33.0224 0x18b0  QWAVEdrv - ok
11:27:33.0241 0x18b0  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:27:33.0243 0x18b0  RasAcd - ok
11:27:33.0280 0x18b0  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
11:27:33.0283 0x18b0  RasAgileVpn - ok
11:27:33.0306 0x18b0  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
11:27:33.0311 0x18b0  RasAuto - ok
11:27:33.0327 0x18b0  [ CA60F6C03611AF1710BC903ED9F566FB, B5C9E8BAC631738761E11168AB68EB1ECC5EC96BF9A8248B9127DCF744CA4691 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
11:27:33.0329 0x18b0  Rasl2tp - ok
11:27:33.0366 0x18b0  [ 586A17C10D417D889F1FF7D8636E2F34, EEDA4EE8D2BC5C8C7756AB79F1F19AF8B1C4057996748FAE4E3F37844DB0EB33 ] RasMan          C:\WINDOWS\System32\rasmans.dll
11:27:33.0388 0x18b0  RasMan - ok
11:27:33.0407 0x18b0  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
11:27:33.0409 0x18b0  RasPppoe - ok
11:27:33.0422 0x18b0  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
11:27:33.0425 0x18b0  RasSstp - ok
11:27:33.0458 0x18b0  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:27:33.0468 0x18b0  rdbss - ok
11:27:33.0482 0x18b0  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
11:27:33.0483 0x18b0  rdpbus - ok
11:27:33.0533 0x18b0  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
11:27:33.0540 0x18b0  RDPDR - ok
11:27:33.0557 0x18b0  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
11:27:33.0559 0x18b0  RdpVideoMiniport - ok
11:27:33.0583 0x18b0  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
11:27:33.0591 0x18b0  rdyboost - ok
11:27:33.0630 0x18b0  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
11:27:33.0653 0x18b0  ReFSv1 - ok
11:27:33.0704 0x18b0  [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
11:27:33.0719 0x18b0  RemoteAccess - ok
11:27:33.0776 0x18b0  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
11:27:33.0782 0x18b0  RemoteRegistry - ok
11:27:33.0848 0x18b0  [ 891C83BE8BA62B7547B9A6576A360C71, B808FE4B5A93B8C971C2AF6CC7F0BAE7154A43A87D6CE0826277D1D7D7948E24 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
11:27:33.0874 0x18b0  RetailDemo - ok
11:27:33.0889 0x18b0  [ 67E83C0C9A2B5ACEE9EF690E6B7E9189, 63D2A73B2031B52C66EF0455393BF05C55F9F7B0B9E48C54A39E547D46E090F6 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
11:27:33.0893 0x18b0  RFCOMM - ok
11:27:33.0991 0x18b0  [ 0B169FE016039571ECC6DB70073F8979, B80663433919C3DE83A02E376E5B3020856C6E9E98B5773D316FD9C1C02C1417 ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
11:27:33.0998 0x18b0  RichVideo64 - ok
11:27:34.0046 0x18b0  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
11:27:34.0050 0x18b0  RpcEptMapper - ok
11:27:34.0088 0x18b0  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
11:27:34.0091 0x18b0  RpcLocator - ok
11:27:34.0127 0x18b0  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
11:27:34.0147 0x18b0  RpcSs - ok
11:27:34.0189 0x18b0  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
11:27:34.0193 0x18b0  rspndr - ok
11:27:34.0223 0x18b0  [ 0E32A8922DCFD28EA00AAEC07CB3F331, 27F329C6A66DB01C291E1EDCEB7781A05658520B12FF8ECD1FBD3B86EF78DF30 ] RSUSBSTOR       C:\WINDOWS\System32\Drivers\RtsUStor.sys
11:27:34.0229 0x18b0  RSUSBSTOR - ok
11:27:34.0288 0x18b0  [ 179E6BCF8D16AD39C137CB4FCFE015C5, A1DF499AA378BDB1CB7F95ACC0C7D6929358AF4596A47FDEDFAE115461563CD5 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
11:27:34.0301 0x18b0  rt640x64 - ok
11:27:34.0424 0x18b0  [ 5ABFE8CAB411EDBAF76356F559365CD5, C3971E412B7AEDC731CBF54A166A82A05036A11E3B7674D379249E8E0CEC5C46 ] RtlWlanu        C:\WINDOWS\System32\drivers\rtwlanu.sys
11:27:34.0607 0x18b0  RtlWlanu - ok
11:27:34.0649 0x18b0  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
11:27:34.0650 0x18b0  s3cap - ok
11:27:34.0695 0x18b0  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs           C:\WINDOWS\system32\lsass.exe
11:27:34.0698 0x18b0  SamSs - ok
11:27:34.0721 0x18b0  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
11:27:34.0724 0x18b0  sbp2port - ok
11:27:34.0769 0x18b0  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
11:27:34.0787 0x18b0  SCardSvr - ok
11:27:34.0827 0x18b0  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
11:27:34.0834 0x18b0  ScDeviceEnum - ok
11:27:34.0852 0x18b0  [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
11:27:34.0854 0x18b0  scfilter - ok
11:27:34.0894 0x18b0  [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
11:27:34.0919 0x18b0  Schedule - ok
11:27:34.0965 0x18b0  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
11:27:34.0971 0x18b0  SCPolicySvc - ok
11:27:35.0018 0x18b0  [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
11:27:35.0025 0x18b0  sdbus - ok
11:27:35.0073 0x18b0  [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
11:27:35.0079 0x18b0  SDRSVC - ok
11:27:35.0117 0x18b0  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
11:27:35.0120 0x18b0  sdstor - ok
11:27:35.0142 0x18b0  [ 648A299839E8F48A946C41DE270D28F5, EEC9A5FCBE3FF78FB5E0452FF1932A8B0C7399688041E22555703CB1977A4428 ] seclogon        C:\WINDOWS\system32\seclogon.dll
11:27:35.0146 0x18b0  seclogon - ok
11:27:35.0189 0x18b0  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
11:27:35.0193 0x18b0  SENS - ok
11:27:35.0265 0x18b0  [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
11:27:35.0294 0x18b0  SensorDataService - ok
11:27:35.0332 0x18b0  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
11:27:35.0341 0x18b0  SensorService - ok
11:27:35.0358 0x18b0  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
11:27:35.0365 0x18b0  SensrSvc - ok
11:27:35.0400 0x18b0  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
11:27:35.0404 0x18b0  SerCx - ok
11:27:35.0421 0x18b0  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
11:27:35.0425 0x18b0  SerCx2 - ok
11:27:35.0439 0x18b0  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
11:27:35.0441 0x18b0  Serenum - ok
11:27:35.0452 0x18b0  [ 2A5F5F95FCA123DCBF53B5F603B64789, DE5C9E1D88B2C180B137DA7839F3EF6C936A171ABA49F89C10EE9C73A2226F3F ] Serial          C:\WINDOWS\System32\drivers\serial.sys
11:27:35.0454 0x18b0  Serial - ok
11:27:35.0468 0x18b0  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
11:27:35.0470 0x18b0  sermouse - ok
11:27:35.0524 0x18b0  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
11:27:35.0535 0x18b0  SessionEnv - ok
11:27:35.0550 0x18b0  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
11:27:35.0551 0x18b0  sfloppy - ok
11:27:35.0612 0x18b0  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
11:27:35.0626 0x18b0  SharedAccess - ok
11:27:35.0676 0x18b0  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:27:35.0691 0x18b0  ShellHWDetection - ok
11:27:35.0712 0x18b0  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
11:27:35.0714 0x18b0  SiSRaid2 - ok
11:27:35.0727 0x18b0  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
11:27:35.0730 0x18b0  SiSRaid4 - ok
11:27:35.0840 0x18b0  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
11:27:35.0849 0x18b0  SkypeUpdate - ok
11:27:35.0893 0x18b0  [ 1FE05A4F787ED7DD39EA968172F20AFC, 566ECC090F120A4627B597EA65E6CF7D1A40CF840DFBED22EF224445D442815A ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
11:27:35.0895 0x18b0  SmbDrvI - ok
11:27:35.0938 0x18b0  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
11:27:35.0942 0x18b0  smphost - ok
11:27:35.0998 0x18b0  [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
11:27:36.0021 0x18b0  SmsRouter - ok
11:27:36.0066 0x18b0  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
11:27:36.0069 0x18b0  SNMPTRAP - ok
11:27:36.0112 0x18b0  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
11:27:36.0128 0x18b0  spaceport - ok
11:27:36.0144 0x18b0  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
11:27:36.0147 0x18b0  SpbCx - ok
11:27:36.0251 0x18b0  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\WINDOWS\SysWOW64\speedfan.sys
11:27:36.0254 0x18b0  speedfan - ok
11:27:36.0315 0x18b0  [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
11:27:36.0335 0x18b0  Spooler - ok
11:27:36.0568 0x18b0  [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
11:27:36.0699 0x18b0  sppsvc - ok
11:27:36.0747 0x18b0  [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
11:27:36.0757 0x18b0  srv - ok
11:27:36.0821 0x18b0  [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
11:27:36.0838 0x18b0  srv2 - ok
11:27:36.0864 0x18b0  [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
11:27:36.0870 0x18b0  srvnet - ok
11:27:36.0911 0x18b0  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
11:27:36.0919 0x18b0  SSDPSRV - ok
11:27:36.0968 0x18b0  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
11:27:36.0975 0x18b0  SstpSvc - ok
11:27:37.0088 0x18b0  [ C26E2C89EFB4BB39CD135B5DED804B78, 99288C6023DC6AC6554521EA671AB387ACE2AE2BCDE145C7012202842FF40841 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
11:27:37.0153 0x18b0  StateRepository - ok
11:27:37.0297 0x18b0  [ 3B710E79D9BE2F149B66FBBF3F57A35E, 0A18823FCAB94B350F6177E9459E3E1DBA4FC52177056A3319E545AB7FED057E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:27:37.0331 0x18b0  Steam Client Service - ok
11:27:37.0352 0x18b0  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
11:27:37.0353 0x18b0  stexstor - ok
11:27:37.0413 0x18b0  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
11:27:37.0429 0x18b0  stisvc - ok
11:27:37.0472 0x18b0  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
11:27:37.0476 0x18b0  storahci - ok
11:27:37.0511 0x18b0  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
11:27:37.0514 0x18b0  storflt - ok
11:27:37.0527 0x18b0  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
11:27:37.0529 0x18b0  stornvme - ok
11:27:37.0551 0x18b0  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
11:27:37.0553 0x18b0  storqosflt - ok
11:27:37.0605 0x18b0  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
         

