Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Online pay AG Virus?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 30.12.2016, 21:49   #1
Schnitte
 
Online pay AG Virus? - Ausrufezeichen

Online pay AG Virus?



Hallo zusammen,
ich bin noch geschockt und Laie im Bereich PC. Ich habe die Email der online pay AG geöffnet und die zip-Datei ausgeführt. Mir ist aufgefallen, dass etwas mit meinem Rechner nicht stimmt. Mit meinem Virenprogramm McAfee habe ich dreimal einen Vollscan durchgeführt-Virus Fehlanzeige. Mein Mein Rechner basiert auf windows 8 64 Bit. Heute stelle ich nun fest, dass mir der Zugriff auf ausgewählte Ordner wie app, Eigene Dateien etc. verweigert wird. Andere Dateien und Ordner waren einsehbar. Ich kopierte daraufhin Ordner mit Bildern heute zur Sicherheitauf eine Festplatte. Der Explorer zeigt mir nun leere Ordner an. Tatsächlich müssen die Bilder noch da sein, da ihre Existenz vom Photoprogramm von Sony angezeigt wird. Den PC habe ich nun vom Netz und Strom genommen. Was kann ich nun machen und freue mich über jegliche Hilfe.
Gruß Schnitte

Alt 30.12.2016, 22:49   #2
burningice
/// Malwareteam
 
Online pay AG Virus? - Standard

Online pay AG Virus?




Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.

Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
  • Bitte lies meine Posts komplett durch bevor du sie abarbeitest
  • Wenn ein Problem auftauchen sollte oder dir etwas unklar ist, unterbreche deine Arbeit und beschreibe es so genau wie möglich.
  • Bitte kein Crossposting
  • Installiere oder Deinstalliere keine Software ohne Aufforderung
  • Bitte verwende nur die Tools, welche hier im Thread erwähnt werden und führe sie nur gemäß Anweisung aus
  • Bitte antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
  • Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen
  • Wichtig: Nur weil dein Problem mit einem Schritt plötzlich behoben ist, bedeutet das nicht, dass dein PC auch sauber ist. Mache solange weiter, bis ich dir sage, dass dein PC "clean" ist
  • Wir machen unsere Arbeit freiwillig und ehrenamtlich neben unserer normalen Beschäftigung im Leben. Dennoch, wenn ich dir nicht binnen 36h antworte, sende mir bitte eine persönliche Nachricht!
Los geht's

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 31.12.2016, 11:54   #3
Schnitte
 
Online pay AG Virus? - Standard

Danke



Hallo Rafael, vielen Dank für deine Angebotene Hilfe. Ich habe Deine Ausführungen befolgt.

Gruß Thomas

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016
durchgeführt von Thomas (Administrator) auf ABC (31-12-2016 12:37:27)
Gestartet von C:\Users\Thomas\Desktop
Geladene Profile: Thomas (Verfügbare Profile: Thomas & gabyk_000 & Bened_000 & Christoph & Alexander)
Platform: Windows 8.1 (Update) (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
(Canon INC.) C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OFFICE15\CSISYNCCLIENT.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\CSP\1.9.829.0\McCSPServiceHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\ModuleCore\ModuleCoreService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Intel Security) C:\Program Files\Common Files\mcafee\ClientAnalytics\McClientAnalytics.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [404376 2015-08-09] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-12-06] (Apple Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2014-03-12] (CyberLink Corp.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [217736 2016-12-15] (Geek Software GmbH)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [3001536 2016-12-16] (Sony Corporation)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1084688 2016-04-21] (Apple Inc.)
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-11-17] (Apple Inc.)
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29635712 2016-09-12] (Skype Technologies S.A.)
Startup: C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2015-09-22]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageBrowser EX Agent.lnk [2015-01-25]
ShortcutTarget: ImageBrowser EX Agent.lnk -> C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe ()
Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EOS Utility.lnk [2015-05-09]
ShortcutTarget: EOS Utility.lnk -> C:\Program Files (x86)\Canon\EOS Utility\EOS Utility.exe (Canon INC.)
Startup: C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gigaset QuickSync.lnk [2016-10-03]
ShortcutTarget: Gigaset QuickSync.lnk -> C:\Program Files (x86)\Gigaset QuickSync\Gqs.UI.exe (Gigaset Communications GmbH)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7287AF1F-DF27-4630-AE19-8378081E8E17}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{74104EE1-2D04-48AF-9454-7DC4DAF2C344}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
SearchScopes: HKU\S-1-5-21-1654589261-3760676869-1622699341-1001 -> {99FC4F3F-F27A-4243-B378-796C630C687E} URL = hxxps://de.search.yahoo.com/search?fr=mcafee&type=C011DE1140D20151107&p={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-01-15] (IObit)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-10-18] (Microsoft Corporation)
BHO: Deaktivierungs-Add-on für Browser von Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files\Google\Google Analytics Opt-Out\gaoptout_x64.dll [2014-04-03] (Google, Inc.)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-12-12] (McAfee, Inc.)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO-x32: Deaktivierungs-Add-on für Browser von Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files (x86)\Google\Google Analytics Opt-Out\gaoptout.dll [2014-04-03] (Google, Inc.)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-12-12] (McAfee, Inc.)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-12-12] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-12-12] (McAfee, Inc.)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-12-12] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-12-12] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-07-07] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-07-07] (McAfee, Inc.)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-12-26]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-07-26] [ist nicht signiert]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-07-07] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1654589261-3760676869-1622699341-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2016-11-04] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)

Chrome: 
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?fr=mcafee&type=C211DE1140D20151107&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Profile: C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default [2016-12-30]
CHR Extension: (Google Präsentationen) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-15]
CHR Extension: (Google Docs) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-15]
CHR Extension: (Google Drive) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-01]
CHR Extension: (YouTube) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-11]
CHR Extension: (Google-Suche) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-01]
CHR Extension: (Google Tabellen) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-15]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-12-09]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2015-10-11]
CHR Extension: (Google Docs Offline) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-17]
CHR Extension: (Bubble Shooter Exclusive) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfaogkfljpdfmodbmbogiiblppijleen [2016-02-01]
CHR Extension: (Google Mail) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-08]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-04-24]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-04-24]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 BcmBtRSupport; C:\windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-07-02] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2014-07-02] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-08] (IObit)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [188352 2016-12-12] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-07-07] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334608 2013-07-29] (McAfee, Inc.)
R2 mcbootdelaystartsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-06-17] (McAfee, Inc.)
S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-07-07] (McAfee, Inc.)
R2 PDF24; C:\Program Files (x86)\PDF24\pdf24.exe [217736 2016-12-15] (Geek Software GmbH)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [505024 2016-12-16] (Sony Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2013-03-06] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 bcbtums; C:\windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
R3 cfwids; C:\windows\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc.)
R1 CLVirtualDrive; C:\windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 GigasetGenericUSB_x64; C:\windows\system32\DRIVERS\GigasetGenericUSB_x64.sys [54272 2016-08-12] (Siemens Home and Office Communication Devices GmbH & Co. KG)
S3 HipShieldK; C:\windows\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.)
R3 MEIx64; C:\windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-07-02] (Intel Corporation)
R3 mfeaack; C:\windows\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee, Inc.)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc.)
S0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee, Inc.)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc.)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc.)
R3 mfencbdc; C:\windows\System32\DRIVERS\mfencbdc.sys [519456 2016-08-01] (McAfee, Inc.)
S3 mfencrk; C:\windows\System32\DRIVERS\mfencrk.sys [100136 2016-08-01] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc.)
S3 NETwNe64; C:\windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 RtlWlanu; C:\windows\system32\DRIVERS\rtwlanu.sys [3860224 2015-08-05] (Realtek Semiconductor Corporation                           )
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 mfencbdc01; \Device\mfencbdc01.sys [X]
S4 NVHDA; \SystemRoot\system32\drivers\nvhda64v.sys [X]
S4 nvlddmkm; \SystemRoot\system32\DRIVERS\nvlddmkm.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-31 12:37 - 2016-12-31 12:39 - 00024623 _____ C:\Users\Thomas\Desktop\FRST.txt
2016-12-31 12:36 - 2016-12-31 12:37 - 00000000 ____D C:\FRST
2016-12-31 12:36 - 2016-12-31 12:36 - 02420736 _____ (Farbar) C:\Users\Thomas\Downloads\FRST64.exe
2016-12-31 12:36 - 2016-12-31 12:36 - 02420736 _____ (Farbar) C:\Users\Thomas\Desktop\FRST64.exe
2016-12-31 12:27 - 2016-12-31 12:27 - 01762816 _____ (Farbar) C:\Users\Thomas\Desktop\FRST.exe
2016-12-30 14:04 - 2016-12-30 20:07 - 00000000 ____D C:\Users\Thomas\Documents\Unfall Dezember 15
2016-12-29 16:33 - 2016-12-29 16:33 - 00044998 _____ C:\Users\Thomas\Downloads\Einzugsermächtigung.pdf
2016-12-29 16:33 - 2016-12-29 16:33 - 00014880 _____ C:\Users\Thomas\Downloads\Rechnung_14.11.2016_Nr_1611446479_Kd-Nr_19776077.pdf
2016-12-18 20:42 - 2016-12-18 21:02 - 00000000 ____D C:\Users\Thomas\Bilder Kalender Barbara
2016-12-17 18:35 - 2016-12-17 18:35 - 00001104 _____ C:\Users\Public\Desktop\PDF24.lnk
2016-12-17 18:35 - 2016-12-17 18:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2016-12-17 17:51 - 2016-12-17 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2016-12-17 17:49 - 2016-12-17 17:49 - 00001769 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-12-17 17:49 - 2016-12-17 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-12-17 17:40 - 2016-12-17 17:40 - 00003164 _____ C:\windows\System32\Tasks\OneDrive Standalone Update Task v2
2016-12-14 22:31 - 2016-12-01 15:13 - 00869576 _____ (Microsoft Corporation) C:\windows\system32\msvcr120_clr0400.dll
2016-12-14 22:31 - 2016-12-01 15:13 - 00678592 _____ (Microsoft Corporation) C:\windows\system32\msvcp120_clr0400.dll
2016-12-14 22:31 - 2016-12-01 15:11 - 00875720 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcr120_clr0400.dll
2016-12-14 22:31 - 2016-12-01 15:11 - 00536768 _____ (Microsoft Corporation) C:\windows\SysWOW64\msvcp120_clr0400.dll
2016-12-14 10:46 - 2016-11-19 22:24 - 00567152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2016-12-14 10:46 - 2016-11-19 22:24 - 00152856 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll
2016-12-14 10:46 - 2016-11-19 20:29 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-12-14 10:46 - 2016-11-19 19:44 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-12-14 10:46 - 2016-11-19 18:53 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-12-14 10:46 - 2016-11-19 18:22 - 00111104 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcrypt.dll
2016-12-14 10:46 - 2016-11-16 22:49 - 00377176 _____ (Microsoft Corporation) C:\windows\system32\Drivers\clfs.sys
2016-12-14 10:46 - 2016-11-12 22:06 - 00738104 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2016-12-14 10:46 - 2016-11-12 20:38 - 00613632 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2016-12-14 10:46 - 2016-11-12 20:25 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-12-14 10:46 - 2016-11-12 20:08 - 25759744 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-12-14 10:46 - 2016-11-12 20:07 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-12-14 10:46 - 2016-11-12 19:53 - 06049280 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-12-14 10:46 - 2016-11-12 19:29 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-12-14 10:46 - 2016-11-12 19:23 - 01033216 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-12-14 10:46 - 2016-11-12 19:17 - 20302848 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-12-14 10:46 - 2016-11-12 19:14 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-12-14 10:46 - 2016-11-12 19:10 - 00806912 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-12-14 10:46 - 2016-11-12 18:45 - 00880640 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2016-12-14 10:46 - 2016-11-12 18:41 - 15257088 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-12-14 10:46 - 2016-11-12 18:38 - 00693248 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-12-14 10:46 - 2016-11-12 18:37 - 04608000 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-12-14 10:46 - 2016-11-12 18:35 - 02920960 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-12-14 10:46 - 2016-11-12 18:21 - 13653504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-12-14 10:46 - 2016-11-12 18:20 - 01543680 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-12-14 10:46 - 2016-11-12 18:11 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-12-14 10:46 - 2016-11-12 18:05 - 02444800 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-12-14 10:46 - 2016-11-12 18:02 - 01312256 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-12-14 10:46 - 2016-11-12 18:02 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-12-14 10:46 - 2016-11-11 03:33 - 01541240 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2016-12-14 10:46 - 2016-11-09 18:25 - 01376768 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2016-12-14 10:46 - 2016-11-05 19:35 - 04169216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-12-14 10:46 - 2016-11-05 18:57 - 03320320 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2016-12-14 10:46 - 2016-11-05 18:11 - 03606528 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2016-12-14 10:46 - 2016-11-05 16:56 - 02778624 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-12-14 10:46 - 2016-11-05 16:46 - 02463744 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2016-12-14 10:46 - 2016-10-28 03:56 - 01380048 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2016-12-14 10:46 - 2016-10-27 15:28 - 01097728 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2016-12-10 10:42 - 2016-12-10 10:42 - 00206760 _____ C:\Users\Thomas\Downloads\Wohnraummietvertrag.pdf
2016-12-08 20:32 - 2016-12-08 20:32 - 00007129 _____ C:\Users\Thomas\Downloads\Inlands-Ueberweisung_380_484258900_20161208_203242.pdf
2016-12-08 20:18 - 2016-12-08 20:18 - 00036751 _____ C:\Users\Thomas\Downloads\Kontoauszug_380484258900_2016-11-01.pdf
2016-12-05 21:01 - 2016-12-05 21:13 - 00000000 ____D C:\Users\Thomas\Documents\Kleinschnittger-Erguvan

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-12-31 12:28 - 2013-08-22 14:36 - 00000000 ____D C:\windows\Inf
2016-12-31 12:21 - 2014-12-08 19:48 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1654589261-3760676869-1622699341-1001
2016-12-31 12:17 - 2015-01-15 23:13 - 00000000 ___RD C:\Users\Thomas\iCloudDrive
2016-12-31 12:16 - 2014-12-19 01:10 - 00000000 __SHD C:\Users\Thomas\IntelGraphicsProfiles
2016-12-31 12:16 - 2014-12-08 19:50 - 00000000 ___DO C:\Users\Thomas\OneDrive
2016-12-31 12:14 - 2013-08-22 15:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-12-30 20:42 - 2013-08-22 14:25 - 01048576 ___SH C:\windows\system32\config\BBI
2016-12-30 20:14 - 2014-12-14 20:35 - 00000000 ____D C:\Users\Thomas\Documents\Outlook-Dateien
2016-12-30 20:02 - 2016-02-11 22:30 - 00000000 ____D C:\Users\Thomas\Gaby Geburtstag
2016-12-30 18:44 - 2015-01-15 23:15 - 00000000 ____D C:\Users\Thomas\AppData\Local\B226105D-27E6-47FE-8251-E57C377B9939.aplzod
2016-12-30 16:14 - 2014-12-09 22:41 - 00000000 ____D C:\Users\Thomas\Überweisungen
2016-12-30 16:14 - 2014-12-08 19:42 - 00000000 ____D C:\Users\Thomas
2016-12-30 15:04 - 2015-01-18 16:15 - 00000000 ____D C:\Users\Thomas\Alexander
2016-12-30 15:03 - 2014-04-28 14:59 - 00801704 _____ C:\windows\system32\perfh015.dat
2016-12-30 15:03 - 2014-04-28 14:59 - 00164526 _____ C:\windows\system32\perfc015.dat
2016-12-30 15:03 - 2014-04-28 14:44 - 00459412 _____ C:\windows\system32\perfh006.dat
2016-12-30 15:03 - 2014-04-28 14:44 - 00080604 _____ C:\windows\system32\perfc006.dat
2016-12-30 15:03 - 2014-04-28 12:38 - 00769016 _____ C:\windows\system32\perfh007.dat
2016-12-30 15:03 - 2014-04-28 12:38 - 00160778 _____ C:\windows\system32\perfc007.dat
2016-12-30 15:03 - 2014-04-28 10:22 - 00805138 _____ C:\windows\system32\perfh00C.dat
2016-12-30 15:03 - 2014-04-28 10:22 - 00160028 _____ C:\windows\system32\perfc00C.dat
2016-12-30 15:03 - 2014-03-18 16:26 - 04258978 _____ C:\windows\system32\PerfStringBackup.INI
2016-12-30 14:18 - 2013-08-22 14:25 - 00262144 ___SH C:\windows\system32\config\ELAM
2016-12-29 20:16 - 2015-12-08 19:22 - 00014336 ___SH C:\Users\Thomas\Desktop\Thumbs.db
2016-12-29 19:06 - 2014-12-08 19:42 - 00000000 ____D C:\Users\Thomas\AppData\Local\Packages
2016-12-29 18:36 - 2013-08-22 16:36 - 00000000 ____D C:\windows\system32\FxsTmp
2016-12-28 07:38 - 2015-06-22 23:29 - 00001972 _____ C:\Users\Public\Desktop\PlayMemories Home.lnk
2016-12-28 07:38 - 2015-06-22 23:29 - 00001858 _____ C:\Users\Public\Desktop\PlayMemories Home-Hilfe.lnk
2016-12-28 07:38 - 2015-06-22 23:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayMemories Home
2016-12-27 04:43 - 2014-12-13 14:32 - 00000000 ____D C:\ProgramData\ProductData
2016-12-27 03:40 - 2015-01-13 01:59 - 00003412 _____ C:\windows\System32\Tasks\Apple Diagnostics
2016-12-18 11:35 - 2013-08-22 16:36 - 00000000 ____D C:\windows\rescache
2016-12-17 18:35 - 2015-01-15 15:43 - 00000000 ____D C:\Program Files (x86)\PDF24
2016-12-17 17:49 - 2014-12-27 19:32 - 00000000 ____D C:\Program Files\iTunes
2016-12-17 17:48 - 2014-12-27 19:32 - 00000000 ____D C:\Program Files\iPod
2016-12-17 17:45 - 2014-12-09 22:31 - 00003542 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-12-17 17:45 - 2014-12-09 22:31 - 00003414 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-12-17 17:40 - 2016-05-08 15:23 - 00002362 _____ C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2016-12-17 17:40 - 2014-12-08 20:04 - 00003172 _____ C:\windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1654589261-3760676869-1622699341-1001
2016-12-16 16:31 - 2013-08-22 15:44 - 00495936 _____ C:\windows\system32\FNTCACHE.DAT
2016-12-14 22:49 - 2013-08-22 16:20 - 00000000 ____D C:\windows\CbsTemp
2016-12-14 22:38 - 2015-01-15 21:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-12-14 22:35 - 2014-12-12 04:52 - 00000000 ____D C:\windows\system32\MRT
2016-12-14 22:32 - 2014-04-24 17:12 - 135632432 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-12-12 00:00 - 2014-12-12 14:41 - 00835576 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-12-12 00:00 - 2014-12-12 14:41 - 00177656 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-12-11 20:22 - 2013-08-22 14:25 - 00000199 _____ C:\windows\win.ini
2016-12-10 10:04 - 2013-08-22 16:36 - 00000000 ____D C:\windows\system32\NDF
2016-12-09 22:45 - 2014-12-09 22:37 - 00002211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-09 22:45 - 2014-12-09 22:37 - 00002199 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-12-05 21:10 - 2016-10-25 18:36 - 00665600 ___SH C:\Users\Thomas\Documents\Thumbs.db

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-09-26 16:26 - 2015-09-26 16:32 - 0021990 _____ () C:\Users\Thomas\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2015-09-15 13:44 - 2016-11-30 23:04 - 0029184 _____ () C:\Users\Thomas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-02 16:00 - 2014-07-02 16:00 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\windows\system32\winlogon.exe => Datei ist digital signiert
C:\windows\system32\wininit.exe => Datei ist digital signiert
C:\windows\explorer.exe => Datei ist digital signiert
C:\windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\windows\system32\svchost.exe => Datei ist digital signiert
C:\windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\windows\system32\services.exe => Datei ist digital signiert
C:\windows\system32\User32.dll => Datei ist digital signiert
C:\windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\windows\system32\userinit.exe => Datei ist digital signiert
C:\windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\windows\system32\rpcss.dll => Datei ist digital signiert
C:\windows\system32\dnsapi.dll => Datei ist digital signiert
C:\windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2016-12-30 06:03

==================== Ende von FRST.txt ============================
         
FRST Additions Logfile:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 21-12-2016
durchgeführt von Thomas (31-12-2016 12:39:43)
Gestartet von C:\Users\Thomas\Desktop
Windows 8.1 (Update) (X64) (2014-12-08 18:42:19)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1654589261-3760676869-1622699341-500 - Administrator - Disabled)
Alexander (S-1-5-21-1654589261-3760676869-1622699341-1007 - Limited - Enabled) => C:\Users\Alexander
Bened_000 (S-1-5-21-1654589261-3760676869-1622699341-1005 - Limited - Enabled) => C:\Users\Bened_000
Christoph (S-1-5-21-1654589261-3760676869-1622699341-1006 - Limited - Enabled) => C:\Users\Christoph
gabyk_000 (S-1-5-21-1654589261-3760676869-1622699341-1004 - Limited - Enabled) => C:\Users\gabyk_000
Gast (S-1-5-21-1654589261-3760676869-1622699341-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1654589261-3760676869-1622699341-1003 - Limited - Enabled)
Thomas (S-1-5-21-1654589261-3760676869-1622699341-1001 - Administrator - Enabled) => C:\Users\Thomas

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 16.03 (x64) (HKLM\...\7-Zip) (Version: 16.03 - Igor Pavlov)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Ashampoo AppLauncher (Medion) v.1.0.0 (HKLM-x32\...\Ashampoo AppLauncher (Medion)_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 12 v.12.0.13 (HKLM-x32\...\{C92AB6F1-691B-9629-9ECD-7291A9DF25A8}_is1) (Version: 12.0.13 - Ashampoo GmbH & Co. KG)
AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version:  - AVM Berlin)
AVM FRITZ!Box Druckeranschluss (HKLM-x32\...\AVMFBoxPrinter) (Version:  - AVM Berlin)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon Utilities Digital Photo Professional (HKLM-x32\...\Digital Photo Professional) (Version: 3.14.47.0 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.1.0.6 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.10.2 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.0.1.3 - Canon Inc.)
Canon Utilities ImageBrowser EX (HKLM-x32\...\ImageBrowser EX) (Version: 1.5.2.8 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.14.20.0 - Canon Inc.)
Creifelds Rechtswörterbuch (HKLM-x32\...\Creifelds Rechtswörterbuch) (Version:  - )
CyberLink Home Cinema 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink PowerDirector 11 (Version: 11.0.0.3910 - CyberLink Corp.) Hidden
CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.7.0.3019 - CyberLink Corp.)
CyberLink PowerRecover (Version: 5.7.0.3019 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Deaktivierungs-Add-on für Browser von Google Analytics (HKLM\...\{9F540EA8-086E-4D53-B845-A06E6903DED6}) (Version: 0.9.6.0 - Google Inc.)
Die Siedler 7 (HKLM-x32\...\{63860309-DA8A-4BAE-9EAE-CE1D6D79340C}) (Version: 1.12.1396 - Ubisoft)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON Universal Print Driver Printer Uninstall (HKLM\...\EPSON Universal Print Driver) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
EpsonNet SetupManager V2 (HKLM-x32\...\InstallShield_{485863E4-C20E-4629-A3B1-B4C8E706A7CB}) (Version: 2.2.3 - SEIKO EPSON CORPORATION)
EpsonNet SetupManager V2 (x32 Version: 2.2.3 - SEIKO EPSON CORPORATION) Hidden
FLV and Media Player 4.2.1.1 (HKLM-x32\...\FLV and Media Player) (Version: 4.2.1.1 - Applian Technologies)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Gigaset QuickSync (HKLM\...\{192f673d-d310-4488-96da-4a4bfcd6ab2b}) (Version: 8.6.0875.1 - Gigaset Communications GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3383 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.2.6.1 - IObit)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 15.0.166 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.206 - McAfee, Inc.)
MergeModule_x64 (Version: 9.3.00 - Sony Corporation) Hidden
MergeModule_x86 (x32 Version: 9.3.00 - Sony Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\OneDriveSetup.exe) (Version: 17.3.6720.1207 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF24 Creator 8.0.3 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
PIXELA AAC LC CODEC (HKLM-x32\...\PIXELA AAC LC CODEC) (Version: 1.1.0.1 - Canon Inc.)
PlayMemories Home (HKLM-x32\...\{94F4815B-755A-4FFA-AFDC-EE8FE776981E}) (Version: 5.3.00.12160 - Sony Corporation)
PMB_ModeEditor (x32 Version: 10.3.00 - Sony Corporation) Hidden
PMB_ServiceUploader (x32 Version: 10.3.00 - Sony Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7183 - Realtek Semiconductor Corp.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
Siedler3 (HKLM-x32\...\Siedler3Deinstall) (Version:  - )
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{5D2260D6-DB16-41DC-915B-A39BF4F66362}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127976) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E0107125-62C7-43B6-8E66-0582F397469E}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127976) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E0107125-62C7-43B6-8E66-0582F397469E}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3127976) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{E0107125-62C7-43B6-8E66-0582F397469E}) (Version:  - Microsoft)
Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1654589261-3760676869-1622699341-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Thomas\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\FileCoAuthLib64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1654589261-3760676869-1622699341-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {09331A5F-81EB-43DB-B650-9C80A87B5844} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {12161068-12F1-4EDF-BBF2-2F15FE597798} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {1F58E12F-453B-4D50-BF0F-B643706A7D22} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {2C19A5E1-6795-446E-8A13-6ACF7A7A5C8A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {3DD2AA81-10D2-4624-93E7-8C4C1383E5F8} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [2016-07-07] (McAfee, Inc.)
Task: {3E38D3F6-C130-4280-AEA0-13D3ECE284F2} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {400346E3-BD0C-4F8F-98BA-D4360FA71198} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {406A19F9-599B-4933-BC9E-4B3EC27B022A} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-11-17] (Apple Inc.)
Task: {420FB68B-9E89-4A17-86FB-883AAA92E173} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {58E6C3A7-3AF6-4354-B820-808786555D84} - System32\Tasks\Driver Booster SkipUAC (Thomas) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {6C5F82A2-7458-450F-8A98-C55A7E9688AD} - System32\Tasks\{D853DBB5-4135-42E6-8D5D-057A3D54F906} => pcalua.exe -a C:\BcView40\BcView40.exe -d C:\BcView40 -c -G G_WOERT -T CRE
Task: {8474CDC0-EDD9-4D17-A6AD-A5C3CB86D607} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {967063FC-3F19-4C31-9013-20BEFF08AB25} - System32\Tasks\Uninstaller_SkipUac_Thomas => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-15] (IObit)
Task: {D213A5FB-2DF0-4D8E-B6DF-B864998A01A3} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {DD3476B4-3EDB-48BF-AB00-4E6A57EC850D} - System32\Tasks\PDVDServ12 Task => C:\Program Files (x86)\CyberLink\PowerDVD12\PDVD12Serv.exe [2014-05-27] (CyberLink Corp.)
Task: {F2C6ACAD-CA00-40DF-9475-5C155B6DC0FB} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2016-12-14] (Microsoft Corporation)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\windows\Tasks\Uninstaller_SkipUac_Thomas.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\Thomas\Desktop\ALDI Süd Blumen Service.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www2.aldi-blumenservice.de/
ShortcutWithArgument: C:\Users\Thomas\Desktop\ALDI Süd Reisen.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-sued.de/de/html/service/aldi_reisen.htm
ShortcutWithArgument: C:\Users\Thomas\Desktop\ALDI Süd Startseite.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-sued.de
ShortcutWithArgument: C:\Users\Thomas\Desktop\ALDI Talk.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medionmobile.de
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\8\C\Users\Thomas\Desktop\ALDI Süd Blumen Service.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www2.aldi-blumenservice.de/
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\8\C\Users\Thomas\Desktop\ALDI Süd Reisen.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-sued.de/de/html/service/aldi_reisen.htm
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\8\C\Users\Thomas\Desktop\ALDI Süd Startseite.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-sued.de
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\8\C\Users\Thomas\Desktop\ALDI Talk.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medionmobile.de
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\1388\C\Users\Thomas\Desktop\ALDI Süd Blumen Service.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www2.aldi-blumenservice.de/
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\1388\C\Users\Thomas\Desktop\ALDI Süd Reisen.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-sued.de/de/html/service/aldi_reisen.htm
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\1388\C\Users\Thomas\Desktop\ALDI Süd Startseite.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-sued.de
ShortcutWithArgument: C:\Users\Thomas\AppData\Local\Microsoft\Windows\FileHistory\Data\1388\C\Users\Thomas\Desktop\ALDI Talk.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medionmobile.de
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEDIONhome.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.medion.com
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Welcome.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.aldi-sued.de
ShortcutWithArgument: C:\Users\Public\Desktop\eBay.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://rover.ebay.com/rover/1/707-154514-44482-13/4

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-07-02 12:56 - 2013-03-06 14:42 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2016-12-17 17:39 - 2016-12-17 17:39 - 01678560 _____ () C:\Users\Thomas\AppData\Local\Microsoft\OneDrive\17.3.6720.1207\amd64\ClientTelemetry.dll
2014-07-29 12:04 - 2015-08-09 03:50 - 00404376 _____ () C:\windows\system32\igfxTray.exe
2015-01-25 21:56 - 2015-02-10 14:08 - 00069120 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
2014-12-13 14:32 - 2014-12-13 14:32 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2016-11-17 01:29 - 2016-11-17 01:29 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-09-01 17:13 - 2016-09-01 17:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-25 21:56 - 2015-02-18 13:11 - 00112128 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFMFileSystemWatcher.dll
2014-08-19 10:41 - 2014-08-19 10:41 - 00507904 _____ () C:\Program Files (x86)\Canon\EOS Utility\EDSDK.dll
2014-07-02 12:54 - 2013-08-05 08:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-05 15:48 - 2013-08-05 15:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-07-02 16:27 - 2014-07-02 10:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\MEDION\wallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

HKLM\...\StartupApproved\Run32: => "PMBVolumeWatcher"
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\StartupApproved\StartupFolder: => "Gigaset QuickSync.lnk"
HKU\S-1-5-21-1654589261-3760676869-1622699341-1001\...\StartupApproved\Run: => "Skype"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{3153B440-1248-49D1-92C5-B47D986ECBAA}] => C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{82C57A89-E0E9-436E-A004-3B41AB398FF3}] => C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{E7FB244F-0022-40A0-B0B6-83F6DE5AC5C1}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{FFC0F777-525B-4416-8BC1-E5B95DBB29E8}] => LPort=2869
FirewallRules: [{7444B070-8E08-48C8-A0B1-22DE9F908422}] => LPort=1900
FirewallRules: [{304CD1AB-1C5C-4F5E-BD37-628912F5A3FB}] => C:\Program Files\CyberLink\PowerDirector11\PDR10.EXE
FirewallRules: [{01DDC0C7-9514-4AEF-8ABD-1BBD066B82A4}] => C:\Users\Thomas\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{68FE22B8-8CE8-4B58-BA0B-85CB69E7F406}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{4A57CE0C-F009-4375-B50D-DF0D0596C008}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{9474F854-78F9-44F7-B080-CE60697BADC8}] => F:\fsetup.exe
FirewallRules: [{72F65683-9444-4951-AF49-17DEB030A17D}] => F:\fsetup.exe
FirewallRules: [{955A6B4A-874F-4ABD-9D9E-9AB30AE55370}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A0AD9A2B-122F-463C-BBA0-4B1A809499DD}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D3B43509-B442-4712-80B8-C45125584AE6}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8552EBC9-648C-40F4-A460-10F41D4C6EA1}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{3E440A4C-789B-4E35-A5FC-85BC9C8DE0E6}] => C:\Program Files (x86)\EpsonNet\EpsonNet SetupManager V2\SManager.exe
FirewallRules: [{E5511F24-4996-4C09-BE83-AB4245D79724}] => C:\Program Files (x86)\EpsonNet\EpsonNet SetupManager V2\SManager.exe
FirewallRules: [{00C2A78E-A11D-4643-B0B4-FF109C4C74AF}] => C:\Users\Thomas\AppData\Local\Temp\EPSON WF-7525 Series_Home\Network\EpsonNetSetup\EpsonNetSetup3_4_1_FC_1_0_WW_Direct\ENEasyApp.exe
FirewallRules: [{191FA3A2-07D5-4757-AF6A-740A3EFE0FD5}] => C:\Users\Thomas\AppData\Local\Temp\EPSON WF-7525 Series_Home\Network\EpsonNetSetup\EpsonNetSetup3_4_1_FC_1_0_WW_Direct\ENEasyApp.exe
FirewallRules: [{5EEFB3C0-2DEF-4CAE-9BFA-30C1EA353440}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{332FFB59-8E5F-4A42-A7B7-2B33F233164D}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{C3537315-EE60-4122-A41C-CE8C4A3FCDB4}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{3207786F-690A-4ABD-9BD5-ECC0C434F80D}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{8FA10B0F-78F8-4F9A-A3CE-AADCBD5FF197}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{CE05662F-AC09-47AA-B3CC-4EA1CC0A0219}] => C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{91503FF9-E3E3-4290-80D5-9050539876CE}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{2C6A493F-776E-45AD-8F75-1DD3C7350B35}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{FD7DA3E5-2CD6-4294-A695-0BB900643D14}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F6F914C0-4A22-460F-B4E8-DB729BFBC92C}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{85E730E9-9F15-4F56-8A7A-9B4FE705AE59}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{888AA754-7D36-43B3-A58A-AB0DA6F2BD41}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1EF5079C-CCC6-47A6-98CF-6C08B416ECF5}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{8045FD51-5F53-4C66-B888-19DCE88CC19B}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{BF6E330D-09B7-43F6-8B58-8446832AE5C8}] => C:\Program Files (x86)\Ubisoft\Die Siedler 7\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [{B4DA86ED-F843-4946-B8BB-D55B7012B265}] => C:\Program Files (x86)\Ubisoft\Die Siedler 7\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [{4E2BA320-F2E7-4039-9D05-74085F914EA1}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{EEA5E709-3BFF-4547-A465-E6C287EDB831}] => C:\Program Files\iTunes\iTunes.exe

==================== Wiederherstellungspunkte =========================

14-12-2016 22:29:10 Windows Update
22-12-2016 07:31:16 Geplanter Prüfpunkt
30-12-2016 06:38:06 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Unbekanntes USB-Gerät (Fehler beim Anfordern einer Gerätebeschreibung.)
Description: Unbekanntes USB-Gerät (Fehler beim Anfordern einer Gerätebeschreibung.)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/30/2016 04:35:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm backgroundTaskHost.exe, Version 6.3.9600.17415 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1ee4

Startzeit: 01d262b1ad97bf2b

Endzeit: 4294967295

Anwendungspfad: C:\windows\syswow64\backgroundTaskHost.exe

Berichts-ID: a1f6e168-cea5-11e6-8419-c03fd5ab1fa6

Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftMinesweeper_2.4.1408.2503_x86__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (12/30/2016 03:15:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.18124 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1eac

Startzeit: 01d262a708fb0af7

Endzeit: 340

Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Berichts-ID: 71fa51dd-ce9a-11e6-8419-c03fd5ab1fa6

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/30/2016 02:33:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm IEXPLORE.EXE, Version 11.0.9600.18124 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 124

Startzeit: 01d2629fa44daf51

Endzeit: 203

Anwendungspfad: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Berichts-ID: 971ecb13-ce94-11e6-8419-c03fd5ab1fa6

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/30/2016 02:19:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.3.9600.18460, Zeitstempel: 0x57c1b8c1
Name des fehlerhaften Moduls: DEVRTL.dll, Version: 6.3.9600.17415, Zeitstempel: 0x5450429b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000001475
ID des fehlerhaften Prozesses: 0x104c
Startzeit der fehlerhaften Anwendung: 0x01d2629ee803dd08
Pfad der fehlerhaften Anwendung: C:\windows\Explorer.EXE
Pfad des fehlerhaften Moduls: C:\windows\system32\DEVRTL.dll
Berichtskennung: 9622c337-ce92-11e6-8419-c03fd5ab1fa6
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/30/2016 01:36:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: OUTLOOK.EXE, Version: 15.0.4885.1000, Zeitstempel: 0x582ad91f
Name des fehlerhaften Moduls: outlph.dll, Version: 15.0.4805.1000, Zeitstempel: 0x56b9a6e7
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000aab7
ID des fehlerhaften Prozesses: 0x2dac
Startzeit der fehlerhaften Anwendung: 0x01d2628448164997
Pfad der fehlerhaften Anwendung: C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE
Pfad des fehlerhaften Moduls: C:\Program Files\Microsoft Office\Office15\outlph.dll
Berichtskennung: 8b5a8669-ce8c-11e6-8418-c03fd5ab1fa6
Vollständiger Name des fehlerhaften Pakets: 
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (12/30/2016 02:02:42 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18734

Error: (12/30/2016 02:02:42 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 18734

Error: (12/30/2016 02:02:42 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/30/2016 02:02:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8781

Error: (12/30/2016 02:02:33 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8781


Systemfehler:
=============
Error: (12/31/2016 12:22:07 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "McAfee Module Core Service" wurde nicht richtig gestartet.

Error: (12/31/2016 12:20:33 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet: 
Unzulässige Funktion.

Error: (12/31/2016 12:15:01 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (12/30/2016 08:41:43 PM) (Source: DCOM) (EventID: 10010) (User: ABC)
Description: Der Server "{4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (12/30/2016 08:38:47 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (12/30/2016 08:38:39 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎30.‎12.‎2016 um 20:15:41 unerwartet heruntergefahren.

Error: (12/30/2016 08:05:22 PM) (Source: DCOM) (EventID: 10010) (User: ABC)
Description: Der Server "{1B1F472E-3221-4826-97DB-2C2324D389AE}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (12/30/2016 08:04:52 PM) (Source: DCOM) (EventID: 10010) (User: ABC)
Description: Der Server "{1B1F472E-3221-4826-97DB-2C2324D389AE}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (12/30/2016 02:16:59 PM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung vom Remoteendpunkt empfangen. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 20.

Error: (12/30/2016 02:15:41 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\windows\system32\Rtlihvs.dll
Fehlercode: 126


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i3-4160 CPU @ 3.60GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 4014.43 MB
Verfügbarer physikalischer RAM: 2043.09 MB
Summe virtueller Speicher: 5102.43 MB
Verfügbarer virtueller Speicher: 3083.87 MB

==================== Laufwerke ================================

Drive c: (Boot) (Fixed) (Total:869.8 GB) (Free:662.81 GB) NTFS
Drive d: (Recover) (Fixed) (Total:59.99 GB) (Free:41.37 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt ============================
         
--- --- ---
__________________

Alt 31.12.2016, 16:42   #4
burningice
/// Malwareteam
 
Online pay AG Virus? - Standard

Online pay AG Virus?



Schritt: 1
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Alt 31.12.2016, 18:50   #5
Schnitte
 
Online pay AG Virus? - Standard

Online pay AG Virus?