Alt 15.12.2016, 11:42   #11
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Code:
ATTFilter
11:27:37.0619 0x18b0  StorSvc - ok
11:27:37.0638 0x18b0  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
11:27:37.0640 0x18b0  storufs - ok
11:27:37.0659 0x18b0  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
11:27:37.0660 0x18b0  storvsc - ok
11:27:37.0699 0x18b0  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
11:27:37.0702 0x18b0  svsvc - ok
11:27:37.0806 0x18b0  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
11:27:37.0807 0x18b0  swenum - ok
11:27:37.0843 0x18b0  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
11:27:37.0857 0x18b0  swprv - ok
11:27:37.0898 0x18b0  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
11:27:37.0915 0x18b0  Synth3dVsc - ok
11:27:37.0991 0x18b0  [ A3BBF71752E47CDF444DFD49E971E16B, A3E6F9D781FCF1F8146E23D90F9DFDAA24C20BCA82A00BE9534974720E003776 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
11:27:38.0016 0x18b0  SynTP - ok
11:27:38.0132 0x18b0  [ 9C58665F465646B0784F595240237C10, 92033D63EF21733CA76BF47C433142F7A2390149C9162967F13C9F3F29236DBD ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
11:27:38.0141 0x18b0  SynTPEnhService - ok
11:27:38.0217 0x18b0  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
11:27:38.0243 0x18b0  SysMain - ok
11:27:38.0292 0x18b0  [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
11:27:38.0304 0x18b0  SystemEventsBroker - ok
11:27:38.0347 0x18b0  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
11:27:38.0353 0x18b0  TabletInputService - ok
11:27:38.0367 0x18b0  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
11:27:38.0376 0x18b0  TapiSrv - ok
11:27:38.0483 0x18b0  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
11:27:38.0539 0x18b0  Tcpip - ok
11:27:38.0606 0x18b0  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
11:27:38.0652 0x18b0  Tcpip6 - ok
11:27:38.0697 0x18b0  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
11:27:38.0699 0x18b0  tcpipreg - ok
11:27:38.0747 0x18b0  [ 28E1E63A1AC65E17B3194238FA2CF3BF, 9A52D6DD14BEBB7B407B2703A111D1B302F1B84AA40A14D21FCA554F395E935D ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
11:27:38.0751 0x18b0  tdx - ok
11:27:39.0004 0x18b0  [ F2F02E436BA56A96A06E4427C5787B6E, 1562FF264011A15AC69808CB74F387917C4E8ED3B91546B12933BE10B6E20B3A ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
11:27:39.0152 0x18b0  TeamViewer - ok
11:27:39.0182 0x18b0  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
11:27:39.0184 0x18b0  terminpt - ok
11:27:39.0258 0x18b0  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
11:27:39.0282 0x18b0  TermService - ok
11:27:39.0313 0x18b0  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
11:27:39.0317 0x18b0  Themes - ok
11:27:39.0369 0x18b0  [ 8D23F0819A00C547814409B734DD3747, 0E1B25A53C84486F8A57F309F3C016114F90F5AF5E576889BD230931F38594A5 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
11:27:39.0383 0x18b0  tiledatamodelsvc - ok
11:27:39.0403 0x18b0  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
11:27:39.0410 0x18b0  TimeBroker - ok
11:27:39.0432 0x18b0  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
11:27:39.0439 0x18b0  TPM - ok
11:27:39.0462 0x18b0  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
11:27:39.0468 0x18b0  TrkWks - ok
11:27:39.0536 0x18b0  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
11:27:39.0541 0x18b0  TrustedInstaller - ok
11:27:39.0557 0x18b0  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
11:27:39.0560 0x18b0  TsUsbFlt - ok
11:27:39.0591 0x18b0  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
11:27:39.0593 0x18b0  TsUsbGD - ok
11:27:39.0616 0x18b0  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
11:27:39.0620 0x18b0  tunnel - ok
11:27:39.0663 0x18b0  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
11:27:39.0666 0x18b0  uagp35 - ok
11:27:39.0682 0x18b0  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
11:27:39.0685 0x18b0  UASPStor - ok
11:27:39.0702 0x18b0  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
11:27:39.0704 0x18b0  UcmCx0101 - ok
11:27:39.0722 0x18b0  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
11:27:39.0724 0x18b0  UcmUcsi - ok
11:27:39.0748 0x18b0  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
11:27:39.0753 0x18b0  Ucx01000 - ok
11:27:39.0766 0x18b0  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
11:27:39.0767 0x18b0  UdeCx - ok
11:27:39.0786 0x18b0  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
11:27:39.0814 0x18b0  udfs - ok
11:27:39.0832 0x18b0  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
11:27:39.0834 0x18b0  UEFI - ok
11:27:39.0854 0x18b0  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
11:27:39.0862 0x18b0  Ufx01000 - ok
11:27:39.0883 0x18b0  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
11:27:39.0885 0x18b0  UfxChipidea - ok
11:27:39.0906 0x18b0  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
11:27:39.0912 0x18b0  ufxsynopsys - ok
11:27:39.0959 0x18b0  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
11:27:39.0964 0x18b0  UI0Detect - ok
11:27:39.0980 0x18b0  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
11:27:39.0982 0x18b0  uliagpkx - ok
11:27:40.0000 0x18b0  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
11:27:40.0002 0x18b0  umbus - ok
11:27:40.0038 0x18b0  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
11:27:40.0039 0x18b0  UmPass - ok
11:27:40.0093 0x18b0  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
11:27:40.0104 0x18b0  UmRdpService - ok
11:27:40.0182 0x18b0  [ 0D5C9E27E93AAEA3E30A1E59A7AC3DFF, 31A203DA03877E6B887930990C5BB53402F0DFFB22A6F8FC5A34EF0B99CD8A7E ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
11:27:40.0219 0x18b0  UnistoreSvc - ok
11:27:40.0381 0x18b0  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
11:27:40.0387 0x18b0  UNS - ok
11:27:40.0434 0x18b0  [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost        C:\WINDOWS\System32\upnphost.dll
11:27:40.0448 0x18b0  upnphost - ok
11:27:40.0469 0x18b0  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
11:27:40.0470 0x18b0  UrsChipidea - ok
11:27:40.0508 0x18b0  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
11:27:40.0510 0x18b0  UrsCx01000 - ok
11:27:40.0530 0x18b0  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
11:27:40.0531 0x18b0  UrsSynopsys - ok
11:27:40.0574 0x18b0  [ 8047D8AFA070A4C3B9FCBDBF77A84C45, D8B47716EE57391E3B9CBE3B35FF1F933F08E40B1C8C12EB5BE2438D9E409FF0 ] usb3Hub         C:\WINDOWS\System32\drivers\usb3Hub.sys
11:27:40.0577 0x18b0  usb3Hub - ok
11:27:40.0615 0x18b0  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
11:27:40.0619 0x18b0  usbccgp - ok
11:27:40.0657 0x18b0  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
11:27:40.0662 0x18b0  usbcir - ok
11:27:40.0708 0x18b0  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
11:27:40.0712 0x18b0  usbehci - ok
11:27:40.0769 0x18b0  [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
11:27:40.0781 0x18b0  usbhub - ok
11:27:40.0835 0x18b0  [ C08449092043601887A1743350888635, 5CD916649D2CD8823B89C9E7459AD76AA8E54D70B6D9F40AD4A41144E22ACBE0 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
11:27:40.0849 0x18b0  USBHUB3 - ok
11:27:40.0873 0x18b0  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
11:27:40.0875 0x18b0  usbohci - ok
11:27:40.0890 0x18b0  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
11:27:40.0893 0x18b0  usbprint - ok
11:27:40.0912 0x18b0  [ 1F72E1A7E1858B7B3FF81522FCEBDE95, 4FAD243DA73C45CD5CA5E50F824F30EF0DC777D83957FD21FF43D8C89EC15AAC ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
11:27:40.0914 0x18b0  usbser - ok
11:27:40.0929 0x18b0  [ CD35467670DF1E6FBF36DA308F0C872B, E1F4F9B1EBD476394CBD0C934842AEE2502B030D97351B0A1E751FF23B011B57 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
11:27:40.0934 0x18b0  USBSTOR - ok
11:27:40.0958 0x18b0  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
11:27:40.0960 0x18b0  usbuhci - ok
11:27:40.0984 0x18b0  [ B1484D4BBC6B7B424F1CD1554B0AFB84, C9432978603360182AAA983248FFA97576B3C59BE5DA45473DFA17E2940479C8 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
11:27:40.0989 0x18b0  usbvideo - ok
11:27:41.0018 0x18b0  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
11:27:41.0028 0x18b0  USBXHCI - ok
11:27:41.0105 0x18b0  [ 32212C0FE0556915E763C29DEB6D267E, C5BC9DA3AB0C41604E8F3D01AFC2C25351FF5D3967E766DD0CDB4C0239ED6312 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
11:27:41.0140 0x18b0  UserDataSvc - ok
11:27:41.0206 0x18b0  [ E9E2B5FFBEFC2CDF14A6E55DD94CC823, A10C011835A65601B8FE3A30F361C224C60084A78085842ADCDA248047530CD1 ] UserManager     C:\WINDOWS\System32\usermgr.dll
11:27:41.0229 0x18b0  UserManager - ok
11:27:41.0282 0x18b0  [ 0CFEA30C0217EE74FF853B2B0CC0BE6D, 1F0856D2D94F46D7B24B7EE18ED868C9EFAE972039D35D1FAA9058A12CF40493 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
11:27:41.0292 0x18b0  UsoSvc - ok
11:27:41.0340 0x18b0  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
11:27:41.0343 0x18b0  VaultSvc - ok
11:27:41.0355 0x18b0  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
11:27:41.0357 0x18b0  vdrvroot - ok
11:27:41.0422 0x18b0  [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds             C:\WINDOWS\System32\vds.exe
11:27:41.0444 0x18b0  vds - ok
11:27:41.0462 0x18b0  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
11:27:41.0467 0x18b0  VerifierExt - ok
11:27:41.0497 0x18b0  [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
11:27:41.0516 0x18b0  vhdmp - ok
11:27:41.0559 0x18b0  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
11:27:41.0561 0x18b0  vhf - ok
11:27:41.0580 0x18b0  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
11:27:41.0584 0x18b0  vmbus - ok
11:27:41.0595 0x18b0  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
11:27:41.0597 0x18b0  VMBusHID - ok
11:27:41.0658 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
11:27:41.0673 0x18b0  vmicguestinterface - ok
11:27:41.0693 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
11:27:41.0707 0x18b0  vmicheartbeat - ok
11:27:41.0726 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
11:27:41.0738 0x18b0  vmickvpexchange - ok
11:27:41.0756 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
11:27:41.0767 0x18b0  vmicrdv - ok
11:27:41.0784 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
11:27:41.0797 0x18b0  vmicshutdown - ok
11:27:41.0815 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
11:27:41.0828 0x18b0  vmictimesync - ok
11:27:41.0844 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
11:27:41.0856 0x18b0  vmicvmsession - ok
11:27:41.0875 0x18b0  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
11:27:41.0889 0x18b0  vmicvss - ok
11:27:41.0910 0x18b0  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
11:27:41.0913 0x18b0  volmgr - ok
11:27:41.0945 0x18b0  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
11:27:41.0953 0x18b0  volmgrx - ok
11:27:41.0979 0x18b0  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
11:27:41.0987 0x18b0  volsnap - ok
11:27:42.0022 0x18b0  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
11:27:42.0025 0x18b0  vpci - ok
11:27:42.0046 0x18b0  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
11:27:42.0051 0x18b0  vsmraid - ok
11:27:42.0122 0x18b0  [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS             C:\WINDOWS\system32\vssvc.exe
11:27:42.0155 0x18b0  VSS - ok
11:27:42.0198 0x18b0  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
11:27:42.0205 0x18b0  VSTXRAID - ok
11:27:42.0250 0x18b0  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
11:27:42.0251 0x18b0  vwifibus - ok
11:27:42.0268 0x18b0  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
11:27:42.0270 0x18b0  vwififlt - ok
11:27:42.0286 0x18b0  [ 37C868DDE3103130B00AD1313DAB5ACB, BF9C30817A3502F5C0673FD462B18FE1BF37963B29DF09D84B66BDCBF8ECBA81 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
11:27:42.0289 0x18b0  vwifimp - ok
11:27:42.0348 0x18b0  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
11:27:42.0361 0x18b0  W32Time - ok
11:27:42.0428 0x18b0  [ 9776E4816D92B766F461957FBDA84360, 048F6ADC97767AFAB50582D0AE1E67A15B038A1C02F7982A6AD30B61AC5C7369 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
11:27:42.0431 0x18b0  w3logsvc - ok
11:27:42.0462 0x18b0  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
11:27:42.0479 0x18b0  W3SVC - ok
11:27:42.0517 0x18b0  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
11:27:42.0518 0x18b0  WacomPen - ok
11:27:42.0570 0x18b0  [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService   C:\WINDOWS\system32\WalletService.dll
11:27:42.0584 0x18b0  WalletService - ok
11:27:42.0604 0x18b0  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:27:42.0607 0x18b0  wanarp - ok
11:27:42.0613 0x18b0  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:27:42.0615 0x18b0  wanarpv6 - ok
11:27:42.0633 0x18b0  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
11:27:42.0644 0x18b0  WAS - ok
11:27:42.0734 0x18b0  [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine        C:\WINDOWS\system32\wbengine.exe
11:27:42.0773 0x18b0  wbengine - ok
11:27:42.0823 0x18b0  [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
11:27:42.0839 0x18b0  WbioSrvc - ok
11:27:42.0901 0x18b0  [ A40484AC27EE08DBE7F8DA5E1F6651ED, E3259694450C4F1DEC5E0EA5E23BF3A51F1819374DF47FECF70282AFD46114A1 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
11:27:42.0918 0x18b0  Wcmsvc - ok
11:27:42.0974 0x18b0  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
11:27:42.0988 0x18b0  wcncsvc - ok
11:27:43.0004 0x18b0  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
11:27:43.0009 0x18b0  WcsPlugInService - ok
11:27:43.0044 0x18b0  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
11:27:43.0047 0x18b0  WdBoot - ok
11:27:43.0087 0x18b0  [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
11:27:43.0114 0x18b0  Wdf01000 - ok
11:27:43.0139 0x18b0  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
11:27:43.0147 0x18b0  WdFilter - ok
11:27:43.0159 0x18b0  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
11:27:43.0165 0x18b0  WdiServiceHost - ok
11:27:43.0171 0x18b0  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
11:27:43.0176 0x18b0  WdiSystemHost - ok
11:27:43.0226 0x18b0  [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
11:27:43.0246 0x18b0  wdiwifi - ok
11:27:43.0263 0x18b0  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
11:27:43.0280 0x18b0  WdNisDrv - ok
11:27:43.0325 0x18b0  WdNisSvc - ok
11:27:43.0359 0x18b0  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
11:27:43.0369 0x18b0  WebClient - ok
11:27:43.0395 0x18b0  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
11:27:43.0405 0x18b0  Wecsvc - ok
11:27:43.0427 0x18b0  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
11:27:43.0430 0x18b0  WEPHOSTSVC - ok
11:27:43.0452 0x18b0  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
11:27:43.0457 0x18b0  wercplsupport - ok
11:27:43.0472 0x18b0  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
11:27:43.0479 0x18b0  WerSvc - ok
11:27:43.0483 0x18b0  wfpcapture - ok
11:27:43.0509 0x18b0  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
11:27:43.0515 0x18b0  WFPLWFS - ok
11:27:43.0528 0x18b0  [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
11:27:43.0534 0x18b0  WiaRpc - ok
11:27:43.0575 0x18b0  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
11:27:43.0577 0x18b0  WIMMount - ok
11:27:43.0581 0x18b0  WinDefend - ok
11:27:43.0632 0x18b0  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
11:27:43.0635 0x18b0  WindowsTrustedRT - ok
11:27:43.0662 0x18b0  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
11:27:43.0663 0x18b0  WindowsTrustedRTProxy - ok
11:27:43.0726 0x18b0  [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
11:27:43.0748 0x18b0  WinHttpAutoProxySvc - ok
11:27:43.0779 0x18b0  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
11:27:43.0780 0x18b0  WinMad - ok
11:27:43.0839 0x18b0  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
11:27:43.0846 0x18b0  Winmgmt - ok
11:27:43.0950 0x18b0  [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
11:27:44.0013 0x18b0  WinRM - ok
11:27:44.0065 0x18b0  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
11:27:44.0068 0x18b0  WINUSB - ok
11:27:44.0112 0x18b0  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
11:27:44.0114 0x18b0  WinVerbs - ok
11:27:44.0187 0x18b0  [ 3C096082A9232B7CEE4653B9C9031769, CFD4C7D0874097ED70735FD99206F21C12749B7956C4B5D4287F160EC6A21DCC ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
11:27:44.0241 0x18b0  WlanSvc - ok
11:27:44.0331 0x18b0  [ 0968D575D9108497A6DC37749D4A6C4F, 8BFEDBE642DA0FD8AC1E60180C192527F3D36E43089090A7BB6D8B27AB6E4F7F ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
11:27:44.0381 0x18b0  wlidsvc - ok
11:27:44.0403 0x18b0  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
11:27:44.0405 0x18b0  WmiAcpi - ok
11:27:44.0458 0x18b0  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
11:27:44.0463 0x18b0  wmiApSrv - ok
11:27:44.0494 0x18b0  WMPNetworkSvc - ok
11:27:44.0541 0x18b0  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
11:27:44.0548 0x18b0  Wof - ok
11:27:44.0638 0x18b0  [ C7503A49364DB2AF7A7DE177B233081F, 85DC6D8B5631E51FCF395A884F58571A96C8C55C38CA9ABEBD9C75BABAD21E38 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
11:27:44.0680 0x18b0  workfolderssvc - ok
11:27:44.0728 0x18b0  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
11:27:44.0731 0x18b0  wpcfltr - ok
11:27:44.0769 0x18b0  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
11:27:44.0775 0x18b0  WPDBusEnum - ok
11:27:44.0792 0x18b0  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
11:27:44.0794 0x18b0  WpdUpFltr - ok
11:27:44.0828 0x18b0  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
11:27:44.0902 0x18b0  WpnService - ok
11:27:44.0956 0x18b0  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
11:27:44.0958 0x18b0  ws2ifsl - ok
11:27:45.0059 0x18b0  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
11:27:45.0066 0x18b0  wscsvc - ok
11:27:45.0072 0x18b0  WSearch - ok
11:27:45.0224 0x18b0  [ 9EB85802AB625970E05879D15DE56335, B7DCE5E1924A5CEE76CC07FF3B8CEDBBD0DDBB4C4ED0A3BFB8D1ABCAD7C0AA23 ] WSService       C:\WINDOWS\System32\WSService.dll
11:27:45.0305 0x18b0  WSService - ok
11:27:45.0413 0x18b0  [ B70FF53144AC4B3C7D98BFB7D7C239BD, 996F6253F24C6D734B777988CDE03CD3A32FFBAD6D7A198F1C590B762CD8DC0E ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
11:27:45.0464 0x18b0  wuauserv - ok
11:27:45.0509 0x18b0  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
11:27:45.0513 0x18b0  WudfPf - ok
11:27:45.0539 0x18b0  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
11:27:45.0545 0x18b0  WUDFRd - ok
11:27:45.0585 0x18b0  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
11:27:45.0589 0x18b0  wudfsvc - ok
11:27:45.0662 0x18b0  [ D23F211E1AA0787EFEC373D172D4A1C2, 6CCAB272D121C9946B2CF6B19F50E09946F0187713D54BFBD371B5C017367204 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
11:27:45.0693 0x18b0  WwanSvc - ok
11:27:45.0736 0x18b0  [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
11:27:45.0758 0x18b0  XblAuthManager - ok
11:27:45.0811 0x18b0  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
11:27:45.0839 0x18b0  XblGameSave - ok
11:27:45.0861 0x18b0  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
11:27:45.0868 0x18b0  xboxgip - ok
11:27:45.0933 0x18b0  [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
11:27:45.0959 0x18b0  XboxNetApiSvc - ok
11:27:46.0001 0x18b0  [ 24E57041608ED6A9D7FDAD0D9EC214E2, 895A16072F5EFFF57A7DCA21917540726BF816A2746EC47A066AAD363F69E5D7 ] XHCIPort        C:\WINDOWS\System32\drivers\XHCIPort.sys
11:27:46.0008 0x18b0  XHCIPort - ok
11:27:46.0042 0x18b0  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
11:27:46.0044 0x18b0  xinputhid - ok
11:27:46.0083 0x18b0  [ 1E80EDF59994925D6AF76D87564588E1, 40D02073F3A17B6C10F496341598D39F55CE70AD626BADE1BBD2021AB1A018F9 ] xusb22          C:\WINDOWS\System32\drivers\xusb22.sys
11:27:46.0086 0x18b0  xusb22 - ok
11:27:46.0095 0x18b0  ================ Scan global ===============================
11:27:46.0133 0x18b0  [ C6BC6E49A7F76AA2BBA58CD08196755F, D02B6B285899E966D19323566A4780D51303D00E66674D7FF4B61991430A69A6 ] C:\WINDOWS\system32\basesrv.dll
11:27:46.0169 0x18b0  [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
11:27:46.0214 0x18b0  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
11:27:46.0268 0x18b0  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
11:27:46.0278 0x18b0  [ Global ] - ok
11:27:46.0278 0x18b0  ================ Scan MBR ==================================
11:27:46.0290 0x18b0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:27:46.0299 0x18b0  \Device\Harddisk0\DR0 - ok
11:27:46.0300 0x18b0  ================ Scan VBR ==================================
11:27:46.0320 0x18b0  [ 05B537D6EA6094B4AEF0309399AFE59F ] \Device\Harddisk0\DR0\Partition1
11:27:46.0321 0x18b0  \Device\Harddisk0\DR0\Partition1 - ok
11:27:46.0338 0x18b0  [ 26BDC174EDD9AC50DB1060290902BB6B ] \Device\Harddisk0\DR0\Partition2
11:27:46.0338 0x18b0  \Device\Harddisk0\DR0\Partition2 - ok
11:27:46.0351 0x18b0  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
11:27:46.0352 0x18b0  \Device\Harddisk0\DR0\Partition3 - ok
11:27:46.0368 0x18b0  [ 90E3D512CBCD84251E1EB9F7D9D96CE6 ] \Device\Harddisk0\DR0\Partition4
11:27:46.0369 0x18b0  \Device\Harddisk0\DR0\Partition4 - ok
11:27:46.0375 0x18b0  [ 200DB314AF7252D41613128B9DC905FB ] \Device\Harddisk0\DR0\Partition5
11:27:46.0378 0x18b0  \Device\Harddisk0\DR0\Partition5 - ok
11:27:46.0400 0x18b0  [ 79B957D78222E6C2F3A3131F38900E2F ] \Device\Harddisk0\DR0\Partition6
11:27:46.0402 0x18b0  \Device\Harddisk0\DR0\Partition6 - ok
11:27:46.0416 0x18b0  [ E9F0557D5F6441EAAC864EE722BB3A34 ] \Device\Harddisk0\DR0\Partition7
11:27:46.0418 0x18b0  \Device\Harddisk0\DR0\Partition7 - ok
11:27:46.0429 0x18b0  [ 70AE140BB2045F17D8245069B61C9AC0 ] \Device\Harddisk0\DR0\Partition8
11:27:46.0431 0x18b0  \Device\Harddisk0\DR0\Partition8 - ok
11:27:46.0431 0x18b0  ================ Scan generic autorun ======================
11:27:46.0858 0x18b0  [ B3B1175C96F8E01EC5D37F6C0B965F6F, F0330B4B1CBF2D5C4570E53CE6DE2BA6DE14A7156C368458A0B4B59BDBF45DD5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
11:27:47.0106 0x18b0  RtHDVCpl - ok
11:27:47.0196 0x18b0  [ D0AA4593126F4FCA79173D00DF054454, C18F6780ADFA44C49E6C6C8CEE4C5E25829ADE125C97A56467456B173BE4A7F2 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:27:47.0222 0x18b0  RtHDVBg_Dolby - ok
11:27:47.0224 0x18b0  SynTPEnh - ok
11:27:47.0293 0x18b0  [ 724CB7A116F7E1A67009D751BCF86586, F0C4BE7451C5573AD584F5EF125C0702841E30D928909B5B3EA702831EF2FD9B ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
11:27:47.0296 0x18b0  CLMLServer_For_P2G8 - ok
11:27:47.0341 0x18b0  [ BE14AD6D80F9A3B33262C62479199E61, DA661F2821235018BE22CB1B459DDC99BE6D969C754096A83B2B85C1E2E46651 ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
11:27:47.0353 0x18b0  CLVirtualDrive - ok
11:27:47.0397 0x18b0  [ A2221900B57AEC20577996744FA4A56A, AFEF9176DBA86CDB16A7E84AD0DF6433D4F5865948774FB6B619CBEBEC004592 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
11:27:47.0400 0x18b0  RemoteControl10 - ok
11:27:47.0459 0x18b0  [ D59062FC3E0C232615AC2C6ADB46A770, BDE93E89C41F3F9F504B9F5D0A6014A370F622F03C002D352A16C6F3EA5C7A94 ] C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
11:27:47.0465 0x18b0  YouCam Service - ok
11:27:47.0532 0x18b0  Dropbox - ok
11:27:47.0926 0x18b0  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:27:48.0154 0x18b0  OneDriveSetup - ok
11:27:48.0392 0x18b0  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:27:48.0538 0x18b0  OneDriveSetup - ok
11:27:48.0682 0x18b0  [ ECAB32E9A6A2CA0B324026D22D1C75F8, F3E505009D3C7901C1B4A3FD62EEC8F8EEC66299E6945114BD353D8EEF347E5D ] C:\Program Files (x86)\Steam\steam.exe
11:27:48.0746 0x18b0  Steam - ok
11:27:48.0928 0x18b0  [ 376E709A4AE341CDB7E05FBFBF2E49AB, 7942E1EECC26A8B6B26EDB759723E5666654C5218E2BBC8F50FF192009EEF9FC ] C:\Program Files (x86)\Origin\Origin.exe
11:27:48.0993 0x18b0  EADM - ok
11:27:49.0301 0x18b0  [ F2AD1B265908797F8A5E21E0312F2F25, 2A6A612F7D52D297385C43E77AD0CD37B28F33ED2AF89098F5E66B812B838A52 ] C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe
11:27:49.0389 0x18b0  Akamai NetSession Interface - ok
11:27:49.0500 0x18b0  [ 44348495F9D6ED21F4EFB3FF80677D99, 05B76248764B2BF7F9229626D7EFAFF96B724D38A82969EBE376CBE879E30450 ] C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\OneDrive.exe
11:27:49.0528 0x18b0  OneDrive - ok
11:27:49.0567 0x18b0  Skype - ok
11:27:49.0569 0x18b0  Waiting for KSN requests completion. In queue: 195
11:27:50.0571 0x18b0  Waiting for KSN requests completion. In queue: 195
11:27:51.0571 0x18b0  Waiting for KSN requests completion. In queue: 195
11:27:52.0684 0x18b0  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x61100 ( enabled : updated )
11:27:52.0702 0x18b0  Win FW state via NFP2: enabled ( trusted )
11:27:55.0076 0x18b0  ============================================================
11:27:55.0076 0x18b0  Scan finished
11:27:55.0076 0x18b0  ============================================================
11:27:55.0086 0x148c  Detected object count: 0
11:27:55.0086 0x148c  Actual detected object count: 0
11:28:27.0337 0x1608  ============================================================
11:28:27.0337 0x1608  Scan started
11:28:27.0337 0x1608  Mode: Manual; SigCheck; TDLFS; 
11:28:27.0337 0x1608  ============================================================
11:28:27.0337 0x1608  KSN ping started
11:28:29.0729 0x1608  KSN ping finished: true
11:28:31.0440 0x1608  ================ Scan system memory ========================
11:28:31.0440 0x1608  System memory - ok
11:28:31.0441 0x1608  ================ Scan services =============================
11:28:31.0668 0x1608  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
11:28:31.0870 0x1608  1394ohci - ok
11:28:31.0916 0x1608  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
11:28:31.0931 0x1608  3ware - ok
11:28:31.0964 0x1608  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
11:28:31.0990 0x1608  ACPI - ok
11:28:32.0002 0x1608  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
11:28:32.0016 0x1608  acpiex - ok
11:28:32.0027 0x1608  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
11:28:32.0064 0x1608  acpipagr - ok
11:28:32.0101 0x1608  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
11:28:32.0187 0x1608  AcpiPmi - ok
11:28:32.0201 0x1608  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
11:28:32.0231 0x1608  acpitime - ok
11:28:32.0359 0x1608  [ B79750091FC0842182FE49D263791294, 32FC260A74C9C45CD1E8998523642C285866378FCD9478FEFD15A0CC42EC0E0B ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:28:32.0374 0x1608  AdobeFlashPlayerUpdateSvc - ok
11:28:32.0442 0x1608  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
11:28:32.0485 0x1608  ADP80XX - ok
11:28:32.0543 0x1608  [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc             C:\WINDOWS\syswow64\drivers\Afc.sys
11:28:32.0556 0x1608  Afc - ok
11:28:32.0584 0x1608  [ 6C12C7E01A4F64E0AA9C88AF66955CC9, 81A413702909341F8694823EC83FBA0089523D7EC927B80E55E0779BB83AD263 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
11:28:32.0613 0x1608  AFD - ok
11:28:32.0655 0x1608  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
11:28:32.0668 0x1608  agp440 - ok
11:28:32.0688 0x1608  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
11:28:32.0774 0x1608  ahcache - ok
11:28:32.0796 0x1608  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
11:28:32.0901 0x1608  AJRouter - ok
11:28:32.0945 0x1608  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
11:28:33.0027 0x1608  ALG - ok
11:28:33.0068 0x1608  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
11:28:33.0126 0x1608  AmdK8 - ok
11:28:33.0146 0x1608  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
11:28:33.0176 0x1608  AmdPPM - ok
11:28:33.0195 0x1608  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
11:28:33.0208 0x1608  amdsata - ok
11:28:33.0234 0x1608  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
11:28:33.0256 0x1608  amdsbs - ok
11:28:33.0284 0x1608  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
11:28:33.0295 0x1608  amdxata - ok
11:28:33.0340 0x1608  [ 0C3D62CB6B8F2B3CC42369BAC0F58AD5, F0121EACB6060DF1F6C5F79C15D5B483F301EF85B3C79F67806520BE9CEE398E ] AMPPAL          C:\WINDOWS\System32\drivers\AMPPAL.sys
11:28:33.0356 0x1608  AMPPAL - ok
11:28:33.0425 0x1608  [ E4AFE476D9F758514A8A571DF6A24372, A37055A2CDB577CC8B76D4B020924A6C68D94166C1C9A64F7C0E9E16692709FC ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
11:28:33.0581 0x1608  AppHostSvc - ok
11:28:33.0605 0x1608  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
11:28:33.0623 0x1608  AppID - ok
11:28:33.0659 0x1608  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
11:28:33.0765 0x1608  AppIDSvc - ok
11:28:33.0817 0x1608  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
11:28:33.0859 0x1608  Appinfo - ok
11:28:33.0911 0x1608  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
11:28:34.0056 0x1608  AppReadiness - ok
11:28:34.0183 0x1608  [ C0BC21B9D557E46E5C331209950AF90D, 9634D17515918483521D1AE9F271836CA64764103216B42E592305B85E506271 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
11:28:34.0356 0x1608  AppXSvc - ok
11:28:34.0376 0x1608  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
11:28:34.0391 0x1608  arcsas - ok
11:28:34.0403 0x1608  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
11:28:34.0469 0x1608  AsyncMac - ok
11:28:34.0510 0x1608  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
11:28:34.0521 0x1608  atapi - ok
11:28:34.0591 0x1608  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
11:28:34.0771 0x1608  AudioEndpointBuilder - ok
11:28:34.0841 0x1608  [ 7614E6E6B53E8FE6E6B8A6D6D3CC2018, DF3445145E38BB22E08F11638DA6C37C9EDC1109207569F7921CDD525238CA39 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
11:28:34.0919 0x1608  Audiosrv - ok
11:28:34.0957 0x1608  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
11:28:34.0997 0x1608  AxInstSV - ok
11:28:35.0042 0x1608  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
11:28:35.0069 0x1608  b06bdrv - ok
11:28:35.0111 0x1608  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
11:28:35.0212 0x1608  BasicDisplay - ok
11:28:35.0227 0x1608  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
11:28:35.0259 0x1608  BasicRender - ok
11:28:35.0278 0x1608  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
11:28:35.0286 0x1608  bcmfn2 - ok
11:28:35.0335 0x1608  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
11:28:35.0441 0x1608  BDESVC - ok
11:28:35.0485 0x1608  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
11:28:35.0563 0x1608  Beep - ok
11:28:35.0626 0x1608  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
11:28:35.0750 0x1608  BFE - ok
11:28:35.0828 0x1608  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
11:28:35.0969 0x1608  BITS - ok
11:28:36.0023 0x1608  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
11:28:36.0103 0x1608  bowser - ok
11:28:36.0160 0x1608  [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
11:28:36.0387 0x1608  BrokerInfrastructure - ok
11:28:36.0441 0x1608  [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser         C:\WINDOWS\System32\browser.dll
11:28:36.0542 0x1608  Browser - ok
11:28:36.0596 0x1608  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
11:28:36.0695 0x1608  BthAvrcpTg - ok
11:28:36.0715 0x1608  [ 74C9D52F3F594529465E18B2BFF80487, F1ECD8B730AD8B90673735FD6D2D9F6F0754F8BAB7135B16A41128145D5F9377 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
11:28:37.0003 0x1608  BthEnum - ok
11:28:37.0021 0x1608  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
11:28:37.0225 0x1608  BthHFEnum - ok
11:28:37.0261 0x1608  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
11:28:37.0302 0x1608  bthhfhid - ok
11:28:37.0344 0x1608  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
11:28:37.0381 0x1608  BthHFSrv - ok
11:28:37.0403 0x1608  [ 986F756D10B5A2B3971A03BD6308B94F, BEDEFD7470155621365439858B35239D4474487873431E67B01A4B7D56E7CE76 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
11:28:37.0456 0x1608  BthLEEnum - ok
11:28:37.0468 0x1608  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
11:28:37.0493 0x1608  BTHMODEM - ok
11:28:37.0516 0x1608  [ 38C97371F058E889F730BF35530732F4, 7CD16DF9C51D40CF80392E6DF444D6F5546B0E8B6A6DAC6DFD70BB45E014FA27 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
11:28:37.0573 0x1608  BthPan - ok
11:28:37.0632 0x1608  [ FCC211B0F46D831506D0D76539203899, A2609658AE36EB0FE4CFAA00684986193FEACED7BA8D869A9DF8D03312E53169 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
11:28:37.0714 0x1608  BTHPORT - ok
11:28:37.0755 0x1608  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
11:28:37.0786 0x1608  bthserv - ok
11:28:37.0822 0x1608  [ 5866AE46EEF644E6DE5C95942AE419D7, 0726C0845D2BA4247AB26ACF05006F6FA96015158CD49795801BB906DA80C007 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
11:28:37.0837 0x1608  BTHUSB - ok
11:28:37.0875 0x1608  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
11:28:38.0071 0x1608  buttonconverter - ok
11:28:38.0086 0x1608  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
11:28:38.0119 0x1608  CapImg - ok
11:28:38.0138 0x1608  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
11:28:38.0168 0x1608  cdfs - ok
11:28:38.0206 0x1608  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
11:28:38.0324 0x1608  CDPSvc - ok
11:28:38.0367 0x1608  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
11:28:38.0397 0x1608  cdrom - ok
11:28:38.0419 0x1608  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
11:28:38.0441 0x1608  CertPropSvc - ok
11:28:38.0455 0x1608  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
11:28:38.0485 0x1608  circlass - ok
11:28:38.0543 0x1608  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
         