19:44:49.0812 0x105c TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
19:44:49.0812 0x105c UEFI system
19:44:57.0877 0x105c ============================================================
19:44:57.0877 0x105c Current date / time: 2016/12/31 19:44:57.0877
19:44:57.0877 0x105c SystemInfo:
19:44:57.0877 0x105c
19:44:57.0877 0x105c OS Version: 6.3.9600 ServicePack: 0.0
19:44:57.0877 0x105c Product type: Workstation
19:44:57.0877 0x105c ComputerName: ABC
19:44:57.0877 0x105c UserName: Thomas
19:44:57.0877 0x105c Windows directory: C:\windows
19:44:57.0877 0x105c System windows directory: C:\windows
19:44:57.0877 0x105c Running under WOW64
19:44:57.0877 0x105c Processor architecture: Intel x64
19:44:57.0877 0x105c Number of processors: 4
19:44:57.0877 0x105c Page size: 0x1000
19:44:57.0877 0x105c Boot type: Normal boot
19:44:57.0877 0x105c CodeIntegrityOptions = 0x00000001
19:44:57.0877 0x105c ============================================================
19:44:58.0224 0x105c KLMD registered as C:\windows\system32\drivers\35828812.sys
19:44:58.0225 0x105c KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18505, osProperties = 0x19
19:44:58.0579 0x105c System UUID: {1C5D2D53-F4C3-37F1-948C-E46269A9F1C4}
19:44:59.0282 0x105c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:44:59.0314 0x105c ============================================================
19:44:59.0314 0x105c \Device\Harddisk0\DR0:
19:44:59.0314 0x105c GPT partitions:
19:44:59.0314 0x105c \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7E0D0BA7-4D45-4F09-BBA8-C2A183A9C282}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
19:44:59.0314 0x105c \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {47EA8986-068D-4982-A02E-081C6663B764}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x32000
19:44:59.0314 0x105c \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {0FAAE7E9-56B6-43AA-B5D7-A13CDD304AC8}, Name: Microsoft reserved partition, StartLBA 0x12C000, BlocksNum 0x40000
19:44:59.0314 0x105c \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {8D7F0CC6-879E-47F6-A767-0ED8FD3B0659}, UniqueGUID: {07F41686-314D-45A7-82AB-1E7A837573AC}, Name: Basic data partition, StartLBA 0x16C000, BlocksNum 0x200000
19:44:59.0314 0x105c \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D257ABB2-D7F4-4A43-B4D0-D0326336409E}, Name: Basic data partition, StartLBA 0x36C000, BlocksNum 0x6CB9B000
19:44:59.0314 0x105c \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F39C8091-E093-46B2-9B8E-5DA7AC2D22EE}, Name: Basic data partition, StartLBA 0x6CF07000, BlocksNum 0x77FD000
19:44:59.0314 0x105c MBR partitions:
19:44:59.0314 0x105c ============================================================
19:44:59.0329 0x105c C: <-> \Device\Harddisk0\DR0\Partition5
19:44:59.0361 0x105c D: <-> \Device\Harddisk0\DR0\Partition6
19:44:59.0361 0x105c ============================================================
19:44:59.0361 0x105c Initialize success
19:44:59.0361 0x105c ============================================================
19:45:10.0656 0x0fcc ============================================================
19:45:10.0656 0x0fcc Scan started
19:45:10.0656 0x0fcc Mode: Manual;
19:45:10.0656 0x0fcc ============================================================
19:45:10.0656 0x0fcc KSN ping started
19:45:10.0812 0x0fcc KSN ping finished: true
19:45:13.0063 0x0fcc ================ Scan system memory ========================
19:45:13.0063 0x0fcc System memory - ok
19:45:13.0063 0x0fcc ================ Scan services =============================
19:45:13.0254 0x0fcc [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\windows\System32\drivers\1394ohci.sys
19:45:13.0272 0x0fcc 1394ohci - ok
19:45:13.0296 0x0fcc [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\windows\system32\drivers\3ware.sys
19:45:13.0299 0x0fcc 3ware - ok
19:45:13.0421 0x0fcc [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\windows\system32\drivers\ACPI.sys
19:45:13.0431 0x0fcc ACPI - ok
19:45:13.0444 0x0fcc [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\windows\system32\Drivers\acpiex.sys
19:45:13.0446 0x0fcc acpiex - ok
19:45:13.0456 0x0fcc [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\windows\System32\drivers\acpipagr.sys
19:45:13.0458 0x0fcc acpipagr - ok
19:45:13.0461 0x0fcc [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\windows\System32\drivers\acpipmi.sys
19:45:13.0462 0x0fcc AcpiPmi - ok
19:45:13.0465 0x0fcc [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\windows\System32\drivers\acpitime.sys
19:45:13.0467 0x0fcc acpitime - ok
19:45:13.0533 0x0fcc [ DC00FD73505DAEDD99CAF4533B0C05BD, 2863D1F0587B79254FBE093C191C73892768CF2AC59BEF97745EE66CEE3473AF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:45:13.0533 0x0fcc AdobeARMservice - ok
19:45:13.0580 0x0fcc [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\windows\system32\drivers\ADP80XX.SYS
19:45:13.0595 0x0fcc ADP80XX - ok
19:45:13.0627 0x0fcc [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
19:45:13.0627 0x0fcc AeLookupSvc - ok
19:45:13.0673 0x0fcc [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\windows\system32\drivers\afd.sys
19:45:13.0705 0x0fcc AFD - ok
19:45:13.0720 0x0fcc [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\windows\system32\drivers\agp440.sys
19:45:13.0720 0x0fcc agp440 - ok
19:45:13.0752 0x0fcc [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\windows\system32\DRIVERS\ahcache.sys
19:45:13.0752 0x0fcc ahcache - ok
19:45:13.0783 0x0fcc [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\windows\System32\alg.exe
19:45:13.0783 0x0fcc ALG - ok
19:45:13.0798 0x0fcc [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\windows\System32\drivers\amdk8.sys
19:45:13.0814 0x0fcc AmdK8 - ok
19:45:13.0814 0x0fcc [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\windows\System32\drivers\amdppm.sys
19:45:13.0830 0x0fcc AmdPPM - ok
19:45:13.0845 0x0fcc [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\windows\system32\drivers\amdsata.sys
19:45:13.0845 0x0fcc amdsata - ok
19:45:13.0861 0x0fcc [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
19:45:13.0877 0x0fcc amdsbs - ok
19:45:13.0892 0x0fcc [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\windows\system32\drivers\amdxata.sys
19:45:13.0892 0x0fcc amdxata - ok
19:45:13.0908 0x0fcc [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\windows\system32\drivers\appid.sys
19:45:13.0923 0x0fcc AppID - ok
19:45:13.0939 0x0fcc [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\windows\System32\appidsvc.dll
19:45:13.0939 0x0fcc AppIDSvc - ok
19:45:13.0986 0x0fcc [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\windows\System32\appinfo.dll
19:45:13.0986 0x0fcc Appinfo - ok
19:45:14.0048 0x0fcc [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:45:14.0048 0x0fcc Apple Mobile Device Service - ok
19:45:14.0111 0x0fcc [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\windows\system32\AppReadiness.dll
19:45:14.0127 0x0fcc AppReadiness - ok
19:45:14.0173 0x0fcc [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\windows\system32\appxdeploymentserver.dll
19:45:14.0205 0x0fcc AppXSvc - ok
19:45:14.0220 0x0fcc [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\windows\system32\drivers\arcsas.sys
19:45:14.0220 0x0fcc arcsas - ok
19:45:14.0236 0x0fcc [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\windows\system32\drivers\atapi.sys
19:45:14.0236 0x0fcc atapi - ok
19:45:14.0283 0x0fcc [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
19:45:14.0283 0x0fcc AudioEndpointBuilder - ok
19:45:14.0314 0x0fcc [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\windows\System32\Audiosrv.dll
19:45:14.0314 0x0fcc Audiosrv - ok
19:45:14.0361 0x0fcc [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\windows\System32\AxInstSV.dll
19:45:14.0377 0x0fcc AxInstSV - ok
19:45:14.0423 0x0fcc [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
19:45:14.0439 0x0fcc b06bdrv - ok
19:45:14.0455 0x0fcc [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\windows\System32\drivers\BasicDisplay.sys
19:45:14.0455 0x0fcc BasicDisplay - ok
19:45:14.0455 0x0fcc [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\windows\System32\drivers\BasicRender.sys
19:45:14.0455 0x0fcc BasicRender - ok
19:45:14.0486 0x0fcc [ F8FE7E12F8151E0A17C23CF840599F9A, 5D1AA3A5DAC08B521A7BE775F32434AFF1F5F19B69CD16D2D94B0D399E61C371 ] bcbtums C:\windows\system32\drivers\bcbtums.sys
19:45:14.0486 0x0fcc bcbtums - ok
19:45:14.0548 0x0fcc [ ACB44407FF63C3A5A22AB5782F209604, 86BE221F07EB49D2149710CCCE4F0C24677560FEFD41F093C6D2BA0C962CF5C3 ] BcmBtRSupport C:\windows\system32\BtwRSupportService.exe
19:45:14.0580 0x0fcc BcmBtRSupport - ok
19:45:14.0611 0x0fcc [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\windows\System32\drivers\bcmfn2.sys
19:45:14.0611 0x0fcc bcmfn2 - ok
19:45:14.0642 0x0fcc [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC C:\windows\System32\bdesvc.dll
19:45:14.0642 0x0fcc BDESVC - ok
19:45:14.0658 0x0fcc [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\windows\system32\drivers\Beep.sys
19:45:14.0673 0x0fcc Beep - ok
19:45:14.0705 0x0fcc [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\windows\System32\bfe.dll
19:45:14.0720 0x0fcc BFE - ok
19:45:14.0752 0x0fcc [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\windows\System32\qmgr.dll
19:45:14.0767 0x0fcc BITS - ok
19:45:14.0830 0x0fcc [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:45:14.0845 0x0fcc Bonjour Service - ok
19:45:14.0877 0x0fcc [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser C:\windows\system32\DRIVERS\bowser.sys
19:45:14.0877 0x0fcc bowser - ok
19:45:14.0908 0x0fcc [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
19:45:14.0923 0x0fcc BrokerInfrastructure - ok
19:45:14.0939 0x0fcc [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\windows\System32\browser.dll
19:45:14.0955 0x0fcc Browser - ok
19:45:14.0970 0x0fcc [ F4CB6F457D019857C8DB6F04CA2957F5, D9E7DD49AF9C38D1696045F6004E1B504A65227B41256961E28A8DCA9B068EA9 ] BthA2DP C:\windows\system32\drivers\BthA2DP.sys
19:45:14.0986 0x0fcc BthA2DP - ok
19:45:15.0002 0x0fcc [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\windows\System32\drivers\BthAvrcpTg.sys
19:45:15.0002 0x0fcc BthAvrcpTg - ok
19:45:15.0033 0x0fcc [ 12418846B057E4F92FC621F5C6CF737D, 0B8B0EADE4F2AD95D450A5C71C287C0F04F33897ABF27D3E3B6428A3C99C7B5D ] BthEnum C:\windows\System32\drivers\BthEnum.sys
19:45:15.0033 0x0fcc BthEnum - ok
19:45:15.0064 0x0fcc [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\windows\System32\drivers\bthhfenum.sys
19:45:15.0064 0x0fcc BthHFEnum - ok
19:45:15.0080 0x0fcc [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\windows\System32\drivers\BthHFHid.sys
19:45:15.0080 0x0fcc bthhfhid - ok
19:45:15.0127 0x0fcc [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\windows\System32\BthHFSrv.dll
19:45:15.0127 0x0fcc BthHFSrv - ok
19:45:15.0158 0x0fcc [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\windows\system32\DRIVERS\BthLEEnum.sys
19:45:15.0158 0x0fcc BthLEEnum - ok
19:45:15.0189 0x0fcc [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM C:\windows\System32\drivers\bthmodem.sys
19:45:15.0189 0x0fcc BTHMODEM - ok
19:45:15.0205 0x0fcc [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\windows\System32\drivers\bthpan.sys
19:45:15.0220 0x0fcc BthPan - ok
19:45:15.0252 0x0fcc [ B810B2B39CCA90DC6BF42AF1658AE0D1, D184F927BCFBDE7063A0C9873BF2C174226E1AB5081A7108FCC66210CD117465 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
19:45:15.0267 0x0fcc BTHPORT - ok
19:45:15.0299 0x0fcc [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\windows\system32\bthserv.dll
19:45:15.0299 0x0fcc bthserv - ok
19:45:15.0330 0x0fcc [ 52A1B7ECAB4C9EF70FD41241691E09D3, F7A5BFE72D3151E73DD9922A76964C08AC1FDCB8460D9A17DCF8B7969006AD42 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
19:45:15.0330 0x0fcc BTHUSB - ok
19:45:15.0345 0x0fcc [ BC279FCEE9FC8CBF991D5DE539771AA9, 5DE007672BFBFA78C44CC08251F495420402AFF4AD01541AA84AD37BD4A58190 ] btwampfl C:\windows\system32\DRIVERS\btwampfl.sys
19:45:15.0345 0x0fcc btwampfl - ok
19:45:15.0361 0x0fcc [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
19:45:15.0361 0x0fcc cdfs - ok
19:45:15.0377 0x0fcc [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\windows\System32\drivers\cdrom.sys
19:45:15.0377 0x0fcc cdrom - ok
19:45:15.0392 0x0fcc [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\windows\System32\certprop.dll
19:45:15.0392 0x0fcc CertPropSvc - ok
19:45:15.0455 0x0fcc [ EF41D362661C5D71D0BEB6D2329739F7, 7D0BB550E5E337E0B76658254AD15C32D2E08F74E116AC07F7D5FAA09F3A524B ] cfwids C:\windows\system32\drivers\cfwids.sys
19:45:15.0455 0x0fcc cfwids - ok
19:45:15.0471 0x0fcc [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\windows\System32\drivers\circlass.sys
19:45:15.0471 0x0fcc circlass - ok
19:45:15.0502 0x0fcc [ 9DA497AEAF35AA7BF7710132FC2A9906, D38DF749222BD0B6E8E6442CC79D56CF827A1430ACAB4F85F7FC469DD31A211C ] CLFS C:\windows\system32\drivers\CLFS.sys
19:45:15.0517 0x0fcc CLFS - ok
19:45:15.0533 0x0fcc [ 3E76A1547F2448BCEE3D2F4AE3931AB5, 31B41723FAA4210A86B1AE02D6C052BD8B738C4B89FB0177C1AE997D24BA5B8C ] CLVirtualDrive C:\windows\system32\DRIVERS\CLVirtualDrive.sys
19:45:15.0549 0x0fcc CLVirtualDrive - ok
19:45:15.0564 0x0fcc [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\windows\System32\drivers\CmBatt.sys
19:45:15.0564 0x0fcc CmBatt - ok
19:45:15.0580 0x0fcc [ EFC79D3224D19FD926FFEA0A24729FEF, 41B0B41F7270C82691453679E03194845B9AF08C28800BF39D3CEB7CB1530BB8 ] CNG C:\windows\system32\Drivers\cng.sys
19:45:15.0596 0x0fcc CNG - ok
19:45:15.0611 0x0fcc [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\windows\System32\drivers\CompositeBus.sys
19:45:15.0627 0x0fcc CompositeBus - ok
19:45:15.0627 0x0fcc COMSysApp - ok
19:45:15.0627 0x0fcc [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\windows\system32\drivers\condrv.sys
19:45:15.0627 0x0fcc condrv - ok
19:45:15.0705 0x0fcc [ DAC4D7D79C07957F237E1A4F24435E96, F0D5C21A403580D71F1F6B049C5BB043D3257D39FABCDE623E81CD48034610AC ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
19:45:15.0736 0x0fcc cphs - ok
19:45:15.0783 0x0fcc [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\windows\system32\cryptsvc.dll
19:45:15.0783 0x0fcc CryptSvc - ok
19:45:15.0830 0x0fcc [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam C:\windows\system32\drivers\dam.sys
19:45:15.0830 0x0fcc dam - ok
19:45:15.0908 0x0fcc [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch C:\windows\system32\rpcss.dll
19:45:15.0955 0x0fcc DcomLaunch - ok
19:45:15.0986 0x0fcc [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\windows\System32\defragsvc.dll
19:45:16.0002 0x0fcc defragsvc - ok
19:45:16.0033 0x0fcc [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\windows\system32\das.dll
19:45:16.0033 0x0fcc DeviceAssociationService - ok
19:45:16.0049 0x0fcc [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\windows\system32\umpnpmgr.dll
19:45:16.0064 0x0fcc DeviceInstall - ok
19:45:16.0080 0x0fcc [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc C:\windows\system32\Drivers\dfsc.sys
19:45:16.0080 0x0fcc Dfsc - ok
19:45:16.0096 0x0fcc [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\windows\system32\DRIVERS\ssudbus.sys
19:45:16.0096 0x0fcc dg_ssudbus - ok
19:45:16.0127 0x0fcc [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\windows\system32\dhcpcore.dll
19:45:16.0143 0x0fcc Dhcp - ok
19:45:16.0189 0x0fcc [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack C:\windows\system32\diagtrack.dll
19:45:16.0205 0x0fcc DiagTrack - ok
19:45:16.0236 0x0fcc [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\windows\system32\drivers\disk.sys
19:45:16.0236 0x0fcc disk - ok
19:45:16.0252 0x0fcc [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\windows\System32\drivers\dmvsc.sys
19:45:16.0252 0x0fcc dmvsc - ok
19:45:16.0283 0x0fcc [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache C:\windows\System32\dnsrslvr.dll
19:45:16.0283 0x0fcc Dnscache - ok
19:45:16.0314 0x0fcc [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\windows\System32\dot3svc.dll
19:45:16.0330 0x0fcc dot3svc - ok
19:45:16.0346 0x0fcc [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\windows\system32\dps.dll
19:45:16.0361 0x0fcc DPS - ok
19:45:16.0377 0x0fcc [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
19:45:16.0393 0x0fcc drmkaud - ok
19:45:16.0408 0x0fcc [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\windows\System32\DeviceSetupManager.dll
19:45:16.0408 0x0fcc DsmSvc - ok
19:45:16.0455 0x0fcc [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
19:45:16.0471 0x0fcc DXGKrnl - ok
19:45:16.0502 0x0fcc [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\windows\System32\eapsvc.dll
19:45:16.0518 0x0fcc Eaphost - ok
19:45:16.0580 0x0fcc [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\windows\system32\drivers\evbda.sys
19:45:16.0643 0x0fcc ebdrv - ok
19:45:16.0674 0x0fcc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\windows\System32\lsass.exe
19:45:16.0674 0x0fcc EFS - ok
19:45:16.0674 0x0fcc [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\windows\system32\drivers\EhStorClass.sys
19:45:16.0674 0x0fcc EhStorClass - ok
19:45:16.0689 0x0fcc [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\windows\system32\drivers\EhStorTcgDrv.sys
19:45:16.0689 0x0fcc EhStorTcgDrv - ok
19:45:16.0705 0x0fcc [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\windows\System32\drivers\errdev.sys
19:45:16.0705 0x0fcc ErrDev - ok
19:45:16.0736 0x0fcc [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\windows\system32\es.dll
19:45:16.0752 0x0fcc EventSystem - ok
19:45:16.0768 0x0fcc [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\windows\system32\drivers\exfat.sys
19:45:16.0768 0x0fcc exfat - ok
19:45:16.0768 0x0fcc [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\windows\system32\drivers\fastfat.sys
19:45:16.0783 0x0fcc fastfat - ok
19:45:16.0799 0x0fcc [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\windows\system32\fxssvc.exe
19:45:16.0814 0x0fcc Fax - ok
19:45:16.0814 0x0fcc [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\windows\System32\drivers\fdc.sys
19:45:16.0830 0x0fcc fdc - ok
19:45:16.0846 0x0fcc [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\windows\system32\fdPHost.dll
19:45:16.0861 0x0fcc fdPHost - ok
19:45:16.0877 0x0fcc [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\windows\system32\fdrespub.dll
19:45:16.0877 0x0fcc FDResPub - ok
19:45:16.0893 0x0fcc [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\windows\system32\fhsvc.dll
19:45:16.0908 0x0fcc fhsvc - ok
19:45:16.0908 0x0fcc [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
19:45:16.0908 0x0fcc FileInfo - ok
19:45:16.0908 0x0fcc [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\windows\system32\drivers\filetrace.sys
19:45:16.0924 0x0fcc Filetrace - ok
19:45:16.0924 0x0fcc [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\windows\System32\drivers\flpydisk.sys
19:45:16.0924 0x0fcc flpydisk - ok
19:45:16.0955 0x0fcc [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\windows\system32\drivers\fltmgr.sys
19:45:16.0955 0x0fcc FltMgr - ok
19:45:17.0002 0x0fcc [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache C:\windows\system32\FntCache.dll
19:45:17.0018 0x0fcc FontCache - ok
19:45:17.0080 0x0fcc [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:45:17.0080 0x0fcc FontCache3.0.0.0 - ok
19:45:17.0111 0x0fcc [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\windows\system32\drivers\FsDepends.sys
19:45:17.0111 0x0fcc FsDepends - ok
19:45:17.0111 0x0fcc [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
19:45:17.0111 0x0fcc Fs_Rec - ok
19:45:17.0158 0x0fcc [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
19:45:17.0174 0x0fcc fvevol - ok
19:45:17.0189 0x0fcc [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\windows\System32\drivers\fxppm.sys
19:45:17.0189 0x0fcc FxPPM - ok
19:45:17.0205 0x0fcc [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
19:45:17.0205 0x0fcc gagp30kx - ok
19:45:17.0221 0x0fcc [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\windows\System32\drivers\vmgencounter.sys
19:45:17.0221 0x0fcc gencounter - ok
19:45:17.0252 0x0fcc [ B93252C4C5A3733ECD5522CAF88DE02D, 382450F0FF238B6077A78F75AC5D4E53AD7D884706B90E7AC4D4DF467C9A2162 ] GigasetGenericUSB_x64 C:\windows\system32\DRIVERS\GigasetGenericUSB_x64.sys
19:45:17.0252 0x0fcc GigasetGenericUSB_x64 - ok
19:45:17.0268 0x0fcc [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\windows\system32\Drivers\msgpioclx.sys
19:45:17.0268 0x0fcc GPIOClx0101 - ok
19:45:17.0330 0x0fcc [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\windows\System32\gpsvc.dll
19:45:17.0361 0x0fcc gpsvc - ok
19:45:17.0440 0x0fcc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:45:17.0455 0x0fcc gupdate - ok
19:45:17.0471 0x0fcc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:45:17.0471 0x0fcc gupdatem - ok
19:45:17.0533 0x0fcc [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
19:45:17.0549 0x0fcc HdAudAddService - ok
19:45:17.0580 0x0fcc [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\windows\System32\drivers\HDAudBus.sys
19:45:17.0580 0x0fcc HDAudBus - ok
19:45:17.0596 0x0fcc [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\windows\System32\drivers\HidBatt.sys
19:45:17.0596 0x0fcc HidBatt - ok
19:45:17.0611 0x0fcc [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\windows\System32\drivers\hidbth.sys
19:45:17.0611 0x0fcc HidBth - ok
19:45:17.0611 0x0fcc [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\windows\System32\drivers\hidi2c.sys
19:45:17.0611 0x0fcc hidi2c - ok
19:45:17.0627 0x0fcc [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\windows\System32\drivers\hidir.sys
19:45:17.0627 0x0fcc HidIr - ok
19:45:17.0658 0x0fcc [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\windows\system32\hidserv.dll
19:45:17.0674 0x0fcc hidserv - ok
19:45:17.0705 0x0fcc [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb C:\windows\System32\drivers\hidusb.sys
19:45:17.0705 0x0fcc HidUsb - ok
19:45:17.0736 0x0fcc [ 7829E439EBDDDB0FEFD6DEBCEE6B09AD, FF6BB82CE0C21513E407FF465C768805CF202A7B4040140A944A0413875BEC37 ] HipShieldK C:\windows\system32\drivers\HipShieldK.sys
19:45:17.0752 0x0fcc HipShieldK - ok
19:45:17.0799 0x0fcc [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\windows\system32\kmsvc.dll
19:45:17.0814 0x0fcc hkmsvc - ok
19:45:17.0846 0x0fcc [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\windows\system32\ListSvc.dll
19:45:17.0861 0x0fcc HomeGroupListener - ok
19:45:17.0908 0x0fcc [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\windows\system32\provsvc.dll
19:45:17.0908 0x0fcc HomeGroupProvider - ok
19:45:18.0111 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
19:45:18.0111 0x0fcc HomeNetSvc - ok
19:45:18.0143 0x0fcc [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
19:45:18.0143 0x0fcc HpSAMD - ok
19:45:18.0203 0x0fcc [ 76A6FDA32A21515B67633497D8FDB1E4, 7DCAEC3186EAFDD4A53BCD8AAE9B82CBA8871C89B929FFD3BA43E675B95B2495 ] HTTP C:\windows\system32\drivers\HTTP.sys
19:45:18.0220 0x0fcc HTTP - ok
19:45:18.0233 0x0fcc [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
19:45:18.0235 0x0fcc hwpolicy - ok
19:45:18.0244 0x0fcc [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\windows\System32\drivers\hyperkbd.sys
19:45:18.0245 0x0fcc hyperkbd - ok
19:45:18.0256 0x0fcc [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\windows\system32\DRIVERS\HyperVideo.sys
19:45:18.0258 0x0fcc HyperVideo - ok
19:45:18.0283 0x0fcc [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\windows\System32\drivers\i8042prt.sys
19:45:18.0285 0x0fcc i8042prt - ok
19:45:18.0299 0x0fcc [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\windows\System32\drivers\iaLPSSi_GPIO.sys
19:45:18.0301 0x0fcc iaLPSSi_GPIO - ok
19:45:18.0308 0x0fcc [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\windows\System32\drivers\iaLPSSi_I2C.sys
19:45:18.0310 0x0fcc iaLPSSi_I2C - ok
19:45:18.0334 0x0fcc [ 25555186E4FBDF0E30A5DBFC9B9A73F9, 4A9DAC2B56389C5955C343E202C6E81CD3A608E78A4BB7E6ED560719DF02C955 ] iaStorA C:\windows\system32\drivers\iaStorA.sys
19:45:18.0342 0x0fcc iaStorA - ok
19:45:18.0362 0x0fcc [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\windows\system32\drivers\iaStorAV.sys
19:45:18.0372 0x0fcc iaStorAV - ok
19:45:18.0408 0x0fcc [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
19:45:18.0408 0x0fcc IAStorDataMgrSvc - ok
19:45:18.0418 0x0fcc [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
19:45:18.0425 0x0fcc iaStorV - ok
19:45:18.0428 0x0fcc IEEtwCollectorService - ok
19:45:18.0533 0x0fcc [ 5863E2DD2E5C2D1B1F70C3826C162A7B, A6A0DBFA91F53D116AFFC1644F636A9D33A20B00A842A190190584F8AE2D1FF0 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
19:45:18.0611 0x0fcc igfx - ok
19:45:18.0627 0x0fcc [ C5202C7669226FF13A74228BD42AD982, BA843DEF6649DF34F9D0D0A380E77557D7785B8239A61EA33EFF08AEF0C8E6DE ] igfxCUIService1.0.0.0 C:\windows\system32\igfxCUIService.exe
19:45:18.0643 0x0fcc igfxCUIService1.0.0.0 - ok
19:45:18.0690 0x0fcc [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT C:\windows\System32\ikeext.dll
19:45:18.0721 0x0fcc IKEEXT - ok
19:45:18.0736 0x0fcc [ 5950F69F9B345952F3C2275C39EA393B, 382923DE0F5F25285F8C86BA628350DF1CFB6E63FF20736CF9285FB0F36A76DE ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
19:45:18.0736 0x0fcc intaud_WaveExtensible - ok
19:45:18.0815 0x0fcc [ ECA5E9DA350D2D21376260CD3602449A, B027FE77062488B8FC0EEE2113341DD922CE1BD741DF4F5D92DCCDC2E2C18BB2 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
19:45:18.0893 0x0fcc IntcAzAudAddService - ok
19:45:18.0924 0x0fcc [ EC80E6B9E27DC3E22ED5B2E0E75A39C0, 8EEC89F88AE79DA256BB651983397773F6B25139006C8A7C8F77960F47774CF5 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
19:45:18.0924 0x0fcc IntcDAud - ok
19:45:18.0955 0x0fcc [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
19:45:18.0955 0x0fcc Intel(R) Capability Licensing Service Interface - ok
19:45:19.0002 0x0fcc [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
19:45:19.0018 0x0fcc Intel(R) Capability Licensing Service TCP IP Interface - ok
19:45:19.0065 0x0fcc [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
19:45:19.0065 0x0fcc Intel(R) ME Service - ok
19:45:19.0080 0x0fcc [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\windows\system32\drivers\intelide.sys
19:45:19.0080 0x0fcc intelide - ok
19:45:19.0112 0x0fcc [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep C:\windows\system32\drivers\intelpep.sys
19:45:19.0112 0x0fcc intelpep - ok
19:45:19.0127 0x0fcc [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\windows\System32\drivers\intelppm.sys
19:45:19.0127 0x0fcc intelppm - ok
19:45:19.0143 0x0fcc [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
19:45:19.0143 0x0fcc IpFilterDriver - ok
19:45:19.0190 0x0fcc [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
19:45:19.0205 0x0fcc iphlpsvc - ok
19:45:19.0221 0x0fcc [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\windows\System32\drivers\IPMIDrv.sys
19:45:19.0236 0x0fcc IPMIDRV - ok
19:45:19.0236 0x0fcc [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\windows\system32\drivers\ipnat.sys
19:45:19.0252 0x0fcc IPNAT - ok
19:45:19.0283 0x0fcc [ A9E19D4C0E9487544B0A87D511514DA9, 83767BA2A7EE1DE39DBF824B57D898355F8C5E3CE146CA280B0E336428837E70 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:45:19.0283 0x0fcc iPod Service - ok
19:45:19.0299 0x0fcc [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\windows\system32\drivers\irenum.sys
19:45:19.0299 0x0fcc IRENUM - ok
19:45:19.0315 0x0fcc [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\windows\system32\drivers\isapnp.sys
19:45:19.0315 0x0fcc isapnp - ok
19:45:19.0346 0x0fcc [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt C:\windows\System32\drivers\msiscsi.sys
19:45:19.0346 0x0fcc iScsiPrt - ok
19:45:19.0362 0x0fcc [ F1D3A377ED9BA1CA449824C41CAF104C, EA0E90D5D827664CFDB644753C6DC134C3F8F852F24175EC8328A9FA925B25BF ] iwdbus C:\windows\System32\drivers\iwdbus.sys
19:45:19.0362 0x0fcc iwdbus - ok
19:45:19.0377 0x0fcc [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
19:45:19.0377 0x0fcc jhi_service - ok
19:45:19.0393 0x0fcc [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\windows\System32\drivers\kbdclass.sys
19:45:19.0393 0x0fcc kbdclass - ok
19:45:19.0408 0x0fcc [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\windows\System32\drivers\kbdhid.sys
19:45:19.0408 0x0fcc kbdhid - ok
19:45:19.0408 0x0fcc [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\windows\system32\DRIVERS\kdnic.sys
19:45:19.0408 0x0fcc kdnic - ok
19:45:19.0424 0x0fcc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\windows\system32\lsass.exe
19:45:19.0424 0x0fcc KeyIso - ok
19:45:19.0440 0x0fcc [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
19:45:19.0455 0x0fcc KSecDD - ok
19:45:19.0471 0x0fcc [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
19:45:19.0487 0x0fcc KSecPkg - ok
19:45:19.0487 0x0fcc [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
19:45:19.0487 0x0fcc ksthunk - ok
19:45:19.0518 0x0fcc [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\windows\system32\msdtckrm.dll
19:45:19.0518 0x0fcc KtmRm - ok
19:45:19.0549 0x0fcc [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\windows\system32\srvsvc.dll
19:45:19.0565 0x0fcc LanmanServer - ok
19:45:19.0580 0x0fcc [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
19:45:19.0596 0x0fcc LanmanWorkstation - ok
19:45:19.0627 0x0fcc [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\windows\System32\GeofenceMonitorService.dll
19:45:19.0627 0x0fcc lfsvc - ok
19:45:19.0768 0x0fcc [ 337FA50FFDED5E2BC94B36BF625AB681, BC77CCED8F2B52D26C7A2D7960FB5C1690F5D7E41013644C9226A85C9FF4FA2C ] LiveUpdateSvc C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
19:45:19.0799 0x0fcc LiveUpdateSvc - ok
19:45:19.0799 0x0fcc [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
19:45:19.0815 0x0fcc lltdio - ok
19:45:19.0815 0x0fcc [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\windows\System32\lltdsvc.dll
19:45:19.0830 0x0fcc lltdsvc - ok
19:45:19.0846 0x0fcc [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\windows\System32\lmhsvc.dll
19:45:19.0846 0x0fcc lmhosts - ok
19:45:19.0877 0x0fcc [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:45:19.0877 0x0fcc LMS - ok
19:45:19.0908 0x0fcc [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
19:45:19.0908 0x0fcc LSI_SAS - ok
19:45:19.0924 0x0fcc [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
19:45:19.0924 0x0fcc LSI_SAS2 - ok
19:45:19.0940 0x0fcc [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\windows\system32\drivers\lsi_sas3.sys
19:45:19.0955 0x0fcc LSI_SAS3 - ok
19:45:19.0955 0x0fcc [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\windows\system32\drivers\lsi_sss.sys
19:45:19.0971 0x0fcc LSI_SSS - ok
19:45:20.0018 0x0fcc [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\windows\System32\lsm.dll
19:45:20.0033 0x0fcc LSM - ok
19:45:20.0033 0x0fcc [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\windows\system32\drivers\luafv.sys
19:45:20.0033 0x0fcc luafv - ok
19:45:20.0080 0x0fcc [ B4CA01B110124251C29076FDC6000CA7, 4AC52FEE9F7F333D8A9845D9B0A561F6AEB0233BB148B89CF576120299C42D9B ] McAfee SiteAdvisor Service C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
19:45:20.0080 0x0fcc McAfee SiteAdvisor Service - ok
19:45:20.0174 0x0fcc [ BDBCF7ED4238E511443B596CC8277119, 90635EFCD443AF2042AED00950BC456499D866F67C036FAC95865F45E1A3D4B9 ] McAPExe C:\Program Files\McAfee\MSC\McAPExe.exe
19:45:20.0190 0x0fcc McAPExe - ok
19:45:20.0237 0x0fcc [ 16EF8A0930296943D124F06EA4E21544, 61248EAD26E1296E1445C17EC44693A3ECF1C64738213EF3AA2ADCBD4E9CB89A ] McAWFwk c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
19:45:20.0237 0x0fcc McAWFwk - ok
19:45:20.0268 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] mcbootdelaystartsvc C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
19:45:20.0268 0x0fcc mcbootdelaystartsvc - ok
19:45:20.0393 0x0fcc [ 40B02F6D4B331443CC7E879BCD87100F, ACF976DC9565A905F71EFE9A25516A0F1B128E70B961B8D8256F51474B1F78D7 ] mccspsvc C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe
19:45:20.0424 0x0fcc mccspsvc - ok
19:45:20.0440 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
19:45:20.0440 0x0fcc McMPFSvc - ok
19:45:20.0455 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McNaiAnn C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
19:45:20.0455 0x0fcc McNaiAnn - ok
19:45:20.0487 0x0fcc [ 9151C5CDF8489F9FFE9854601FDA9A0F, 6E080E216EE1F16A7B72B3F42434F34C75A8082A3CBAAF7265116CCD22AFE582 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
19:45:20.0487 0x0fcc McODS - ok
19:45:20.0502 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McOobeSv2 C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
19:45:20.0518 0x0fcc McOobeSv2 - ok
19:45:20.0518 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] mcpltsvc C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
19:45:20.0534 0x0fcc mcpltsvc - ok
19:45:20.0549 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McProxy C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
19:45:20.0549 0x0fcc McProxy - ok
19:45:20.0565 0x0fcc [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\windows\system32\drivers\megasas.sys
19:45:20.0565 0x0fcc megasas - ok
19:45:20.0580 0x0fcc [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\windows\system32\drivers\megasr.sys
19:45:20.0596 0x0fcc megasr - ok
19:45:20.0612 0x0fcc [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64 C:\windows\system32\DRIVERS\TeeDriverx64.sys
19:45:20.0612 0x0fcc MEIx64 - ok
19:45:20.0643 0x0fcc [ FAF196A8E1905DB9248790583B3745E2, C8E6A3E74636E4D04816D0B35C2691F81E766B03726E05993429A0BF15528354 ] mfeaack C:\windows\system32\drivers\mfeaack.sys
19:45:20.0659 0x0fcc mfeaack - ok
19:45:20.0737 0x0fcc [ A1A2DEA7E180BFC8284062DBCC67A18D, 77041A9D7429E615CE64E45A14BD53FAFF22284B0F3211399F4D6BA681B2A9DF ] mfeavfk C:\windows\system32\drivers\mfeavfk.sys
19:45:20.0752 0x0fcc mfeavfk - ok
19:45:20.0768 0x0fcc [ E8B413490D4E3CD5CD36F9C442357F95, 684BD860B85DAC2AB06917580542F7F206B33122F3D450DD18A4736841EC1D93 ] mfeelamk C:\windows\system32\drivers\mfeelamk.sys
19:45:20.0784 0x0fcc mfeelamk - ok
19:45:20.0799 0x0fcc [ 95A4DC60385F57418BD3361262D5F7C8, 5FAAE03B306710509E36A7B77DE9D36E4A1A38832403C29247E1A8B8C1D918B3 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
19:45:20.0799 0x0fcc mfefire - ok
19:45:20.0830 0x0fcc [ 767386839AD3C39F653512240C06D0D4, EA9D4DCC41AB1C1BC2BD86368C4F22AC43D046EAAAFFA13A89A8AA4D76F0B972 ] mfefirek C:\windows\system32\drivers\mfefirek.sys
19:45:20.0846 0x0fcc mfefirek - ok
19:45:20.0893 0x0fcc [ FAF5C37877D57B16D7E2DAFA29969F96, DA83A140B8727A4FE0DC7B845651BCA31988B0779DA6B3909BB03A4DF9470709 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
19:45:20.0909 0x0fcc mfehidk - ok
19:45:20.0955 0x0fcc [ 989A3E3E8A686CC87A44F97CF45C0175, 373E99A8CCF6495EEC14018A437484516E7DC864E971514CB4955A92593B62EB ] mfemms C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
19:45:20.0955 0x0fcc mfemms - ok
19:45:20.0987 0x0fcc [ 34812CE00FAE95A6275D6B58072457F5, 23118A5E58F88AF5B8C5D4C15AEFA99C47D37A8E8C8FBF840DEEECC3C483AD8B ] mfencbdc C:\windows\system32\DRIVERS\mfencbdc.sys
19:45:21.0002 0x0fcc mfencbdc - ok
19:45:21.0002 0x0fcc mfencbdc01 - ok
19:45:21.0018 0x0fcc [ CF9D4FCA3A5C737DCF72B9F94BB0AC62, 8534DADB74EF745F50A1A148DE5CBAD573B890C604CDA08276CDE3D5C2E8788F ] mfencrk C:\windows\system32\DRIVERS\mfencrk.sys
19:45:21.0018 0x0fcc mfencrk - ok
19:45:21.0049 0x0fcc [ DA49A90A69B3284FD11B6F02D0209A99, 759380964E6450FF21FB9A2BD23BA0394B005EC332E714D40D47262FCDC6CFE9 ] mfesapsn C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys
19:45:21.0049 0x0fcc mfesapsn - ok
19:45:21.0065 0x0fcc [ 8DFE9C58B1509E3BBC6FD92B954204D9, 72D519AB2F5E3A335C61C1B632BB846FCD6406194EC36E965D52C1028E68FB33 ] mfevtp C:\Windows\system32\mfevtps.exe
19:45:21.0065 0x0fcc mfevtp - ok
19:45:21.0096 0x0fcc [ A47260605572FE4E4C42AB0A3CC0B4E9, 4DE6A365C8C4041AA27BD853912F7F5BED3ABF24E63A2932380189D30764D5FB ] mfewfpk C:\windows\system32\drivers\mfewfpk.sys
19:45:21.0096 0x0fcc mfewfpk - ok
19:45:21.0127 0x0fcc [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\windows\system32\mmcss.dll
19:45:21.0127 0x0fcc MMCSS - ok
19:45:21.0143 0x0fcc [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\windows\system32\drivers\modem.sys
19:45:21.0143 0x0fcc Modem - ok
19:45:21.0252 0x0fcc [ 446FCA715F9A21A58C6FDA8455315760, B5C79AA540094E32A469F88886EDC4B8A7D6BFB2EAE0A14B5C518427A4A21395 ] ModuleCoreService C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
19:45:21.0268 0x0fcc ModuleCoreService - ok
19:45:21.0284 0x0fcc [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\windows\System32\drivers\monitor.sys
19:45:21.0284 0x0fcc monitor - ok
19:45:21.0284 0x0fcc [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\windows\System32\drivers\mouclass.sys
19:45:21.0299 0x0fcc mouclass - ok
19:45:21.0299 0x0fcc [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\windows\System32\drivers\mouhid.sys
19:45:21.0315 0x0fcc mouhid - ok
19:45:21.0330 0x0fcc [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
19:45:21.0346 0x0fcc mountmgr - ok
19:45:21.0362 0x0fcc [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
19:45:21.0362 0x0fcc mpsdrv - ok
19:45:21.0409 0x0fcc [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc C:\windows\system32\mpssvc.dll
19:45:21.0424 0x0fcc MpsSvc - ok
19:45:21.0455 0x0fcc [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
19:45:21.0455 0x0fcc MRxDAV - ok
19:45:21.0502 0x0fcc [ C3B0566DE49265AE98405825938C20A1, F8BCA4A5AF21B841C998D4772DA9FF84E45F1356AA1285A1D48C06574A81CA4C ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
19:45:21.0502 0x0fcc mrxsmb - ok
19:45:21.0549 0x0fcc [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
19:45:21.0549 0x0fcc mrxsmb10 - ok
19:45:21.0565 0x0fcc [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
19:45:21.0565 0x0fcc mrxsmb20 - ok
19:45:21.0596 0x0fcc [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\windows\system32\DRIVERS\bridge.sys
19:45:21.0596 0x0fcc MsBridge - ok
19:45:21.0612 0x0fcc [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\windows\System32\msdtc.exe
19:45:21.0612 0x0fcc MSDTC - ok
19:45:21.0627 0x0fcc [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\windows\system32\drivers\Msfs.sys
19:45:21.0627 0x0fcc Msfs - ok
19:45:21.0627 0x0fcc [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\windows\System32\drivers\msgpiowin32.sys
19:45:21.0627 0x0fcc msgpiowin32 - ok
19:45:21.0643 0x0fcc [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
19:45:21.0643 0x0fcc mshidkmdf - ok
19:45:21.0659 0x0fcc [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\windows\System32\drivers\mshidumdf.sys
19:45:21.0659 0x0fcc mshidumdf - ok
19:45:21.0674 0x0fcc [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
19:45:21.0674 0x0fcc msisadrv - ok
19:45:21.0690 0x0fcc [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI C:\windows\system32\iscsiexe.dll
19:45:21.0690 0x0fcc MSiSCSI - ok
19:45:21.0705 0x0fcc msiserver - ok
19:45:21.0721 0x0fcc [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] MSK80Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
19:45:21.0737 0x0fcc MSK80Service - ok
19:45:21.0737 0x0fcc [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
19:45:21.0752 0x0fcc MSKSSRV - ok
19:45:21.0768 0x0fcc [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\windows\system32\DRIVERS\mslldp.sys
19:45:21.0768 0x0fcc MsLldp - ok
19:45:21.0784 0x0fcc [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
19:45:21.0784 0x0fcc MSPCLOCK - ok
19:45:21.0799 0x0fcc [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
19:45:21.0799 0x0fcc MSPQM - ok
19:45:21.0799 0x0fcc [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\windows\system32\drivers\MsRPC.sys
19:45:21.0815 0x0fcc MsRPC - ok
19:45:21.0815 0x0fcc [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\windows\System32\drivers\mssmbios.sys
19:45:21.0815 0x0fcc mssmbios - ok
19:45:21.0815 0x0fcc [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
19:45:21.0830 0x0fcc MSTEE - ok
19:45:21.0846 0x0fcc [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\windows\System32\drivers\MTConfig.sys
19:45:21.0846 0x0fcc MTConfig - ok
19:45:21.0862 0x0fcc [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup C:\windows\system32\Drivers\mup.sys
19:45:21.0877 0x0fcc Mup - ok
19:45:21.0877 0x0fcc [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\windows\system32\drivers\mvumis.sys
19:45:21.0877 0x0fcc mvumis - ok
19:45:21.0909 0x0fcc [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\windows\system32\qagentRT.dll
19:45:21.0924 0x0fcc napagent - ok
19:45:21.0940 0x0fcc [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
19:45:21.0955 0x0fcc NativeWifiP - ok
19:45:21.0971 0x0fcc [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\windows\System32\ncasvc.dll
19:45:21.0971 0x0fcc NcaSvc - ok
19:45:22.0002 0x0fcc [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\windows\System32\ncbservice.dll
19:45:22.0002 0x0fcc NcbService - ok
19:45:22.0034 0x0fcc [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\windows\System32\NcdAutoSetup.dll