Alt 15.12.2016, 11:43   #12
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Code:
ATTFilter
11:28:38.0573 0x1608  CLFS - ok
11:28:38.0745 0x1608  [ 99C73D65BF6E6AE66D1B4337D8260C97, D13E9861125ABFA892F7FCED1E007FD5FBEE27954C9084286FFD186193157D3A ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
11:28:38.0825 0x1608  ClickToRunSvc - ok
11:28:38.0887 0x1608  [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
11:28:38.0914 0x1608  ClipSVC - ok
11:28:38.0950 0x1608  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
11:28:38.0957 0x1608  CLVirtualDrive - ok
11:28:38.0998 0x1608  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
11:28:39.0067 0x1608  CmBatt - ok
11:28:39.0100 0x1608  [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
11:28:39.0128 0x1608  CNG - ok
11:28:39.0165 0x1608  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
11:28:39.0177 0x1608  cnghwassist - ok
11:28:39.0276 0x1608  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
11:28:39.0329 0x1608  CompositeBus - ok
11:28:39.0337 0x1608  COMSysApp - ok
11:28:39.0353 0x1608  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
11:28:39.0423 0x1608  condrv - ok
11:28:39.0484 0x1608  [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
11:28:39.0518 0x1608  CoreMessagingRegistrar - ok
11:28:39.0630 0x1608  [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
11:28:39.0659 0x1608  cphs - ok
11:28:39.0711 0x1608  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
11:28:39.0811 0x1608  CryptSvc - ok
11:28:39.0942 0x1608  [ 7F5CD87CA5BDB4D83F992D8C77201483, 01818EF455833CA3396C8EA4696B8DC28E3A6A3618C081D046C8F207FACAB788 ] CyberLink PowerDVD 10 MS Monitor Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
11:28:39.0952 0x1608  CyberLink PowerDVD 10 MS Monitor Service - ok
11:28:40.0023 0x1608  [ 9FAF58E876A3B1DB3030A0A5805F2D86, 682939B774DF6A28268897A7E113F6D2DF9AD73DBF1994F937FB48818478B7FE ] CyberLink PowerDVD 10 MS Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
11:28:40.0042 0x1608  CyberLink PowerDVD 10 MS Service - ok
11:28:40.0170 0x1608  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
11:28:40.0189 0x1608  dam - ok
11:28:40.0299 0x1608  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
11:28:40.0312 0x1608  dbupdate - ok
11:28:40.0320 0x1608  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
11:28:40.0330 0x1608  dbupdatem - ok
11:28:40.0335 0x1608  dbx - ok
11:28:40.0413 0x1608  [ 62C2617E1927776851B108717166BBA4, 5ED905AD21D2BA4308561BDFD2868A15A1F2062DFE1D28689D4082700C85500A ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
11:28:40.0430 0x1608  DbxSvc - ok
11:28:40.0489 0x1608  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
11:28:40.0596 0x1608  DcomLaunch - ok
11:28:40.0634 0x1608  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
11:28:40.0691 0x1608  DcpSvc - ok
11:28:40.0743 0x1608  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
11:28:40.0795 0x1608  defragsvc - ok
11:28:40.0844 0x1608  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
11:28:40.0885 0x1608  DeviceAssociationService - ok
11:28:40.0924 0x1608  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
11:28:40.0966 0x1608  DeviceInstall - ok
11:28:41.0006 0x1608  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
11:28:41.0091 0x1608  DevQueryBroker - ok
11:28:41.0128 0x1608  [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
11:28:41.0165 0x1608  Dfsc - ok
11:28:41.0222 0x1608  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
11:28:41.0345 0x1608  Dhcp - ok
11:28:41.0425 0x1608  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
11:28:41.0476 0x1608  diagnosticshub.standardcollector.service - ok
11:28:41.0549 0x1608  [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
11:28:41.0635 0x1608  DiagTrack - ok
11:28:41.0671 0x1608  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
11:28:41.0685 0x1608  disk - ok
11:28:41.0738 0x1608  [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
11:28:41.0898 0x1608  DmEnrollmentSvc - ok
11:28:41.0914 0x1608  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
11:28:41.0973 0x1608  dmvsc - ok
11:28:42.0012 0x1608  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
11:28:42.0052 0x1608  dmwappushservice - ok
11:28:42.0095 0x1608  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
11:28:42.0135 0x1608  Dnscache - ok
11:28:42.0164 0x1608  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
11:28:42.0202 0x1608  dot3svc - ok
11:28:42.0228 0x1608  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
11:28:42.0325 0x1608  DPS - ok
11:28:42.0363 0x1608  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
11:28:42.0375 0x1608  drmkaud - ok
11:28:42.0424 0x1608  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
11:28:42.0493 0x1608  DsmSvc - ok
11:28:42.0536 0x1608  [ F2328181D289CE83E9979733EAB6742A, 73B1CDA6ED8C42B36126909F1335B72126A5DDC6FC7CE8BA2CA274A2B92E82FD ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
11:28:42.0568 0x1608  DsSvc - ok
11:28:42.0663 0x1608  [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
11:28:42.0725 0x1608  DXGKrnl - ok
11:28:42.0777 0x1608  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
11:28:42.0817 0x1608  Eaphost - ok
11:28:42.0957 0x1608  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
11:28:43.0058 0x1608  ebdrv - ok
11:28:43.0108 0x1608  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
11:28:43.0120 0x1608  EFS - ok
11:28:43.0156 0x1608  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
11:28:43.0167 0x1608  EhStorClass - ok
11:28:43.0180 0x1608  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
11:28:43.0193 0x1608  EhStorTcgDrv - ok
11:28:43.0238 0x1608  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
11:28:43.0282 0x1608  embeddedmode - ok
11:28:43.0372 0x1608  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
11:28:43.0465 0x1608  EntAppSvc - ok
11:28:43.0510 0x1608  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
11:28:43.0562 0x1608  ErrDev - ok
11:28:43.0616 0x1608  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
11:28:43.0699 0x1608  EventSystem - ok
11:28:43.0741 0x1608  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
11:28:43.0780 0x1608  exfat - ok
11:28:43.0821 0x1608  [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
11:28:43.0841 0x1608  fastfat - ok
11:28:43.0891 0x1608  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
11:28:43.0996 0x1608  Fax - ok
11:28:44.0014 0x1608  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
11:28:44.0053 0x1608  fdc - ok
11:28:44.0088 0x1608  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
11:28:44.0133 0x1608  fdPHost - ok
11:28:44.0147 0x1608  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
11:28:44.0184 0x1608  FDResPub - ok
11:28:44.0213 0x1608  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
11:28:44.0251 0x1608  fhsvc - ok
11:28:44.0298 0x1608  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
11:28:44.0332 0x1608  FileCrypt - ok
11:28:44.0376 0x1608  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
11:28:44.0388 0x1608  FileInfo - ok
11:28:44.0406 0x1608  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
11:28:44.0448 0x1608  Filetrace - ok
11:28:44.0468 0x1608  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
11:28:44.0502 0x1608  flpydisk - ok
11:28:44.0532 0x1608  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
11:28:44.0552 0x1608  FltMgr - ok
11:28:44.0681 0x1608  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
11:28:44.0911 0x1608  FontCache - ok
11:28:45.0105 0x1608  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:28:45.0129 0x1608  FontCache3.0.0.0 - ok
11:28:45.0147 0x1608  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
11:28:45.0160 0x1608  FsDepends - ok
11:28:45.0177 0x1608  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:28:45.0189 0x1608  Fs_Rec - ok
11:28:45.0267 0x1608  [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
11:28:45.0294 0x1608  fvevol - ok
11:28:45.0331 0x1608  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
11:28:45.0344 0x1608  gagp30kx - ok
11:28:45.0378 0x1608  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
11:28:45.0402 0x1608  gencounter - ok
11:28:45.0415 0x1608  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
11:28:45.0487 0x1608  genericusbfn - ok
11:28:45.0579 0x1608  [ 9162ECA694162A77679950CF2E27D3C1, 7EADEDE34A8E7458D2DDEE294D0789E9FD1EE822AB627D7E4ECAEDDD5D3EE81D ] GFNEXSrv        C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
11:28:45.0637 0x1608  GFNEXSrv - detected UnsignedFile.Multi.Generic ( 1 )
11:28:45.0716 0x1608  GFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
11:28:48.0124 0x1608  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
11:28:48.0154 0x1608  GPIOClx0101 - ok
11:28:48.0235 0x1608  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
11:28:48.0313 0x1608  gpsvc - ok
11:28:48.0330 0x1608  [ BA2455D93BD57989A04FE4094AA6F941, B579FB367C063EA30C034381148410D49D38E183A5A4D51D2334A81DAEE95CEC ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
11:28:48.0363 0x1608  GpuEnergyDrv - ok
11:28:48.0422 0x1608  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:28:48.0431 0x1608  gupdate - ok
11:28:48.0437 0x1608  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:28:48.0446 0x1608  gupdatem - ok
11:28:48.0469 0x1608  [ 7797D1580D933056023B822BB5CD0FE2, 24585AAFB43862AE4B9228B513658D906550EC8A475C67182933FB233621A85D ] Hamachi         C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
11:28:48.0476 0x1608  Hamachi - ok
11:28:48.0517 0x1608  [ C277A49F8A8295840DEBC9240B75A282, 8B2BA0E6A8300323765D95ECD843105B0FC4B80B85EE2220E677C4E9A760C9D8 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
11:28:48.0546 0x1608  HDAudBus - ok
11:28:48.0565 0x1608  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
11:28:48.0602 0x1608  HidBatt - ok
11:28:48.0641 0x1608  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
11:28:48.0732 0x1608  HidBth - ok
11:28:48.0750 0x1608  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
11:28:48.0776 0x1608  hidi2c - ok
11:28:48.0794 0x1608  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
11:28:48.0808 0x1608  hidinterrupt - ok
11:28:48.0827 0x1608  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
11:28:48.0878 0x1608  HidIr - ok
11:28:48.0912 0x1608  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
11:28:48.0960 0x1608  hidserv - ok
11:28:48.0983 0x1608  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
11:28:49.0088 0x1608  HidUsb - ok
11:28:49.0131 0x1608  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
11:28:49.0243 0x1608  HomeGroupListener - ok
11:28:49.0298 0x1608  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
11:28:49.0346 0x1608  HomeGroupProvider - ok
11:28:49.0383 0x1608  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
11:28:49.0396 0x1608  HpSAMD - ok
11:28:49.0436 0x1608  [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
11:28:49.0473 0x1608  HTTP - ok
11:28:49.0513 0x1608  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
11:28:49.0524 0x1608  hwpolicy - ok
11:28:49.0542 0x1608  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
11:28:49.0568 0x1608  hyperkbd - ok
11:28:49.0585 0x1608  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
11:28:49.0598 0x1608  HyperVideo - ok
11:28:49.0638 0x1608  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
11:28:49.0699 0x1608  i8042prt - ok
11:28:49.0722 0x1608  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
11:28:49.0731 0x1608  iaLPSSi_GPIO - ok
11:28:49.0753 0x1608  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
11:28:49.0763 0x1608  iaLPSSi_I2C - ok
11:28:49.0823 0x1608  [ 6C91E425ACE29594BD574DE38AC9B76D, 697784E4C7AF08B1F35662D8AD871E6890CECE22B6E64985B7C1A66C10DA390D ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
11:28:49.0846 0x1608  iaStorA - ok
11:28:49.0883 0x1608  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
11:28:49.0913 0x1608  iaStorAV - ok
11:28:50.0001 0x1608  [ 0AB254994A460550258446950BB58311, BD10811912680DD3B814B7D1303785C996D892C79108110A2257E9BD0C28245C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
11:28:50.0007 0x1608  IAStorDataMgrSvc - ok
11:28:50.0063 0x1608  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
11:28:50.0087 0x1608  iaStorV - ok
11:28:50.0121 0x1608  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
11:28:50.0155 0x1608  ibbus - ok
11:28:50.0203 0x1608  [ 62F0CB0A54EAF37E15EC385300957BB8, 55FCF7068D84D5AEEAF3149A5349BF13F1D18E34956217916ED7C1950885E63C ] ibtfltcoex      C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys
11:28:50.0213 0x1608  ibtfltcoex - ok
11:28:50.0260 0x1608  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
11:28:50.0410 0x1608  icssvc - ok
11:28:50.0420 0x1608  IEEtwCollectorService - ok
11:28:50.0553 0x1608  [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
11:28:50.0649 0x1608  igfx - ok
11:28:50.0699 0x1608  [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
11:28:50.0715 0x1608  igfxCUIService1.0.0.0 - ok
11:28:50.0789 0x1608  [ A8A7DF276A5EAEF006A0663AA800DCEC, 2E19C90045A8C0AF18C9FE18FD66E7F677D7FA15FDF9FF6302A536BD5AE27C14 ] IISADMIN        C:\WINDOWS\system32\inetsrv\inetinfo.exe
11:28:50.0832 0x1608  IISADMIN - ok
11:28:50.0891 0x1608  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
11:28:50.0953 0x1608  IKEEXT - ok
11:28:50.0993 0x1608  [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
11:28:51.0005 0x1608  intaud_WaveExtensible - ok
11:28:51.0159 0x1608  [ 900A45658DCB6BAE1003764991BB5FAB, 125D048024946C13643E8D6E719687F31CD0EB10591C5AFA1AE0FD9EB7216816 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
11:28:51.0271 0x1608  IntcAzAudAddService - ok
11:28:51.0337 0x1608  [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
11:28:51.0362 0x1608  IntcDAud - ok
11:28:51.0492 0x1608  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:28:51.0517 0x1608  Intel(R) Capability Licensing Service Interface - ok
11:28:51.0535 0x1608  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
11:28:51.0547 0x1608  intelide - ok
11:28:51.0563 0x1608  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
11:28:51.0574 0x1608  intelpep - ok
11:28:51.0595 0x1608  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
11:28:51.0619 0x1608  intelppm - ok
11:28:51.0654 0x1608  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
11:28:51.0731 0x1608  IoQos - ok
11:28:51.0765 0x1608  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:28:51.0789 0x1608  IpFilterDriver - ok
11:28:51.0840 0x1608  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
11:28:51.0902 0x1608  iphlpsvc - ok
11:28:51.0918 0x1608  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
11:28:51.0976 0x1608  IPMIDRV - ok
11:28:51.0989 0x1608  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
11:28:52.0026 0x1608  IPNAT - ok
11:28:52.0047 0x1608  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
11:28:52.0082 0x1608  IRENUM - ok
11:28:52.0102 0x1608  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
11:28:52.0113 0x1608  isapnp - ok
11:28:52.0149 0x1608  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
11:28:52.0167 0x1608  iScsiPrt - ok
11:28:52.0195 0x1608  [ 492F2DF02CD817CE8D544F96097BD77A, 6EF37BD62A49C9F55845A56498A93A26C109BEC2EBCB65A49908BECEC6FC6371 ] IT9135BDA       C:\WINDOWS\System32\Drivers\IT9135BDA.sys
11:28:52.0302 0x1608  IT9135BDA - ok
11:28:52.0351 0x1608  [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
11:28:52.0360 0x1608  iwdbus - ok
11:28:52.0431 0x1608  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
11:28:52.0440 0x1608  jhi_service - ok
11:28:52.0480 0x1608  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
11:28:52.0491 0x1608  kbdclass - ok
11:28:52.0509 0x1608  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
11:28:52.0522 0x1608  kbdhid - ok
11:28:52.0530 0x1608  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
11:28:52.0632 0x1608  kdnic - ok
11:28:52.0647 0x1608  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
11:28:52.0662 0x1608  KeyIso - ok
11:28:52.0687 0x1608  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
11:28:52.0702 0x1608  KSecDD - ok
11:28:52.0723 0x1608  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
11:28:52.0742 0x1608  KSecPkg - ok
11:28:52.0753 0x1608  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
11:28:52.0780 0x1608  ksthunk - ok
11:28:52.0851 0x1608  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
11:28:52.0934 0x1608  KtmRm - ok
11:28:52.0987 0x1608  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
11:28:53.0027 0x1608  LanmanServer - ok
11:28:53.0081 0x1608  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
11:28:53.0119 0x1608  LanmanWorkstation - ok
11:28:53.0169 0x1608  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
11:28:53.0252 0x1608  lfsvc - ok
11:28:53.0274 0x1608  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
11:28:53.0338 0x1608  LicenseManager - ok
11:28:53.0374 0x1608  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
11:28:53.0390 0x1608  lltdio - ok
11:28:53.0413 0x1608  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
11:28:53.0439 0x1608  lltdsvc - ok
11:28:53.0474 0x1608  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
11:28:53.0528 0x1608  lmhosts - ok
11:28:53.0572 0x1608  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:28:53.0584 0x1608  LMS - ok
11:28:53.0620 0x1608  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
11:28:53.0633 0x1608  LSI_SAS - ok
11:28:53.0667 0x1608  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
11:28:53.0680 0x1608  LSI_SAS2i - ok
11:28:53.0717 0x1608  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
11:28:53.0729 0x1608  LSI_SAS3i - ok
11:28:53.0761 0x1608  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
11:28:53.0773 0x1608  LSI_SSS - ok
11:28:53.0817 0x1608  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
11:28:53.0896 0x1608  LSM - ok
11:28:53.0924 0x1608  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
11:28:53.0945 0x1608  luafv - ok
11:28:53.0977 0x1608  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
11:28:54.0213 0x1608  MapsBroker - ok
11:28:54.0258 0x1608  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
11:28:54.0271 0x1608  megasas - ok
11:28:54.0304 0x1608  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
11:28:54.0333 0x1608  megasr - ok
11:28:54.0382 0x1608  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
11:28:54.0388 0x1608  MEIx64 - ok
11:28:54.0422 0x1608  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
11:28:54.0453 0x1608  mlx4_bus - ok
11:28:54.0498 0x1608  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
11:28:54.0590 0x1608  MMCSS - ok
11:28:54.0620 0x1608  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
11:28:54.0683 0x1608  Modem - ok
11:28:54.0703 0x1608  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
11:28:54.0759 0x1608  monitor - ok
11:28:54.0775 0x1608  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
11:28:54.0796 0x1608  mouclass - ok
11:28:54.0829 0x1608  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
11:28:54.0896 0x1608  mouhid - ok
11:28:54.0919 0x1608  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
11:28:54.0934 0x1608  mountmgr - ok
11:28:54.0987 0x1608  [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:28:55.0005 0x1608  MozillaMaintenance - ok
11:28:55.0033 0x1608  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
11:28:55.0127 0x1608  mpsdrv - ok
11:28:55.0183 0x1608  [ A0DBB9386BEA8DA1A159C2A2E07081A3, 9D3F26005A76A72F9512F040D45C16124D17F8C8DA45C51FFAF74F066357D0A4 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
11:28:55.0333 0x1608  MpsSvc - ok
11:28:55.0356 0x1608  [ C1E74DD1D84861D8F12FF8BC0BA11975, 5912A0455C840F5C8AD6383823C9C7DE6FF8B5CAF1B72EA181864999891EAF30 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
11:28:55.0397 0x1608  MRxDAV - ok
11:28:55.0435 0x1608  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:28:55.0476 0x1608  mrxsmb - ok
11:28:55.0501 0x1608  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
11:28:55.0577 0x1608  mrxsmb10 - ok
11:28:55.0594 0x1608  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
11:28:55.0625 0x1608  mrxsmb20 - ok
11:28:55.0665 0x1608  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
11:28:55.0704 0x1608  MsBridge - ok
11:28:55.0741 0x1608  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
11:28:55.0763 0x1608  MSDTC - ok
11:28:55.0810 0x1608  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
11:28:55.0874 0x1608  Msfs - ok
11:28:55.0962 0x1608  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
11:28:55.0974 0x1608  msgpiowin32 - ok
11:28:55.0995 0x1608  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
11:28:56.0017 0x1608  mshidkmdf - ok
11:28:56.0038 0x1608  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
11:28:56.0078 0x1608  mshidumdf - ok
11:28:56.0114 0x1608  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
11:28:56.0137 0x1608  msisadrv - ok
11:28:56.0181 0x1608  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
11:28:56.0219 0x1608  MSiSCSI - ok
11:28:56.0223 0x1608  msiserver - ok
11:28:56.0257 0x1608  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:28:56.0285 0x1608  MSKSSRV - ok
11:28:56.0326 0x1608  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
11:28:56.0362 0x1608  MsLldp - ok
11:28:56.0379 0x1608  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:28:56.0392 0x1608  MSPCLOCK - ok
11:28:56.0405 0x1608  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
11:28:56.0431 0x1608  MSPQM - ok
11:28:56.0460 0x1608  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
11:28:56.0480 0x1608  MsRPC - ok
11:28:56.0496 0x1608  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
11:28:56.0509 0x1608  mssmbios - ok
11:28:56.0525 0x1608  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
11:28:56.0547 0x1608  MSTEE - ok
11:28:56.0565 0x1608  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
11:28:56.0593 0x1608  MTConfig - ok
11:28:56.0613 0x1608  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
11:28:56.0626 0x1608  Mup - ok
11:28:56.0639 0x1608  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
11:28:56.0651 0x1608  mvumis - ok
11:28:56.0704 0x1608  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
11:28:56.0916 0x1608  NativeWifiP - ok
11:28:56.0956 0x1608  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
11:28:57.0077 0x1608  NcaSvc - ok
11:28:57.0104 0x1608  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
11:28:57.0168 0x1608  NcbService - ok
11:28:57.0188 0x1608  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
11:28:57.0255 0x1608  NcdAutoSetup - ok
11:28:57.0291 0x1608  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
11:28:57.0304 0x1608  ndfltr - ok
11:28:57.0377 0x1608  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
11:28:57.0433 0x1608  NDIS - ok
11:28:57.0475 0x1608  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
11:28:57.0550 0x1608  NdisCap - ok
11:28:57.0568 0x1608  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
11:28:57.0606 0x1608  NdisImPlatform - ok
11:28:57.0627 0x1608  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:28:57.0664 0x1608  NdisTapi - ok
11:28:57.0679 0x1608  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
11:28:57.0711 0x1608  Ndisuio - ok
11:28:57.0750 0x1608  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
11:28:57.0767 0x1608  NdisVirtualBus - ok
11:28:57.0791 0x1608  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
11:28:57.0812 0x1608  NdisWan - ok
11:28:57.0821 0x1608  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:28:57.0841 0x1608  ndiswanlegacy - ok
11:28:57.0858 0x1608  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
11:28:57.0888 0x1608  ndproxy - ok
11:28:57.0910 0x1608  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
11:28:57.0996 0x1608  Ndu - ok
11:28:58.0015 0x1608  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
11:28:58.0033 0x1608  NetBIOS - ok
11:28:58.0063 0x1608  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
11:28:58.0126 0x1608  NetBT - ok
11:28:58.0138 0x1608  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
11:28:58.0151 0x1608  Netlogon - ok
11:28:58.0200 0x1608  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
11:28:58.0228 0x1608  Netman - ok
11:28:58.0285 0x1608  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
11:28:58.0359 0x1608  netprofm - ok
11:28:58.0389 0x1608  [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
11:28:58.0535 0x1608  NetSetupSvc - ok
11:28:58.0591 0x1608  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:28:58.0607 0x1608  NetTcpPortSharing - ok
11:28:58.0623 0x1608  [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
11:28:58.0656 0x1608  netvsc - ok
11:28:58.0782 0x1608  [ 0F76FA3A3F8D169B1CA6F54DC7561CD5, F6C49E5D4F627FD539670DFCBC20C69F627A90CBA473873640D4DD378EE34ED5 ] NETwNe64        C:\WINDOWS\System32\drivers\NETwew01.sys
11:28:58.0875 0x1608  NETwNe64 - ok
11:28:58.0927 0x1608  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
11:28:59.0017 0x1608  NgcCtnrSvc - ok
11:28:59.0038 0x1608  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
11:28:59.0052 0x1608  NgcSvc - ok
11:28:59.0094 0x1608  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
11:28:59.0258 0x1608  NlaSvc - ok
11:28:59.0299 0x1608  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
11:28:59.0333 0x1608  Npfs - ok
11:28:59.0339 0x1608  npggsvc - ok
11:28:59.0381 0x1608  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
11:28:59.0472 0x1608  npsvctrig - ok
11:28:59.0512 0x1608  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
11:28:59.0583 0x1608  nsi - ok
11:28:59.0600 0x1608  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
11:28:59.0634 0x1608  nsiproxy - ok
11:28:59.0713 0x1608  [ 466EC5659C02ED53DBD47DC1BC2B8086, 1F35DE75386F7D029C01D67B09D5E5157141C6892858885C11972CE73D6078AC ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
11:28:59.0783 0x1608  NTFS - ok
11:28:59.0818 0x1608  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
11:28:59.0847 0x1608  Null - ok
11:28:59.0957 0x1608  [ 1D8ED7BA5326A99939C3C7B29119EBAD, 02C1AD40B7F1BA87BF1CFAB4501AC4FEA24EB08E5224FE429F443D89F562D68C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
11:28:59.0976 0x1608  NvContainerLocalSystem - ok
11:28:59.0990 0x1608  [ 1D8ED7BA5326A99939C3C7B29119EBAD, 02C1AD40B7F1BA87BF1CFAB4501AC4FEA24EB08E5224FE429F443D89F562D68C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
11:29:00.0010 0x1608  NvContainerNetworkService - ok
11:29:00.0108 0x1608  [ 5A8E7AA19BD999C01A6F947F7464545A, EBD6C69DA260A6C4E07D3B3D615936E1E04E3C3B5BBDDE27BFA387F38C0807AB ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
11:29:00.0143 0x1608  NVIDIA Wireless Controller Service - ok
11:29:00.0578 0x1608  [ 0CD412D41220FEE9DD1166F7CE7B1DAB, 23CAB64C3DB3C90CAF2DE4100E192295B8F603B8347F8AC6FDC36C2C6D2520D2 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
11:29:00.0954 0x1608  nvlddmkm - ok
11:29:01.0037 0x1608  [ 14632E55F8E76E3CEFFD058EC0A545E6, 563E4EFC171D5BFEC77BA43E0426A38759B13A8BCA9C6E135E9E0356BBE6D897 ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
11:29:01.0046 0x1608  nvpciflt - ok
11:29:01.0089 0x1608  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
11:29:01.0103 0x1608  nvraid - ok
11:29:01.0123 0x1608  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
11:29:01.0139 0x1608  nvstor - ok
11:29:01.0191 0x1608  [ 30AFB1ED5380F237A2CFA82D6FF37173, 93E3E000218270596D09970EAE3E667E59123022D46F276B24221332203C045F ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
11:29:01.0201 0x1608  NvStreamKms - ok
11:29:01.0279 0x1608  [ 82EDBE5035039977247E13D31050A227, 2B8EFF2BAD16D61E4B166725148D280D66CD50776824EF26AC9C13EFD2ABA4B4 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
11:29:01.0326 0x1608  nvsvc - ok
11:29:01.0366 0x1608  [ CDB8AFAE146C9A0E4604400CA2CFA736, 8473597F44F4593E7AD01442C613070F32EE03D3DD69A4B3F1C7195109FD5E05 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
11:29:01.0373 0x1608  nvvad_WaveExtensible - ok
11:29:01.0387 0x1608  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
11:29:01.0401 0x1608  nv_agp - ok
11:29:01.0459 0x1608  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
11:29:01.0505 0x1608  OneSyncSvc - ok
11:29:01.0638 0x1608  [ AD851D818F399DD946A9C17AB2156F22, 4A541E7A3A3164581BFB9080DE0976E18F6DD00E39458EBBCBD3B2445708BEB5 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
11:29:01.0698 0x1608  Origin Client Service - ok
11:29:01.0785 0x1608  [ 788363C87EBD90AC1EAD2DC5A9A40759, B565663B459414C5C9F81451D9A127D62CDF605BC2A9E686F74A2E4FD44A9B43 ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
11:29:01.0843 0x1608  Origin Web Helper Service - ok
11:29:01.0910 0x1608  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:29:01.0924 0x1608  ose - ok
11:29:01.0973 0x1608  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
11:29:02.0053 0x1608  p2pimsvc - ok
11:29:02.0097 0x1608  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
11:29:02.0147 0x1608  p2psvc - ok
11:29:02.0184 0x1608  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
11:29:02.0215 0x1608  Parport - ok
11:29:02.0232 0x1608  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
11:29:02.0248 0x1608  partmgr - ok
11:29:02.0279 0x1608  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
11:29:02.0310 0x1608  PcaSvc - ok
11:29:02.0345 0x1608  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
11:29:02.0365 0x1608  pci - ok
11:29:02.0499 0x1608  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
11:29:02.0528 0x1608  pciide - ok
11:29:02.0545 0x1608  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
11:29:02.0561 0x1608  pcmcia - ok
11:29:02.0592 0x1608  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
11:29:02.0607 0x1608  pcw - ok
11:29:02.0643 0x1608  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
11:29:02.0661 0x1608  pdc - ok
11:29:02.0891 0x1608  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
11:29:02.0977 0x1608  PEAUTH - ok
11:29:03.0039 0x1608  [ EE926C59CBD4DC4DC9FBB85014A2F1A5, 777459BD30A480E03EA5D0BBA431C2CD573403687FAA0B29F172086A0304E230 ] PEGAGFN         C:\Program Files (x86)\PHotkey\PEGAGFN.sys
11:29:03.0046 0x1608  PEGAGFN - ok
11:29:03.0093 0x1608  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
11:29:03.0106 0x1608  percsas2i - ok
11:29:03.0130 0x1608  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
11:29:03.0141 0x1608  percsas3i - ok
11:29:03.0387 0x1608  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
11:29:03.0471 0x1608  PerfHost - ok
11:29:03.0522 0x1608  [ 839BD56425530973FF3F6F7C0057CD22, 9BADF39BC4628409CFCD5F1300C6040C49B2ED72D0FA389C6BB042E5B17E1A40 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
11:29:03.0651 0x1608  PimIndexMaintenanceSvc - ok
11:29:03.0741 0x1608  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
11:29:03.0816 0x1608  pla - ok
11:29:03.0854 0x1608  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
11:29:03.0879 0x1608  PlugPlay - ok
11:29:03.0898 0x1608  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
11:29:03.0914 0x1608  PNRPAutoReg - ok
11:29:03.0936 0x1608  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
11:29:03.0962 0x1608  PNRPsvc - ok
11:29:04.0019 0x1608  [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
11:29:04.0050 0x1608  PolicyAgent - ok
11:29:04.0064 0x1608  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
11:29:04.0096 0x1608  Power - ok
11:29:04.0144 0x1608  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
11:29:04.0172 0x1608  PptpMiniport - ok
11:29:04.0337 0x1608  [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
11:29:04.0516 0x1608  PrintNotify - ok
11:29:04.0557 0x1608  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
11:29:04.0574 0x1608  Processor - ok
11:29:04.0619 0x1608  [ 27D0B024BB356C6BEB1214B61E47DE02, 8CBDD62E243CC652F2197AE83DEDD21D91D2792558A6D7D1CC680B37607DEF4B ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
11:29:04.0647 0x1608  ProfSvc - ok
11:29:04.0693 0x1608  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
11:29:04.0712 0x1608  Psched - ok
11:29:04.0754 0x1608  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
11:29:04.0821 0x1608  QWAVE - ok
11:29:04.0841 0x1608  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
11:29:04.0854 0x1608  QWAVEdrv - ok
11:29:04.0872 0x1608  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:29:04.0912 0x1608  RasAcd - ok
11:29:04.0945 0x1608  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
11:29:04.0973 0x1608  RasAgileVpn - ok
11:29:05.0013 0x1608  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
11:29:05.0045 0x1608  RasAuto - ok
11:29:05.0066 0x1608  [ CA60F6C03611AF1710BC903ED9F566FB, B5C9E8BAC631738761E11168AB68EB1ECC5EC96BF9A8248B9127DCF744CA4691 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
11:29:05.0115 0x1608  Rasl2tp - ok
11:29:05.0176 0x1608  [ 586A17C10D417D889F1FF7D8636E2F34, EEDA4EE8D2BC5C8C7756AB79F1F19AF8B1C4057996748FAE4E3F37844DB0EB33 ] RasMan          C:\WINDOWS\System32\rasmans.dll
11:29:05.0221 0x1608  RasMan - ok
11:29:05.0247 0x1608  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
11:29:05.0293 0x1608  RasPppoe - ok
11:29:05.0319 0x1608  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
11:29:05.0346 0x1608  RasSstp - ok
11:29:05.0399 0x1608  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:29:05.0445 0x1608  rdbss - ok
11:29:05.0468 0x1608  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
11:29:05.0530 0x1608  rdpbus - ok
11:29:05.0574 0x1608  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
11:29:05.0594 0x1608  RDPDR - ok
11:29:05.0610 0x1608  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
11:29:05.0622 0x1608  RdpVideoMiniport - ok
11:29:05.0647 0x1608  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
11:29:05.0665 0x1608  rdyboost - ok
11:29:05.0706 0x1608  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
11:29:05.0743 0x1608  ReFSv1 - ok
11:29:05.0788 0x1608  [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
11:29:05.0837 0x1608  RemoteAccess - ok
11:29:05.0873 0x1608  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
11:29:05.0917 0x1608  RemoteRegistry - ok
11:29:05.0990 0x1608  [ 891C83BE8BA62B7547B9A6576A360C71, B808FE4B5A93B8C971C2AF6CC7F0BAE7154A43A87D6CE0826277D1D7D7948E24 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
11:29:06.0179 0x1608  RetailDemo - ok
11:29:06.0206 0x1608  [ 67E83C0C9A2B5ACEE9EF690E6B7E9189, 63D2A73B2031B52C66EF0455393BF05C55F9F7B0B9E48C54A39E547D46E090F6 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
11:29:06.0242 0x1608  RFCOMM - ok
11:29:06.0344 0x1608  [ 0B169FE016039571ECC6DB70073F8979, B80663433919C3DE83A02E376E5B3020856C6E9E98B5773D316FD9C1C02C1417 ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
11:29:06.0358 0x1608  RichVideo64 - ok
11:29:06.0410 0x1608  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
11:29:06.0437 0x1608  RpcEptMapper - ok
11:29:06.0473 0x1608  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
11:29:06.0505 0x1608  RpcLocator - ok
11:29:06.0546 0x1608  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
11:29:06.0593 0x1608  RpcSs - ok
11:29:06.0640 0x1608  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
11:29:06.0660 0x1608  rspndr - ok
11:29:06.0695 0x1608  [ 0E32A8922DCFD28EA00AAEC07CB3F331, 27F329C6A66DB01C291E1EDCEB7781A05658520B12FF8ECD1FBD3B86EF78DF30 ] RSUSBSTOR       C:\WINDOWS\System32\Drivers\RtsUStor.sys
11:29:06.0708 0x1608  RSUSBSTOR - ok
11:29:06.0764 0x1608  [ 179E6BCF8D16AD39C137CB4FCFE015C5, A1DF499AA378BDB1CB7F95ACC0C7D6929358AF4596A47FDEDFAE115461563CD5 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
11:29:06.0816 0x1608  rt640x64 - ok
11:29:06.0944 0x1608  [ 5ABFE8CAB411EDBAF76356F559365CD5, C3971E412B7AEDC731CBF54A166A82A05036A11E3B7674D379249E8E0CEC5C46 ] RtlWlanu        C:\WINDOWS\System32\drivers\rtwlanu.sys
11:29:07.0041 0x1608  RtlWlanu - ok
11:29:07.0089 0x1608  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
11:29:07.0117 0x1608  s3cap - ok
11:29:07.0158 0x1608  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs           C:\WINDOWS\system32\lsass.exe
11:29:07.0172 0x1608  SamSs - ok
11:29:07.0194 0x1608  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
11:29:07.0208 0x1608  sbp2port - ok
11:29:07.0253 0x1608  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
11:29:07.0292 0x1608  SCardSvr - ok
11:29:07.0311 0x1608  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
11:29:07.0348 0x1608  ScDeviceEnum - ok
11:29:07.0369 0x1608  [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
11:29:07.0420 0x1608  scfilter - ok
11:29:07.0470 0x1608  [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
11:29:07.0794 0x1608  Schedule - ok
11:29:07.0850 0x1608  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
11:29:07.0873 0x1608  SCPolicySvc - ok
11:29:07.0969 0x1608  [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
11:29:07.0989 0x1608  sdbus - ok
11:29:08.0034 0x1608  [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
11:29:08.0106 0x1608  SDRSVC - ok
11:29:08.0145 0x1608  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
11:29:08.0192 0x1608  sdstor - ok
11:29:08.0215 0x1608  [ 648A299839E8F48A946C41DE270D28F5, EEC9A5FCBE3FF78FB5E0452FF1932A8B0C7399688041E22555703CB1977A4428 ] seclogon        C:\WINDOWS\system32\seclogon.dll
11:29:08.0276 0x1608  seclogon - ok
11:29:08.0296 0x1608  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
11:29:08.0330 0x1608  SENS - ok
11:29:08.0390 0x1608  [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
11:29:08.0614 0x1608  SensorDataService - ok
11:29:08.0660 0x1608  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
11:29:08.0825 0x1608  SensorService - ok
11:29:08.0842 0x1608  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
11:29:08.0923 0x1608  SensrSvc - ok
11:29:08.0962 0x1608  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
11:29:08.0977 0x1608  SerCx - ok
11:29:08.0992 0x1608  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
11:29:09.0009 0x1608  SerCx2 - ok
11:29:09.0022 0x1608  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
11:29:09.0046 0x1608  Serenum - ok
11:29:09.0069 0x1608  [ 2A5F5F95FCA123DCBF53B5F603B64789, DE5C9E1D88B2C180B137DA7839F3EF6C936A171ABA49F89C10EE9C73A2226F3F ] Serial          C:\WINDOWS\System32\drivers\serial.sys
11:29:09.0096 0x1608  Serial - ok
11:29:09.0107 0x1608  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
11:29:09.0139 0x1608  sermouse - ok
11:29:09.0185 0x1608  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
11:29:09.0214 0x1608  SessionEnv - ok
11:29:09.0255 0x1608  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
11:29:09.0295 0x1608  sfloppy - ok
11:29:09.0339 0x1608  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
11:29:09.0388 0x1608  SharedAccess - ok
11:29:09.0437 0x1608  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:29:09.0498 0x1608  ShellHWDetection - ok
11:29:09.0517 0x1608  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
11:29:09.0531 0x1608  SiSRaid2 - ok
11:29:09.0544 0x1608  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
11:29:09.0557 0x1608  SiSRaid4 - ok
11:29:09.0667 0x1608  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
11:29:09.0685 0x1608  SkypeUpdate - ok
11:29:09.0732 0x1608  [ 1FE05A4F787ED7DD39EA968172F20AFC, 566ECC090F120A4627B597EA65E6CF7D1A40CF840DFBED22EF224445D442815A ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
11:29:09.0742 0x1608  SmbDrvI - ok
11:29:09.0776 0x1608  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
11:29:09.0809 0x1608  smphost - ok
11:29:09.0857 0x1608  [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
11:29:09.0911 0x1608  SmsRouter - ok
11:29:09.0949 0x1608  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
11:29:09.0980 0x1608  SNMPTRAP - ok
11:29:10.0026 0x1608  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
11:29:10.0051 0x1608  spaceport - ok
11:29:10.0071 0x1608  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
11:29:10.0084 0x1608  SpbCx - ok
11:29:10.0190 0x1608  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\WINDOWS\SysWOW64\speedfan.sys
11:29:10.0200 0x1608  speedfan - ok
11:29:10.0272 0x1608  [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
11:29:10.0346 0x1608  Spooler - ok
11:29:10.0538 0x1608  [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
11:29:10.0733 0x1608  sppsvc - ok
11:29:10.0774 0x1608  [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
11:29:10.0820 0x1608  srv - ok
11:29:10.0882 0x1608  [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
11:29:10.0932 0x1608  srv2 - ok
11:29:10.0958 0x1608  [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
11:29:10.0993 0x1608  srvnet - ok
11:29:11.0039 0x1608  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
11:29:11.0063 0x1608  SSDPSRV - ok
11:29:11.0117 0x1608  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
11:29:11.0160 0x1608  SstpSvc - ok
11:29:11.0269 0x1608  [ C26E2C89EFB4BB39CD135B5DED804B78, 99288C6023DC6AC6554521EA671AB387ACE2AE2BCDE145C7012202842FF40841 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
11:29:11.0442 0x1608  StateRepository - ok
11:29:11.0578 0x1608  [ 3B710E79D9BE2F149B66FBBF3F57A35E, 0A18823FCAB94B350F6177E9459E3E1DBA4FC52177056A3319E545AB7FED057E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:29:11.0620 0x1608  Steam Client Service - ok
11:29:11.0645 0x1608  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
11:29:11.0658 0x1608  stexstor - ok
11:29:11.0717 0x1608  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
11:29:11.0756 0x1608  stisvc - ok
11:29:11.0800 0x1608  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
11:29:11.0814 0x1608  storahci - ok
11:29:11.0850 0x1608  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
11:29:11.0861 0x1608  storflt - ok
11:29:11.0932 0x1608  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
11:29:11.0947 0x1608  stornvme - ok
11:29:11.0967 0x1608  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
11:29:12.0039 0x1608  storqosflt - ok
11:29:12.0086 0x1608  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
11:29:12.0191 0x1608  StorSvc - ok
11:29:12.0209 0x1608  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
11:29:12.0224 0x1608  storufs - ok
11:29:12.0274 0x1608  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
11:29:12.0286 0x1608  storvsc - ok
11:29:12.0324 0x1608  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
11:29:12.0364 0x1608  svsvc - ok
11:29:12.0466 0x1608  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
11:29:12.0477 0x1608  swenum - ok
11:29:12.0524 0x1608  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
11:29:12.0574 0x1608  swprv - ok
11:29:12.0612 0x1608  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
11:29:12.0643 0x1608  Synth3dVsc - ok
11:29:12.0710 0x1608  [ A3BBF71752E47CDF444DFD49E971E16B, A3E6F9D781FCF1F8146E23D90F9DFDAA24C20BCA82A00BE9534974720E003776 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
11:29:12.0734 0x1608  SynTP - ok
11:29:12.0838 0x1608  [ 9C58665F465646B0784F595240237C10, 92033D63EF21733CA76BF47C433142F7A2390149C9162967F13C9F3F29236DBD ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
11:29:12.0858 0x1608  SynTPEnhService - ok
11:29:12.0921 0x1608  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
11:29:13.0132 0x1608  SysMain - ok
11:29:13.0197 0x1608  [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
11:29:13.0290 0x1608  SystemEventsBroker - ok
11:29:13.0328 0x1608  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
11:29:13.0393 0x1608  TabletInputService - ok
11:29:13.0415 0x1608  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
11:29:13.0453 0x1608  TapiSrv - ok
11:29:13.0586 0x1608  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
11:29:13.0666 0x1608  Tcpip - ok
11:29:13.0733 0x1608  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
11:29:13.0817 0x1608  Tcpip6 - ok
11:29:13.0855 0x1608  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
11:29:13.0882 0x1608  tcpipreg - ok
11:29:13.0928 0x1608  [ 28E1E63A1AC65E17B3194238FA2CF3BF, 9A52D6DD14BEBB7B407B2703A111D1B302F1B84AA40A14D21FCA554F395E935D ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
11:29:13.0944 0x1608  tdx - ok
11:29:14.0217 0x1608  [ F2F02E436BA56A96A06E4427C5787B6E, 1562FF264011A15AC69808CB74F387917C4E8ED3B91546B12933BE10B6E20B3A ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
11:29:14.0408 0x1608  TeamViewer - ok
11:29:14.0440 0x1608  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
11:29:14.0454 0x1608  terminpt - ok
11:29:14.0523 0x1608  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
11:29:14.0580 0x1608  TermService - ok
11:29:14.0593 0x1608  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
11:29:14.0630 0x1608  Themes - ok
11:29:14.0681 0x1608  [ 8D23F0819A00C547814409B734DD3747, 0E1B25A53C84486F8A57F309F3C016114F90F5AF5E576889BD230931F38594A5 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
11:29:14.0812 0x1608  tiledatamodelsvc - ok
11:29:14.0860 0x1608  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
11:29:14.0887 0x1608  TimeBroker - ok
11:29:14.0911 0x1608  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
11:29:14.0934 0x1608  TPM - ok
11:29:14.0952 0x1608  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
11:29:14.0986 0x1608  TrkWks - ok
11:29:15.0051 0x1608  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
11:29:15.0164 0x1608  TrustedInstaller - ok
11:29:15.0182 0x1608  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
11:29:15.0259 0x1608  TsUsbFlt - ok
11:29:15.0293 0x1608  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
11:29:15.0311 0x1608  TsUsbGD - ok
11:29:15.0330 0x1608  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
11:29:15.0487 0x1608  tunnel - ok
11:29:15.0521 0x1608  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
11:29:15.0533 0x1608  uagp35 - ok
11:29:15.0551 0x1608  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
11:29:15.0566 0x1608  UASPStor - ok
11:29:15.0582 0x1608  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
11:29:15.0628 0x1608  UcmCx0101 - ok
11:29:15.0647 0x1608  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
11:29:15.0852 0x1608  UcmUcsi - ok
11:29:15.0895 0x1608  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
11:29:15.0915 0x1608  Ucx01000 - ok
11:29:15.0933 0x1608  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
11:29:15.0999 0x1608  UdeCx - ok
11:29:16.0021 0x1608  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
11:29:16.0076 0x1608  udfs - ok
11:29:16.0100 0x1608  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
11:29:16.0113 0x1608  UEFI - ok
11:29:16.0134 0x1608  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
11:29:16.0150 0x1608  Ufx01000 - ok
11:29:16.0173 0x1608  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
11:29:16.0187 0x1608  UfxChipidea - ok
11:29:16.0207 0x1608  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
11:29:16.0222 0x1608  ufxsynopsys - ok
11:29:16.0271 0x1608  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
11:29:16.0290 0x1608  UI0Detect - ok
11:29:16.0315 0x1608  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
11:29:16.0328 0x1608  uliagpkx - ok
11:29:16.0346 0x1608  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
11:29:16.0373 0x1608  umbus - ok
11:29:16.0406 0x1608  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
11:29:16.0430 0x1608  UmPass - ok
11:29:16.0482 0x1608  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
11:29:16.0519 0x1608  UmRdpService - ok
11:29:16.0590 0x1608  [ 0D5C9E27E93AAEA3E30A1E59A7AC3DFF, 31A203DA03877E6B887930990C5BB53402F0DFFB22A6F8FC5A34EF0B99CD8A7E ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
11:29:16.0672 0x1608  UnistoreSvc - ok
11:29:16.0839 0x1608  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
11:29:16.0854 0x1608  UNS - ok
11:29:16.0901 0x1608  [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost        C:\WINDOWS\System32\upnphost.dll
11:29:16.0934 0x1608  upnphost - ok
11:29:16.0948 0x1608  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
11:29:16.0960 0x1608  UrsChipidea - ok
11:29:16.0997 0x1608  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
11:29:17.0010 0x1608  UrsCx01000 - ok
11:29:17.0019 0x1608  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
11:29:17.0033 0x1608  UrsSynopsys - ok
11:29:17.0075 0x1608  [ 8047D8AFA070A4C3B9FCBDBF77A84C45, D8B47716EE57391E3B9CBE3B35FF1F933F08E40B1C8C12EB5BE2438D9E409FF0 ] usb3Hub         C:\WINDOWS\System32\drivers\usb3Hub.sys
11:29:17.0083 0x1608  usb3Hub - ok
11:29:17.0095 0x1608  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
11:29:17.0112 0x1608  usbccgp - ok
11:29:17.0125 0x1608  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
11:29:17.0154 0x1608  usbcir - ok
11:29:17.0209 0x1608  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
11:29:17.0222 0x1608  usbehci - ok
11:29:17.0268 0x1608  [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
11:29:17.0295 0x1608  usbhub - ok
11:29:17.0381 0x1608  [ C08449092043601887A1743350888635, 5CD916649D2CD8823B89C9E7459AD76AA8E54D70B6D9F40AD4A41144E22ACBE0 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
11:29:17.0406 0x1608  USBHUB3 - ok
11:29:17.0452 0x1608  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
11:29:17.0632 0x1608  usbohci - ok
11:29:17.0669 0x1608  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
11:29:17.0686 0x1608  usbprint - ok
11:29:17.0723 0x1608  [ 1F72E1A7E1858B7B3FF81522FCEBDE95, 4FAD243DA73C45CD5CA5E50F824F30EF0DC777D83957FD21FF43D8C89EC15AAC ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
11:29:17.0869 0x1608  usbser - ok
11:29:17.0908 0x1608  [ CD35467670DF1E6FBF36DA308F0C872B, E1F4F9B1EBD476394CBD0C934842AEE2502B030D97351B0A1E751FF23B011B57 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
11:29:17.0924 0x1608  USBSTOR - ok
11:29:17.0958 0x1608  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
11:29:17.0972 0x1608  usbuhci - ok
11:29:17.0995 0x1608  [ B1484D4BBC6B7B424F1CD1554B0AFB84, C9432978603360182AAA983248FFA97576B3C59BE5DA45473DFA17E2940479C8 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
11:29:18.0035 0x1608  usbvideo - ok
11:29:18.0063 0x1608  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
11:29:18.0085 0x1608  USBXHCI - ok
11:29:18.0171 0x1608  [ 32212C0FE0556915E763C29DEB6D267E, C5BC9DA3AB0C41604E8F3D01AFC2C25351FF5D3967E766DD0CDB4C0239ED6312 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
11:29:18.0264 0x1608  UserDataSvc - ok
11:29:18.0329 0x1608  [ E9E2B5FFBEFC2CDF14A6E55DD94CC823, A10C011835A65601B8FE3A30F361C224C60084A78085842ADCDA248047530CD1 ] UserManager     C:\WINDOWS\System32\usermgr.dll
11:29:18.0379 0x1608  UserManager - ok
11:29:18.0434 0x1608  [ 0CFEA30C0217EE74FF853B2B0CC0BE6D, 1F0856D2D94F46D7B24B7EE18ED868C9EFAE972039D35D1FAA9058A12CF40493 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
11:29:18.0610 0x1608  UsoSvc - ok
11:29:18.0650 0x1608  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
11:29:18.0664 0x1608  VaultSvc - ok
11:29:18.0677 0x1608  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
11:29:18.0690 0x1608  vdrvroot - ok
11:29:18.0756 0x1608  [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds             C:\WINDOWS\System32\vds.exe
11:29:18.0815 0x1608  vds - ok
11:29:18.0837 0x1608  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
11:29:18.0853 0x1608  VerifierExt - ok
11:29:18.0885 0x1608  [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
11:29:18.0914 0x1608  vhdmp - ok
11:29:18.0948 0x1608  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
11:29:18.0975 0x1608  vhf - ok
11:29:18.0991 0x1608  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
11:29:19.0004 0x1608  vmbus - ok
11:29:19.0017 0x1608  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
11:29:19.0049 0x1608  VMBusHID - ok
11:29:19.0091 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
11:29:19.0135 0x1608  vmicguestinterface - ok
11:29:19.0150 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
11:29:19.0182 0x1608  vmicheartbeat - ok
11:29:19.0198 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
11:29:19.0233 0x1608  vmickvpexchange - ok
11:29:19.0248 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
11:29:19.0285 0x1608  vmicrdv - ok
11:29:19.0301 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
11:29:19.0336 0x1608  vmicshutdown - ok
11:29:19.0353 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
11:29:19.0416 0x1608  vmictimesync - ok
11:29:19.0434 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
11:29:19.0473 0x1608  vmicvmsession - ok
11:29:19.0491 0x1608  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
11:29:19.0525 0x1608  vmicvss - ok
11:29:19.0543 0x1608  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
11:29:19.0555 0x1608  volmgr - ok
11:29:19.0577 0x1608  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
11:29:19.0601 0x1608  volmgrx - ok
11:29:19.0624 0x1608  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
11:29:19.0651 0x1608  volsnap - ok
11:29:19.0688 0x1608  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
11:29:19.0702 0x1608  vpci - ok
11:29:19.0725 0x1608  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
11:29:19.0742 0x1608  vsmraid - ok
11:29:19.0812 0x1608  [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS             C:\WINDOWS\system32\vssvc.exe
11:29:19.0900 0x1608  VSS - ok
11:29:19.0943 0x1608  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
11:29:19.0964 0x1608  VSTXRAID - ok
11:29:20.0004 0x1608  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
11:29:20.0044 0x1608  vwifibus - ok
11:29:20.0067 0x1608  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
11:29:20.0100 0x1608  vwififlt - ok
11:29:20.0118 0x1608  [ 37C868DDE3103130B00AD1313DAB5ACB, BF9C30817A3502F5C0673FD462B18FE1BF37963B29DF09D84B66BDCBF8ECBA81 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
11:29:20.0153 0x1608  vwifimp - ok
11:29:20.0202 0x1608  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
11:29:20.0238 0x1608  W32Time - ok
11:29:20.0304 0x1608  [ 9776E4816D92B766F461957FBDA84360, 048F6ADC97767AFAB50582D0AE1E67A15B038A1C02F7982A6AD30B61AC5C7369 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
11:29:20.0320 0x1608  w3logsvc - ok
11:29:20.0355 0x1608  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
11:29:20.0410 0x1608  W3SVC - ok
11:29:20.0449 0x1608  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
11:29:20.0464 0x1608  WacomPen - ok
11:29:20.0514 0x1608  [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService   C:\WINDOWS\system32\WalletService.dll
11:29:20.0603 0x1608  WalletService - ok
11:29:20.0624 0x1608  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:29:20.0660 0x1608  wanarp - ok
11:29:20.0672 0x1608  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:29:20.0692 0x1608  wanarpv6 - ok
11:29:20.0739 0x1608  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
11:29:20.0773 0x1608  WAS - ok
11:29:20.0849 0x1608  [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine        C:\WINDOWS\system32\wbengine.exe
11:29:20.0979 0x1608  wbengine - ok
11:29:21.0032 0x1608  [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
11:29:21.0120 0x1608  WbioSrvc - ok
11:29:21.0176 0x1608  [ A40484AC27EE08DBE7F8DA5E1F6651ED, E3259694450C4F1DEC5E0EA5E23BF3A51F1819374DF47FECF70282AFD46114A1 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
11:29:21.0282 0x1608  Wcmsvc - ok
11:29:21.0334 0x1608  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
11:29:21.0366 0x1608  wcncsvc - ok
11:29:21.0379 0x1608  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
11:29:21.0517 0x1608  WcsPlugInService - ok
11:29:21.0564 0x1608  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
11:29:21.0576 0x1608  WdBoot - ok
11:29:21.0678 0x1608  [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
11:29:21.0736 0x1608  Wdf01000 - ok
11:29:21.0770 0x1608  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
11:29:21.0788 0x1608  WdFilter - ok
11:29:21.0833 0x1608  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
11:29:21.0872 0x1608  WdiServiceHost - ok
11:29:21.0877 0x1608  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
11:29:21.0900 0x1608  WdiSystemHost - ok
11:29:21.0931 0x1608  [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
11:29:21.0969 0x1608  wdiwifi - ok
11:29:22.0016 0x1608  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
11:29:22.0031 0x1608  WdNisDrv - ok
11:29:22.0078 0x1608  WdNisSvc - ok
11:29:22.0104 0x1608  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
11:29:22.0151 0x1608  WebClient - ok
11:29:22.0169 0x1608  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
11:29:22.0193 0x1608  Wecsvc - ok
11:29:22.0202 0x1608  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
11:29:22.0236 0x1608  WEPHOSTSVC - ok
11:29:22.0262 0x1608  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
11:29:22.0322 0x1608  wercplsupport - ok
11:29:22.0336 0x1608  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
11:29:22.0362 0x1608  WerSvc - ok
11:29:22.0366 0x1608  wfpcapture - ok
11:29:22.0383 0x1608  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
11:29:22.0398 0x1608  WFPLWFS - ok
11:29:22.0436 0x1608  [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
11:29:22.0455 0x1608  WiaRpc - ok
11:29:22.0495 0x1608  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
11:29:22.0508 0x1608  WIMMount - ok
11:29:22.0512 0x1608  WinDefend - ok
11:29:22.0552 0x1608  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
11:29:22.0568 0x1608  WindowsTrustedRT - ok
11:29:22.0581 0x1608  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
11:29:22.0593 0x1608  WindowsTrustedRTProxy - ok
11:29:22.0653 0x1608  [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
11:29:22.0941 0x1608  WinHttpAutoProxySvc - ok
11:29:22.0987 0x1608  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
11:29:23.0010 0x1608  WinMad - ok
11:29:23.0104 0x1608  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
11:29:23.0159 0x1608  Winmgmt - ok
11:29:23.0271 0x1608  [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
11:29:23.0375 0x1608  WinRM - ok
11:29:23.0417 0x1608  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
11:29:23.0447 0x1608  WINUSB - ok
11:29:23.0485 0x1608  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
11:29:23.0497 0x1608  WinVerbs - ok
11:29:23.0571 0x1608  [ 3C096082A9232B7CEE4653B9C9031769, CFD4C7D0874097ED70735FD99206F21C12749B7956C4B5D4287F160EC6A21DCC ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
11:29:23.0672 0x1608  WlanSvc - ok
11:29:23.0757 0x1608  [ 0968D575D9108497A6DC37749D4A6C4F, 8BFEDBE642DA0FD8AC1E60180C192527F3D36E43089090A7BB6D8B27AB6E4F7F ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
11:29:24.0006 0x1608  wlidsvc - ok
11:29:24.0033 0x1608  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
11:29:24.0074 0x1608  WmiAcpi - ok
11:29:24.0125 0x1608  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
11:29:24.0180 0x1608  wmiApSrv - ok
11:29:24.0212 0x1608  WMPNetworkSvc - ok
11:29:24.0264 0x1608  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
11:29:24.0286 0x1608  Wof - ok
11:29:24.0402 0x1608  [ C7503A49364DB2AF7A7DE177B233081F, 85DC6D8B5631E51FCF395A884F58571A96C8C55C38CA9ABEBD9C75BABAD21E38 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
11:29:24.0635 0x1608  workfolderssvc - ok
11:29:24.0681 0x1608  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
11:29:24.0701 0x1608  wpcfltr - ok
11:29:24.0731 0x1608  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
11:29:24.0781 0x1608  WPDBusEnum - ok
11:29:24.0798 0x1608  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
11:29:24.0810 0x1608  WpdUpFltr - ok
11:29:24.0823 0x1608  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
11:29:24.0903 0x1608  WpnService - ok
11:29:24.0939 0x1608  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
11:29:24.0968 0x1608  ws2ifsl - ok
11:29:25.0010 0x1608  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
11:29:25.0054 0x1608  wscsvc - ok
11:29:25.0058 0x1608  WSearch - ok
11:29:25.0176 0x1608  [ 9EB85802AB625970E05879D15DE56335, B7DCE5E1924A5CEE76CC07FF3B8CEDBBD0DDBB4C4ED0A3BFB8D1ABCAD7C0AA23 ] WSService       C:\WINDOWS\System32\WSService.dll
11:29:25.0283 0x1608  WSService - ok
11:29:25.0394 0x1608  [ B70FF53144AC4B3C7D98BFB7D7C239BD, 996F6253F24C6D734B777988CDE03CD3A32FFBAD6D7A198F1C590B762CD8DC0E ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
11:29:25.0547 0x1608  wuauserv - ok
11:29:25.0594 0x1608  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
11:29:25.0634 0x1608  WudfPf - ok
11:29:25.0660 0x1608  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
11:29:25.0705 0x1608  WUDFRd - ok
11:29:25.0747 0x1608  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
11:29:25.0766 0x1608  wudfsvc - ok
11:29:25.0833 0x1608  [ D23F211E1AA0787EFEC373D172D4A1C2, 6CCAB272D121C9946B2CF6B19F50E09946F0187713D54BFBD371B5C017367204 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
11:29:25.0984 0x1608  WwanSvc - ok
11:29:26.0042 0x1608  [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
11:29:26.0127 0x1608  XblAuthManager - ok
11:29:26.0183 0x1608  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
11:29:26.0278 0x1608  XblGameSave - ok
11:29:26.0301 0x1608  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
11:29:26.0376 0x1608  xboxgip - ok
11:29:26.0458 0x1608  [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
11:29:26.0571 0x1608  XboxNetApiSvc - ok
11:29:26.0618 0x1608  [ 24E57041608ED6A9D7FDAD0D9EC214E2, 895A16072F5EFFF57A7DCA21917540726BF816A2746EC47A066AAD363F69E5D7 ] XHCIPort        C:\WINDOWS\System32\drivers\XHCIPort.sys
11:29:26.0637 0x1608  XHCIPort - ok
11:29:26.0658 0x1608  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
11:29:26.0688 0x1608  xinputhid - ok
11:29:26.0722 0x1608  [ 1E80EDF59994925D6AF76D87564588E1, 40D02073F3A17B6C10F496341598D39F55CE70AD626BADE1BBD2021AB1A018F9 ] xusb22          C:\WINDOWS\System32\drivers\xusb22.sys
11:29:26.0752 0x1608  xusb22 - ok
11:29:26.0762 0x1608  ================ Scan global ===============================
11:29:26.0795 0x1608  [ C6BC6E49A7F76AA2BBA58CD08196755F, D02B6B285899E966D19323566A4780D51303D00E66674D7FF4B61991430A69A6 ] C:\WINDOWS\system32\basesrv.dll
11:29:26.0834 0x1608  [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
11:29:26.0886 0x1608  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
11:29:26.0928 0x1608  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
11:29:26.0937 0x1608  [ Global ] - ok
11:29:26.0938 0x1608  ================ Scan MBR ==================================
11:29:26.0974 0x1608  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:29:27.0050 0x1608  \Device\Harddisk0\DR0 - ok
11:29:27.0050 0x1608  ================ Scan VBR ==================================
11:29:27.0080 0x1608  [ 05B537D6EA6094B4AEF0309399AFE59F ] \Device\Harddisk0\DR0\Partition1
11:29:27.0083 0x1608  \Device\Harddisk0\DR0\Partition1 - ok
11:29:27.0099 0x1608  [ 26BDC174EDD9AC50DB1060290902BB6B ] \Device\Harddisk0\DR0\Partition2
11:29:27.0100 0x1608  \Device\Harddisk0\DR0\Partition2 - ok
11:29:27.0134 0x1608  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
11:29:27.0135 0x1608  \Device\Harddisk0\DR0\Partition3 - ok
11:29:27.0151 0x1608  [ 90E3D512CBCD84251E1EB9F7D9D96CE6 ] \Device\Harddisk0\DR0\Partition4
11:29:27.0152 0x1608  \Device\Harddisk0\DR0\Partition4 - ok
11:29:27.0159 0x1608  [ 200DB314AF7252D41613128B9DC905FB ] \Device\Harddisk0\DR0\Partition5
11:29:27.0161 0x1608  \Device\Harddisk0\DR0\Partition5 - ok
11:29:27.0184 0x1608  [ 79B957D78222E6C2F3A3131F38900E2F ] \Device\Harddisk0\DR0\Partition6
11:29:27.0186 0x1608  \Device\Harddisk0\DR0\Partition6 - ok
11:29:27.0198 0x1608  [ E9F0557D5F6441EAAC864EE722BB3A34 ] \Device\Harddisk0\DR0\Partition7
11:29:27.0202 0x1608  \Device\Harddisk0\DR0\Partition7 - ok
11:29:27.0212 0x1608  [ 70AE140BB2045F17D8245069B61C9AC0 ] \Device\Harddisk0\DR0\Partition8
11:29:27.0215 0x1608  \Device\Harddisk0\DR0\Partition8 - ok
11:29:27.0216 0x1608  ================ Scan generic autorun ======================
11:29:27.0629 0x1608  [ B3B1175C96F8E01EC5D37F6C0B965F6F, F0330B4B1CBF2D5C4570E53CE6DE2BA6DE14A7156C368458A0B4B59BDBF45DD5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
11:29:27.0923 0x1608  RtHDVCpl - ok
11:29:28.0012 0x1608  [ D0AA4593126F4FCA79173D00DF054454, C18F6780ADFA44C49E6C6C8CEE4C5E25829ADE125C97A56467456B173BE4A7F2 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:29:28.0045 0x1608  RtHDVBg_Dolby - ok
11:29:28.0047 0x1608  SynTPEnh - ok
11:29:28.0110 0x1608  [ 724CB7A116F7E1A67009D751BCF86586, F0C4BE7451C5573AD584F5EF125C0702841E30D928909B5B3EA702831EF2FD9B ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
11:29:28.0118 0x1608  CLMLServer_For_P2G8 - ok
11:29:28.0145 0x1608  [ BE14AD6D80F9A3B33262C62479199E61, DA661F2821235018BE22CB1B459DDC99BE6D969C754096A83B2B85C1E2E46651 ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
11:29:28.0163 0x1608  CLVirtualDrive - ok
11:29:28.0214 0x1608  [ A2221900B57AEC20577996744FA4A56A, AFEF9176DBA86CDB16A7E84AD0DF6433D4F5865948774FB6B619CBEBEC004592 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
11:29:28.0224 0x1608  RemoteControl10 - ok
11:29:28.0299 0x1608  [ D59062FC3E0C232615AC2C6ADB46A770, BDE93E89C41F3F9F504B9F5D0A6014A370F622F03C002D352A16C6F3EA5C7A94 ] C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
11:29:28.0310 0x1608  YouCam Service - ok
11:29:28.0371 0x1608  Dropbox - ok
11:29:28.0675 0x1608  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:29:28.0854 0x1608  OneDriveSetup - ok
11:29:29.0219 0x1608  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:29:29.0400 0x1608  OneDriveSetup - ok
11:29:29.0564 0x1608  [ ECAB32E9A6A2CA0B324026D22D1C75F8, F3E505009D3C7901C1B4A3FD62EEC8F8EEC66299E6945114BD353D8EEF347E5D ] C:\Program Files (x86)\Steam\steam.exe
11:29:29.0633 0x1608  Steam - ok
11:29:29.0808 0x1608  [ 376E709A4AE341CDB7E05FBFBF2E49AB, 7942E1EECC26A8B6B26EDB759723E5666654C5218E2BBC8F50FF192009EEF9FC ] C:\Program Files (x86)\Origin\Origin.exe
11:29:29.0879 0x1608  EADM - ok
11:29:30.0143 0x1608  [ F2AD1B265908797F8A5E21E0312F2F25, 2A6A612F7D52D297385C43E77AD0CD37B28F33ED2AF89098F5E66B812B838A52 ] C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe
11:29:30.0254 0x1608  Akamai NetSession Interface - ok
11:29:30.0360 0x1608  [ 44348495F9D6ED21F4EFB3FF80677D99, 05B76248764B2BF7F9229626D7EFAFF96B724D38A82969EBE376CBE879E30450 ] C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\OneDrive.exe
11:29:30.0404 0x1608  OneDrive - ok
11:29:30.0450 0x1608  Skype - ok
11:29:30.0457 0x1608  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x61100 ( enabled : updated )
11:29:30.0460 0x1608  Win FW state via NFP2: enabled ( trusted )
11:29:32.0807 0x1608  ============================================================
11:29:32.0807 0x1608  Scan finished
11:29:32.0807 0x1608  ============================================================
11:29:32.0816 0x0f4c  Detected object count: 1
11:29:32.0816 0x0f4c  Actual detected object count: 1
11:29:49.0100 0x0f4c  GFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
11:29:49.0100 0x0f4c  GFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
11:29:53.0403 0x0a8c  Deinitialize success
         