19:45:22.0034 0x0fcc NcdAutoSetup - ok
19:45:22.0080 0x0fcc [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\windows\system32\drivers\ndis.sys
19:45:22.0096 0x0fcc NDIS - ok
19:45:22.0112 0x0fcc [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
19:45:22.0112 0x0fcc NdisCap - ok
19:45:22.0127 0x0fcc [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\windows\system32\DRIVERS\NdisImPlatform.sys
19:45:22.0127 0x0fcc NdisImPlatform - ok
19:45:22.0159 0x0fcc [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
19:45:22.0159 0x0fcc NdisTapi - ok
19:45:22.0174 0x0fcc [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
19:45:22.0174 0x0fcc Ndisuio - ok
19:45:22.0174 0x0fcc [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\windows\System32\drivers\NdisVirtualBus.sys
19:45:22.0174 0x0fcc NdisVirtualBus - ok
19:45:22.0190 0x0fcc [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
19:45:22.0205 0x0fcc NdisWan - ok
19:45:22.0205 0x0fcc [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy C:\windows\system32\DRIVERS\ndiswan.sys
19:45:22.0205 0x0fcc NdisWanLegacy - ok
19:45:22.0237 0x0fcc [ B8F36CBC72FC5C8B8A30AD850165EA8E, 478454B1399700B745265A64EC9C797C66BD0141471200BCF222F5EB15B0F40C ] NDProxy C:\windows\system32\drivers\NDProxy.sys
19:45:22.0237 0x0fcc NDProxy - ok
19:45:22.0237 0x0fcc [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\windows\system32\drivers\Ndu.sys
19:45:22.0252 0x0fcc Ndu - ok
19:45:22.0268 0x0fcc [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\windows\system32\DRIVERS\netaapl64.sys
19:45:22.0268 0x0fcc Netaapl - ok
19:45:22.0284 0x0fcc [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
19:45:22.0284 0x0fcc NetBIOS - ok
19:45:22.0315 0x0fcc [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
19:45:22.0315 0x0fcc NetBT - ok
19:45:22.0330 0x0fcc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\windows\system32\lsass.exe
19:45:22.0330 0x0fcc Netlogon - ok
19:45:22.0362 0x0fcc [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\windows\System32\netman.dll
19:45:22.0362 0x0fcc Netman - ok
19:45:22.0393 0x0fcc [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\windows\System32\netprofmsvc.dll
19:45:22.0409 0x0fcc netprofm - ok
19:45:22.0440 0x0fcc [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:45:22.0456 0x0fcc NetTcpPortSharing - ok
19:45:22.0471 0x0fcc [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\windows\System32\drivers\netvsc63.sys
19:45:22.0471 0x0fcc netvsc - ok
19:45:22.0581 0x0fcc [ B636B4A8E59A73033B766EA7FD7C3B81, CAC8614DEE83623DE56C969C668A33366793779084B6A23F59ADC98392115F8C ] NETwNe64 C:\windows\system32\DRIVERS\NETwew02.sys
19:45:22.0690 0x0fcc NETwNe64 - ok
19:45:22.0737 0x0fcc [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\windows\System32\nlasvc.dll
19:45:22.0753 0x0fcc NlaSvc - ok
19:45:22.0768 0x0fcc [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\windows\system32\drivers\Npfs.sys
19:45:22.0768 0x0fcc Npfs - ok
19:45:22.0768 0x0fcc [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\windows\System32\drivers\npsvctrig.sys
19:45:22.0768 0x0fcc npsvctrig - ok
19:45:22.0799 0x0fcc [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\windows\system32\nsisvc.dll
19:45:22.0799 0x0fcc nsi - ok
19:45:22.0815 0x0fcc [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
19:45:22.0815 0x0fcc nsiproxy - ok
19:45:22.0878 0x0fcc [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\windows\system32\drivers\Ntfs.sys
19:45:22.0909 0x0fcc Ntfs - ok
19:45:22.0924 0x0fcc [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\windows\system32\drivers\Null.sys
19:45:22.0924 0x0fcc Null - ok
19:45:22.0924 0x0fcc NVHDA - ok
19:45:22.0924 0x0fcc nvlddmkm - ok
19:45:22.0940 0x0fcc [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\windows\system32\drivers\nvraid.sys
19:45:22.0940 0x0fcc nvraid - ok
19:45:22.0956 0x0fcc [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\windows\system32\drivers\nvstor.sys
19:45:22.0956 0x0fcc nvstor - ok
19:45:22.0971 0x0fcc [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
19:45:22.0971 0x0fcc nv_agp - ok
19:45:23.0018 0x0fcc [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:45:23.0018 0x0fcc ose64 - ok
19:45:23.0049 0x0fcc [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
19:45:23.0049 0x0fcc p2pimsvc - ok
19:45:23.0081 0x0fcc [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\windows\system32\p2psvc.dll
19:45:23.0096 0x0fcc p2psvc - ok
19:45:23.0112 0x0fcc [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport C:\windows\System32\drivers\parport.sys
19:45:23.0112 0x0fcc Parport - ok
19:45:23.0143 0x0fcc [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\windows\system32\drivers\partmgr.sys
19:45:23.0143 0x0fcc partmgr - ok
19:45:23.0174 0x0fcc [ 0A2DF1055FEEA30DFF73DAC0DA45FDE4, 497B2AE591ABBCFA8FC571D9C1D750006212F2D2DDF12F5A9E7FFA811CD707A3 ] PcaSvc C:\windows\System32\pcasvc.dll
19:45:23.0190 0x0fcc PcaSvc - ok
19:45:23.0223 0x0fcc [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\windows\system32\drivers\pci.sys
19:45:23.0229 0x0fcc pci - ok
19:45:23.0233 0x0fcc [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\windows\system32\drivers\pciide.sys
19:45:23.0234 0x0fcc pciide - ok
19:45:23.0249 0x0fcc [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\windows\system32\drivers\pcmcia.sys
19:45:23.0251 0x0fcc pcmcia - ok
19:45:23.0266 0x0fcc [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\windows\system32\drivers\pcw.sys
19:45:23.0268 0x0fcc pcw - ok
19:45:23.0281 0x0fcc [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc C:\windows\system32\drivers\pdc.sys
19:45:23.0285 0x0fcc pdc - ok
19:45:23.0320 0x0fcc [ FD5C43ACDBB9E3C7F91523FAFD74D4C0, 5DDA45E0B4C1F275801F00EF65672BC1A90B3C298723E1064191142FB83D4831 ] PDF24 C:\Program Files (x86)\PDF24\pdf24.exe
19:45:23.0324 0x0fcc PDF24 - ok
19:45:23.0343 0x0fcc [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\windows\system32\drivers\peauth.sys
19:45:23.0359 0x0fcc PEAUTH - ok
19:45:23.0411 0x0fcc [ EDD4C63050ED1821B4C92D06FFD7180B, 33C6B54147771C813CD78CEF66C0A76CA50D9F1D13D41E6764310BF8C0D8D89D ] PEFService C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
19:45:23.0426 0x0fcc PEFService - ok
19:45:23.0471 0x0fcc [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\windows\SysWow64\perfhost.exe
19:45:23.0497 0x0fcc PerfHost - ok
19:45:23.0596 0x0fcc [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\windows\system32\pla.dll
19:45:23.0612 0x0fcc pla - ok
19:45:23.0643 0x0fcc [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\windows\system32\umpnpmgr.dll
19:45:23.0643 0x0fcc PlugPlay - ok
19:45:23.0674 0x0fcc [ F13CE31540E0A8EF6A069B8A1A6EAE7B, 759434B7B4BB6E5BEC0BED4EA8E0AA3CB05698D555874F5F5DA5873C6CE10622 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
19:45:23.0706 0x0fcc PMBDeviceInfoProvider - ok
19:45:23.0752 0x0fcc [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
19:45:23.0752 0x0fcc PNRPAutoReg - ok
19:45:23.0815 0x0fcc [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
19:45:23.0815 0x0fcc PNRPsvc - ok
19:45:23.0846 0x0fcc [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent C:\windows\System32\ipsecsvc.dll
19:45:23.0846 0x0fcc PolicyAgent - ok
19:45:23.0877 0x0fcc [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\windows\system32\umpo.dll
19:45:23.0877 0x0fcc Power - ok
19:45:23.0971 0x0fcc [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify C:\windows\system32\spool\drivers\x64\3\PrintConfig.dll
19:45:24.0018 0x0fcc PrintNotify - ok
19:45:24.0065 0x0fcc [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\windows\System32\drivers\processr.sys
19:45:24.0065 0x0fcc Processor - ok
19:45:24.0081 0x0fcc [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\windows\system32\profsvc.dll
19:45:24.0096 0x0fcc ProfSvc - ok
19:45:24.0127 0x0fcc [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\windows\system32\DRIVERS\pacer.sys
19:45:24.0127 0x0fcc Psched - ok
19:45:24.0159 0x0fcc [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\windows\system32\qwave.dll
19:45:24.0174 0x0fcc QWAVE - ok
19:45:24.0190 0x0fcc [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
19:45:24.0190 0x0fcc QWAVEdrv - ok
19:45:24.0206 0x0fcc [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
19:45:24.0221 0x0fcc RasAcd - ok
19:45:24.0237 0x0fcc [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\windows\System32\rasauto.dll
19:45:24.0237 0x0fcc RasAuto - ok
19:45:24.0284 0x0fcc [ 15C0034561FE5B03FA376F1A6232478B, 0F9B5C2BD7D8803FF3C5ED957D3F0859F2A59B74510E4659FBF05EDCBF230208 ] RasMan C:\windows\System32\rasmans.dll
19:45:24.0284 0x0fcc RasMan - ok
19:45:24.0299 0x0fcc [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
19:45:24.0315 0x0fcc RasPppoe - ok
19:45:24.0346 0x0fcc [ D67ED4AB59D1EF66B05AD1A81AC28B26, 72E750A9A6B484D8BEDE52FA6DABEF4D95765DE491152E1F6C856D0590B50C28 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
19:45:24.0346 0x0fcc rdbss - ok
19:45:24.0362 0x0fcc [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\windows\System32\drivers\rdpbus.sys
19:45:24.0362 0x0fcc rdpbus - ok
19:45:24.0377 0x0fcc [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\windows\system32\drivers\rdpdr.sys
19:45:24.0377 0x0fcc RDPDR - ok
19:45:24.0409 0x0fcc [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
19:45:24.0409 0x0fcc RdpVideoMiniport - ok
19:45:24.0409 0x0fcc [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\windows\system32\drivers\rdyboost.sys
19:45:24.0424 0x0fcc rdyboost - ok
19:45:24.0456 0x0fcc [ 2D39BCFA4DD1081B8F282B623456B858, DD8C433B66B6661F4DBD1784CBD334441B508BE84932DD443F7AD51CEA192BA9 ] ReFS C:\windows\system32\drivers\ReFS.sys
19:45:24.0471 0x0fcc ReFS - ok
19:45:24.0471 0x0fcc [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess C:\windows\System32\mprdim.dll
19:45:24.0487 0x0fcc RemoteAccess - ok
19:45:24.0503 0x0fcc [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\windows\system32\regsvc.dll
19:45:24.0503 0x0fcc RemoteRegistry - ok
19:45:24.0550 0x0fcc [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\windows\System32\drivers\rfcomm.sys
19:45:24.0550 0x0fcc RFCOMM - ok
19:45:24.0612 0x0fcc [ 27A3A6BF6EE99AB61BF6F1147542F6AA, EA77F391067BF597E2E9A5A915CED91694B34624CD7BC87531C1610659C28748 ] RichVideo64 C:\Program Files\CyberLink\Shared files\RichVideo64.exe
19:45:24.0628 0x0fcc RichVideo64 - ok
19:45:24.0643 0x0fcc [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
19:45:24.0659 0x0fcc RpcEptMapper - ok
19:45:24.0675 0x0fcc [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\windows\system32\locator.exe
19:45:24.0675 0x0fcc RpcLocator - ok
19:45:24.0721 0x0fcc [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] RpcSs C:\windows\system32\rpcss.dll
19:45:24.0721 0x0fcc RpcSs - ok
19:45:24.0753 0x0fcc [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
19:45:24.0753 0x0fcc rspndr - ok
19:45:24.0784 0x0fcc [ CFE738C524F35B6E523A4D0F54840C30, 73E051DEA744EEC5202693C11EDABB36DE2D086160648D4E41F1F299CBAD8409 ] RTL8168 C:\windows\system32\DRIVERS\Rt630x64.sys
19:45:24.0800 0x0fcc RTL8168 - ok
19:45:24.0909 0x0fcc [ A5278C648EBE09D953B8F8B326C220AC, 2A46AEFA02DF801FFBE3DBA9FA81BBDB6EB9EEF35C4695D919BF86B9C1FF5C47 ] RtlWlanu C:\windows\system32\DRIVERS\rtwlanu.sys
19:45:24.0971 0x0fcc RtlWlanu - ok
19:45:25.0003 0x0fcc [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\windows\System32\drivers\vms3cap.sys
19:45:25.0003 0x0fcc s3cap - ok
19:45:25.0018 0x0fcc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\windows\system32\lsass.exe
19:45:25.0018 0x0fcc SamSs - ok
19:45:25.0050 0x0fcc [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
19:45:25.0050 0x0fcc sbp2port - ok
19:45:25.0081 0x0fcc [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\windows\System32\SCardSvr.dll
19:45:25.0081 0x0fcc SCardSvr - ok
19:45:25.0096 0x0fcc [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\windows\System32\ScDeviceEnum.dll
19:45:25.0112 0x0fcc ScDeviceEnum - ok
19:45:25.0128 0x0fcc [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
19:45:25.0128 0x0fcc scfilter - ok
19:45:25.0175 0x0fcc [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\windows\system32\schedsvc.dll
19:45:25.0190 0x0fcc Schedule - ok
19:45:25.0253 0x0fcc [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\windows\System32\certprop.dll
19:45:25.0268 0x0fcc SCPolicySvc - ok
19:45:25.0300 0x0fcc [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\windows\System32\drivers\sdbus.sys
19:45:25.0315 0x0fcc sdbus - ok
19:45:25.0315 0x0fcc [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\windows\System32\drivers\sdstor.sys
19:45:25.0315 0x0fcc sdstor - ok
19:45:25.0331 0x0fcc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
19:45:25.0331 0x0fcc secdrv - ok
19:45:25.0362 0x0fcc [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\windows\system32\seclogon.dll
19:45:25.0362 0x0fcc seclogon - ok
19:45:25.0393 0x0fcc [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\windows\System32\sens.dll
19:45:25.0393 0x0fcc SENS - ok
19:45:25.0425 0x0fcc [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\windows\system32\sensrsvc.dll
19:45:25.0425 0x0fcc SensrSvc - ok
19:45:25.0440 0x0fcc [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\windows\system32\drivers\SerCx.sys
19:45:25.0440 0x0fcc SerCx - ok
19:45:25.0456 0x0fcc [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\windows\system32\drivers\SerCx2.sys
19:45:25.0456 0x0fcc SerCx2 - ok
19:45:25.0471 0x0fcc [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum C:\windows\System32\drivers\serenum.sys
19:45:25.0487 0x0fcc Serenum - ok
19:45:25.0487 0x0fcc [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial C:\windows\System32\drivers\serial.sys
19:45:25.0503 0x0fcc Serial - ok
19:45:25.0534 0x0fcc [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\windows\System32\drivers\sermouse.sys
19:45:25.0534 0x0fcc sermouse - ok
19:45:25.0581 0x0fcc [ 389458EA0B5FAEBA325FAC47B9ED589E, F7F37A1F1E912069F65E4629FF733F080AE675DF6FE255AF48F5E23EB47D0622 ] SessionEnv C:\windows\system32\sessenv.dll
19:45:25.0596 0x0fcc SessionEnv - ok
19:45:25.0628 0x0fcc [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\windows\System32\drivers\sfloppy.sys
19:45:25.0628 0x0fcc sfloppy - ok
19:45:25.0675 0x0fcc [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\windows\System32\ipnathlp.dll
19:45:25.0690 0x0fcc SharedAccess - ok
19:45:25.0737 0x0fcc [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\windows\System32\shsvcs.dll
19:45:25.0753 0x0fcc ShellHWDetection - ok
19:45:25.0768 0x0fcc [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
19:45:25.0768 0x0fcc SiSRaid2 - ok
19:45:25.0768 0x0fcc [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
19:45:25.0768 0x0fcc SiSRaid4 - ok
19:45:25.0815 0x0fcc [ 4E6FAEE3F259DAC82213D935785991FB, ADA019AD261BBEAE78495B508B4D375BEC1005DF119F20897D29C3C613A0CA46 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:45:25.0815 0x0fcc SkypeUpdate - ok
19:45:25.0846 0x0fcc [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\windows\System32\smphost.dll
19:45:25.0846 0x0fcc smphost - ok
19:45:25.0893 0x0fcc [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\windows\System32\snmptrap.exe
19:45:25.0893 0x0fcc SNMPTRAP - ok
19:45:25.0925 0x0fcc [ 546B88E6906EE9813EFE314DC95E3488, FC172C2DCC7ACDBBC9CE07CFCBAEDFAEAD2641A037E126174525DBE8BA660CC4 ] spaceport C:\windows\system32\drivers\spaceport.sys
19:45:25.0940 0x0fcc spaceport - ok
19:45:25.0956 0x0fcc [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\windows\system32\drivers\SpbCx.sys
19:45:25.0956 0x0fcc SpbCx - ok
19:45:25.0987 0x0fcc [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler C:\windows\System32\spoolsv.exe
19:45:26.0003 0x0fcc Spooler - ok
19:45:26.0253 0x0fcc [ F264662C057A54AA2DE41B3C7551712F, 2C123C6ACD967CDF1AD2855187CF3D8357B16A4FD9C2F18AE54CFA384165FA11 ] sppsvc C:\windows\system32\sppsvc.exe
19:45:26.0315 0x0fcc sppsvc - ok
19:45:26.0362 0x0fcc [ 36B082C7A764A34FB1DC72D975870B61, 572CB632D9FDC1183F7BF8BFCBC51765C647945E0C13D1C91ADE3D0E76DF83BC ] srv C:\windows\system32\DRIVERS\srv.sys
19:45:26.0362 0x0fcc srv - ok
19:45:26.0378 0x0fcc [ F5849909D4B29B4E3D4445F943E5C7E3, 3FCA1423753716FE1AFDD27EE1E13C4D779A3C976185B5C998EF1A9A39BFC186 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
19:45:26.0378 0x0fcc srv2 - ok
19:45:26.0409 0x0fcc [ FABC49666708EA562549E78E6FBF3191, BE1FEBFC259308B39C727915C41A67CD50720A6E2A68D148F4F2F926AED43B02 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
19:45:26.0409 0x0fcc srvnet - ok
19:45:26.0440 0x0fcc [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
19:45:26.0440 0x0fcc SSDPSRV - ok
19:45:26.0472 0x0fcc [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\windows\system32\sstpsvc.dll
19:45:26.0487 0x0fcc SstpSvc - ok
19:45:26.0487 0x0fcc [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\windows\system32\DRIVERS\ssudmdm.sys
19:45:26.0503 0x0fcc ssudmdm - ok
19:45:26.0503 0x0fcc [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\windows\system32\drivers\stexstor.sys
19:45:26.0503 0x0fcc stexstor - ok
19:45:26.0550 0x0fcc [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\windows\System32\wiaservc.dll
19:45:26.0550 0x0fcc stisvc - ok
19:45:26.0565 0x0fcc [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\windows\system32\drivers\storahci.sys
19:45:26.0565 0x0fcc storahci - ok
19:45:26.0581 0x0fcc [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\windows\system32\drivers\vmstorfl.sys
19:45:26.0581 0x0fcc storflt - ok
19:45:26.0597 0x0fcc [ 0EDD1F4D470C775740625B06A60C9DD5, 94964D0A793B1C984E87095249EE383A5E669D05BA6BF9F655587887E6CE3C19 ] stornvme C:\windows\system32\drivers\stornvme.sys
19:45:26.0597 0x0fcc stornvme - ok
19:45:26.0628 0x0fcc [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\windows\system32\storsvc.dll
19:45:26.0628 0x0fcc StorSvc - ok
19:45:26.0643 0x0fcc [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\windows\system32\drivers\storvsc.sys
19:45:26.0643 0x0fcc storvsc - ok
19:45:26.0675 0x0fcc [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\windows\system32\svsvc.dll
19:45:26.0675 0x0fcc svsvc - ok
19:45:26.0706 0x0fcc [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\windows\System32\drivers\swenum.sys
19:45:26.0706 0x0fcc swenum - ok
19:45:26.0753 0x0fcc [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\windows\System32\swprv.dll
19:45:26.0768 0x0fcc swprv - ok
19:45:26.0831 0x0fcc [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\windows\system32\sysmain.dll
19:45:26.0847 0x0fcc SysMain - ok
19:45:26.0893 0x0fcc [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
19:45:26.0909 0x0fcc SystemEventsBroker - ok
19:45:26.0940 0x0fcc [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\windows\System32\TabSvc.dll
19:45:26.0940 0x0fcc TabletInputService - ok
19:45:26.0972 0x0fcc [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\windows\System32\tapisrv.dll
19:45:26.0972 0x0fcc TapiSrv - ok
19:45:27.0034 0x0fcc [ 2F10C145F517419E17203632FCDA0A13, 143F5837AE79E3EDB98F17A4661ECD5BCBFEB317077286B51E765560339B53A8 ] Tcpip C:\windows\system32\drivers\tcpip.sys
19:45:27.0112 0x0fcc Tcpip - ok
19:45:27.0253 0x0fcc [ 2F10C145F517419E17203632FCDA0A13, 143F5837AE79E3EDB98F17A4661ECD5BCBFEB317077286B51E765560339B53A8 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
19:45:27.0268 0x0fcc TCPIP6 - ok
19:45:27.0300 0x0fcc [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
19:45:27.0300 0x0fcc tcpipreg - ok
19:45:27.0331 0x0fcc [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\windows\system32\DRIVERS\tdx.sys
19:45:27.0331 0x0fcc tdx - ok
19:45:27.0347 0x0fcc [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\windows\System32\drivers\terminpt.sys
19:45:27.0347 0x0fcc terminpt - ok
19:45:27.0393 0x0fcc [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\windows\System32\termsrv.dll
19:45:27.0409 0x0fcc TermService - ok
19:45:27.0456 0x0fcc [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\windows\system32\themeservice.dll
19:45:27.0472 0x0fcc Themes - ok
19:45:27.0503 0x0fcc [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\windows\system32\mmcss.dll
19:45:27.0518 0x0fcc THREADORDER - ok
19:45:27.0565 0x0fcc [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\windows\System32\TimeBrokerServer.dll
19:45:27.0597 0x0fcc TimeBroker - ok
19:45:27.0628 0x0fcc [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\windows\system32\drivers\tpm.sys
19:45:27.0643 0x0fcc TPM - ok
19:45:27.0675 0x0fcc [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\windows\System32\trkwks.dll
19:45:27.0690 0x0fcc TrkWks - ok
19:45:27.0706 0x0fcc [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
19:45:27.0706 0x0fcc TrustedInstaller - ok
19:45:27.0722 0x0fcc [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
19:45:27.0722 0x0fcc TsUsbFlt - ok
19:45:27.0753 0x0fcc [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\windows\System32\drivers\TsUsbGD.sys
19:45:27.0753 0x0fcc TsUsbGD - ok
19:45:27.0784 0x0fcc [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
19:45:27.0784 0x0fcc tunnel - ok
19:45:27.0800 0x0fcc [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\windows\system32\drivers\uagp35.sys
19:45:27.0800 0x0fcc uagp35 - ok
19:45:27.0815 0x0fcc [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\windows\System32\drivers\uaspstor.sys
19:45:27.0815 0x0fcc UASPStor - ok
19:45:27.0847 0x0fcc [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\windows\System32\drivers\ucx01000.sys
19:45:27.0862 0x0fcc UCX01000 - ok
19:45:27.0878 0x0fcc [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\windows\system32\DRIVERS\udfs.sys
19:45:27.0893 0x0fcc udfs - ok
19:45:27.0893 0x0fcc [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\windows\System32\drivers\UEFI.sys
19:45:27.0893 0x0fcc UEFI - ok
19:45:27.0909 0x0fcc [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\windows\system32\UI0Detect.exe
19:45:27.0925 0x0fcc UI0Detect - ok
19:45:27.0940 0x0fcc [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
19:45:27.0940 0x0fcc uliagpkx - ok
19:45:27.0940 0x0fcc [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\windows\System32\drivers\umbus.sys
19:45:27.0940 0x0fcc umbus - ok
19:45:27.0956 0x0fcc [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\windows\System32\drivers\umpass.sys
19:45:27.0956 0x0fcc UmPass - ok
19:45:27.0987 0x0fcc [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\windows\System32\umrdp.dll
19:45:28.0003 0x0fcc UmRdpService - ok
19:45:28.0019 0x0fcc [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\windows\System32\upnphost.dll
19:45:28.0034 0x0fcc upnphost - ok
19:45:28.0065 0x0fcc [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\windows\System32\Drivers\usbaapl64.sys
19:45:28.0065 0x0fcc USBAAPL64 - ok
19:45:28.0081 0x0fcc [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\windows\System32\drivers\usbccgp.sys
19:45:28.0097 0x0fcc usbccgp - ok
19:45:28.0097 0x0fcc [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\windows\System32\drivers\usbcir.sys
19:45:28.0097 0x0fcc usbcir - ok
19:45:28.0128 0x0fcc [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\windows\System32\drivers\usbehci.sys
19:45:28.0128 0x0fcc usbehci - ok
19:45:28.0175 0x0fcc [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\windows\System32\drivers\usbhub.sys
19:45:28.0175 0x0fcc usbhub - ok
19:45:28.0210 0x0fcc [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\windows\System32\drivers\UsbHub3.sys
19:45:28.0219 0x0fcc USBHUB3 - ok
19:45:28.0231 0x0fcc [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\windows\System32\drivers\usbohci.sys
19:45:28.0233 0x0fcc usbohci - ok
19:45:28.0258 0x0fcc [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\windows\System32\drivers\usbprint.sys
19:45:28.0260 0x0fcc usbprint - ok
19:45:28.0276 0x0fcc [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
19:45:28.0279 0x0fcc usbscan - ok
19:45:28.0300 0x0fcc [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\windows\System32\drivers\USBSTOR.SYS
19:45:28.0306 0x0fcc USBSTOR - ok
19:45:28.0319 0x0fcc [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\windows\System32\drivers\usbuhci.sys
19:45:28.0322 0x0fcc usbuhci - ok
19:45:28.0348 0x0fcc [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\windows\System32\drivers\USBXHCI.SYS
19:45:28.0356 0x0fcc USBXHCI - ok
19:45:28.0364 0x0fcc [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\windows\system32\lsass.exe
19:45:28.0365 0x0fcc VaultSvc - ok
19:45:28.0381 0x0fcc [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
19:45:28.0383 0x0fcc vdrvroot - ok
19:45:28.0419 0x0fcc [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\windows\System32\vds.exe
19:45:28.0437 0x0fcc vds - ok
19:45:28.0446 0x0fcc [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\windows\system32\drivers\VerifierExt.sys
19:45:28.0449 0x0fcc VerifierExt - ok
19:45:28.0492 0x0fcc [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp C:\windows\System32\drivers\vhdmp.sys
19:45:28.0501 0x0fcc vhdmp - ok
19:45:28.0501 0x0fcc [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\windows\system32\drivers\viaide.sys
19:45:28.0501 0x0fcc viaide - ok
19:45:28.0517 0x0fcc [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\windows\system32\drivers\vmbus.sys
19:45:28.0532 0x0fcc vmbus - ok
19:45:28.0532 0x0fcc [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\windows\System32\drivers\VMBusHID.sys
19:45:28.0532 0x0fcc VMBusHID - ok
19:45:28.0579 0x0fcc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\windows\System32\ICSvc.dll
19:45:28.0579 0x0fcc vmicguestinterface - ok
19:45:28.0595 0x0fcc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\windows\System32\ICSvc.dll
19:45:28.0595 0x0fcc vmicheartbeat - ok
19:45:28.0610 0x0fcc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\windows\System32\ICSvc.dll
19:45:28.0610 0x0fcc vmickvpexchange - ok
19:45:28.0626 0x0fcc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\windows\System32\ICSvc.dll
19:45:28.0626 0x0fcc vmicrdv - ok
19:45:28.0657 0x0fcc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\windows\System32\ICSvc.dll
19:45:28.0673 0x0fcc vmicshutdown - ok
19:45:28.0689 0x0fcc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\windows\System32\ICSvc.dll
19:45:28.0704 0x0fcc vmictimesync - ok
19:45:28.0704 0x0fcc [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\windows\System32\ICSvc.dll
19:45:28.0720 0x0fcc vmicvss - ok
19:45:28.0751 0x0fcc [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr C:\windows\system32\drivers\volmgr.sys
19:45:28.0751 0x0fcc volmgr - ok
19:45:28.0767 0x0fcc [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\windows\system32\drivers\volmgrx.sys
19:45:28.0782 0x0fcc volmgrx - ok
19:45:28.0798 0x0fcc [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap C:\windows\system32\drivers\volsnap.sys
19:45:28.0814 0x0fcc volsnap - ok
19:45:28.0845 0x0fcc [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci C:\windows\System32\drivers\vpci.sys
19:45:28.0845 0x0fcc vpci - ok
19:45:28.0861 0x0fcc [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\windows\system32\drivers\vsmraid.sys
19:45:28.0861 0x0fcc vsmraid - ok
19:45:28.0907 0x0fcc [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS C:\windows\system32\vssvc.exe
19:45:28.0923 0x0fcc VSS - ok
19:45:28.0954 0x0fcc [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\windows\system32\drivers\vstxraid.sys
19:45:28.0954 0x0fcc VSTXRAID - ok
19:45:28.0970 0x0fcc [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus C:\windows\System32\drivers\vwifibus.sys
19:45:28.0970 0x0fcc vwifibus - ok
19:45:29.0001 0x0fcc [ 29AB43937FFDA0B0FB56984226E698C6, 6A1A559964FE5D594E54988C46149969E6FFD5A8D5A6862E14648B608794CC29 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
19:45:29.0001 0x0fcc vwififlt - ok
19:45:29.0001 0x0fcc [ 8B8624A93E3F88CB923AEB05B6313227, 2856B63CD376BF2B1A9129581E7B9207588D4EAFD29A2C8D98F176FEAFDE26A9 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
19:45:29.0001 0x0fcc vwifimp - ok
19:45:29.0032 0x0fcc [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\windows\system32\w32time.dll
19:45:29.0048 0x0fcc W32Time - ok
19:45:29.0048 0x0fcc [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\windows\System32\drivers\wacompen.sys
19:45:29.0064 0x0fcc WacomPen - ok
19:45:29.0095 0x0fcc [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine C:\windows\system32\wbengine.exe
19:45:29.0110 0x0fcc wbengine - ok
19:45:29.0157 0x0fcc [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
19:45:29.0173 0x0fcc WbioSrvc - ok
19:45:29.0189 0x0fcc [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\windows\System32\wcmsvc.dll
19:45:29.0204 0x0fcc Wcmsvc - ok
19:45:29.0235 0x0fcc [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\windows\System32\wcncsvc.dll
19:45:29.0235 0x0fcc wcncsvc - ok
19:45:29.0267 0x0fcc [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
19:45:29.0267 0x0fcc WcsPlugInService - ok
19:45:29.0282 0x0fcc [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\windows\system32\drivers\WdBoot.sys
19:45:29.0282 0x0fcc WdBoot - ok
19:45:29.0314 0x0fcc [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
19:45:29.0329 0x0fcc Wdf01000 - ok
19:45:29.0345 0x0fcc [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\windows\system32\drivers\WdFilter.sys
19:45:29.0360 0x0fcc WdFilter - ok
19:45:29.0392 0x0fcc [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\windows\system32\wdi.dll
19:45:29.0407 0x0fcc WdiServiceHost - ok
19:45:29.0407 0x0fcc [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\windows\system32\wdi.dll
19:45:29.0407 0x0fcc WdiSystemHost - ok
19:45:29.0439 0x0fcc [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\windows\system32\Drivers\WdNisDrv.sys
19:45:29.0454 0x0fcc WdNisDrv - ok
19:45:29.0470 0x0fcc WdNisSvc - ok
19:45:29.0501 0x0fcc [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient C:\windows\System32\webclnt.dll
19:45:29.0501 0x0fcc WebClient - ok
19:45:29.0548 0x0fcc [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\windows\system32\wecsvc.dll
19:45:29.0548 0x0fcc Wecsvc - ok
19:45:29.0579 0x0fcc [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\windows\system32\wephostsvc.dll
19:45:29.0579 0x0fcc WEPHOSTSVC - ok
19:45:29.0595 0x0fcc [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\windows\System32\wercplsupport.dll
19:45:29.0610 0x0fcc wercplsupport - ok
19:45:29.0642 0x0fcc [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\windows\System32\WerSvc.dll
19:45:29.0642 0x0fcc WerSvc - ok
19:45:29.0689 0x0fcc [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\windows\system32\DRIVERS\wfplwfs.sys
19:45:29.0704 0x0fcc WFPLWFS - ok
19:45:29.0735 0x0fcc [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\windows\System32\wiarpc.dll
19:45:29.0751 0x0fcc WiaRpc - ok
19:45:29.0782 0x0fcc [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\windows\system32\drivers\wimmount.sys
19:45:29.0782 0x0fcc WIMMount - ok
19:45:29.0782 0x0fcc WinDefend - ok
19:45:29.0845 0x0fcc [ 0E70990EC2E5D2331AA5E88DB0CFB826, 79DFF565C3FCBC691E8FEB669CEC00E340FD2A2AFA4488D23A7CC63A2A98A5C1 ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
19:45:29.0860 0x0fcc WinHttpAutoProxySvc - ok
19:45:29.0907 0x0fcc [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
19:45:29.0939 0x0fcc Winmgmt - ok
19:45:30.0079 0x0fcc [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM C:\windows\system32\WsmSvc.dll
19:45:30.0142 0x0fcc WinRM - ok
19:45:30.0173 0x0fcc [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb C:\windows\System32\drivers\WinUsb.sys
19:45:30.0173 0x0fcc WinUsb - ok
19:45:30.0220 0x0fcc [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\windows\System32\wlansvc.dll
19:45:30.0236 0x0fcc WlanSvc - ok
19:45:30.0282 0x0fcc [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\windows\system32\wlidsvc.dll
19:45:30.0329 0x0fcc wlidsvc - ok
19:45:30.0345 0x0fcc [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\windows\System32\drivers\wmiacpi.sys
19:45:30.0345 0x0fcc WmiAcpi - ok
19:45:30.0376 0x0fcc [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
19:45:30.0376 0x0fcc wmiApSrv - ok
19:45:30.0407 0x0fcc WMPNetworkSvc - ok
19:45:30.0423 0x0fcc [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\windows\system32\drivers\Wof.sys
19:45:30.0423 0x0fcc Wof - ok
19:45:30.0533 0x0fcc [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc C:\windows\system32\workfolderssvc.dll
19:45:30.0548 0x0fcc workfolderssvc - ok
19:45:30.0579 0x0fcc [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\windows\system32\DRIVERS\wpcfltr.sys
19:45:30.0579 0x0fcc wpcfltr - ok
19:45:30.0611 0x0fcc [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\windows\System32\wpcsvc.dll
19:45:30.0611 0x0fcc WPCSvc - ok
19:45:30.0642 0x0fcc [ DBDCE2378F65F0A07D4644AC103037E7, 99714F0CD31297C9831BAF04768F467F6E0BF710C859CEDCA83069226BF1A68A ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
19:45:30.0642 0x0fcc WPDBusEnum - ok
19:45:30.0658 0x0fcc [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\windows\system32\drivers\WpdUpFltr.sys
19:45:30.0658 0x0fcc WpdUpFltr - ok
19:45:30.0658 0x0fcc [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
19:45:30.0658 0x0fcc ws2ifsl - ok
19:45:30.0689 0x0fcc [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\windows\System32\wscsvc.dll
19:45:30.0704 0x0fcc wscsvc - ok
19:45:30.0720 0x0fcc [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\windows\System32\drivers\WSDPrint.sys
19:45:30.0720 0x0fcc WSDPrintDevice - ok
19:45:30.0736 0x0fcc [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan C:\windows\System32\drivers\WSDScan.sys
19:45:30.0751 0x0fcc WSDScan - ok
19:45:30.0751 0x0fcc WSearch - ok
19:45:30.0845 0x0fcc [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\windows\System32\WSService.dll
19:45:30.0954 0x0fcc WSService - ok
19:45:31.0064 0x0fcc [ F3F60C88A6BBC8D0C68FE5B1C91181AF, AF9A4D282CD4BB1127BC3F48AB89DC294408D96F7906553C636F37D1503CFA48 ] wuauserv C:\windows\system32\wuaueng.dll
19:45:31.0126 0x0fcc wuauserv - ok
19:45:31.0158 0x0fcc [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
19:45:31.0173 0x0fcc WudfPf - ok
19:45:31.0204 0x0fcc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\windows\System32\drivers\WUDFRd.sys
19:45:31.0204 0x0fcc WUDFRd - ok
19:45:31.0204 0x0fcc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP C:\windows\System32\drivers\WUDFRd.sys
19:45:31.0204 0x0fcc WUDFSensorLP - ok
19:45:31.0236 0x0fcc [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\windows\System32\WUDFSvc.dll
19:45:31.0236 0x0fcc wudfsvc - ok
19:45:31.0251 0x0fcc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\windows\System32\drivers\WUDFRd.sys
19:45:31.0267 0x0fcc WUDFWpdFs - ok
19:45:31.0267 0x0fcc [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\windows\System32\drivers\WUDFRd.sys
19:45:31.0267 0x0fcc WUDFWpdMtp - ok
19:45:31.0314 0x0fcc [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\windows\System32\wwansvc.dll
19:45:31.0329 0x0fcc WwanSvc - ok
19:45:31.0329 0x0fcc ================ Scan global ===============================
19:45:31.0376 0x0fcc [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\windows\system32\basesrv.dll
19:45:31.0408 0x0fcc [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\windows\system32\winsrv.dll
19:45:31.0439 0x0fcc [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\windows\system32\sxssrv.dll
19:45:31.0470 0x0fcc [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\windows\system32\services.exe
19:45:31.0486 0x0fcc [ Global ] - ok
19:45:31.0486 0x0fcc ================ Scan MBR ==================================
19:45:31.0501 0x0fcc [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
19:45:31.0501 0x0fcc \Device\Harddisk0\DR0 - ok
19:45:31.0501 0x0fcc ================ Scan VBR ==================================
19:45:31.0501 0x0fcc [ 6428079B8C1BEB56D6D33F3BBA7F4443 ] \Device\Harddisk0\DR0\Partition1
19:45:31.0517 0x0fcc \Device\Harddisk0\DR0\Partition1 - ok
19:45:31.0517 0x0fcc [ 0A3DC6202A0D23E1CC8E32C6E343CFD5 ] \Device\Harddisk0\DR0\Partition2
19:45:31.0517 0x0fcc \Device\Harddisk0\DR0\Partition2 - ok
19:45:31.0533 0x0fcc [ 68492777A10F581CA995315C3B1C63CF ] \Device\Harddisk0\DR0\Partition3
19:45:31.0533 0x0fcc \Device\Harddisk0\DR0\Partition3 - ok
19:45:31.0533 0x0fcc [ 9FE02B0F2E3C7A0BE238B55574CF4405 ] \Device\Harddisk0\DR0\Partition4
19:45:31.0533 0x0fcc \Device\Harddisk0\DR0\Partition4 - ok
19:45:31.0548 0x0fcc [ DDF1339F02BF02A4E763B799015EBEB3 ] \Device\Harddisk0\DR0\Partition5
19:45:31.0548 0x0fcc \Device\Harddisk0\DR0\Partition5 - ok
19:45:31.0564 0x0fcc [ 48A7475D50030AD555AB2CF4D6F28744 ] \Device\Harddisk0\DR0\Partition6
19:45:31.0595 0x0fcc \Device\Harddisk0\DR0\Partition6 - ok
19:45:31.0595 0x0fcc ================ Scan generic autorun ======================
19:45:31.0626 0x0fcc [ E6A3062BDB2E18EBDEB69CF7F7A3A070, 48AB0CCA0230DCBB47CCC765659E390A4A42AC7303A27B835B9FBB1168AC7BF1 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
19:45:31.0626 0x0fcc IAStorIcon - ok
19:45:31.0689 0x0fcc [ 75FBFC49CE8A7EF087AB450145C093C1, 9682D832BFA8054D32A6C977CE3EF2B376EDDCBD9D722703029690203EA0061F ] C:\windows\system32\igfxtray.exe
19:45:31.0689 0x0fcc IgfxTray - ok
19:45:31.0939 0x0fcc [ 37C6C318D6AFAFA2EBA99820EDF21DA6, 5693AA141B947761EE41FBDC6F16FDC5BBB5BA8EBE1DEC90AD6EF33BFAF885A5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
19:45:32.0204 0x0fcc RTHDVCPL - ok
19:45:32.0251 0x0fcc [ 1710A603D1EEBF86D738D1C6283C39B3, 5427A41AB64122FC119A42D7E4954A04A650FE88BD2B7FD2D4CDD1E823433268 ] C:\Program Files\iTunes\iTunesHelper.exe
19:45:32.0251 0x0fcc iTunesHelper - ok
19:45:32.0314 0x0fcc [ 4E9AF25BA5E8219310E384AEA5B0EED8, 743062F755E7A88BA394E96CA26A988CCFDF73B441B779B3149D54A769CBC411 ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
19:45:32.0314 0x0fcc CLMLServer_For_P2G8 - ok
19:45:32.0361 0x0fcc [ B69D9FA1CF97A80109FA8D1152552AB6, D56A4B0DCDF7CF6417520622FE365641A3E66C69DB1D3FD388668796430DABDE ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
19:45:32.0361 0x0fcc CLVirtualDrive - ok
19:45:32.0408 0x0fcc [ FD5C43ACDBB9E3C7F91523FAFD74D4C0, 5DDA45E0B4C1F275801F00EF65672BC1A90B3C298723E1064191142FB83D4831 ] C:\Program Files (x86)\PDF24\pdf24.exe
19:45:32.0408 0x0fcc PDFPrint - ok
19:45:32.0689 0x0fcc [ 41A602561741C62D7BCE4E05754152F4, 53742048DB673C4254A59CEB2DD7B5BD791ABAA5CE7169C5E5F178F5DCFB8F7E ] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
19:45:32.0829 0x0fcc PMBVolumeWatcher - ok
19:45:32.0908 0x0fcc [ 6DB9A0FBDA5556B925D64651D57031D3, AE4C9196EFD61B973F93FDDAA001F7C239100EDD7E3F840927C0C07B08C69C04 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
19:45:32.0923 0x0fcc iCloudServices - ok
19:45:32.0954 0x0fcc [ F1F940D766026D99DCCB999168CC1E73, FC947CC3E10D220D62004354EE731F874762C4298DB6DCC5E7DBA2FC46A4677D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
19:45:32.0954 0x0fcc ApplePhotoStreams - ok
19:45:33.0017 0x0fcc [ DE2E1198B4D01AA71F35350BEECFA519, 51806EE62498D989B47781C716BF41797B922B070AE939EDBF971C666C324BB2 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
19:45:33.0048 0x0fcc AppleIEDAV - ok
19:45:33.0064 0x0fcc [ DD854D7F89E3994DA48490E9C440036A, 25775650B62015D6F612C77ADCC7A31E019AEBDC2D40BB9EA1DA620F8B124007 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
19:45:33.0079 0x0fcc iCloudDrive - ok
19:45:33.0111 0x0fcc [ 3C9A02CB0C05C96263E2193C7B728930, 4B948C9DF036228145B60BA0327F259694D0812B99F92BDBBB2CD6ED997E9A13 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
19:45:33.0111 0x0fcc iCloudPhotos - ok
19:45:33.0126 0x0fcc Skype - ok
19:45:33.0126 0x0fcc [ 6DB9A0FBDA5556B925D64651D57031D3, AE4C9196EFD61B973F93FDDAA001F7C239100EDD7E3F840927C0C07B08C69C04 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
19:45:33.0142 0x0fcc iCloudServices - ok
19:45:33.0142 0x0fcc [ F1F940D766026D99DCCB999168CC1E73, FC947CC3E10D220D62004354EE731F874762C4298DB6DCC5E7DBA2FC46A4677D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
19:45:33.0142 0x0fcc ApplePhotoStreams - ok
19:45:33.0158 0x0fcc [ DE2E1198B4D01AA71F35350BEECFA519, 51806EE62498D989B47781C716BF41797B922B070AE939EDBF971C666C324BB2 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
19:45:33.0173 0x0fcc AppleIEDAV - ok
19:45:33.0189 0x0fcc [ DD854D7F89E3994DA48490E9C440036A, 25775650B62015D6F612C77ADCC7A31E019AEBDC2D40BB9EA1DA620F8B124007 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
19:45:33.0189 0x0fcc iCloudDrive - ok
19:45:33.0189 0x0fcc Waiting for KSN requests completion. In queue: 163
19:45:34.0265 0x0fcc AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
19:45:34.0265 0x0fcc AV detected via SS2: McAfee Anti-Virus und Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 15.0.0.0 ), 0x51000 ( enabled : updated )
19:45:34.0265 0x0fcc FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 15.0.0.0 ), 0x51010 ( enabled )
19:45:34.0453 0x0fcc ============================================================
19:45:34.0453 0x0fcc Scan finished
19:45:34.0453 0x0fcc ============================================================
19:45:34.0469 0x1928 Detected object count: 0
19:45:34.0469 0x1928 Actual detected object count: 0