Alt 15.12.2016, 12:03   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Beide Anleitungen wurden nicht richtig gelesen bzw falsch umgesetzt!

1. falsches Log von MBAR
2. der tdsskiller wurde falsch eingestellt

Alt 16.12.2016, 11:32   #14
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Code:
ATTFilter
11:28:42.0661 0x17ac  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
11:28:42.0661 0x17ac  UEFI system
11:28:46.0131 0x17ac  ============================================================
11:28:46.0131 0x17ac  Current date / time: 2016/12/16 11:28:46.0131
11:28:46.0131 0x17ac  SystemInfo:
11:28:46.0131 0x17ac  
11:28:46.0131 0x17ac  OS Version: 10.0.10240 ServicePack: 0.0
11:28:46.0131 0x17ac  Product type: Workstation
11:28:46.0131 0x17ac  ComputerName: PETRA
11:28:46.0131 0x17ac  UserName: 1973pl
11:28:46.0131 0x17ac  Windows directory: C:\WINDOWS
11:28:46.0131 0x17ac  System windows directory: C:\WINDOWS
11:28:46.0131 0x17ac  Running under WOW64
11:28:46.0131 0x17ac  Processor architecture: Intel x64
11:28:46.0131 0x17ac  Number of processors: 4
11:28:46.0131 0x17ac  Page size: 0x1000
11:28:46.0131 0x17ac  Boot type: Normal boot
11:28:46.0131 0x17ac  CodeIntegrityOptions = 0x00000001
11:28:46.0131 0x17ac  ============================================================
11:28:46.0521 0x17ac  KLMD registered as C:\WINDOWS\system32\drivers\50804390.sys
11:28:46.0521 0x17ac  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 10240.16545, osProperties = 0x19
11:28:47.0834 0x17ac  System UUID: {D1C99AB6-37B1-631E-B4F8-DAC289BC79A4}
11:28:48.0599 0x17ac  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:28:48.0615 0x17ac  ============================================================
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0:
11:28:48.0615 0x17ac  GPT partitions:
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {FDD69436-40EB-4163-B4F1-726E79301392}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9BA23542-A15D-40DF-A09E-7C6F1558281C}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x32000
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {2CECF08E-9F9F-4F9B-8C53-F8D3F1B4DC21}, Name: Microsoft reserved partition, StartLBA 0x12C000, BlocksNum 0x40000
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {8D7F0CC6-879E-47F6-A767-0ED8FD3B0659}, UniqueGUID: {D0E7321A-699F-4997-B81C-47160DC3EFC2}, Name: Basic data partition, StartLBA 0x16C000, BlocksNum 0x200000
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {09FDA5E6-9445-4AD3-A445-E473693E1003}, Name: Basic data partition, StartLBA 0x36C000, BlocksNum 0x6C92CF03
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {25E9DE84-752D-43DD-B725-D1436B6167B9}, Name: , StartLBA 0x6CC99000, BlocksNum 0x18B000
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {289895E3-E50D-45E5-996D-16FE9D694287}, Name: , StartLBA 0x6CE24000, BlocksNum 0xE2000
11:28:48.0615 0x17ac  \Device\Harddisk0\DR0\Partition8: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F0A537F2-C7AE-4F4F-905B-D1DD05233878}, Name: Basic data partition, StartLBA 0x6CF06000, BlocksNum 0x77FE000
11:28:48.0615 0x17ac  MBR partitions:
11:28:48.0615 0x17ac  ============================================================
11:28:48.0756 0x17ac  C: <-> \Device\Harddisk0\DR0\Partition5
11:28:48.0803 0x17ac  D: <-> \Device\Harddisk0\DR0\Partition8
11:28:48.0803 0x17ac  ============================================================
11:28:48.0803 0x17ac  Initialize success
11:28:48.0803 0x17ac  ============================================================
11:28:58.0631 0x1bc8  ============================================================
11:28:58.0631 0x1bc8  Scan started
11:28:58.0631 0x1bc8  Mode: Manual; SigCheck; TDLFS; 
11:28:58.0631 0x1bc8  ============================================================
11:28:58.0631 0x1bc8  KSN ping started
11:29:01.0092 0x1bc8  KSN ping finished: true
11:29:03.0614 0x1bc8  ================ Scan system memory ========================
11:29:03.0614 0x1bc8  System memory - ok
11:29:03.0615 0x1bc8  ================ Scan services =============================
11:29:03.0939 0x1bc8  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
11:29:04.0009 0x1bc8  1394ohci - ok
11:29:04.0077 0x1bc8  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
11:29:04.0102 0x1bc8  3ware - ok
11:29:04.0136 0x1bc8  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
11:29:04.0168 0x1bc8  ACPI - ok
11:29:04.0184 0x1bc8  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
11:29:04.0199 0x1bc8  acpiex - ok
11:29:04.0254 0x1bc8  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
11:29:04.0291 0x1bc8  acpipagr - ok
11:29:04.0328 0x1bc8  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
11:29:04.0349 0x1bc8  AcpiPmi - ok
11:29:04.0384 0x1bc8  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
11:29:04.0457 0x1bc8  acpitime - ok
11:29:04.0600 0x1bc8  [ B79750091FC0842182FE49D263791294, 32FC260A74C9C45CD1E8998523642C285866378FCD9478FEFD15A0CC42EC0E0B ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:29:04.0629 0x1bc8  AdobeFlashPlayerUpdateSvc - ok
11:29:04.0726 0x1bc8  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
11:29:04.0771 0x1bc8  ADP80XX - ok
11:29:04.0836 0x1bc8  [ 0D0E5281784C2C526BA43C2ECD374288, BE4B16E08A96A24BEB904A2216A538340FD91A11E0CAB43BF8788C35DAD2D2B5 ] Afc             C:\WINDOWS\syswow64\drivers\Afc.sys
11:29:04.0860 0x1bc8  Afc - ok
11:29:04.0888 0x1bc8  [ 6C12C7E01A4F64E0AA9C88AF66955CC9, 81A413702909341F8694823EC83FBA0089523D7EC927B80E55E0779BB83AD263 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
11:29:04.0994 0x1bc8  AFD - ok
11:29:05.0038 0x1bc8  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
11:29:05.0062 0x1bc8  agp440 - ok
11:29:05.0082 0x1bc8  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
11:29:05.0136 0x1bc8  ahcache - ok
11:29:05.0153 0x1bc8  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
11:29:05.0167 0x1bc8  AJRouter - ok
11:29:05.0193 0x1bc8  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
11:29:05.0243 0x1bc8  ALG - ok
11:29:05.0261 0x1bc8  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
11:29:05.0317 0x1bc8  AmdK8 - ok
11:29:05.0342 0x1bc8  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
11:29:05.0434 0x1bc8  AmdPPM - ok
11:29:05.0455 0x1bc8  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
11:29:05.0469 0x1bc8  amdsata - ok
11:29:05.0494 0x1bc8  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
11:29:05.0513 0x1bc8  amdsbs - ok
11:29:05.0534 0x1bc8  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
11:29:05.0545 0x1bc8  amdxata - ok
11:29:05.0633 0x1bc8  [ 0C3D62CB6B8F2B3CC42369BAC0F58AD5, F0121EACB6060DF1F6C5F79C15D5B483F301EF85B3C79F67806520BE9CEE398E ] AMPPAL          C:\WINDOWS\System32\drivers\AMPPAL.sys
11:29:05.0672 0x1bc8  AMPPAL - ok
11:29:05.0763 0x1bc8  [ E4AFE476D9F758514A8A571DF6A24372, A37055A2CDB577CC8B76D4B020924A6C68D94166C1C9A64F7C0E9E16692709FC ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
11:29:05.0852 0x1bc8  AppHostSvc - ok
11:29:05.0886 0x1bc8  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
11:29:05.0903 0x1bc8  AppID - ok
11:29:05.0951 0x1bc8  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
11:29:06.0078 0x1bc8  AppIDSvc - ok
11:29:06.0099 0x1bc8  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
11:29:06.0118 0x1bc8  Appinfo - ok
11:29:06.0154 0x1bc8  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
11:29:06.0216 0x1bc8  AppReadiness - ok
11:29:06.0351 0x1bc8  [ C0BC21B9D557E46E5C331209950AF90D, 9634D17515918483521D1AE9F271836CA64764103216B42E592305B85E506271 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
11:29:06.0459 0x1bc8  AppXSvc - ok
11:29:06.0481 0x1bc8  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
11:29:06.0495 0x1bc8  arcsas - ok
11:29:06.0542 0x1bc8  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
11:29:06.0574 0x1bc8  AsyncMac - ok
11:29:06.0615 0x1bc8  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
11:29:06.0627 0x1bc8  atapi - ok
11:29:06.0754 0x1bc8  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
11:29:06.0793 0x1bc8  AudioEndpointBuilder - ok
11:29:06.0862 0x1bc8  [ 7614E6E6B53E8FE6E6B8A6D6D3CC2018, DF3445145E38BB22E08F11638DA6C37C9EDC1109207569F7921CDD525238CA39 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
11:29:06.0935 0x1bc8  Audiosrv - ok
11:29:07.0063 0x1bc8  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
11:29:07.0094 0x1bc8  AxInstSV - ok
11:29:07.0169 0x1bc8  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
11:29:07.0202 0x1bc8  b06bdrv - ok
11:29:07.0226 0x1bc8  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
11:29:07.0259 0x1bc8  BasicDisplay - ok
11:29:07.0321 0x1bc8  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
11:29:07.0339 0x1bc8  BasicRender - ok
11:29:07.0360 0x1bc8  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
11:29:07.0371 0x1bc8  bcmfn2 - ok
11:29:07.0396 0x1bc8  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
11:29:07.0487 0x1bc8  BDESVC - ok
11:29:07.0522 0x1bc8  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
11:29:07.0590 0x1bc8  Beep - ok
11:29:07.0659 0x1bc8  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
11:29:07.0791 0x1bc8  BFE - ok
11:29:07.0876 0x1bc8  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
11:29:07.0979 0x1bc8  BITS - ok
11:29:08.0034 0x1bc8  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
11:29:08.0112 0x1bc8  bowser - ok
11:29:08.0172 0x1bc8  [ 3A4A543F135DE9A06ABA9DF982D79DD7, ABA165435C27BE15D7EBD3E7D023E295CB7AE2A099DF9E253C78EC45EADD75EA ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
11:29:08.0252 0x1bc8  BrokerInfrastructure - ok
11:29:08.0297 0x1bc8  [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser         C:\WINDOWS\System32\browser.dll
11:29:08.0334 0x1bc8  Browser - ok
11:29:08.0379 0x1bc8  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
11:29:08.0403 0x1bc8  BthAvrcpTg - ok
11:29:08.0420 0x1bc8  [ 74C9D52F3F594529465E18B2BFF80487, F1ECD8B730AD8B90673735FD6D2D9F6F0754F8BAB7135B16A41128145D5F9377 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
11:29:08.0447 0x1bc8  BthEnum - ok
11:29:08.0470 0x1bc8  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
11:29:08.0546 0x1bc8  BthHFEnum - ok
11:29:08.0567 0x1bc8  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
11:29:08.0581 0x1bc8  bthhfhid - ok
11:29:08.0628 0x1bc8  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
11:29:08.0743 0x1bc8  BthHFSrv - ok
11:29:08.0766 0x1bc8  [ 986F756D10B5A2B3971A03BD6308B94F, BEDEFD7470155621365439858B35239D4474487873431E67B01A4B7D56E7CE76 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
11:29:08.0801 0x1bc8  BthLEEnum - ok
11:29:08.0862 0x1bc8  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
11:29:08.0882 0x1bc8  BTHMODEM - ok
11:29:08.0899 0x1bc8  [ 38C97371F058E889F730BF35530732F4, 7CD16DF9C51D40CF80392E6DF444D6F5546B0E8B6A6DAC6DFD70BB45E014FA27 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
11:29:08.0939 0x1bc8  BthPan - ok
11:29:08.0992 0x1bc8  [ FCC211B0F46D831506D0D76539203899, A2609658AE36EB0FE4CFAA00684986193FEACED7BA8D869A9DF8D03312E53169 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
11:29:09.0073 0x1bc8  BTHPORT - ok
11:29:09.0117 0x1bc8  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
11:29:09.0133 0x1bc8  bthserv - ok
11:29:09.0184 0x1bc8  [ 5866AE46EEF644E6DE5C95942AE419D7, 0726C0845D2BA4247AB26ACF05006F6FA96015158CD49795801BB906DA80C007 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
11:29:09.0259 0x1bc8  BTHUSB - ok
11:29:09.0303 0x1bc8  [ 854AF190F55E6D70EC65A85798F896E2, 6D39F9131BE93F934502BA1DB109E7AD35D3987B636F7B32F9C34823DF25746B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
11:29:09.0328 0x1bc8  buttonconverter - ok
11:29:09.0347 0x1bc8  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
11:29:09.0414 0x1bc8  CapImg - ok
11:29:09.0444 0x1bc8  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
11:29:09.0461 0x1bc8  cdfs - ok
11:29:09.0502 0x1bc8  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
11:29:09.0520 0x1bc8  CDPSvc - ok
11:29:09.0539 0x1bc8  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
11:29:09.0571 0x1bc8  cdrom - ok
11:29:09.0592 0x1bc8  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
11:29:09.0617 0x1bc8  CertPropSvc - ok
11:29:09.0638 0x1bc8  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
11:29:09.0670 0x1bc8  circlass - ok
11:29:09.0723 0x1bc8  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
11:29:09.0745 0x1bc8  CLFS - ok
11:29:09.0997 0x1bc8  [ 99C73D65BF6E6AE66D1B4337D8260C97, D13E9861125ABFA892F7FCED1E007FD5FBEE27954C9084286FFD186193157D3A ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
11:29:10.0152 0x1bc8  ClickToRunSvc - ok
11:29:10.0215 0x1bc8  [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
11:29:10.0309 0x1bc8  ClipSVC - ok
11:29:10.0344 0x1bc8  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
11:29:10.0353 0x1bc8  CLVirtualDrive - ok
11:29:10.0404 0x1bc8  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
11:29:10.0492 0x1bc8  CmBatt - ok
11:29:10.0528 0x1bc8  [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
11:29:10.0556 0x1bc8  CNG - ok
11:29:10.0593 0x1bc8  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
11:29:10.0605 0x1bc8  cnghwassist - ok
11:29:10.0748 0x1bc8  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
11:29:10.0789 0x1bc8  CompositeBus - ok
11:29:10.0797 0x1bc8  COMSysApp - ok
11:29:10.0847 0x1bc8  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
11:29:10.0883 0x1bc8  condrv - ok
11:29:10.0947 0x1bc8  [ 8AFDD74F2DC5BAD9B2215FB19DB65240, A2BDDA4C77C63D3D8E9F1D397D7B41EC1BF093A6399C14D311D4D230B5F1E093 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
11:29:10.0984 0x1bc8  CoreMessagingRegistrar - ok
11:29:11.0087 0x1bc8  [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
11:29:11.0223 0x1bc8  cphs - ok
11:29:11.0273 0x1bc8  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
11:29:11.0341 0x1bc8  CryptSvc - ok
11:29:11.0470 0x1bc8  [ 7F5CD87CA5BDB4D83F992D8C77201483, 01818EF455833CA3396C8EA4696B8DC28E3A6A3618C081D046C8F207FACAB788 ] CyberLink PowerDVD 10 MS Monitor Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
11:29:11.0481 0x1bc8  CyberLink PowerDVD 10 MS Monitor Service - ok
11:29:11.0533 0x1bc8  [ 9FAF58E876A3B1DB3030A0A5805F2D86, 682939B774DF6A28268897A7E113F6D2DF9AD73DBF1994F937FB48818478B7FE ] CyberLink PowerDVD 10 MS Service C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
11:29:11.0546 0x1bc8  CyberLink PowerDVD 10 MS Service - ok
11:29:11.0562 0x1bc8  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
11:29:11.0574 0x1bc8  dam - ok
11:29:11.0649 0x1bc8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
11:29:11.0660 0x1bc8  dbupdate - ok
11:29:11.0719 0x1bc8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
11:29:11.0727 0x1bc8  dbupdatem - ok
11:29:11.0731 0x1bc8  dbx - ok
11:29:11.0785 0x1bc8  [ BC8C3896575B06303564265742142775, 38F64F215755E410F69F5BD88FCE6011093665F4C29DEE60A70632221D0C2BB3 ] DbxSvc          C:\WINDOWS\system32\DbxSvc.exe
11:29:11.0803 0x1bc8  DbxSvc - ok
11:29:11.0911 0x1bc8  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
11:29:12.0072 0x1bc8  DcomLaunch - ok
11:29:12.0273 0x1bc8  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
11:29:12.0604 0x1bc8  DcpSvc - ok
11:29:12.0675 0x1bc8  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
11:29:12.0760 0x1bc8  defragsvc - ok
11:29:12.0818 0x1bc8  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
11:29:12.0883 0x1bc8  DeviceAssociationService - ok
11:29:12.0919 0x1bc8  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
11:29:12.0959 0x1bc8  DeviceInstall - ok
11:29:12.0989 0x1bc8  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
11:29:13.0009 0x1bc8  DevQueryBroker - ok
11:29:13.0056 0x1bc8  [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
11:29:13.0130 0x1bc8  Dfsc - ok
11:29:13.0193 0x1bc8  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
11:29:13.0252 0x1bc8  Dhcp - ok
11:29:13.0331 0x1bc8  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
11:29:13.0349 0x1bc8  diagnosticshub.standardcollector.service - ok
11:29:13.0461 0x1bc8  [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
11:29:13.0539 0x1bc8  DiagTrack - ok
11:29:13.0588 0x1bc8  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
11:29:13.0607 0x1bc8  disk - ok
11:29:13.0653 0x1bc8  [ 43A1B8B43CA4E213E0FD920F2FD6BCBA, 839C6047FD6EA951538209C30C9D8AE68F9B47A58DA151D071C03408250B0ECD ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
11:29:13.0698 0x1bc8  DmEnrollmentSvc - ok
11:29:13.0720 0x1bc8  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
11:29:13.0752 0x1bc8  dmvsc - ok
11:29:13.0796 0x1bc8  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
11:29:13.0851 0x1bc8  dmwappushservice - ok
11:29:13.0921 0x1bc8  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
11:29:14.0007 0x1bc8  Dnscache - ok
11:29:14.0037 0x1bc8  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
11:29:14.0081 0x1bc8  dot3svc - ok
11:29:14.0135 0x1bc8  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
11:29:14.0176 0x1bc8  DPS - ok
11:29:14.0236 0x1bc8  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
11:29:14.0323 0x1bc8  drmkaud - ok
11:29:14.0385 0x1bc8  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
11:29:14.0432 0x1bc8  DsmSvc - ok
11:29:14.0453 0x1bc8  [ F2328181D289CE83E9979733EAB6742A, 73B1CDA6ED8C42B36126909F1335B72126A5DDC6FC7CE8BA2CA274A2B92E82FD ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
11:29:14.0484 0x1bc8  DsSvc - ok
11:29:14.0612 0x1bc8  [ 89C9C3745F270EF93988DA57BC6AA62B, 947886F3121919427BDCB123C6FC28E29CA73D427E92025E1BEAA743D27306D3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
11:29:14.0695 0x1bc8  DXGKrnl - ok
11:29:14.0749 0x1bc8  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
11:29:14.0778 0x1bc8  Eaphost - ok
11:29:14.0918 0x1bc8  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
11:29:15.0045 0x1bc8  ebdrv - ok
11:29:15.0090 0x1bc8  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
11:29:15.0105 0x1bc8  EFS - ok
11:29:15.0150 0x1bc8  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
11:29:15.0166 0x1bc8  EhStorClass - ok
11:29:15.0185 0x1bc8  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
11:29:15.0199 0x1bc8  EhStorTcgDrv - ok
11:29:15.0243 0x1bc8  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
11:29:15.0293 0x1bc8  embeddedmode - ok
11:29:15.0322 0x1bc8  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
11:29:15.0344 0x1bc8  EntAppSvc - ok
11:29:15.0360 0x1bc8  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
11:29:15.0390 0x1bc8  ErrDev - ok
11:29:15.0440 0x1bc8  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
11:29:15.0485 0x1bc8  EventSystem - ok
11:29:15.0546 0x1bc8  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
11:29:15.0586 0x1bc8  exfat - ok
11:29:15.0638 0x1bc8  [ 5A1C6AFFF6946C5C21A27AE05084C0D1, 558CB87E596E85182F6976F215EE0E35F57BF901409A2805E6A3C29D8984B048 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
11:29:15.0660 0x1bc8  fastfat - ok
11:29:15.0721 0x1bc8  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
11:29:15.0777 0x1bc8  Fax - ok
11:29:15.0797 0x1bc8  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
11:29:15.0840 0x1bc8  fdc - ok
11:29:15.0882 0x1bc8  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
11:29:15.0952 0x1bc8  fdPHost - ok
11:29:15.0975 0x1bc8  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
11:29:15.0996 0x1bc8  FDResPub - ok
11:29:16.0008 0x1bc8  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
11:29:16.0043 0x1bc8  fhsvc - ok
11:29:16.0125 0x1bc8  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
11:29:16.0202 0x1bc8  FileCrypt - ok
11:29:16.0248 0x1bc8  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
11:29:16.0262 0x1bc8  FileInfo - ok
11:29:16.0277 0x1bc8  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
11:29:16.0315 0x1bc8  Filetrace - ok
11:29:16.0328 0x1bc8  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
11:29:16.0341 0x1bc8  flpydisk - ok
11:29:16.0367 0x1bc8  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
11:29:16.0389 0x1bc8  FltMgr - ok
11:29:16.0473 0x1bc8  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
11:29:16.0560 0x1bc8  FontCache - ok
11:29:16.0711 0x1bc8  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:29:16.0722 0x1bc8  FontCache3.0.0.0 - ok
11:29:16.0742 0x1bc8  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
11:29:16.0753 0x1bc8  FsDepends - ok
11:29:16.0772 0x1bc8  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:29:16.0783 0x1bc8  Fs_Rec - ok
11:29:16.0816 0x1bc8  [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
11:29:16.0846 0x1bc8  fvevol - ok
11:29:16.0891 0x1bc8  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
11:29:16.0903 0x1bc8  gagp30kx - ok
11:29:16.0938 0x1bc8  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
11:29:16.0973 0x1bc8  gencounter - ok
11:29:16.0999 0x1bc8  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
11:29:17.0036 0x1bc8  genericusbfn - ok
11:29:17.0102 0x1bc8  [ 9162ECA694162A77679950CF2E27D3C1, 7EADEDE34A8E7458D2DDEE294D0789E9FD1EE822AB627D7E4ECAEDDD5D3EE81D ] GFNEXSrv        C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
11:29:17.0148 0x1bc8  GFNEXSrv - detected UnsignedFile.Multi.Generic ( 1 )
11:29:19.0802 0x1bc8  GFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
11:29:22.0234 0x1bc8  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
11:29:22.0249 0x1bc8  GPIOClx0101 - ok
11:29:22.0343 0x1bc8  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
11:29:22.0447 0x1bc8  gpsvc - ok
11:29:22.0465 0x1bc8  [ BA2455D93BD57989A04FE4094AA6F941, B579FB367C063EA30C034381148410D49D38E183A5A4D51D2334A81DAEE95CEC ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
11:29:22.0498 0x1bc8  GpuEnergyDrv - ok
11:29:22.0547 0x1bc8  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:29:22.0558 0x1bc8  gupdate - ok
11:29:22.0570 0x1bc8  [ C6FF00DA1605982E616C03BE809FFE2D, 4D9C86B9FF2FA291DC320677D28DF00C26834409F7AD94D6C07D2233ED746B19 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:29:22.0581 0x1bc8  gupdatem - ok
11:29:22.0603 0x1bc8  [ 7797D1580D933056023B822BB5CD0FE2, 24585AAFB43862AE4B9228B513658D906550EC8A475C67182933FB233621A85D ] Hamachi         C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
11:29:22.0610 0x1bc8  Hamachi - ok
11:29:22.0652 0x1bc8  [ C277A49F8A8295840DEBC9240B75A282, 8B2BA0E6A8300323765D95ECD843105B0FC4B80B85EE2220E677C4E9A760C9D8 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
11:29:22.0680 0x1bc8  HDAudBus - ok
11:29:22.0699 0x1bc8  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
11:29:22.0712 0x1bc8  HidBatt - ok
11:29:22.0752 0x1bc8  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
11:29:22.0780 0x1bc8  HidBth - ok
11:29:22.0796 0x1bc8  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
11:29:22.0820 0x1bc8  hidi2c - ok
11:29:22.0840 0x1bc8  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
11:29:22.0852 0x1bc8  hidinterrupt - ok
11:29:22.0863 0x1bc8  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
11:29:22.0876 0x1bc8  HidIr - ok
11:29:22.0937 0x1bc8  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
11:29:22.0981 0x1bc8  hidserv - ok
11:29:22.0997 0x1bc8  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
11:29:23.0033 0x1bc8  HidUsb - ok
11:29:23.0077 0x1bc8  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
11:29:23.0105 0x1bc8  HomeGroupListener - ok
11:29:23.0156 0x1bc8  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
11:29:23.0207 0x1bc8  HomeGroupProvider - ok
11:29:23.0251 0x1bc8  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
11:29:23.0267 0x1bc8  HpSAMD - ok
11:29:23.0305 0x1bc8  [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
11:29:23.0353 0x1bc8  HTTP - ok
11:29:23.0404 0x1bc8  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
11:29:23.0417 0x1bc8  hwpolicy - ok
11:29:23.0444 0x1bc8  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
11:29:23.0485 0x1bc8  hyperkbd - ok
11:29:23.0531 0x1bc8  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
11:29:23.0563 0x1bc8  HyperVideo - ok
11:29:23.0621 0x1bc8  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
11:29:23.0677 0x1bc8  i8042prt - ok
11:29:23.0713 0x1bc8  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
11:29:23.0730 0x1bc8  iaLPSSi_GPIO - ok
11:29:23.0757 0x1bc8  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
11:29:23.0772 0x1bc8  iaLPSSi_I2C - ok
11:29:23.0838 0x1bc8  [ 6C91E425ACE29594BD574DE38AC9B76D, 697784E4C7AF08B1F35662D8AD871E6890CECE22B6E64985B7C1A66C10DA390D ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
11:29:23.0862 0x1bc8  iaStorA - ok
11:29:23.0894 0x1bc8  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
11:29:23.0924 0x1bc8  iaStorAV - ok
11:29:24.0036 0x1bc8  [ 0AB254994A460550258446950BB58311, BD10811912680DD3B814B7D1303785C996D892C79108110A2257E9BD0C28245C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
11:29:24.0048 0x1bc8  IAStorDataMgrSvc - ok
11:29:24.0121 0x1bc8  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
11:29:24.0158 0x1bc8  iaStorV - ok
11:29:24.0189 0x1bc8  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
11:29:24.0216 0x1bc8  ibbus - ok
11:29:24.0260 0x1bc8  [ 62F0CB0A54EAF37E15EC385300957BB8, 55FCF7068D84D5AEEAF3149A5349BF13F1D18E34956217916ED7C1950885E63C ] ibtfltcoex      C:\WINDOWS\system32\DRIVERS\ibtfltcoex.sys
11:29:24.0270 0x1bc8  ibtfltcoex - ok
11:29:24.0316 0x1bc8  [ 88E6A429944544346EC3AE1FD7D24BCC, B6B8D51E5491C91D2FCDC77C1D82A5168B0C860252208E1B4612D8D5C19401AD ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
11:29:24.0349 0x1bc8  icssvc - ok
11:29:24.0352 0x1bc8  IEEtwCollectorService - ok
11:29:24.0479 0x1bc8  [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
11:29:24.0606 0x1bc8  igfx - ok
11:29:24.0657 0x1bc8  [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
11:29:24.0736 0x1bc8  igfxCUIService1.0.0.0 - ok
11:29:24.0813 0x1bc8  [ A8A7DF276A5EAEF006A0663AA800DCEC, 2E19C90045A8C0AF18C9FE18FD66E7F677D7FA15FDF9FF6302A536BD5AE27C14 ] IISADMIN        C:\WINDOWS\system32\inetsrv\inetinfo.exe
11:29:24.0826 0x1bc8  IISADMIN - ok
11:29:24.0882 0x1bc8  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
11:29:24.0944 0x1bc8  IKEEXT - ok
11:29:24.0972 0x1bc8  [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
11:29:25.0003 0x1bc8  intaud_WaveExtensible - ok
11:29:25.0160 0x1bc8  [ 900A45658DCB6BAE1003764991BB5FAB, 125D048024946C13643E8D6E719687F31CD0EB10591C5AFA1AE0FD9EB7216816 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
11:29:25.0300 0x1bc8  IntcAzAudAddService - ok
11:29:25.0356 0x1bc8  [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
11:29:25.0376 0x1bc8  IntcDAud - ok
11:29:25.0493 0x1bc8  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
11:29:25.0518 0x1bc8  Intel(R) Capability Licensing Service Interface - ok
11:29:25.0537 0x1bc8  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
11:29:25.0552 0x1bc8  intelide - ok
11:29:25.0565 0x1bc8  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
11:29:25.0577 0x1bc8  intelpep - ok
11:29:25.0597 0x1bc8  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
11:29:25.0632 0x1bc8  intelppm - ok
11:29:25.0678 0x1bc8  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
11:29:25.0690 0x1bc8  IoQos - ok
11:29:25.0733 0x1bc8  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:29:25.0768 0x1bc8  IpFilterDriver - ok
11:29:25.0832 0x1bc8  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
11:29:25.0892 0x1bc8  iphlpsvc - ok
11:29:25.0919 0x1bc8  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
11:29:25.0946 0x1bc8  IPMIDRV - ok
11:29:25.0968 0x1bc8  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
11:29:25.0985 0x1bc8  IPNAT - ok
11:29:26.0004 0x1bc8  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
11:29:26.0018 0x1bc8  IRENUM - ok
11:29:26.0037 0x1bc8  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
11:29:26.0048 0x1bc8  isapnp - ok
11:29:26.0094 0x1bc8  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
11:29:26.0113 0x1bc8  iScsiPrt - ok
11:29:26.0141 0x1bc8  [ 492F2DF02CD817CE8D544F96097BD77A, 6EF37BD62A49C9F55845A56498A93A26C109BEC2EBCB65A49908BECEC6FC6371 ] IT9135BDA       C:\WINDOWS\System32\Drivers\IT9135BDA.sys
11:29:26.0212 0x1bc8  IT9135BDA - ok
11:29:26.0254 0x1bc8  [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
11:29:26.0262 0x1bc8  iwdbus - ok
11:29:26.0344 0x1bc8  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
11:29:26.0353 0x1bc8  jhi_service - ok
11:29:26.0404 0x1bc8  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
11:29:26.0418 0x1bc8  kbdclass - ok
11:29:26.0456 0x1bc8  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
11:29:26.0467 0x1bc8  kbdhid - ok
11:29:26.0488 0x1bc8  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
11:29:26.0548 0x1bc8  kdnic - ok
11:29:26.0572 0x1bc8  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
11:29:26.0585 0x1bc8  KeyIso - ok
11:29:26.0600 0x1bc8  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
11:29:26.0617 0x1bc8  KSecDD - ok
11:29:26.0637 0x1bc8  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
11:29:26.0655 0x1bc8  KSecPkg - ok
11:29:26.0666 0x1bc8  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
11:29:26.0694 0x1bc8  ksthunk - ok
11:29:26.0741 0x1bc8  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
11:29:26.0785 0x1bc8  KtmRm - ok
11:29:26.0822 0x1bc8  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
11:29:26.0864 0x1bc8  LanmanServer - ok
11:29:26.0905 0x1bc8  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
11:29:26.0929 0x1bc8  LanmanWorkstation - ok
11:29:26.0971 0x1bc8  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
11:29:26.0999 0x1bc8  lfsvc - ok
11:29:27.0021 0x1bc8  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
11:29:27.0034 0x1bc8  LicenseManager - ok
11:29:27.0075 0x1bc8  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
11:29:27.0092 0x1bc8  lltdio - ok
11:29:27.0116 0x1bc8  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
11:29:27.0162 0x1bc8  lltdsvc - ok
11:29:27.0198 0x1bc8  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
11:29:27.0219 0x1bc8  lmhosts - ok
11:29:27.0252 0x1bc8  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:29:27.0265 0x1bc8  LMS - ok
11:29:27.0312 0x1bc8  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
11:29:27.0326 0x1bc8  LSI_SAS - ok
11:29:27.0336 0x1bc8  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
11:29:27.0350 0x1bc8  LSI_SAS2i - ok
11:29:27.0363 0x1bc8  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
11:29:27.0377 0x1bc8  LSI_SAS3i - ok
11:29:27.0397 0x1bc8  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
11:29:27.0410 0x1bc8  LSI_SSS - ok
11:29:27.0441 0x1bc8  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
11:29:27.0498 0x1bc8  LSM - ok
11:29:27.0516 0x1bc8  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
11:29:27.0540 0x1bc8  luafv - ok
11:29:27.0612 0x1bc8  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
11:29:27.0640 0x1bc8  MapsBroker - ok
11:29:27.0683 0x1bc8  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
11:29:27.0695 0x1bc8  megasas - ok
11:29:27.0729 0x1bc8  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
11:29:27.0757 0x1bc8  megasr - ok
11:29:27.0796 0x1bc8  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
11:29:27.0803 0x1bc8  MEIx64 - ok
11:29:27.0847 0x1bc8  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
11:29:27.0880 0x1bc8  mlx4_bus - ok
11:29:27.0924 0x1bc8  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
11:29:27.0948 0x1bc8  MMCSS - ok
11:29:27.0967 0x1bc8  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
11:29:27.0995 0x1bc8  Modem - ok
11:29:28.0016 0x1bc8  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
11:29:28.0037 0x1bc8  monitor - ok
11:29:28.0054 0x1bc8  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
11:29:28.0067 0x1bc8  mouclass - ok
11:29:28.0075 0x1bc8  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
11:29:28.0104 0x1bc8  mouhid - ok
11:29:28.0122 0x1bc8  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
11:29:28.0140 0x1bc8  mountmgr - ok
11:29:28.0200 0x1bc8  [ E464A0A92E2E354D07DDA713D3E10DE4, D5CF213F03DF54EF9933027A7A7D4413371C1ECBFF61E4DE818D50FA72C8C5FC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:29:28.0215 0x1bc8  MozillaMaintenance - ok
11:29:28.0235 0x1bc8  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
11:29:28.0285 0x1bc8  mpsdrv - ok
11:29:28.0353 0x1bc8  [ A0DBB9386BEA8DA1A159C2A2E07081A3, 9D3F26005A76A72F9512F040D45C16124D17F8C8DA45C51FFAF74F066357D0A4 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
11:29:28.0414 0x1bc8  MpsSvc - ok
11:29:28.0449 0x1bc8  [ C1E74DD1D84861D8F12FF8BC0BA11975, 5912A0455C840F5C8AD6383823C9C7DE6FF8B5CAF1B72EA181864999891EAF30 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
11:29:28.0489 0x1bc8  MRxDAV - ok
11:29:28.0537 0x1bc8  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:29:28.0580 0x1bc8  mrxsmb - ok
11:29:28.0604 0x1bc8  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
11:29:28.0648 0x1bc8  mrxsmb10 - ok
11:29:28.0664 0x1bc8  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
11:29:28.0695 0x1bc8  mrxsmb20 - ok
11:29:28.0735 0x1bc8  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
11:29:28.0771 0x1bc8  MsBridge - ok
11:29:28.0811 0x1bc8  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
11:29:28.0831 0x1bc8  MSDTC - ok
11:29:28.0858 0x1bc8  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
11:29:28.0898 0x1bc8  Msfs - ok
11:29:28.0932 0x1bc8  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
11:29:28.0949 0x1bc8  msgpiowin32 - ok
11:29:28.0965 0x1bc8  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
11:29:28.0989 0x1bc8  mshidkmdf - ok
11:29:29.0009 0x1bc8  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
11:29:29.0038 0x1bc8  mshidumdf - ok
11:29:29.0062 0x1bc8  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
11:29:29.0073 0x1bc8  msisadrv - ok
11:29:29.0112 0x1bc8  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
11:29:29.0147 0x1bc8  MSiSCSI - ok
11:29:29.0152 0x1bc8  msiserver - ok
11:29:29.0193 0x1bc8  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:29:29.0234 0x1bc8  MSKSSRV - ok
11:29:29.0286 0x1bc8  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
11:29:29.0323 0x1bc8  MsLldp - ok
11:29:29.0360 0x1bc8  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:29:29.0376 0x1bc8  MSPCLOCK - ok
11:29:29.0397 0x1bc8  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
11:29:29.0423 0x1bc8  MSPQM - ok
11:29:29.0452 0x1bc8  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
11:29:29.0477 0x1bc8  MsRPC - ok
11:29:29.0488 0x1bc8  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
11:29:29.0501 0x1bc8  mssmbios - ok
11:29:29.0517 0x1bc8  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
11:29:29.0542 0x1bc8  MSTEE - ok
11:29:29.0557 0x1bc8  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
11:29:29.0586 0x1bc8  MTConfig - ok
11:29:29.0607 0x1bc8  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
11:29:29.0624 0x1bc8  Mup - ok
11:29:29.0642 0x1bc8  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
11:29:29.0656 0x1bc8  mvumis - ok
11:29:29.0720 0x1bc8  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
11:29:29.0771 0x1bc8  NativeWifiP - ok
11:29:29.0815 0x1bc8  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
11:29:29.0857 0x1bc8  NcaSvc - ok
11:29:29.0885 0x1bc8  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
11:29:29.0948 0x1bc8  NcbService - ok
11:29:29.0969 0x1bc8  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
11:29:30.0018 0x1bc8  NcdAutoSetup - ok
11:29:30.0062 0x1bc8  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
11:29:30.0078 0x1bc8  ndfltr - ok
11:29:30.0156 0x1bc8  [ 616F40B897DA651221F86A1741E9609B, 22D66029726313D92FC8E074BCC51C1E1560CB5FE36DCB735E7E063EA53E299A ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
11:29:30.0211 0x1bc8  NDIS - ok
11:29:30.0266 0x1bc8  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
11:29:30.0304 0x1bc8  NdisCap - ok
11:29:30.0326 0x1bc8  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
11:29:30.0382 0x1bc8  NdisImPlatform - ok
11:29:30.0419 0x1bc8  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:29:30.0454 0x1bc8  NdisTapi - ok
11:29:30.0473 0x1bc8  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
11:29:30.0501 0x1bc8  Ndisuio - ok
11:29:30.0576 0x1bc8  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
11:29:30.0593 0x1bc8  NdisVirtualBus - ok
11:29:30.0627 0x1bc8  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
11:29:30.0650 0x1bc8  NdisWan - ok
11:29:30.0662 0x1bc8  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:29:30.0683 0x1bc8  ndiswanlegacy - ok
11:29:30.0706 0x1bc8  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
11:29:30.0735 0x1bc8  ndproxy - ok
11:29:30.0758 0x1bc8  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
11:29:30.0786 0x1bc8  Ndu - ok
11:29:30.0809 0x1bc8  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
11:29:30.0820 0x1bc8  NetBIOS - ok
11:29:30.0845 0x1bc8  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
11:29:30.0895 0x1bc8  NetBT - ok
11:29:30.0909 0x1bc8  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
11:29:30.0921 0x1bc8  Netlogon - ok
11:29:30.0971 0x1bc8  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
11:29:30.0996 0x1bc8  Netman - ok
11:29:31.0051 0x1bc8  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
11:29:31.0109 0x1bc8  netprofm - ok
11:29:31.0136 0x1bc8  [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
11:29:31.0165 0x1bc8  NetSetupSvc - ok
11:29:31.0217 0x1bc8  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:29:31.0232 0x1bc8  NetTcpPortSharing - ok
11:29:31.0250 0x1bc8  [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
11:29:31.0295 0x1bc8  netvsc - ok
11:29:31.0451 0x1bc8  [ 0F76FA3A3F8D169B1CA6F54DC7561CD5, F6C49E5D4F627FD539670DFCBC20C69F627A90CBA473873640D4DD378EE34ED5 ] NETwNe64        C:\WINDOWS\System32\drivers\NETwew01.sys
11:29:31.0564 0x1bc8  NETwNe64 - ok
11:29:31.0619 0x1bc8  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
11:29:31.0661 0x1bc8  NgcCtnrSvc - ok
11:29:31.0685 0x1bc8  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
11:29:31.0703 0x1bc8  NgcSvc - ok
11:29:31.0754 0x1bc8  [ EA1C2DAB8A63712B94897A58557B086C, 98DD7E5C84F3CDF2DAA89484892D6B439F5D14297B5243436925BEEAA0C02EE1 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
11:29:31.0810 0x1bc8  NlaSvc - ok
11:29:31.0859 0x1bc8  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
11:29:31.0894 0x1bc8  Npfs - ok
11:29:31.0898 0x1bc8  npggsvc - ok
11:29:31.0940 0x1bc8  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
11:29:31.0977 0x1bc8  npsvctrig - ok
11:29:32.0016 0x1bc8  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
11:29:32.0069 0x1bc8  nsi - ok
11:29:32.0083 0x1bc8  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
11:29:32.0117 0x1bc8  nsiproxy - ok
11:29:32.0195 0x1bc8  [ 466EC5659C02ED53DBD47DC1BC2B8086, 1F35DE75386F7D029C01D67B09D5E5157141C6892858885C11972CE73D6078AC ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
11:29:32.0285 0x1bc8  NTFS - ok
11:29:32.0333 0x1bc8  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
11:29:32.0366 0x1bc8  Null - ok
11:29:32.0471 0x1bc8  [ 1D8ED7BA5326A99939C3C7B29119EBAD, 02C1AD40B7F1BA87BF1CFAB4501AC4FEA24EB08E5224FE429F443D89F562D68C ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
11:29:32.0496 0x1bc8  NvContainerLocalSystem - ok
11:29:32.0511 0x1bc8  [ 1D8ED7BA5326A99939C3C7B29119EBAD, 02C1AD40B7F1BA87BF1CFAB4501AC4FEA24EB08E5224FE429F443D89F562D68C ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
11:29:32.0534 0x1bc8  NvContainerNetworkService - ok
11:29:32.0628 0x1bc8  [ 5A8E7AA19BD999C01A6F947F7464545A, EBD6C69DA260A6C4E07D3B3D615936E1E04E3C3B5BBDDE27BFA387F38C0807AB ] NVIDIA Wireless Controller Service C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
11:29:32.0669 0x1bc8  NVIDIA Wireless Controller Service - ok
11:29:33.0133 0x1bc8  [ 0CD412D41220FEE9DD1166F7CE7B1DAB, 23CAB64C3DB3C90CAF2DE4100E192295B8F603B8347F8AC6FDC36C2C6D2520D2 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
11:29:33.0676 0x1bc8  nvlddmkm - ok
11:29:33.0741 0x1bc8  [ 14632E55F8E76E3CEFFD058EC0A545E6, 563E4EFC171D5BFEC77BA43E0426A38759B13A8BCA9C6E135E9E0356BBE6D897 ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
11:29:33.0752 0x1bc8  nvpciflt - ok
11:29:33.0804 0x1bc8  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
11:29:33.0822 0x1bc8  nvraid - ok
11:29:33.0849 0x1bc8  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
11:29:33.0868 0x1bc8  nvstor - ok
11:29:33.0928 0x1bc8  [ 30AFB1ED5380F237A2CFA82D6FF37173, 93E3E000218270596D09970EAE3E667E59123022D46F276B24221332203C045F ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
11:29:33.0937 0x1bc8  NvStreamKms - ok
11:29:34.0006 0x1bc8  [ 82EDBE5035039977247E13D31050A227, 2B8EFF2BAD16D61E4B166725148D280D66CD50776824EF26AC9C13EFD2ABA4B4 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
11:29:34.0053 0x1bc8  nvsvc - ok
11:29:34.0091 0x1bc8  [ CDB8AFAE146C9A0E4604400CA2CFA736, 8473597F44F4593E7AD01442C613070F32EE03D3DD69A4B3F1C7195109FD5E05 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
11:29:34.0101 0x1bc8  nvvad_WaveExtensible - ok
11:29:34.0124 0x1bc8  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
11:29:34.0141 0x1bc8  nv_agp - ok
11:29:34.0196 0x1bc8  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
11:29:34.0243 0x1bc8  OneSyncSvc - ok
11:29:34.0442 0x1bc8  [ AD851D818F399DD946A9C17AB2156F22, 4A541E7A3A3164581BFB9080DE0976E18F6DD00E39458EBBCBD3B2445708BEB5 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
11:29:34.0521 0x1bc8  Origin Client Service - ok
11:29:34.0629 0x1bc8  [ 788363C87EBD90AC1EAD2DC5A9A40759, B565663B459414C5C9F81451D9A127D62CDF605BC2A9E686F74A2E4FD44A9B43 ] Origin Web Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
11:29:34.0708 0x1bc8  Origin Web Helper Service - ok
11:29:34.0780 0x1bc8  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:29:34.0798 0x1bc8  ose - ok
11:29:34.0857 0x1bc8  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
11:29:34.0898 0x1bc8  p2pimsvc - ok
11:29:34.0946 0x1bc8  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
11:29:34.0994 0x1bc8  p2psvc - ok
11:29:35.0044 0x1bc8  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
11:29:35.0076 0x1bc8  Parport - ok
11:29:35.0102 0x1bc8  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
11:29:35.0117 0x1bc8  partmgr - ok
11:29:35.0174 0x1bc8  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
11:29:35.0243 0x1bc8  PcaSvc - ok
11:29:35.0266 0x1bc8  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
         