So ich hab dies entsprechend ausgeführt. Meine Dateien sind weiterhin gesperrt. Gruß und einen guten Rutsch!


Alt 31.12.2016, 19:05   #6
Schnitte
 
Online pay AG Virus? - Standard

Online pay AG Virus?



20:00:38.0761 0x1c24 TDSS rootkit removing tool 3.1.0.12 Nov 7 2016 07:10:01
20:00:38.0761 0x1c24 UEFI system
20:00:43.0501 0x1c24 ============================================================
20:00:43.0501 0x1c24 Current date / time: 2016/12/31 20:00:43.0501
20:00:43.0501 0x1c24 SystemInfo:
20:00:43.0501 0x1c24
20:00:43.0501 0x1c24 OS Version: 6.3.9600 ServicePack: 0.0
20:00:43.0501 0x1c24 Product type: Workstation
20:00:43.0501 0x1c24 ComputerName: ABC
20:00:43.0501 0x1c24 UserName: Thomas
20:00:43.0501 0x1c24 Windows directory: C:\windows
20:00:43.0501 0x1c24 System windows directory: C:\windows
20:00:43.0501 0x1c24 Running under WOW64
20:00:43.0501 0x1c24 Processor architecture: Intel x64
20:00:43.0501 0x1c24 Number of processors: 4
20:00:43.0501 0x1c24 Page size: 0x1000
20:00:43.0501 0x1c24 Boot type: Normal boot
20:00:43.0501 0x1c24 CodeIntegrityOptions = 0x00000001
20:00:43.0501 0x1c24 ============================================================
20:00:43.0719 0x1c24 KLMD registered as C:\windows\system32\drivers\35640486.sys
20:00:43.0719 0x1c24 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18505, osProperties = 0x19
20:00:43.0970 0x1c24 System UUID: {1C5D2D53-F4C3-37F1-948C-E46269A9F1C4}
20:00:44.0572 0x1c24 Drive \Device\Harddisk1\DR3 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x1000, Cylinders: 0x3B60, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:00:44.0875 0x1c24 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:00:44.0891 0x1c24 Drive \Device\Harddisk1\DR3 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x1000, Cylinders: 0x3B60, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:00:44.0906 0x1c24 ============================================================
20:00:44.0906 0x1c24 \Device\Harddisk1\DR3:
20:00:44.0906 0x1c24 MBR partitions:
20:00:44.0906 0x1c24 \Device\Harddisk1\DR3\Partition1: MBR, Type 0xC, StartLBA 0x40, BlocksNum 0xE8E0300
20:00:44.0906 0x1c24 \Device\Harddisk0\DR0:
20:00:44.0906 0x1c24 GPT partitions:
20:00:44.0906 0x1c24 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7E0D0BA7-4D45-4F09-BBA8-C2A183A9C282}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
20:00:44.0906 0x1c24 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {47EA8986-068D-4982-A02E-081C6663B764}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x32000
20:00:44.0906 0x1c24 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {0FAAE7E9-56B6-43AA-B5D7-A13CDD304AC8}, Name: Microsoft reserved partition, StartLBA 0x12C000, BlocksNum 0x40000
20:00:44.0906 0x1c24 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {8D7F0CC6-879E-47F6-A767-0ED8FD3B0659}, UniqueGUID: {07F41686-314D-45A7-82AB-1E7A837573AC}, Name: Basic data partition, StartLBA 0x16C000, BlocksNum 0x200000
20:00:44.0906 0x1c24 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D257ABB2-D7F4-4A43-B4D0-D0326336409E}, Name: Basic data partition, StartLBA 0x36C000, BlocksNum 0x6CB9B000
20:00:44.0906 0x1c24 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F39C8091-E093-46B2-9B8E-5DA7AC2D22EE}, Name: Basic data partition, StartLBA 0x6CF07000, BlocksNum 0x77FD000
20:00:44.0906 0x1c24 MBR partitions:
20:00:44.0906 0x1c24 \Device\Harddisk1\DR3:
20:00:44.0906 0x1c24 MBR partitions:
20:00:44.0906 0x1c24 \Device\Harddisk1\DR3\Partition1: MBR, Type 0xC, StartLBA 0x40, BlocksNum 0xE8E0300
20:00:44.0906 0x1c24 ============================================================
20:00:44.0906 0x1c24 C: <-> \Device\Harddisk0\DR0\Partition5
20:00:44.0954 0x1c24 D: <-> \Device\Harddisk0\DR0\Partition6
20:00:44.0954 0x1c24 E: <-> \Device\Harddisk1\DR3\Partition1
20:00:44.0954 0x1c24 ============================================================
20:00:44.0954 0x1c24 Initialize success
20:00:44.0954 0x1c24 ============================================================
20:00:53.0649 0x0980 ============================================================
20:00:53.0649 0x0980 Scan started
20:00:53.0649 0x0980 Mode: Manual; SigCheck; TDLFS;
20:00:53.0649 0x0980 ============================================================
20:00:53.0649 0x0980 KSN ping started
20:00:53.0712 0x0980 KSN ping finished: true
20:00:54.0702 0x0980 ================ Scan system memory ========================
20:00:54.0702 0x0980 System memory - ok
20:00:54.0702 0x0980 ================ Scan services =============================
20:00:54.0814 0x0980 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\windows\System32\drivers\1394ohci.sys
20:00:54.0893 0x0980 1394ohci - ok
20:00:54.0908 0x0980 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\windows\system32\drivers\3ware.sys
20:00:54.0924 0x0980 3ware - ok
20:00:54.0955 0x0980 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\windows\system32\drivers\ACPI.sys
20:00:54.0986 0x0980 ACPI - ok
20:00:55.0002 0x0980 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\windows\system32\Drivers\acpiex.sys
20:00:55.0002 0x0980 acpiex - ok
20:00:55.0018 0x0980 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\windows\System32\drivers\acpipagr.sys
20:00:55.0018 0x0980 acpipagr - ok
20:00:55.0033 0x0980 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\windows\System32\drivers\acpipmi.sys
20:00:55.0033 0x0980 AcpiPmi - ok
20:00:55.0049 0x0980 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\windows\System32\drivers\acpitime.sys
20:00:55.0049 0x0980 acpitime - ok
20:00:55.0127 0x0980 [ DC00FD73505DAEDD99CAF4533B0C05BD, 2863D1F0587B79254FBE093C191C73892768CF2AC59BEF97745EE66CEE3473AF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:00:55.0158 0x0980 AdobeARMservice - ok
20:00:55.0174 0x0980 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\windows\system32\drivers\ADP80XX.SYS
20:00:55.0189 0x0980 ADP80XX - ok
20:00:55.0221 0x0980 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
20:00:55.0236 0x0980 AeLookupSvc - ok
20:00:55.0283 0x0980 [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\windows\system32\drivers\afd.sys
20:00:55.0299 0x0980 AFD - ok
20:00:55.0314 0x0980 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\windows\system32\drivers\agp440.sys
20:00:55.0314 0x0980 agp440 - ok
20:00:55.0346 0x0980 [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\windows\system32\DRIVERS\ahcache.sys
20:00:55.0361 0x0980 ahcache - ok
20:00:55.0393 0x0980 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\windows\System32\alg.exe
20:00:55.0393 0x0980 ALG - ok
20:00:55.0424 0x0980 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\windows\System32\drivers\amdk8.sys
20:00:55.0424 0x0980 AmdK8 - ok
20:00:55.0439 0x0980 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\windows\System32\drivers\amdppm.sys
20:00:55.0455 0x0980 AmdPPM - ok
20:00:55.0486 0x0980 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\windows\system32\drivers\amdsata.sys
20:00:55.0486 0x0980 amdsata - ok
20:00:55.0502 0x0980 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
20:00:55.0518 0x0980 amdsbs - ok
20:00:55.0533 0x0980 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\windows\system32\drivers\amdxata.sys
20:00:55.0533 0x0980 amdxata - ok
20:00:55.0565 0x0980 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\windows\system32\drivers\appid.sys
20:00:55.0580 0x0980 AppID - ok
20:00:55.0596 0x0980 [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\windows\System32\appidsvc.dll
20:00:55.0596 0x0980 AppIDSvc - ok
20:00:55.0627 0x0980 [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\windows\System32\appinfo.dll
20:00:55.0643 0x0980 Appinfo - ok
20:00:55.0705 0x0980 [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:00:55.0721 0x0980 Apple Mobile Device Service - ok
20:00:55.0752 0x0980 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\windows\system32\AppReadiness.dll
20:00:55.0768 0x0980 AppReadiness - ok
20:00:55.0814 0x0980 [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\windows\system32\appxdeploymentserver.dll
20:00:55.0861 0x0980 AppXSvc - ok
20:00:55.0877 0x0980 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\windows\system32\drivers\arcsas.sys
20:00:55.0893 0x0980 arcsas - ok
20:00:55.0893 0x0980 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\windows\system32\drivers\atapi.sys
20:00:55.0908 0x0980 atapi - ok
20:00:55.0939 0x0980 [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
20:00:55.0957 0x0980 AudioEndpointBuilder - ok
20:00:55.0974 0x0980 [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\windows\System32\Audiosrv.dll
20:00:56.0005 0x0980 Audiosrv - ok
20:00:56.0036 0x0980 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\windows\System32\AxInstSV.dll
20:00:56.0036 0x0980 AxInstSV - ok
20:00:56.0067 0x0980 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
20:00:56.0083 0x0980 b06bdrv - ok
20:00:56.0114 0x0980 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\windows\System32\drivers\BasicDisplay.sys
20:00:56.0114 0x0980 BasicDisplay - ok
20:00:56.0130 0x0980 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\windows\System32\drivers\BasicRender.sys
20:00:56.0130 0x0980 BasicRender - ok
20:00:56.0161 0x0980 [ F8FE7E12F8151E0A17C23CF840599F9A, 5D1AA3A5DAC08B521A7BE775F32434AFF1F5F19B69CD16D2D94B0D399E61C371 ] bcbtums C:\windows\system32\drivers\bcbtums.sys
20:00:56.0177 0x0980 bcbtums - ok
20:00:56.0224 0x0980 [ ACB44407FF63C3A5A22AB5782F209604, 86BE221F07EB49D2149710CCCE4F0C24677560FEFD41F093C6D2BA0C962CF5C3 ] BcmBtRSupport C:\windows\system32\BtwRSupportService.exe
20:00:56.0270 0x0980 BcmBtRSupport - ok
20:00:56.0286 0x0980 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\windows\System32\drivers\bcmfn2.sys
20:00:56.0286 0x0980 bcmfn2 - ok
20:00:56.0317 0x0980 [ 174394F4EF93C117BF7BE3878046A1B1, D58E868342D1DAFC4B04384A3713F729DF07F408AA6AE4762E6A4244F976526A ] BDESVC C:\windows\System32\bdesvc.dll
20:00:56.0333 0x0980 BDESVC - ok
20:00:56.0349 0x0980 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\windows\system32\drivers\Beep.sys
20:00:56.0364 0x0980 Beep - ok
20:00:56.0395 0x0980 [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\windows\System32\bfe.dll
20:00:56.0427 0x0980 BFE - ok
20:00:56.0474 0x0980 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\windows\System32\qmgr.dll
20:00:56.0505 0x0980 BITS - ok
20:00:56.0552 0x0980 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:00:56.0567 0x0980 Bonjour Service - ok
20:00:56.0583 0x0980 [ 4938A9236300A356F97E378491EE4844, 60D892960D48EEF48F8EC4DE4F174EBD0BC0E7B28B6D8723D554CD1979EB55B4 ] bowser C:\windows\system32\DRIVERS\bowser.sys
20:00:56.0599 0x0980 bowser - ok
20:00:56.0630 0x0980 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
20:00:56.0645 0x0980 BrokerInfrastructure - ok
20:00:56.0677 0x0980 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\windows\System32\browser.dll
20:00:56.0692 0x0980 Browser - ok
20:00:56.0708 0x0980 [ F4CB6F457D019857C8DB6F04CA2957F5, D9E7DD49AF9C38D1696045F6004E1B504A65227B41256961E28A8DCA9B068EA9 ] BthA2DP C:\windows\system32\drivers\BthA2DP.sys
20:00:56.0724 0x0980 BthA2DP - ok
20:00:56.0739 0x0980 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\windows\System32\drivers\BthAvrcpTg.sys
20:00:56.0755 0x0980 BthAvrcpTg - ok
20:00:56.0786 0x0980 [ 12418846B057E4F92FC621F5C6CF737D, 0B8B0EADE4F2AD95D450A5C71C287C0F04F33897ABF27D3E3B6428A3C99C7B5D ] BthEnum C:\windows\System32\drivers\BthEnum.sys
20:00:56.0786 0x0980 BthEnum - ok
20:00:56.0817 0x0980 [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\windows\System32\drivers\bthhfenum.sys
20:00:56.0833 0x0980 BthHFEnum - ok
20:00:56.0849 0x0980 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\windows\System32\drivers\BthHFHid.sys
20:00:56.0864 0x0980 bthhfhid - ok
20:00:56.0880 0x0980 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\windows\System32\BthHFSrv.dll
20:00:56.0895 0x0980 BthHFSrv - ok
20:00:56.0927 0x0980 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\windows\system32\DRIVERS\BthLEEnum.sys
20:00:56.0927 0x0980 BthLEEnum - ok
20:00:56.0959 0x0980 [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM C:\windows\System32\drivers\bthmodem.sys
20:00:56.0975 0x0980 BTHMODEM - ok
20:00:56.0990 0x0980 [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan C:\windows\System32\drivers\bthpan.sys
20:00:57.0006 0x0980 BthPan - ok
20:00:57.0053 0x0980 [ B810B2B39CCA90DC6BF42AF1658AE0D1, D184F927BCFBDE7063A0C9873BF2C174226E1AB5081A7108FCC66210CD117465 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
20:00:57.0068 0x0980 BTHPORT - ok
20:00:57.0115 0x0980 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\windows\system32\bthserv.dll
20:00:57.0115 0x0980 bthserv - ok
20:00:57.0162 0x0980 [ 52A1B7ECAB4C9EF70FD41241691E09D3, F7A5BFE72D3151E73DD9922A76964C08AC1FDCB8460D9A17DCF8B7969006AD42 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
20:00:57.0162 0x0980 BTHUSB - ok
20:00:57.0178 0x0980 [ BC279FCEE9FC8CBF991D5DE539771AA9, 5DE007672BFBFA78C44CC08251F495420402AFF4AD01541AA84AD37BD4A58190 ] btwampfl C:\windows\system32\DRIVERS\btwampfl.sys
20:00:57.0193 0x0980 btwampfl - ok
20:00:57.0209 0x0980 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
20:00:57.0209 0x0980 cdfs - ok
20:00:57.0225 0x0980 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\windows\System32\drivers\cdrom.sys
20:00:57.0240 0x0980 cdrom - ok
20:00:57.0271 0x0980 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\windows\System32\certprop.dll
20:00:57.0271 0x0980 CertPropSvc - ok
20:00:57.0318 0x0980 [ EF41D362661C5D71D0BEB6D2329739F7, 7D0BB550E5E337E0B76658254AD15C32D2E08F74E116AC07F7D5FAA09F3A524B ] cfwids C:\windows\system32\drivers\cfwids.sys
20:00:57.0334 0x0980 cfwids - ok
20:00:57.0350 0x0980 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\windows\System32\drivers\circlass.sys
20:00:57.0350 0x0980 circlass - ok
20:00:57.0381 0x0980 [ 9DA497AEAF35AA7BF7710132FC2A9906, D38DF749222BD0B6E8E6442CC79D56CF827A1430ACAB4F85F7FC469DD31A211C ] CLFS C:\windows\system32\drivers\CLFS.sys
20:00:57.0396 0x0980 CLFS - ok
20:00:57.0428 0x0980 [ 3E76A1547F2448BCEE3D2F4AE3931AB5, 31B41723FAA4210A86B1AE02D6C052BD8B738C4B89FB0177C1AE997D24BA5B8C ] CLVirtualDrive C:\windows\system32\DRIVERS\CLVirtualDrive.sys
20:00:57.0428 0x0980 CLVirtualDrive - ok
20:00:57.0428 0x0980 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\windows\System32\drivers\CmBatt.sys
20:00:57.0443 0x0980 CmBatt - ok
20:00:57.0459 0x0980 [ EFC79D3224D19FD926FFEA0A24729FEF, 41B0B41F7270C82691453679E03194845B9AF08C28800BF39D3CEB7CB1530BB8 ] CNG C:\windows\system32\Drivers\cng.sys
20:00:57.0490 0x0980 CNG - ok
20:00:57.0506 0x0980 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\windows\System32\drivers\CompositeBus.sys
20:00:57.0506 0x0980 CompositeBus - ok
20:00:57.0521 0x0980 COMSysApp - ok
20:00:57.0521 0x0980 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\windows\system32\drivers\condrv.sys
20:00:57.0537 0x0980 condrv - ok
20:00:57.0584 0x0980 [ DAC4D7D79C07957F237E1A4F24435E96, F0D5C21A403580D71F1F6B049C5BB043D3257D39FABCDE623E81CD48034610AC ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
20:00:57.0615 0x0980 cphs - ok
20:00:57.0631 0x0980 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\windows\system32\cryptsvc.dll
20:00:57.0646 0x0980 CryptSvc - ok
20:00:57.0678 0x0980 [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam C:\windows\system32\drivers\dam.sys
20:00:57.0678 0x0980 dam - ok
20:00:57.0725 0x0980 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] DcomLaunch C:\windows\system32\rpcss.dll
20:00:57.0740 0x0980 DcomLaunch - ok
20:00:57.0787 0x0980 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\windows\System32\defragsvc.dll
20:00:57.0803 0x0980 defragsvc - ok
20:00:57.0834 0x0980 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\windows\system32\das.dll
20:00:57.0850 0x0980 DeviceAssociationService - ok
20:00:57.0865 0x0980 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\windows\system32\umpnpmgr.dll
20:00:57.0881 0x0980 DeviceInstall - ok
20:00:57.0897 0x0980 [ FBFF94FC1FE0699A6BC5ACE270AB9EA1, 7D67E7BE539D9D515A1A6B9282C72114310E874DD1FE51E71F002DBB0E1439FB ] Dfsc C:\windows\system32\Drivers\dfsc.sys
20:00:57.0912 0x0980 Dfsc - ok
20:00:57.0928 0x0980 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\windows\system32\DRIVERS\ssudbus.sys
20:00:57.0928 0x0980 dg_ssudbus - ok
20:00:57.0959 0x0980 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\windows\system32\dhcpcore.dll
20:00:57.0975 0x0980 Dhcp - ok
20:00:58.0053 0x0980 [ 0AC9F83A5508935DE89C447473085EEA, 223782B17BACEFB0A663EB13514B68B919C95EF641CDDA7AC30CB239BC4307EC ] DiagTrack C:\windows\system32\diagtrack.dll
20:00:58.0074 0x0980 DiagTrack - ok
20:00:58.0105 0x0980 [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\windows\system32\drivers\disk.sys
20:00:58.0121 0x0980 disk - ok
20:00:58.0137 0x0980 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\windows\System32\drivers\dmvsc.sys
20:00:58.0152 0x0980 dmvsc - ok
20:00:58.0168 0x0980 [ 561CBB163EB3C8221D9B1D7D1E5CA477, 4D235E73CC127769A257B31A92180552276EC8DDD991F1106815FADEF385E72D ] Dnscache C:\windows\System32\dnsrslvr.dll
20:00:58.0183 0x0980 Dnscache - ok
20:00:58.0230 0x0980 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\windows\System32\dot3svc.dll
20:00:58.0277 0x0980 dot3svc - ok
20:00:58.0308 0x0980 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\windows\system32\dps.dll
20:00:58.0308 0x0980 DPS - ok
20:00:58.0340 0x0980 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
20:00:58.0355 0x0980 drmkaud - ok
20:00:58.0371 0x0980 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\windows\System32\DeviceSetupManager.dll
20:00:58.0387 0x0980 DsmSvc - ok
20:00:58.0449 0x0980 [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
20:00:58.0480 0x0980 DXGKrnl - ok
20:00:58.0512 0x0980 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\windows\System32\eapsvc.dll
20:00:58.0527 0x0980 Eaphost - ok
20:00:58.0590 0x0980 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\windows\system32\drivers\evbda.sys
20:00:58.0668 0x0980 ebdrv - ok
20:00:58.0683 0x0980 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\windows\System32\lsass.exe
20:00:58.0699 0x0980 EFS - ok
20:00:58.0715 0x0980 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\windows\system32\drivers\EhStorClass.sys
20:00:58.0715 0x0980 EhStorClass - ok
20:00:58.0730 0x0980 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\windows\system32\drivers\EhStorTcgDrv.sys
20:00:58.0730 0x0980 EhStorTcgDrv - ok
20:00:58.0746 0x0980 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\windows\System32\drivers\errdev.sys
20:00:58.0762 0x0980 ErrDev - ok
20:00:58.0809 0x0980 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\windows\system32\es.dll
20:00:58.0824 0x0980 EventSystem - ok
20:00:58.0840 0x0980 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\windows\system32\drivers\exfat.sys
20:00:58.0855 0x0980 exfat - ok
20:00:58.0855 0x0980 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\windows\system32\drivers\fastfat.sys
20:00:58.0871 0x0980 fastfat - ok
20:00:58.0918 0x0980 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\windows\system32\fxssvc.exe
20:00:58.0934 0x0980 Fax - ok
20:00:58.0934 0x0980 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\windows\System32\drivers\fdc.sys
20:00:58.0949 0x0980 fdc - ok
20:00:58.0980 0x0980 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\windows\system32\fdPHost.dll
20:00:58.0996 0x0980 fdPHost - ok
20:00:59.0027 0x0980 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\windows\system32\fdrespub.dll
20:00:59.0043 0x0980 FDResPub - ok
20:00:59.0059 0x0980 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\windows\system32\fhsvc.dll
20:00:59.0074 0x0980 fhsvc - ok
20:00:59.0074 0x0980 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
20:00:59.0090 0x0980 FileInfo - ok
20:00:59.0105 0x0980 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\windows\system32\drivers\filetrace.sys
20:00:59.0105 0x0980 Filetrace - ok
20:00:59.0121 0x0980 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\windows\System32\drivers\flpydisk.sys
20:00:59.0121 0x0980 flpydisk - ok
20:00:59.0152 0x0980 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\windows\system32\drivers\fltmgr.sys
20:00:59.0168 0x0980 FltMgr - ok
20:00:59.0215 0x0980 [ 1EFEF3B4EF2B241263F0F791EA128598, B6CADC254B0779E43E0D6AB6125A7E7ED8FF50C3158911681BA7B43160A08176 ] FontCache C:\windows\system32\FntCache.dll
20:00:59.0262 0x0980 FontCache - ok
20:00:59.0309 0x0980 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:00:59.0340 0x0980 FontCache3.0.0.0 - ok
20:00:59.0371 0x0980 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\windows\system32\drivers\FsDepends.sys
20:00:59.0387 0x0980 FsDepends - ok
20:00:59.0402 0x0980 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
20:00:59.0402 0x0980 Fs_Rec - ok
20:00:59.0452 0x0980 [ D4AB6EE3D715BC44C00277FD934FAACF, DE8A8B14D7BA73BA1B5A833DE193CA65EDFE512A57D84F4F2CE19D9646D97F4E ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
20:00:59.0470 0x0980 fvevol - ok
20:00:59.0519 0x0980 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\windows\System32\drivers\fxppm.sys
20:00:59.0528 0x0980 FxPPM - ok
20:00:59.0540 0x0980 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
20:00:59.0548 0x0980 gagp30kx - ok
20:00:59.0567 0x0980 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\windows\System32\drivers\vmgencounter.sys
20:00:59.0576 0x0980 gencounter - ok
20:00:59.0596 0x0980 [ B93252C4C5A3733ECD5522CAF88DE02D, 382450F0FF238B6077A78F75AC5D4E53AD7D884706B90E7AC4D4DF467C9A2162 ] GigasetGenericUSB_x64 C:\windows\system32\DRIVERS\GigasetGenericUSB_x64.sys
20:00:59.0603 0x0980 GigasetGenericUSB_x64 - ok
20:00:59.0617 0x0980 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\windows\system32\Drivers\msgpioclx.sys
20:00:59.0632 0x0980 GPIOClx0101 - ok
20:00:59.0680 0x0980 [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\windows\System32\gpsvc.dll
20:00:59.0709 0x0980 gpsvc - ok
20:00:59.0751 0x0980 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:00:59.0767 0x0980 gupdate - ok
20:00:59.0767 0x0980 [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:00:59.0783 0x0980 gupdatem - ok
20:00:59.0798 0x0980 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:00:59.0814 0x0980 HdAudAddService - ok
20:00:59.0830 0x0980 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\windows\System32\drivers\HDAudBus.sys
20:00:59.0845 0x0980 HDAudBus - ok
20:00:59.0861 0x0980 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\windows\System32\drivers\HidBatt.sys
20:00:59.0876 0x0980 HidBatt - ok
20:00:59.0892 0x0980 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\windows\System32\drivers\hidbth.sys
20:00:59.0892 0x0980 HidBth - ok
20:00:59.0892 0x0980 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\windows\System32\drivers\hidi2c.sys
20:00:59.0908 0x0980 hidi2c - ok
20:00:59.0923 0x0980 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\windows\System32\drivers\hidir.sys
20:00:59.0923 0x0980 HidIr - ok
20:00:59.0955 0x0980 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\windows\system32\hidserv.dll
20:00:59.0970 0x0980 hidserv - ok
20:01:00.0002 0x0980 [ 49676FEC898AB2A11B157F848269A56E, 011E6DDEF9570212520F92FEFD205E1F8104F198B57C40D11BE857FCBCC5F68D ] HidUsb C:\windows\System32\drivers\hidusb.sys
20:01:00.0002 0x0980 HidUsb - ok
20:01:00.0033 0x0980 [ 7829E439EBDDDB0FEFD6DEBCEE6B09AD, FF6BB82CE0C21513E407FF465C768805CF202A7B4040140A944A0413875BEC37 ] HipShieldK C:\windows\system32\drivers\HipShieldK.sys
20:01:00.0033 0x0980 HipShieldK - ok
20:01:00.0064 0x0980 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\windows\system32\kmsvc.dll
20:01:00.0080 0x0980 hkmsvc - ok
20:01:00.0111 0x0980 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:01:00.0126 0x0980 HomeGroupListener - ok
20:01:00.0158 0x0980 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:01:00.0173 0x0980 HomeGroupProvider - ok
20:01:00.0236 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
20:01:00.0267 0x0980 HomeNetSvc - ok
20:01:00.0283 0x0980 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
20:01:00.0283 0x0980 HpSAMD - ok
20:01:00.0314 0x0980 [ 76A6FDA32A21515B67633497D8FDB1E4, 7DCAEC3186EAFDD4A53BCD8AAE9B82CBA8871C89B929FFD3BA43E675B95B2495 ] HTTP C:\windows\system32\drivers\HTTP.sys
20:01:00.0345 0x0980 HTTP - ok
20:01:00.0361 0x0980 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
20:01:00.0376 0x0980 hwpolicy - ok
20:01:00.0392 0x0980 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\windows\System32\drivers\hyperkbd.sys
20:01:00.0392 0x0980 hyperkbd - ok
20:01:00.0408 0x0980 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\windows\system32\DRIVERS\HyperVideo.sys
20:01:00.0423 0x0980 HyperVideo - ok
20:01:00.0455 0x0980 [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\windows\System32\drivers\i8042prt.sys
20:01:00.0455 0x0980 i8042prt - ok
20:01:00.0470 0x0980 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\windows\System32\drivers\iaLPSSi_GPIO.sys
20:01:00.0486 0x0980 iaLPSSi_GPIO - ok
20:01:00.0486 0x0980 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\windows\System32\drivers\iaLPSSi_I2C.sys
20:01:00.0501 0x0980 iaLPSSi_I2C - ok
20:01:00.0517 0x0980 [ 25555186E4FBDF0E30A5DBFC9B9A73F9, 4A9DAC2B56389C5955C343E202C6E81CD3A608E78A4BB7E6ED560719DF02C955 ] iaStorA C:\windows\system32\drivers\iaStorA.sys
20:01:00.0533 0x0980 iaStorA - ok
20:01:00.0548 0x0980 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\windows\system32\drivers\iaStorAV.sys
20:01:00.0580 0x0980 iaStorAV - ok
20:01:00.0611 0x0980 [ 6241810294275CEA59EBA9733080E5EE, F9A1A505B9279CD660CAAF4F8D21BDC34AC75FD86E881632A378B9BF39A3738E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
20:01:00.0611 0x0980 IAStorDataMgrSvc - ok
20:01:00.0626 0x0980 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
20:01:00.0642 0x0980 iaStorV - ok
20:01:00.0642 0x0980 IEEtwCollectorService - ok
20:01:00.0751 0x0980 [ 5863E2DD2E5C2D1B1F70C3826C162A7B, A6A0DBFA91F53D116AFFC1644F636A9D33A20B00A842A190190584F8AE2D1FF0 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
20:01:00.0830 0x0980 igfx - ok
20:01:00.0845 0x0980 [ C5202C7669226FF13A74228BD42AD982, BA843DEF6649DF34F9D0D0A380E77557D7785B8239A61EA33EFF08AEF0C8E6DE ] igfxCUIService1.0.0.0 C:\windows\system32\igfxCUIService.exe
20:01:00.0876 0x0980 igfxCUIService1.0.0.0 - ok
20:01:00.0923 0x0980 [ 5697FD05EC6915A1E7193D658D8D6E05, 0179C3AF29880AA21F609CB471034EA5FA49324ACCE12736866675C037EBEC7A ] IKEEXT C:\windows\System32\ikeext.dll
20:01:00.0939 0x0980 IKEEXT - ok
20:01:00.0970 0x0980 [ 5950F69F9B345952F3C2275C39EA393B, 382923DE0F5F25285F8C86BA628350DF1CFB6E63FF20736CF9285FB0F36A76DE ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
20:01:00.0970 0x0980 intaud_WaveExtensible - ok
20:01:01.0095 0x0980 [ ECA5E9DA350D2D21376260CD3602449A, B027FE77062488B8FC0EEE2113341DD922CE1BD741DF4F5D92DCCDC2E2C18BB2 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:01:01.0158 0x0980 IntcAzAudAddService - ok
20:01:01.0189 0x0980 [ EC80E6B9E27DC3E22ED5B2E0E75A39C0, 8EEC89F88AE79DA256BB651983397773F6B25139006C8A7C8F77960F47774CF5 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