Alt 16.12.2016, 11:33   #15
Croatis
 
Laptop langsam nach download - Standard

Laptop langsam nach download



Code:
ATTFilter
11:29:35.0292 0x1bc8  pci - ok
11:29:35.0320 0x1bc8  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
11:29:35.0337 0x1bc8  pciide - ok
11:29:35.0360 0x1bc8  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
11:29:35.0381 0x1bc8  pcmcia - ok
11:29:35.0395 0x1bc8  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
11:29:35.0411 0x1bc8  pcw - ok
11:29:35.0457 0x1bc8  [ 70469C8AC4AD367295E70CFDD81B754C, 3EC6FD742C7C60363939E5343477810D751D91D32A2F24285976C08A7C4477AB ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
11:29:35.0473 0x1bc8  pdc - ok
11:29:35.0533 0x1bc8  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
11:29:35.0604 0x1bc8  PEAUTH - ok
11:29:35.0654 0x1bc8  [ EE926C59CBD4DC4DC9FBB85014A2F1A5, 777459BD30A480E03EA5D0BBA431C2CD573403687FAA0B29F172086A0304E230 ] PEGAGFN         C:\Program Files (x86)\PHotkey\PEGAGFN.sys
11:29:35.0662 0x1bc8  PEGAGFN - ok
11:29:35.0697 0x1bc8  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
11:29:35.0711 0x1bc8  percsas2i - ok
11:29:35.0723 0x1bc8  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
11:29:35.0736 0x1bc8  percsas3i - ok
11:29:35.0847 0x1bc8  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
11:29:35.0878 0x1bc8  PerfHost - ok
11:29:35.0938 0x1bc8  [ 839BD56425530973FF3F6F7C0057CD22, 9BADF39BC4628409CFCD5F1300C6040C49B2ED72D0FA389C6BB042E5B17E1A40 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
11:29:35.0978 0x1bc8  PimIndexMaintenanceSvc - ok
11:29:36.0054 0x1bc8  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
11:29:36.0164 0x1bc8  pla - ok
11:29:36.0194 0x1bc8  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
11:29:36.0225 0x1bc8  PlugPlay - ok
11:29:36.0236 0x1bc8  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
11:29:36.0256 0x1bc8  PNRPAutoReg - ok
11:29:36.0285 0x1bc8  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
11:29:36.0309 0x1bc8  PNRPsvc - ok
11:29:36.0355 0x1bc8  [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
11:29:36.0384 0x1bc8  PolicyAgent - ok
11:29:36.0400 0x1bc8  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
11:29:36.0436 0x1bc8  Power - ok
11:29:36.0471 0x1bc8  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
11:29:36.0497 0x1bc8  PptpMiniport - ok
11:29:36.0729 0x1bc8  [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
11:29:36.0892 0x1bc8  PrintNotify - ok
11:29:36.0940 0x1bc8  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
11:29:36.0957 0x1bc8  Processor - ok
11:29:37.0040 0x1bc8  [ 27D0B024BB356C6BEB1214B61E47DE02, 8CBDD62E243CC652F2197AE83DEDD21D91D2792558A6D7D1CC680B37607DEF4B ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
11:29:37.0094 0x1bc8  ProfSvc - ok
11:29:37.0143 0x1bc8  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
11:29:37.0162 0x1bc8  Psched - ok
11:29:37.0215 0x1bc8  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
11:29:37.0258 0x1bc8  QWAVE - ok
11:29:37.0279 0x1bc8  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
11:29:37.0292 0x1bc8  QWAVEdrv - ok
11:29:37.0310 0x1bc8  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:29:37.0342 0x1bc8  RasAcd - ok
11:29:37.0381 0x1bc8  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
11:29:37.0422 0x1bc8  RasAgileVpn - ok
11:29:37.0474 0x1bc8  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
11:29:37.0525 0x1bc8  RasAuto - ok
11:29:37.0549 0x1bc8  [ CA60F6C03611AF1710BC903ED9F566FB, B5C9E8BAC631738761E11168AB68EB1ECC5EC96BF9A8248B9127DCF744CA4691 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
11:29:37.0595 0x1bc8  Rasl2tp - ok
11:29:37.0646 0x1bc8  [ 586A17C10D417D889F1FF7D8636E2F34, EEDA4EE8D2BC5C8C7756AB79F1F19AF8B1C4057996748FAE4E3F37844DB0EB33 ] RasMan          C:\WINDOWS\System32\rasmans.dll
11:29:37.0689 0x1bc8  RasMan - ok
11:29:37.0707 0x1bc8  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
11:29:37.0741 0x1bc8  RasPppoe - ok
11:29:37.0756 0x1bc8  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
11:29:37.0782 0x1bc8  RasSstp - ok
11:29:37.0835 0x1bc8  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:29:37.0883 0x1bc8  rdbss - ok
11:29:37.0906 0x1bc8  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
11:29:37.0933 0x1bc8  rdpbus - ok
11:29:37.0980 0x1bc8  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
11:29:38.0005 0x1bc8  RDPDR - ok
11:29:38.0113 0x1bc8  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
11:29:38.0146 0x1bc8  RdpVideoMiniport - ok
11:29:38.0252 0x1bc8  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
11:29:38.0282 0x1bc8  rdyboost - ok
11:29:38.0325 0x1bc8  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
11:29:38.0377 0x1bc8  ReFSv1 - ok
11:29:38.0448 0x1bc8  [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
11:29:38.0497 0x1bc8  RemoteAccess - ok
11:29:38.0543 0x1bc8  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
11:29:38.0579 0x1bc8  RemoteRegistry - ok
11:29:38.0644 0x1bc8  [ 891C83BE8BA62B7547B9A6576A360C71, B808FE4B5A93B8C971C2AF6CC7F0BAE7154A43A87D6CE0826277D1D7D7948E24 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
11:29:38.0707 0x1bc8  RetailDemo - ok
11:29:38.0722 0x1bc8  [ 67E83C0C9A2B5ACEE9EF690E6B7E9189, 63D2A73B2031B52C66EF0455393BF05C55F9F7B0B9E48C54A39E547D46E090F6 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
11:29:38.0756 0x1bc8  RFCOMM - ok
11:29:38.0860 0x1bc8  [ 0B169FE016039571ECC6DB70073F8979, B80663433919C3DE83A02E376E5B3020856C6E9E98B5773D316FD9C1C02C1417 ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
11:29:38.0880 0x1bc8  RichVideo64 - ok
11:29:38.0936 0x1bc8  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
11:29:38.0965 0x1bc8  RpcEptMapper - ok
11:29:39.0000 0x1bc8  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
11:29:39.0030 0x1bc8  RpcLocator - ok
11:29:39.0093 0x1bc8  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
11:29:39.0135 0x1bc8  RpcSs - ok
11:29:39.0177 0x1bc8  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
11:29:39.0197 0x1bc8  rspndr - ok
11:29:39.0244 0x1bc8  [ 0E32A8922DCFD28EA00AAEC07CB3F331, 27F329C6A66DB01C291E1EDCEB7781A05658520B12FF8ECD1FBD3B86EF78DF30 ] RSUSBSTOR       C:\WINDOWS\System32\Drivers\RtsUStor.sys
11:29:39.0256 0x1bc8  RSUSBSTOR - ok
11:29:39.0315 0x1bc8  [ 179E6BCF8D16AD39C137CB4FCFE015C5, A1DF499AA378BDB1CB7F95ACC0C7D6929358AF4596A47FDEDFAE115461563CD5 ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
11:29:39.0378 0x1bc8  rt640x64 - ok
11:29:39.0515 0x1bc8  [ 5ABFE8CAB411EDBAF76356F559365CD5, C3971E412B7AEDC731CBF54A166A82A05036A11E3B7674D379249E8E0CEC5C46 ] RtlWlanu        C:\WINDOWS\System32\drivers\rtwlanu.sys
11:29:39.0653 0x1bc8  RtlWlanu - ok
11:29:39.0693 0x1bc8  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
11:29:39.0719 0x1bc8  s3cap - ok
11:29:39.0761 0x1bc8  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs           C:\WINDOWS\system32\lsass.exe
11:29:39.0775 0x1bc8  SamSs - ok
11:29:39.0798 0x1bc8  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
11:29:39.0812 0x1bc8  sbp2port - ok
11:29:39.0858 0x1bc8  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
11:29:39.0896 0x1bc8  SCardSvr - ok
11:29:39.0916 0x1bc8  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
11:29:39.0950 0x1bc8  ScDeviceEnum - ok
11:29:39.0973 0x1bc8  [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
11:29:40.0009 0x1bc8  scfilter - ok
11:29:40.0060 0x1bc8  [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
11:29:40.0124 0x1bc8  Schedule - ok
11:29:40.0177 0x1bc8  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
11:29:40.0200 0x1bc8  SCPolicySvc - ok
11:29:40.0251 0x1bc8  [ 004C66464D8FE76D5DA78BE6777D61AF, 58B5C436798EEBBE7081D54B55B70DEB15331856802CD45E3FF8BDE794F06A27 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
11:29:40.0270 0x1bc8  sdbus - ok
11:29:40.0374 0x1bc8  [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
11:29:40.0421 0x1bc8  SDRSVC - ok
11:29:40.0472 0x1bc8  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
11:29:40.0485 0x1bc8  sdstor - ok
11:29:40.0508 0x1bc8  [ 648A299839E8F48A946C41DE270D28F5, EEC9A5FCBE3FF78FB5E0452FF1932A8B0C7399688041E22555703CB1977A4428 ] seclogon        C:\WINDOWS\system32\seclogon.dll
11:29:40.0522 0x1bc8  seclogon - ok
11:29:40.0545 0x1bc8  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
11:29:40.0577 0x1bc8  SENS - ok
11:29:40.0639 0x1bc8  [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
11:29:40.0707 0x1bc8  SensorDataService - ok
11:29:40.0731 0x1bc8  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
11:29:40.0770 0x1bc8  SensorService - ok
11:29:40.0813 0x1bc8  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
11:29:40.0844 0x1bc8  SensrSvc - ok
11:29:40.0889 0x1bc8  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
11:29:40.0901 0x1bc8  SerCx - ok
11:29:40.0920 0x1bc8  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
11:29:40.0936 0x1bc8  SerCx2 - ok
11:29:40.0949 0x1bc8  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
11:29:40.0973 0x1bc8  Serenum - ok
11:29:40.0996 0x1bc8  [ 2A5F5F95FCA123DCBF53B5F603B64789, DE5C9E1D88B2C180B137DA7839F3EF6C936A171ABA49F89C10EE9C73A2226F3F ] Serial          C:\WINDOWS\System32\drivers\serial.sys
11:29:41.0010 0x1bc8  Serial - ok
11:29:41.0023 0x1bc8  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
11:29:41.0036 0x1bc8  sermouse - ok
11:29:41.0068 0x1bc8  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
11:29:41.0112 0x1bc8  SessionEnv - ok
11:29:41.0127 0x1bc8  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
11:29:41.0155 0x1bc8  sfloppy - ok
11:29:41.0200 0x1bc8  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
11:29:41.0249 0x1bc8  SharedAccess - ok
11:29:41.0308 0x1bc8  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:29:41.0372 0x1bc8  ShellHWDetection - ok
11:29:41.0389 0x1bc8  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
11:29:41.0400 0x1bc8  SiSRaid2 - ok
11:29:41.0438 0x1bc8  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
11:29:41.0450 0x1bc8  SiSRaid4 - ok
11:29:41.0572 0x1bc8  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
11:29:41.0591 0x1bc8  SkypeUpdate - ok
11:29:41.0626 0x1bc8  [ 1FE05A4F787ED7DD39EA968172F20AFC, 566ECC090F120A4627B597EA65E6CF7D1A40CF840DFBED22EF224445D442815A ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
11:29:41.0636 0x1bc8  SmbDrvI - ok
11:29:41.0671 0x1bc8  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
11:29:41.0702 0x1bc8  smphost - ok
11:29:41.0794 0x1bc8  [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
11:29:41.0845 0x1bc8  SmsRouter - ok
11:29:41.0887 0x1bc8  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
11:29:41.0915 0x1bc8  SNMPTRAP - ok
11:29:41.0963 0x1bc8  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
11:29:41.0987 0x1bc8  spaceport - ok
11:29:41.0998 0x1bc8  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
11:29:42.0010 0x1bc8  SpbCx - ok
11:29:42.0107 0x1bc8  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\WINDOWS\SysWOW64\speedfan.sys
11:29:42.0122 0x1bc8  speedfan - ok
11:29:42.0180 0x1bc8  [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
11:29:42.0246 0x1bc8  Spooler - ok
11:29:42.0495 0x1bc8  [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
11:29:42.0746 0x1bc8  sppsvc - ok
11:29:42.0778 0x1bc8  [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
11:29:42.0825 0x1bc8  srv - ok
11:29:42.0876 0x1bc8  [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
11:29:42.0926 0x1bc8  srv2 - ok
11:29:42.0952 0x1bc8  [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
11:29:42.0986 0x1bc8  srvnet - ok
11:29:43.0033 0x1bc8  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
11:29:43.0060 0x1bc8  SSDPSRV - ok
11:29:43.0110 0x1bc8  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
11:29:43.0167 0x1bc8  SstpSvc - ok
11:29:43.0284 0x1bc8  [ C26E2C89EFB4BB39CD135B5DED804B78, 99288C6023DC6AC6554521EA671AB387ACE2AE2BCDE145C7012202842FF40841 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
11:29:43.0417 0x1bc8  StateRepository - ok
11:29:43.0580 0x1bc8  [ 3B710E79D9BE2F149B66FBBF3F57A35E, 0A18823FCAB94B350F6177E9459E3E1DBA4FC52177056A3319E545AB7FED057E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:29:43.0626 0x1bc8  Steam Client Service - ok
11:29:43.0639 0x1bc8  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
11:29:43.0650 0x1bc8  stexstor - ok
11:29:43.0701 0x1bc8  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
11:29:43.0743 0x1bc8  stisvc - ok
11:29:43.0782 0x1bc8  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
11:29:43.0838 0x1bc8  storahci - ok
11:29:43.0866 0x1bc8  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
11:29:43.0882 0x1bc8  storflt - ok
11:29:43.0914 0x1bc8  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
11:29:43.0933 0x1bc8  stornvme - ok
11:29:43.0971 0x1bc8  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
11:29:44.0021 0x1bc8  storqosflt - ok
11:29:44.0068 0x1bc8  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
11:29:44.0112 0x1bc8  StorSvc - ok
11:29:44.0136 0x1bc8  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
11:29:44.0149 0x1bc8  storufs - ok
11:29:44.0169 0x1bc8  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
11:29:44.0182 0x1bc8  storvsc - ok
11:29:44.0230 0x1bc8  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
11:29:44.0262 0x1bc8  svsvc - ok
11:29:44.0359 0x1bc8  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
11:29:44.0371 0x1bc8  swenum - ok
11:29:44.0396 0x1bc8  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
11:29:44.0459 0x1bc8  swprv - ok
11:29:44.0495 0x1bc8  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
11:29:44.0527 0x1bc8  Synth3dVsc - ok
11:29:44.0594 0x1bc8  [ A3BBF71752E47CDF444DFD49E971E16B, A3E6F9D781FCF1F8146E23D90F9DFDAA24C20BCA82A00BE9534974720E003776 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
11:29:44.0626 0x1bc8  SynTP - ok
11:29:44.0730 0x1bc8  [ 9C58665F465646B0784F595240237C10, 92033D63EF21733CA76BF47C433142F7A2390149C9162967F13C9F3F29236DBD ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
11:29:44.0750 0x1bc8  SynTPEnhService - ok
11:29:44.0827 0x1bc8  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
11:29:44.0906 0x1bc8  SysMain - ok
11:29:44.0957 0x1bc8  [ D5AAA188C70146977CFEE8D128599F3F, 9ABC30982E552EAF41FE84397EEEE5A3187444062C662D7CF35A03E3B274AFB8 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
11:29:45.0000 0x1bc8  SystemEventsBroker - ok
11:29:45.0045 0x1bc8  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
11:29:45.0070 0x1bc8  TabletInputService - ok
11:29:45.0087 0x1bc8  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
11:29:45.0138 0x1bc8  TapiSrv - ok
11:29:45.0261 0x1bc8  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
11:29:45.0372 0x1bc8  Tcpip - ok
11:29:45.0438 0x1bc8  [ 7EBD20284AC9BF9F0A020B86769BB074, 26D8CC9C1EE069BB617973BA7CBCFC36BAF1EABF975F395077547F930197A56A ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
11:29:45.0513 0x1bc8  Tcpip6 - ok
11:29:45.0549 0x1bc8  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
11:29:45.0576 0x1bc8  tcpipreg - ok
11:29:45.0612 0x1bc8  [ 28E1E63A1AC65E17B3194238FA2CF3BF, 9A52D6DD14BEBB7B407B2703A111D1B302F1B84AA40A14D21FCA554F395E935D ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
11:29:45.0626 0x1bc8  tdx - ok
11:29:45.0891 0x1bc8  [ F2F02E436BA56A96A06E4427C5787B6E, 1562FF264011A15AC69808CB74F387917C4E8ED3B91546B12933BE10B6E20B3A ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
11:29:46.0150 0x1bc8  TeamViewer - ok
11:29:46.0179 0x1bc8  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
11:29:46.0192 0x1bc8  terminpt - ok
11:29:46.0264 0x1bc8  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
11:29:46.0331 0x1bc8  TermService - ok
11:29:46.0353 0x1bc8  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
11:29:46.0393 0x1bc8  Themes - ok
11:29:46.0452 0x1bc8  [ 8D23F0819A00C547814409B734DD3747, 0E1B25A53C84486F8A57F309F3C016114F90F5AF5E576889BD230931F38594A5 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
11:29:46.0502 0x1bc8  tiledatamodelsvc - ok
11:29:46.0609 0x1bc8  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
11:29:46.0638 0x1bc8  TimeBroker - ok
11:29:46.0661 0x1bc8  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
11:29:46.0683 0x1bc8  TPM - ok
11:29:46.0724 0x1bc8  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
11:29:46.0755 0x1bc8  TrkWks - ok
11:29:46.0834 0x1bc8  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
11:29:46.0872 0x1bc8  TrustedInstaller - ok
11:29:46.0899 0x1bc8  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
11:29:46.0915 0x1bc8  TsUsbFlt - ok
11:29:46.0965 0x1bc8  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
11:29:46.0980 0x1bc8  TsUsbGD - ok
11:29:47.0001 0x1bc8  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
11:29:47.0023 0x1bc8  tunnel - ok
11:29:47.0060 0x1bc8  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
11:29:47.0073 0x1bc8  uagp35 - ok
11:29:47.0090 0x1bc8  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
11:29:47.0106 0x1bc8  UASPStor - ok
11:29:47.0132 0x1bc8  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
11:29:47.0180 0x1bc8  UcmCx0101 - ok
11:29:47.0207 0x1bc8  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
11:29:47.0224 0x1bc8  UcmUcsi - ok
11:29:47.0245 0x1bc8  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
11:29:47.0262 0x1bc8  Ucx01000 - ok
11:29:47.0284 0x1bc8  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
11:29:47.0334 0x1bc8  UdeCx - ok
11:29:47.0383 0x1bc8  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
11:29:47.0440 0x1bc8  udfs - ok
11:29:47.0484 0x1bc8  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
11:29:47.0495 0x1bc8  UEFI - ok
11:29:47.0533 0x1bc8  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
11:29:47.0561 0x1bc8  Ufx01000 - ok
11:29:47.0579 0x1bc8  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
11:29:47.0594 0x1bc8  UfxChipidea - ok
11:29:47.0613 0x1bc8  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
11:29:47.0628 0x1bc8  ufxsynopsys - ok
11:29:47.0677 0x1bc8  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
11:29:47.0697 0x1bc8  UI0Detect - ok
11:29:47.0810 0x1bc8  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
11:29:47.0877 0x1bc8  uliagpkx - ok
11:29:47.0907 0x1bc8  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
11:29:47.0956 0x1bc8  umbus - ok
11:29:47.0978 0x1bc8  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
11:29:48.0001 0x1bc8  UmPass - ok
11:29:48.0065 0x1bc8  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
11:29:48.0102 0x1bc8  UmRdpService - ok
11:29:48.0190 0x1bc8  [ 0D5C9E27E93AAEA3E30A1E59A7AC3DFF, 31A203DA03877E6B887930990C5BB53402F0DFFB22A6F8FC5A34EF0B99CD8A7E ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
11:29:48.0266 0x1bc8  UnistoreSvc - ok
11:29:48.0421 0x1bc8  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
11:29:48.0436 0x1bc8  UNS - ok
11:29:48.0484 0x1bc8  [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost        C:\WINDOWS\System32\upnphost.dll
11:29:48.0531 0x1bc8  upnphost - ok
11:29:48.0553 0x1bc8  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
11:29:48.0565 0x1bc8  UrsChipidea - ok
11:29:48.0603 0x1bc8  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
11:29:48.0614 0x1bc8  UrsCx01000 - ok
11:29:48.0625 0x1bc8  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
11:29:48.0636 0x1bc8  UrsSynopsys - ok
11:29:48.0669 0x1bc8  [ 8047D8AFA070A4C3B9FCBDBF77A84C45, D8B47716EE57391E3B9CBE3B35FF1F933F08E40B1C8C12EB5BE2438D9E409FF0 ] usb3Hub         C:\WINDOWS\System32\drivers\usb3Hub.sys
11:29:48.0677 0x1bc8  usb3Hub - ok
11:29:48.0689 0x1bc8  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
11:29:48.0705 0x1bc8  usbccgp - ok
11:29:48.0719 0x1bc8  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
11:29:48.0748 0x1bc8  usbcir - ok
11:29:48.0803 0x1bc8  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
11:29:48.0817 0x1bc8  usbehci - ok
11:29:48.0883 0x1bc8  [ 0A368247A900656CC0678117DFC3A87C, 9BEAD14DA067439D913F609955E95CFA0B88ED4F1BC60B473E00F9D9CBC01B9C ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
11:29:48.0919 0x1bc8  usbhub - ok
11:29:48.0976 0x1bc8  [ C08449092043601887A1743350888635, 5CD916649D2CD8823B89C9E7459AD76AA8E54D70B6D9F40AD4A41144E22ACBE0 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
11:29:49.0003 0x1bc8  USBHUB3 - ok
11:29:49.0023 0x1bc8  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
11:29:49.0036 0x1bc8  usbohci - ok
11:29:49.0053 0x1bc8  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
11:29:49.0066 0x1bc8  usbprint - ok
11:29:49.0085 0x1bc8  [ 1F72E1A7E1858B7B3FF81522FCEBDE95, 4FAD243DA73C45CD5CA5E50F824F30EF0DC777D83957FD21FF43D8C89EC15AAC ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
11:29:49.0110 0x1bc8  usbser - ok
11:29:49.0157 0x1bc8  [ CD35467670DF1E6FBF36DA308F0C872B, E1F4F9B1EBD476394CBD0C934842AEE2502B030D97351B0A1E751FF23B011B57 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
11:29:49.0175 0x1bc8  USBSTOR - ok
11:29:49.0198 0x1bc8  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
11:29:49.0212 0x1bc8  usbuhci - ok
11:29:49.0235 0x1bc8  [ B1484D4BBC6B7B424F1CD1554B0AFB84, C9432978603360182AAA983248FFA97576B3C59BE5DA45473DFA17E2940479C8 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
11:29:49.0272 0x1bc8  usbvideo - ok
11:29:49.0302 0x1bc8  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
11:29:49.0323 0x1bc8  USBXHCI - ok
11:29:49.0415 0x1bc8  [ 32212C0FE0556915E763C29DEB6D267E, C5BC9DA3AB0C41604E8F3D01AFC2C25351FF5D3967E766DD0CDB4C0239ED6312 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
11:29:49.0490 0x1bc8  UserDataSvc - ok
11:29:49.0578 0x1bc8  [ E9E2B5FFBEFC2CDF14A6E55DD94CC823, A10C011835A65601B8FE3A30F361C224C60084A78085842ADCDA248047530CD1 ] UserManager     C:\WINDOWS\System32\usermgr.dll
11:29:49.0628 0x1bc8  UserManager - ok
11:29:49.0685 0x1bc8  [ 0CFEA30C0217EE74FF853B2B0CC0BE6D, 1F0856D2D94F46D7B24B7EE18ED868C9EFAE972039D35D1FAA9058A12CF40493 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
11:29:49.0728 0x1bc8  UsoSvc - ok
11:29:49.0768 0x1bc8  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
11:29:49.0793 0x1bc8  VaultSvc - ok
11:29:49.0806 0x1bc8  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
11:29:49.0820 0x1bc8  vdrvroot - ok
11:29:49.0883 0x1bc8  [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds             C:\WINDOWS\System32\vds.exe
11:29:49.0940 0x1bc8  vds - ok
11:29:49.0966 0x1bc8  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
11:29:49.0982 0x1bc8  VerifierExt - ok
11:29:50.0014 0x1bc8  [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
11:29:50.0044 0x1bc8  vhdmp - ok
11:29:50.0088 0x1bc8  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
11:29:50.0126 0x1bc8  vhf - ok
11:29:50.0142 0x1bc8  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
11:29:50.0155 0x1bc8  vmbus - ok
11:29:50.0168 0x1bc8  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
11:29:50.0201 0x1bc8  VMBusHID - ok
11:29:50.0252 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
11:29:50.0297 0x1bc8  vmicguestinterface - ok
11:29:50.0311 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
11:29:50.0339 0x1bc8  vmicheartbeat - ok
11:29:50.0353 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
11:29:50.0381 0x1bc8  vmickvpexchange - ok
11:29:50.0395 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
11:29:50.0425 0x1bc8  vmicrdv - ok
11:29:50.0439 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
11:29:50.0467 0x1bc8  vmicshutdown - ok
11:29:50.0484 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
11:29:50.0514 0x1bc8  vmictimesync - ok
11:29:50.0528 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
11:29:50.0559 0x1bc8  vmicvmsession - ok
11:29:50.0573 0x1bc8  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
11:29:50.0603 0x1bc8  vmicvss - ok
11:29:50.0627 0x1bc8  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
11:29:50.0639 0x1bc8  volmgr - ok
11:29:50.0683 0x1bc8  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
11:29:50.0707 0x1bc8  volmgrx - ok
11:29:50.0741 0x1bc8  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
11:29:50.0760 0x1bc8  volsnap - ok
11:29:50.0816 0x1bc8  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
11:29:50.0829 0x1bc8  vpci - ok
11:29:50.0863 0x1bc8  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
11:29:50.0880 0x1bc8  vsmraid - ok
11:29:50.0958 0x1bc8  [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS             C:\WINDOWS\system32\vssvc.exe
11:29:51.0041 0x1bc8  VSS - ok
11:29:51.0104 0x1bc8  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
11:29:51.0123 0x1bc8  VSTXRAID - ok
11:29:51.0166 0x1bc8  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
11:29:51.0179 0x1bc8  vwifibus - ok
11:29:51.0196 0x1bc8  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
11:29:51.0227 0x1bc8  vwififlt - ok
11:29:51.0247 0x1bc8  [ 37C868DDE3103130B00AD1313DAB5ACB, BF9C30817A3502F5C0673FD462B18FE1BF37963B29DF09D84B66BDCBF8ECBA81 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
11:29:51.0262 0x1bc8  vwifimp - ok
11:29:51.0318 0x1bc8  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
11:29:51.0355 0x1bc8  W32Time - ok
11:29:51.0446 0x1bc8  [ 9776E4816D92B766F461957FBDA84360, 048F6ADC97767AFAB50582D0AE1E67A15B038A1C02F7982A6AD30B61AC5C7369 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
11:29:51.0475 0x1bc8  w3logsvc - ok
11:29:51.0510 0x1bc8  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
11:29:51.0558 0x1bc8  W3SVC - ok
11:29:51.0589 0x1bc8  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
11:29:51.0603 0x1bc8  WacomPen - ok
11:29:51.0654 0x1bc8  [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService   C:\WINDOWS\system32\WalletService.dll
11:29:51.0708 0x1bc8  WalletService - ok
11:29:51.0731 0x1bc8  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:29:51.0768 0x1bc8  wanarp - ok
11:29:51.0775 0x1bc8  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:29:51.0798 0x1bc8  wanarpv6 - ok
11:29:51.0829 0x1bc8  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
11:29:51.0866 0x1bc8  WAS - ok
11:29:51.0955 0x1bc8  [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine        C:\WINDOWS\system32\wbengine.exe
11:29:52.0058 0x1bc8  wbengine - ok
11:29:52.0116 0x1bc8  [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
11:29:52.0185 0x1bc8  WbioSrvc - ok
11:29:52.0238 0x1bc8  [ A40484AC27EE08DBE7F8DA5E1F6651ED, E3259694450C4F1DEC5E0EA5E23BF3A51F1819374DF47FECF70282AFD46114A1 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
11:29:52.0294 0x1bc8  Wcmsvc - ok
11:29:52.0320 0x1bc8  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
11:29:52.0358 0x1bc8  wcncsvc - ok
11:29:52.0374 0x1bc8  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
11:29:52.0409 0x1bc8  WcsPlugInService - ok
11:29:52.0460 0x1bc8  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
11:29:52.0474 0x1bc8  WdBoot - ok
11:29:52.0515 0x1bc8  [ 927AD29D7F91B9A0C5294932374DA15E, ABB2722EF4153771D15683B5CE603D2B7D8A585357F64A3DC26114F37BE2906E ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
11:29:52.0553 0x1bc8  Wdf01000 - ok
11:29:52.0575 0x1bc8  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
11:29:52.0594 0x1bc8  WdFilter - ok
11:29:52.0607 0x1bc8  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
11:29:52.0646 0x1bc8  WdiServiceHost - ok
11:29:52.0650 0x1bc8  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
11:29:52.0670 0x1bc8  WdiSystemHost - ok
11:29:52.0716 0x1bc8  [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
11:29:52.0763 0x1bc8  wdiwifi - ok
11:29:52.0811 0x1bc8  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
11:29:52.0824 0x1bc8  WdNisDrv - ok
11:29:52.0862 0x1bc8  WdNisSvc - ok
11:29:52.0884 0x1bc8  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
11:29:52.0924 0x1bc8  WebClient - ok
11:29:52.0965 0x1bc8  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
11:29:52.0988 0x1bc8  Wecsvc - ok
11:29:52.0998 0x1bc8  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
11:29:53.0032 0x1bc8  WEPHOSTSVC - ok
11:29:53.0056 0x1bc8  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
11:29:53.0091 0x1bc8  wercplsupport - ok
11:29:53.0110 0x1bc8  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
11:29:53.0134 0x1bc8  WerSvc - ok
11:29:53.0138 0x1bc8  wfpcapture - ok
11:29:53.0157 0x1bc8  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
11:29:53.0172 0x1bc8  WFPLWFS - ok
11:29:53.0188 0x1bc8  [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
11:29:53.0206 0x1bc8  WiaRpc - ok
11:29:53.0246 0x1bc8  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
11:29:53.0257 0x1bc8  WIMMount - ok
11:29:53.0260 0x1bc8  WinDefend - ok
11:29:53.0315 0x1bc8  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
11:29:53.0388 0x1bc8  WindowsTrustedRT - ok
11:29:53.0422 0x1bc8  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
11:29:53.0437 0x1bc8  WindowsTrustedRTProxy - ok
11:29:53.0504 0x1bc8  [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
11:29:53.0549 0x1bc8  WinHttpAutoProxySvc - ok
11:29:53.0560 0x1bc8  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
11:29:53.0572 0x1bc8  WinMad - ok
11:29:53.0631 0x1bc8  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
11:29:53.0652 0x1bc8  Winmgmt - ok
11:29:53.0756 0x1bc8  [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
11:29:53.0887 0x1bc8  WinRM - ok
11:29:53.0936 0x1bc8  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
11:29:53.0965 0x1bc8  WINUSB - ok
11:29:54.0004 0x1bc8  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
11:29:54.0017 0x1bc8  WinVerbs - ok
11:29:54.0088 0x1bc8  [ 3C096082A9232B7CEE4653B9C9031769, CFD4C7D0874097ED70735FD99206F21C12749B7956C4B5D4287F160EC6A21DCC ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
11:29:54.0203 0x1bc8  WlanSvc - ok
11:29:54.0303 0x1bc8  [ 0968D575D9108497A6DC37749D4A6C4F, 8BFEDBE642DA0FD8AC1E60180C192527F3D36E43089090A7BB6D8B27AB6E4F7F ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
11:29:54.0422 0x1bc8  wlidsvc - ok
11:29:54.0440 0x1bc8  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
11:29:54.0462 0x1bc8  WmiAcpi - ok
11:29:54.0506 0x1bc8  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
11:29:54.0545 0x1bc8  wmiApSrv - ok
11:29:54.0587 0x1bc8  WMPNetworkSvc - ok
11:29:54.0634 0x1bc8  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
11:29:54.0651 0x1bc8  Wof - ok
11:29:54.0753 0x1bc8  [ C7503A49364DB2AF7A7DE177B233081F, 85DC6D8B5631E51FCF395A884F58571A96C8C55C38CA9ABEBD9C75BABAD21E38 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
11:29:54.0861 0x1bc8  workfolderssvc - ok
11:29:54.0909 0x1bc8  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
11:29:54.0924 0x1bc8  wpcfltr - ok
11:29:54.0961 0x1bc8  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
11:29:54.0996 0x1bc8  WPDBusEnum - ok
11:29:55.0017 0x1bc8  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
11:29:55.0029 0x1bc8  WpdUpFltr - ok
11:29:55.0042 0x1bc8  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
11:29:55.0074 0x1bc8  WpnService - ok
11:29:55.0113 0x1bc8  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
11:29:55.0131 0x1bc8  ws2ifsl - ok
11:29:55.0196 0x1bc8  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
11:29:55.0241 0x1bc8  wscsvc - ok
11:29:55.0244 0x1bc8  WSearch - ok
11:29:55.0377 0x1bc8  [ 9EB85802AB625970E05879D15DE56335, B7DCE5E1924A5CEE76CC07FF3B8CEDBBD0DDBB4C4ED0A3BFB8D1ABCAD7C0AA23 ] WSService       C:\WINDOWS\System32\WSService.dll
11:29:55.0502 0x1bc8  WSService - ok
11:29:55.0617 0x1bc8  [ B70FF53144AC4B3C7D98BFB7D7C239BD, 996F6253F24C6D734B777988CDE03CD3A32FFBAD6D7A198F1C590B762CD8DC0E ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
11:29:55.0716 0x1bc8  wuauserv - ok
11:29:55.0758 0x1bc8  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
11:29:55.0794 0x1bc8  WudfPf - ok
11:29:55.0820 0x1bc8  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
11:29:55.0860 0x1bc8  WUDFRd - ok
11:29:55.0899 0x1bc8  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
11:29:55.0917 0x1bc8  wudfsvc - ok
11:29:55.0987 0x1bc8  [ D23F211E1AA0787EFEC373D172D4A1C2, 6CCAB272D121C9946B2CF6B19F50E09946F0187713D54BFBD371B5C017367204 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
11:29:56.0071 0x1bc8  WwanSvc - ok
11:29:56.0116 0x1bc8  [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
11:29:56.0184 0x1bc8  XblAuthManager - ok
11:29:56.0268 0x1bc8  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
11:29:56.0325 0x1bc8  XblGameSave - ok
11:29:56.0342 0x1bc8  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
11:29:56.0370 0x1bc8  xboxgip - ok
11:29:56.0412 0x1bc8  [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
11:29:56.0466 0x1bc8  XboxNetApiSvc - ok
11:29:56.0515 0x1bc8  [ 24E57041608ED6A9D7FDAD0D9EC214E2, 895A16072F5EFFF57A7DCA21917540726BF816A2746EC47A066AAD363F69E5D7 ] XHCIPort        C:\WINDOWS\System32\drivers\XHCIPort.sys
11:29:56.0525 0x1bc8  XHCIPort - ok
11:29:56.0545 0x1bc8  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
11:29:56.0571 0x1bc8  xinputhid - ok
11:29:56.0619 0x1bc8  [ 1E80EDF59994925D6AF76D87564588E1, 40D02073F3A17B6C10F496341598D39F55CE70AD626BADE1BBD2021AB1A018F9 ] xusb22          C:\WINDOWS\System32\drivers\xusb22.sys
11:29:56.0655 0x1bc8  xusb22 - ok
11:29:56.0676 0x1bc8  ================ Scan global ===============================
11:29:56.0725 0x1bc8  [ C6BC6E49A7F76AA2BBA58CD08196755F, D02B6B285899E966D19323566A4780D51303D00E66674D7FF4B61991430A69A6 ] C:\WINDOWS\system32\basesrv.dll
11:29:56.0772 0x1bc8  [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
11:29:56.0817 0x1bc8  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
11:29:56.0883 0x1bc8  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
11:29:56.0892 0x1bc8  [ Global ] - ok
11:29:56.0893 0x1bc8  ================ Scan MBR ==================================
11:29:56.0903 0x1bc8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:29:56.0980 0x1bc8  \Device\Harddisk0\DR0 - ok
11:29:56.0981 0x1bc8  ================ Scan VBR ==================================
11:29:57.0011 0x1bc8  [ 05B537D6EA6094B4AEF0309399AFE59F ] \Device\Harddisk0\DR0\Partition1
11:29:57.0013 0x1bc8  \Device\Harddisk0\DR0\Partition1 - ok
11:29:57.0029 0x1bc8  [ 26BDC174EDD9AC50DB1060290902BB6B ] \Device\Harddisk0\DR0\Partition2
11:29:57.0030 0x1bc8  \Device\Harddisk0\DR0\Partition2 - ok
11:29:57.0043 0x1bc8  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
11:29:57.0043 0x1bc8  \Device\Harddisk0\DR0\Partition3 - ok
11:29:57.0059 0x1bc8  [ 90E3D512CBCD84251E1EB9F7D9D96CE6 ] \Device\Harddisk0\DR0\Partition4
11:29:57.0060 0x1bc8  \Device\Harddisk0\DR0\Partition4 - ok
11:29:57.0067 0x1bc8  [ 200DB314AF7252D41613128B9DC905FB ] \Device\Harddisk0\DR0\Partition5
11:29:57.0069 0x1bc8  \Device\Harddisk0\DR0\Partition5 - ok
11:29:57.0092 0x1bc8  [ 79B957D78222E6C2F3A3131F38900E2F ] \Device\Harddisk0\DR0\Partition6
11:29:57.0094 0x1bc8  \Device\Harddisk0\DR0\Partition6 - ok
11:29:57.0107 0x1bc8  [ E9F0557D5F6441EAAC864EE722BB3A34 ] \Device\Harddisk0\DR0\Partition7
11:29:57.0109 0x1bc8  \Device\Harddisk0\DR0\Partition7 - ok
11:29:57.0121 0x1bc8  [ 70AE140BB2045F17D8245069B61C9AC0 ] \Device\Harddisk0\DR0\Partition8
11:29:57.0122 0x1bc8  \Device\Harddisk0\DR0\Partition8 - ok
11:29:57.0123 0x1bc8  ================ Scan generic autorun ======================
11:29:57.0554 0x1bc8  [ B3B1175C96F8E01EC5D37F6C0B965F6F, F0330B4B1CBF2D5C4570E53CE6DE2BA6DE14A7156C368458A0B4B59BDBF45DD5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
11:29:57.0882 0x1bc8  RtHDVCpl - ok
11:29:57.0975 0x1bc8  [ D0AA4593126F4FCA79173D00DF054454, C18F6780ADFA44C49E6C6C8CEE4C5E25829ADE125C97A56467456B173BE4A7F2 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:29:58.0006 0x1bc8  RtHDVBg_Dolby - ok
11:29:58.0008 0x1bc8  SynTPEnh - ok
11:29:58.0076 0x1bc8  [ 724CB7A116F7E1A67009D751BCF86586, F0C4BE7451C5573AD584F5EF125C0702841E30D928909B5B3EA702831EF2FD9B ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
11:29:58.0090 0x1bc8  CLMLServer_For_P2G8 - ok
11:29:58.0129 0x1bc8  [ BE14AD6D80F9A3B33262C62479199E61, DA661F2821235018BE22CB1B459DDC99BE6D969C754096A83B2B85C1E2E46651 ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
11:29:58.0152 0x1bc8  CLVirtualDrive - ok
11:29:58.0200 0x1bc8  [ A2221900B57AEC20577996744FA4A56A, AFEF9176DBA86CDB16A7E84AD0DF6433D4F5865948774FB6B619CBEBEC004592 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
11:29:58.0207 0x1bc8  RemoteControl10 - ok
11:29:58.0251 0x1bc8  [ D59062FC3E0C232615AC2C6ADB46A770, BDE93E89C41F3F9F504B9F5D0A6014A370F622F03C002D352A16C6F3EA5C7A94 ] C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
11:29:58.0262 0x1bc8  YouCam Service - ok
11:29:58.0318 0x1bc8  Dropbox - ok
11:29:58.0643 0x1bc8  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:29:58.0947 0x1bc8  OneDriveSetup - ok
11:29:59.0169 0x1bc8  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:29:59.0345 0x1bc8  OneDriveSetup - ok
11:29:59.0481 0x1bc8  [ ECAB32E9A6A2CA0B324026D22D1C75F8, F3E505009D3C7901C1B4A3FD62EEC8F8EEC66299E6945114BD353D8EEF347E5D ] C:\Program Files (x86)\Steam\steam.exe
11:29:59.0548 0x1bc8  Steam - ok
11:29:59.0696 0x1bc8  [ 376E709A4AE341CDB7E05FBFBF2E49AB, 7942E1EECC26A8B6B26EDB759723E5666654C5218E2BBC8F50FF192009EEF9FC ] C:\Program Files (x86)\Origin\Origin.exe
11:29:59.0765 0x1bc8  EADM - ok
11:30:00.0070 0x1bc8  [ F2AD1B265908797F8A5E21E0312F2F25, 2A6A612F7D52D297385C43E77AD0CD37B28F33ED2AF89098F5E66B812B838A52 ] C:\Users\1973pl\AppData\Local\Akamai\netsession_win.exe
11:30:00.0178 0x1bc8  Akamai NetSession Interface - ok
11:30:00.0279 0x1bc8  [ 44348495F9D6ED21F4EFB3FF80677D99, 05B76248764B2BF7F9229626D7EFAFF96B724D38A82969EBE376CBE879E30450 ] C:\Users\1973pl\AppData\Local\Microsoft\OneDrive\OneDrive.exe
11:30:00.0321 0x1bc8  OneDrive - ok
11:30:00.0367 0x1bc8  Skype - ok
11:30:00.0371 0x1bc8  Waiting for KSN requests completion. In queue: 118
11:30:01.0372 0x1bc8  Waiting for KSN requests completion. In queue: 118
11:30:02.0372 0x1bc8  Waiting for KSN requests completion. In queue: 118
11:30:03.0453 0x1bc8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x61100 ( enabled : updated )
11:30:03.0456 0x1bc8  Win FW state via NFP2: enabled ( trusted )
11:30:05.0790 0x1bc8  ============================================================
11:30:05.0790 0x1bc8  Scan finished
11:30:05.0790 0x1bc8  ============================================================
11:30:05.0803 0x05fc  Detected object count: 1
11:30:05.0803 0x05fc  Actual detected object count: 1
11:30:11.0911 0x05fc  GFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
11:30:11.0911 0x05fc  GFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
         
Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org

Database version:
  main:    v2016.12.15.08
  rootkit: v2016.11.20.01

Windows 10 x64 NTFS
Internet Explorer 11.0.10240.16431
1973pl :: PETRA [administrator]

15.12.2016 10:26:30
mbar-log-2016-12-15 (10-26-30).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 375059
Time elapsed: 52 minute(s), 59 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         

Antwort

Themen zu Laptop langsam nach download
download, gemerkt, installier, installiert, langsam, laptop, laptop langsam, nach download, nicht, nicht installiert, virus, virus?



Ähnliche Themen: Laptop langsam nach download


  1. Laptop nach Booten langsam, Win8
    Plagegeister aller Art und deren Bekämpfung - 22.06.2015 (10)
  2. Laptop läuft langsam und fehlerhaft - auch nach Neuaufsetzung
    Log-Analyse und Auswertung - 28.01.2015 (7)
  3. PC über Nacht langsam nach Download
    Log-Analyse und Auswertung - 19.11.2014 (12)
  4. win7 nach merkel virus neu gemacht - trotdem inet download sehr langsam
    Log-Analyse und Auswertung - 02.11.2014 (7)
  5. Nach Trojanerbefall läuft Laptop langsam
    Log-Analyse und Auswertung - 10.08.2014 (13)
  6. PC nach Download eines Programms extrem langsam (Win 8)
    Log-Analyse und Auswertung - 19.03.2014 (3)
  7. win 7 neu afgesetzt internet und download zuuu langsam nach neuinstallation
    Netzwerk und Hardware - 27.02.2014 (20)
  8. PC mit Windows xp läuft nach fehlgeschlagenem Film Download sehr langsam
    Log-Analyse und Auswertung - 01.02.2013 (19)
  9. Nach download lamt der Laptop
    Alles rund um Windows - 29.10.2012 (8)
  10. Laptop langsam und einfrieren nach Internetverbinden
    Log-Analyse und Auswertung - 26.11.2011 (1)
  11. laptop extrem langsam nach WIN-Update XP SP3- doppelt laufende Systemprozesse
    Log-Analyse und Auswertung - 25.07.2011 (5)
  12. Laptop nach Neuinstallation extrem langsam.
    Log-Analyse und Auswertung - 04.08.2009 (5)
  13. Laptop nach Virus sehr langsam
    Log-Analyse und Auswertung - 08.05.2009 (7)
  14. Internet und Download sehr langsam nach Formation (davor auch)
    Log-Analyse und Auswertung - 18.01.2009 (5)
  15. Laptop sehr langsam auch nach Formatieren
    Plagegeister aller Art und deren Bekämpfung - 06.01.2009 (1)
  16. Laptop nach dem Start extrem langsam...
    Log-Analyse und Auswertung - 18.05.2008 (10)
  17. Laptop nach dem Formatieren langsam ! / Bitte Auswerten / Hilfe !
    Log-Analyse und Auswertung - 19.04.2008 (18)

Zum Thema Laptop langsam nach download - Hallo, ich habe mir vorhin etwas gedownloaded,aber nicht installiert,weil ich gemerkt habe,dass es ein Virus ist.Seitdem ist aber mein Laptop langsam.Habe ich evt. doch ein Virus? - Laptop langsam nach download...
Archiv
Du betrachtest: Laptop langsam nach download auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.