20:01:01.0205 0x0980 IntcDAud - ok
20:01:01.0251 0x0980 [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
20:01:01.0267 0x0980 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
20:01:01.0392 0x0980 Detect skipped due to KSN trusted
20:01:01.0392 0x0980 Intel(R) Capability Licensing Service Interface - ok
20:01:01.0439 0x0980 [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
20:01:01.0470 0x0980 Intel(R) Capability Licensing Service TCP IP Interface - ok
20:01:01.0501 0x0980 [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
20:01:01.0517 0x0980 Intel(R) ME Service - ok
20:01:01.0533 0x0980 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\windows\system32\drivers\intelide.sys
20:01:01.0533 0x0980 intelide - ok
20:01:01.0564 0x0980 [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep C:\windows\system32\drivers\intelpep.sys
20:01:01.0580 0x0980 intelpep - ok
20:01:01.0595 0x0980 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\windows\System32\drivers\intelppm.sys
20:01:01.0595 0x0980 intelppm - ok
20:01:01.0611 0x0980 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
20:01:01.0626 0x0980 IpFilterDriver - ok
20:01:01.0658 0x0980 [ B452623C1DE60544054E784D94A7AA47, 57AECDEE0AB2B80DFFE11E43608988D46E9169288CB56D644DDE2CAFED6AFD40 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
20:01:01.0689 0x0980 iphlpsvc - ok
20:01:01.0720 0x0980 [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\windows\System32\drivers\IPMIDrv.sys
20:01:01.0736 0x0980 IPMIDRV - ok
20:01:01.0736 0x0980 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\windows\system32\drivers\ipnat.sys
20:01:01.0751 0x0980 IPNAT - ok
20:01:01.0783 0x0980 [ A9E19D4C0E9487544B0A87D511514DA9, 83767BA2A7EE1DE39DBF824B57D898355F8C5E3CE146CA280B0E336428837E70 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:01:01.0814 0x0980 iPod Service - ok
20:01:01.0814 0x0980 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\windows\system32\drivers\irenum.sys
20:01:01.0830 0x0980 IRENUM - ok
20:01:01.0845 0x0980 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\windows\system32\drivers\isapnp.sys
20:01:01.0845 0x0980 isapnp - ok
20:01:01.0877 0x0980 [ AD3C1F4BD9167420F04052FDA197CF29, 82B687092DFC50E8885656AF06BFB7559930750F4905BC4DBDA3A5D334A443D1 ] iScsiPrt C:\windows\System32\drivers\msiscsi.sys
20:01:01.0892 0x0980 iScsiPrt - ok
20:01:01.0908 0x0980 [ F1D3A377ED9BA1CA449824C41CAF104C, EA0E90D5D827664CFDB644753C6DC134C3F8F852F24175EC8328A9FA925B25BF ] iwdbus C:\windows\System32\drivers\iwdbus.sys
20:01:01.0923 0x0980 iwdbus - ok
20:01:01.0939 0x0980 [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
20:01:01.0955 0x0980 jhi_service - ok
20:01:01.0970 0x0980 [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\windows\System32\drivers\kbdclass.sys
20:01:01.0986 0x0980 kbdclass - ok
20:01:02.0002 0x0980 [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\windows\System32\drivers\kbdhid.sys
20:01:02.0017 0x0980 kbdhid - ok
20:01:02.0049 0x0980 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\windows\system32\DRIVERS\kdnic.sys
20:01:02.0049 0x0980 kdnic - ok
20:01:02.0080 0x0980 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\windows\system32\lsass.exe
20:01:02.0095 0x0980 KeyIso - ok
20:01:02.0127 0x0980 [ 304DA394D958BC3B62AF6DF514005B01, 8D17777C82F034E800181E82D30FCED800CBC46CD659AE2E0D972CA1381BD4C2 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
20:01:02.0127 0x0980 KSecDD - ok
20:01:02.0174 0x0980 [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
20:01:02.0174 0x0980 KSecPkg - ok
20:01:02.0189 0x0980 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
20:01:02.0205 0x0980 ksthunk - ok
20:01:02.0236 0x0980 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\windows\system32\msdtckrm.dll
20:01:02.0252 0x0980 KtmRm - ok
20:01:02.0283 0x0980 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\windows\system32\srvsvc.dll
20:01:02.0298 0x0980 LanmanServer - ok
20:01:02.0314 0x0980 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:01:02.0330 0x0980 LanmanWorkstation - ok
20:01:02.0361 0x0980 [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\windows\System32\GeofenceMonitorService.dll
20:01:02.0377 0x0980 lfsvc - ok
20:01:02.0470 0x0980 [ 337FA50FFDED5E2BC94B36BF625AB681, BC77CCED8F2B52D26C7A2D7960FB5C1690F5D7E41013644C9226A85C9FF4FA2C ] LiveUpdateSvc C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
20:01:02.0533 0x0980 LiveUpdateSvc - ok
20:01:02.0533 0x0980 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
20:01:02.0548 0x0980 lltdio - ok
20:01:02.0564 0x0980 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\windows\System32\lltdsvc.dll
20:01:02.0580 0x0980 lltdsvc - ok
20:01:02.0595 0x0980 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\windows\System32\lmhsvc.dll
20:01:02.0611 0x0980 lmhosts - ok
20:01:02.0642 0x0980 [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
20:01:02.0658 0x0980 LMS - ok
20:01:02.0674 0x0980 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
20:01:02.0689 0x0980 LSI_SAS - ok
20:01:02.0705 0x0980 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
20:01:02.0720 0x0980 LSI_SAS2 - ok
20:01:02.0736 0x0980 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\windows\system32\drivers\lsi_sas3.sys
20:01:02.0736 0x0980 LSI_SAS3 - ok
20:01:02.0752 0x0980 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\windows\system32\drivers\lsi_sss.sys
20:01:02.0752 0x0980 LSI_SSS - ok
20:01:02.0798 0x0980 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\windows\System32\lsm.dll
20:01:02.0814 0x0980 LSM - ok
20:01:02.0830 0x0980 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\windows\system32\drivers\luafv.sys
20:01:02.0830 0x0980 luafv - ok
20:01:02.0877 0x0980 [ B4CA01B110124251C29076FDC6000CA7, 4AC52FEE9F7F333D8A9845D9B0A561F6AEB0233BB148B89CF576120299C42D9B ] McAfee SiteAdvisor Service C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
20:01:02.0892 0x0980 McAfee SiteAdvisor Service - ok
20:01:02.0955 0x0980 [ BDBCF7ED4238E511443B596CC8277119, 90635EFCD443AF2042AED00950BC456499D866F67C036FAC95865F45E1A3D4B9 ] McAPExe C:\Program Files\McAfee\MSC\McAPExe.exe
20:01:02.0970 0x0980 McAPExe - ok
20:01:03.0002 0x0980 [ 16EF8A0930296943D124F06EA4E21544, 61248EAD26E1296E1445C17EC44693A3ECF1C64738213EF3AA2ADCBD4E9CB89A ] McAWFwk c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
20:01:03.0017 0x0980 McAWFwk - ok
20:01:03.0033 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] mcbootdelaystartsvc C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
20:01:03.0048 0x0980 mcbootdelaystartsvc - ok
20:01:03.0173 0x0980 [ 40B02F6D4B331443CC7E879BCD87100F, ACF976DC9565A905F71EFE9A25516A0F1B128E70B961B8D8256F51474B1F78D7 ] mccspsvc C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe
20:01:03.0220 0x0980 mccspsvc - ok
20:01:03.0220 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
20:01:03.0236 0x0980 McMPFSvc - ok
20:01:03.0252 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McNaiAnn C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
20:01:03.0267 0x0980 McNaiAnn - ok
20:01:03.0298 0x0980 [ 9151C5CDF8489F9FFE9854601FDA9A0F, 6E080E216EE1F16A7B72B3F42434F34C75A8082A3CBAAF7265116CCD22AFE582 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
20:01:03.0314 0x0980 McODS - ok
20:01:03.0330 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McOobeSv2 C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
20:01:03.0345 0x0980 McOobeSv2 - ok
20:01:03.0361 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] mcpltsvc C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
20:01:03.0377 0x0980 mcpltsvc - ok
20:01:03.0392 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] McProxy C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
20:01:03.0408 0x0980 McProxy - ok
20:01:03.0423 0x0980 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\windows\system32\drivers\megasas.sys
20:01:03.0439 0x0980 megasas - ok
20:01:03.0455 0x0980 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\windows\system32\drivers\megasr.sys
20:01:03.0470 0x0980 megasr - ok
20:01:03.0486 0x0980 [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64 C:\windows\system32\DRIVERS\TeeDriverx64.sys
20:01:03.0502 0x0980 MEIx64 - ok
20:01:03.0533 0x0980 [ FAF196A8E1905DB9248790583B3745E2, C8E6A3E74636E4D04816D0B35C2691F81E766B03726E05993429A0BF15528354 ] mfeaack C:\windows\system32\drivers\mfeaack.sys
20:01:03.0533 0x0980 mfeaack - ok
20:01:03.0564 0x0980 [ A1A2DEA7E180BFC8284062DBCC67A18D, 77041A9D7429E615CE64E45A14BD53FAFF22284B0F3211399F4D6BA681B2A9DF ] mfeavfk C:\windows\system32\drivers\mfeavfk.sys
20:01:03.0580 0x0980 mfeavfk - ok
20:01:03.0595 0x0980 [ E8B413490D4E3CD5CD36F9C442357F95, 684BD860B85DAC2AB06917580542F7F206B33122F3D450DD18A4736841EC1D93 ] mfeelamk C:\windows\system32\drivers\mfeelamk.sys
20:01:03.0611 0x0980 mfeelamk - ok
20:01:03.0642 0x0980 [ 95A4DC60385F57418BD3361262D5F7C8, 5FAAE03B306710509E36A7B77DE9D36E4A1A38832403C29247E1A8B8C1D918B3 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
20:01:03.0642 0x0980 mfefire - ok
20:01:03.0674 0x0980 [ 767386839AD3C39F653512240C06D0D4, EA9D4DCC41AB1C1BC2BD86368C4F22AC43D046EAAAFFA13A89A8AA4D76F0B972 ] mfefirek C:\windows\system32\drivers\mfefirek.sys
20:01:03.0689 0x0980 mfefirek - ok
20:01:03.0752 0x0980 [ FAF5C37877D57B16D7E2DAFA29969F96, DA83A140B8727A4FE0DC7B845651BCA31988B0779DA6B3909BB03A4DF9470709 ] mfehidk C:\windows\system32\drivers\mfehidk.sys
20:01:03.0767 0x0980 mfehidk - ok
20:01:03.0799 0x0980 [ 989A3E3E8A686CC87A44F97CF45C0175, 373E99A8CCF6495EEC14018A437484516E7DC864E971514CB4955A92593B62EB ] mfemms C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
20:01:03.0814 0x0980 mfemms - ok
20:01:03.0845 0x0980 [ 34812CE00FAE95A6275D6B58072457F5, 23118A5E58F88AF5B8C5D4C15AEFA99C47D37A8E8C8FBF840DEEECC3C483AD8B ] mfencbdc C:\windows\system32\DRIVERS\mfencbdc.sys
20:01:03.0861 0x0980 mfencbdc - ok
20:01:03.0861 0x0980 mfencbdc01 - ok
20:01:03.0877 0x0980 [ CF9D4FCA3A5C737DCF72B9F94BB0AC62, 8534DADB74EF745F50A1A148DE5CBAD573B890C604CDA08276CDE3D5C2E8788F ] mfencrk C:\windows\system32\DRIVERS\mfencrk.sys
20:01:03.0877 0x0980 mfencrk - ok
20:01:03.0908 0x0980 [ DA49A90A69B3284FD11B6F02D0209A99, 759380964E6450FF21FB9A2BD23BA0394B005EC332E714D40D47262FCDC6CFE9 ] mfesapsn C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys
20:01:03.0923 0x0980 mfesapsn - ok
20:01:03.0939 0x0980 [ 8DFE9C58B1509E3BBC6FD92B954204D9, 72D519AB2F5E3A335C61C1B632BB846FCD6406194EC36E965D52C1028E68FB33 ] mfevtp C:\Windows\system32\mfevtps.exe
20:01:03.0955 0x0980 mfevtp - ok
20:01:03.0970 0x0980 [ A47260605572FE4E4C42AB0A3CC0B4E9, 4DE6A365C8C4041AA27BD853912F7F5BED3ABF24E63A2932380189D30764D5FB ] mfewfpk C:\windows\system32\drivers\mfewfpk.sys
20:01:03.0986 0x0980 mfewfpk - ok
20:01:04.0017 0x0980 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\windows\system32\mmcss.dll
20:01:04.0017 0x0980 MMCSS - ok
20:01:04.0049 0x0980 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\windows\system32\drivers\modem.sys
20:01:04.0049 0x0980 Modem - ok
20:01:04.0158 0x0980 [ 446FCA715F9A21A58C6FDA8455315760, B5C79AA540094E32A469F88886EDC4B8A7D6BFB2EAE0A14B5C518427A4A21395 ] ModuleCoreService C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
20:01:04.0189 0x0980 ModuleCoreService - ok
20:01:04.0205 0x0980 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\windows\System32\drivers\monitor.sys
20:01:04.0221 0x0980 monitor - ok
20:01:04.0221 0x0980 [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\windows\System32\drivers\mouclass.sys
20:01:04.0236 0x0980 mouclass - ok
20:01:04.0252 0x0980 [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\windows\System32\drivers\mouhid.sys
20:01:04.0252 0x0980 mouhid - ok
20:01:04.0283 0x0980 [ 24DABC0A77FAFDC0E379AB3B30F61BB6, E66624ABBF1D742879035F9161F9D3713DE7B759B3D3CF8B96C9E397A02FCF82 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
20:01:04.0299 0x0980 mountmgr - ok
20:01:04.0330 0x0980 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
20:01:04.0330 0x0980 mpsdrv - ok
20:01:04.0377 0x0980 [ D1418745A5472F3930A288E05B9E2C05, 95785F0FA7EE239459C0288DB37E9E54648029FD6FE45A61E6343526D67FFA32 ] MpsSvc C:\windows\system32\mpssvc.dll
20:01:04.0408 0x0980 MpsSvc - ok
20:01:04.0457 0x0980 [ 3F818C1518DA702C8F10259095C9BDE0, B98C1A6F9A3C01A10503B2B2C45CC89AFF17B346B15990F4DB4820F68BDC62C8 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
20:01:04.0469 0x0980 MRxDAV - ok
20:01:04.0503 0x0980 [ C3B0566DE49265AE98405825938C20A1, F8BCA4A5AF21B841C998D4772DA9FF84E45F1356AA1285A1D48C06574A81CA4C ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
20:01:04.0519 0x0980 mrxsmb - ok
20:01:04.0564 0x0980 [ 15D7AF1A26CCEBA32DF21A8E2098F463, 84390806AD3A9651DAB803E9257EEE851B898ED2AB56D8936E8C9F6B41967243 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
20:01:04.0601 0x0980 mrxsmb10 - ok
20:01:04.0616 0x0980 [ 0790EEB1EC199F8BE8259E47B373ED23, F9330F43B40675CCB60804182EF04BFBA3837ED14C798788A4B27D65A646D1C7 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
20:01:04.0632 0x0980 mrxsmb20 - ok
20:01:04.0660 0x0980 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\windows\system32\DRIVERS\bridge.sys
20:01:04.0670 0x0980 MsBridge - ok
20:01:04.0677 0x0980 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\windows\System32\msdtc.exe
20:01:04.0688 0x0980 MSDTC - ok
20:01:04.0705 0x0980 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\windows\system32\drivers\Msfs.sys
20:01:04.0716 0x0980 Msfs - ok
20:01:04.0723 0x0980 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\windows\System32\drivers\msgpiowin32.sys
20:01:04.0732 0x0980 msgpiowin32 - ok
20:01:04.0741 0x0980 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
20:01:04.0750 0x0980 mshidkmdf - ok
20:01:04.0751 0x0980 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\windows\System32\drivers\mshidumdf.sys
20:01:04.0767 0x0980 mshidumdf - ok
20:01:04.0767 0x0980 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
20:01:04.0783 0x0980 msisadrv - ok
20:01:04.0798 0x0980 [ A06142B3850B06972F1C89748FAA2C02, B1CCC5C8D100FEB384FCC85FED2A77F47DA4C9BA5F6889A130F4D73E30ACAA78 ] MSiSCSI C:\windows\system32\iscsiexe.dll
20:01:04.0814 0x0980 MSiSCSI - ok
20:01:04.0814 0x0980 msiserver - ok
20:01:04.0845 0x0980 [ FFD55794A830AA05BF4E59D724D7D344, 2BD84931D4BF21A128319E48D55394C8415F42FC1D1CC71C08C6C2792BA1480E ] MSK80Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
20:01:04.0861 0x0980 MSK80Service - ok
20:01:04.0861 0x0980 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
20:01:04.0876 0x0980 MSKSSRV - ok
20:01:04.0908 0x0980 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\windows\system32\DRIVERS\mslldp.sys
20:01:04.0908 0x0980 MsLldp - ok
20:01:04.0923 0x0980 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
20:01:04.0939 0x0980 MSPCLOCK - ok
20:01:04.0954 0x0980 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
20:01:04.0954 0x0980 MSPQM - ok
20:01:04.0971 0x0980 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\windows\system32\drivers\MsRPC.sys
20:01:04.0986 0x0980 MsRPC - ok
20:01:04.0986 0x0980 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\windows\System32\drivers\mssmbios.sys
20:01:04.0986 0x0980 mssmbios - ok
20:01:05.0002 0x0980 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
20:01:05.0002 0x0980 MSTEE - ok
20:01:05.0018 0x0980 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\windows\System32\drivers\MTConfig.sys
20:01:05.0018 0x0980 MTConfig - ok
20:01:05.0065 0x0980 [ 438EA7A2D8D4F9B8AFB64748ACA70BA8, AEEB7B657B645C4006C6D5E8D07ECE581DEE7AD22EA1A587C552574990CF091B ] Mup C:\windows\system32\Drivers\mup.sys
20:01:05.0065 0x0980 Mup - ok
20:01:05.0080 0x0980 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\windows\system32\drivers\mvumis.sys
20:01:05.0096 0x0980 mvumis - ok
20:01:05.0127 0x0980 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\windows\system32\qagentRT.dll
20:01:05.0143 0x0980 napagent - ok
20:01:05.0190 0x0980 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
20:01:05.0205 0x0980 NativeWifiP - ok
20:01:05.0237 0x0980 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\windows\System32\ncasvc.dll
20:01:05.0237 0x0980 NcaSvc - ok
20:01:05.0268 0x0980 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\windows\System32\ncbservice.dll
20:01:05.0283 0x0980 NcbService - ok
20:01:05.0315 0x0980 [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\windows\System32\NcdAutoSetup.dll
20:01:05.0315 0x0980 NcdAutoSetup - ok
20:01:05.0361 0x0980 [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\windows\system32\drivers\ndis.sys
20:01:05.0393 0x0980 NDIS - ok
20:01:05.0424 0x0980 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
20:01:05.0424 0x0980 NdisCap - ok
20:01:05.0455 0x0980 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\windows\system32\DRIVERS\NdisImPlatform.sys
20:01:05.0471 0x0980 NdisImPlatform - ok
20:01:05.0502 0x0980 [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
20:01:05.0502 0x0980 NdisTapi - ok
20:01:05.0518 0x0980 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
20:01:05.0533 0x0980 Ndisuio - ok
20:01:05.0533 0x0980 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\windows\System32\drivers\NdisVirtualBus.sys
20:01:05.0549 0x0980 NdisVirtualBus - ok
20:01:05.0580 0x0980 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
20:01:05.0596 0x0980 NdisWan - ok
20:01:05.0596 0x0980 [ C3755FCF9A0B5C6FE8ED9E873B85D3CE, 4D3DAFAFA5FB2930522D6DA536E3A731BABE0C24613C190D2330DB415D1A6515 ] NdisWanLegacy C:\windows\system32\DRIVERS\ndiswan.sys
20:01:05.0612 0x0980 NdisWanLegacy - ok
20:01:05.0627 0x0980 [ B8F36CBC72FC5C8B8A30AD850165EA8E, 478454B1399700B745265A64EC9C797C66BD0141471200BCF222F5EB15B0F40C ] NDProxy C:\windows\system32\drivers\NDProxy.sys
20:01:05.0643 0x0980 NDProxy - ok
20:01:05.0658 0x0980 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\windows\system32\drivers\Ndu.sys
20:01:05.0674 0x0980 Ndu - ok
20:01:05.0690 0x0980 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\windows\system32\DRIVERS\netaapl64.sys
20:01:05.0705 0x0980 Netaapl - ok
20:01:05.0721 0x0980 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
20:01:05.0721 0x0980 NetBIOS - ok
20:01:05.0752 0x0980 [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
20:01:05.0768 0x0980 NetBT - ok
20:01:05.0783 0x0980 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\windows\system32\lsass.exe
20:01:05.0799 0x0980 Netlogon - ok
20:01:05.0815 0x0980 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\windows\System32\netman.dll
20:01:05.0830 0x0980 Netman - ok
20:01:05.0870 0x0980 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\windows\System32\netprofmsvc.dll
20:01:05.0886 0x0980 netprofm - ok
20:01:05.0917 0x0980 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:01:05.0933 0x0980 NetTcpPortSharing - ok
20:01:05.0948 0x0980 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\windows\System32\drivers\netvsc63.sys
20:01:05.0979 0x0980 netvsc - ok
20:01:06.0073 0x0980 [ B636B4A8E59A73033B766EA7FD7C3B81, CAC8614DEE83623DE56C969C668A33366793779084B6A23F59ADC98392115F8C ] NETwNe64 C:\windows\system32\DRIVERS\NETwew02.sys
20:01:06.0136 0x0980 NETwNe64 - ok
20:01:06.0167 0x0980 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\windows\System32\nlasvc.dll
20:01:06.0183 0x0980 NlaSvc - ok
20:01:06.0198 0x0980 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\windows\system32\drivers\Npfs.sys
20:01:06.0198 0x0980 Npfs - ok
20:01:06.0214 0x0980 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\windows\System32\drivers\npsvctrig.sys
20:01:06.0214 0x0980 npsvctrig - ok
20:01:06.0245 0x0980 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\windows\system32\nsisvc.dll
20:01:06.0261 0x0980 nsi - ok
20:01:06.0261 0x0980 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
20:01:06.0276 0x0980 nsiproxy - ok
20:01:06.0339 0x0980 [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\windows\system32\drivers\Ntfs.sys
20:01:06.0386 0x0980 Ntfs - ok
20:01:06.0401 0x0980 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\windows\system32\drivers\Null.sys
20:01:06.0417 0x0980 Null - ok
20:01:06.0417 0x0980 NVHDA - ok
20:01:06.0417 0x0980 nvlddmkm - ok
20:01:06.0448 0x0980 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\windows\system32\drivers\nvraid.sys
20:01:06.0448 0x0980 nvraid - ok
20:01:06.0464 0x0980 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\windows\system32\drivers\nvstor.sys
20:01:06.0479 0x0980 nvstor - ok
20:01:06.0495 0x0980 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
20:01:06.0495 0x0980 nv_agp - ok
20:01:06.0542 0x0980 [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:01:06.0558 0x0980 ose64 - ok
20:01:06.0589 0x0980 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
20:01:06.0620 0x0980 p2pimsvc - ok
20:01:06.0667 0x0980 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\windows\system32\p2psvc.dll
20:01:06.0683 0x0980 p2psvc - ok
20:01:06.0714 0x0980 [ 57DCE4FB0467986AE78E1C6FC5240D32, F7F3ADD1B48E4D6BB0A664A2FE556F71ED7453054B4FB667A29BE050C845045B ] Parport C:\windows\System32\drivers\parport.sys
20:01:06.0714 0x0980 Parport - ok
20:01:06.0745 0x0980 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\windows\system32\drivers\partmgr.sys
20:01:06.0761 0x0980 partmgr - ok
20:01:06.0823 0x0980 [ 0A2DF1055FEEA30DFF73DAC0DA45FDE4, 497B2AE591ABBCFA8FC571D9C1D750006212F2D2DDF12F5A9E7FFA811CD707A3 ] PcaSvc C:\windows\System32\pcasvc.dll
20:01:06.0854 0x0980 PcaSvc - ok
20:01:06.0886 0x0980 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\windows\system32\drivers\pci.sys
20:01:06.0901 0x0980 pci - ok
20:01:06.0917 0x0980 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\windows\system32\drivers\pciide.sys
20:01:06.0917 0x0980 pciide - ok
20:01:06.0933 0x0980 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\windows\system32\drivers\pcmcia.sys
20:01:06.0948 0x0980 pcmcia - ok
20:01:06.0964 0x0980 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\windows\system32\drivers\pcw.sys
20:01:06.0964 0x0980 pcw - ok
20:01:06.0980 0x0980 [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc C:\windows\system32\drivers\pdc.sys
20:01:06.0995 0x0980 pdc - ok
20:01:07.0026 0x0980 [ FD5C43ACDBB9E3C7F91523FAFD74D4C0, 5DDA45E0B4C1F275801F00EF65672BC1A90B3C298723E1064191142FB83D4831 ] PDF24 C:\Program Files (x86)\PDF24\pdf24.exe
20:01:07.0058 0x0980 PDF24 - ok
20:01:07.0073 0x0980 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\windows\system32\drivers\peauth.sys
20:01:07.0089 0x0980 PEAUTH - ok
20:01:07.0136 0x0980 [ EDD4C63050ED1821B4C92D06FFD7180B, 33C6B54147771C813CD78CEF66C0A76CA50D9F1D13D41E6764310BF8C0D8D89D ] PEFService C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
20:01:07.0167 0x0980 PEFService - ok
20:01:07.0198 0x0980 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\windows\SysWow64\perfhost.exe
20:01:07.0214 0x0980 PerfHost - ok
20:01:07.0261 0x0980 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\windows\system32\pla.dll
20:01:07.0308 0x0980 pla - ok
20:01:07.0339 0x0980 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\windows\system32\umpnpmgr.dll
20:01:07.0355 0x0980 PlugPlay - ok
20:01:07.0401 0x0980 [ F13CE31540E0A8EF6A069B8A1A6EAE7B, 759434B7B4BB6E5BEC0BED4EA8E0AA3CB05698D555874F5F5DA5873C6CE10622 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
20:01:07.0417 0x0980 PMBDeviceInfoProvider - ok
20:01:07.0448 0x0980 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
20:01:07.0448 0x0980 PNRPAutoReg - ok
20:01:07.0480 0x0980 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
20:01:07.0495 0x0980 PNRPsvc - ok
20:01:07.0526 0x0980 [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent C:\windows\System32\ipsecsvc.dll
20:01:07.0542 0x0980 PolicyAgent - ok
20:01:07.0558 0x0980 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\windows\system32\umpo.dll
20:01:07.0573 0x0980 Power - ok
20:01:07.0667 0x0980 [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify C:\windows\system32\spool\drivers\x64\3\PrintConfig.dll
20:01:07.0730 0x0980 PrintNotify - ok
20:01:07.0776 0x0980 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\windows\System32\drivers\processr.sys
20:01:07.0792 0x0980 Processor - ok
20:01:07.0808 0x0980 [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\windows\system32\profsvc.dll
20:01:07.0823 0x0980 ProfSvc - ok
20:01:07.0855 0x0980 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\windows\system32\DRIVERS\pacer.sys
20:01:07.0855 0x0980 Psched - ok
20:01:07.0901 0x0980 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\windows\system32\qwave.dll
20:01:07.0917 0x0980 QWAVE - ok
20:01:07.0948 0x0980 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
20:01:07.0948 0x0980 QWAVEdrv - ok
20:01:07.0980 0x0980 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
20:01:07.0980 0x0980 RasAcd - ok
20:01:08.0011 0x0980 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\windows\System32\rasauto.dll
20:01:08.0026 0x0980 RasAuto - ok
20:01:08.0058 0x0980 [ 15C0034561FE5B03FA376F1A6232478B, 0F9B5C2BD7D8803FF3C5ED957D3F0859F2A59B74510E4659FBF05EDCBF230208 ] RasMan C:\windows\System32\rasmans.dll
20:01:08.0073 0x0980 RasMan - ok
20:01:08.0089 0x0980 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
20:01:08.0105 0x0980 RasPppoe - ok
20:01:08.0136 0x0980 [ D67ED4AB59D1EF66B05AD1A81AC28B26, 72E750A9A6B484D8BEDE52FA6DABEF4D95765DE491152E1F6C856D0590B50C28 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
20:01:08.0151 0x0980 rdbss - ok
20:01:08.0167 0x0980 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\windows\System32\drivers\rdpbus.sys
20:01:08.0167 0x0980 rdpbus - ok
20:01:08.0183 0x0980 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\windows\system32\drivers\rdpdr.sys
20:01:08.0198 0x0980 RDPDR - ok
20:01:08.0230 0x0980 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
20:01:08.0230 0x0980 RdpVideoMiniport - ok
20:01:08.0245 0x0980 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\windows\system32\drivers\rdyboost.sys
20:01:08.0261 0x0980 rdyboost - ok
20:01:08.0292 0x0980 [ 2D39BCFA4DD1081B8F282B623456B858, DD8C433B66B6661F4DBD1784CBD334441B508BE84932DD443F7AD51CEA192BA9 ] ReFS C:\windows\system32\drivers\ReFS.sys
20:01:08.0323 0x0980 ReFS - ok
20:01:08.0339 0x0980 [ DF78648AC3C8DC9D70E6714AF785382F, 56E104939ED0AB5B26AE07BAB1BBB7D15828DBD3A2AD35361423D7ADDA4BA551 ] RemoteAccess C:\windows\System32\mprdim.dll
20:01:08.0339 0x0980 RemoteAccess - ok
20:01:08.0370 0x0980 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\windows\system32\regsvc.dll
20:01:08.0386 0x0980 RemoteRegistry - ok
20:01:08.0433 0x0980 [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\windows\System32\drivers\rfcomm.sys
20:01:08.0448 0x0980 RFCOMM - ok
20:01:08.0495 0x0980 [ 27A3A6BF6EE99AB61BF6F1147542F6AA, EA77F391067BF597E2E9A5A915CED91694B34624CD7BC87531C1610659C28748 ] RichVideo64 C:\Program Files\CyberLink\Shared files\RichVideo64.exe
20:01:08.0511 0x0980 RichVideo64 - ok
20:01:08.0527 0x0980 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
20:01:08.0527 0x0980 RpcEptMapper - ok
20:01:08.0558 0x0980 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\windows\system32\locator.exe
20:01:08.0558 0x0980 RpcLocator - ok
20:01:08.0589 0x0980 [ 7830CEA509693DE0817DF2F3F2D80E89, 7B1786CD225E2D6BCFA484D0BFB81DD162D5713EAEC80C53317CC6950E3D17F3 ] RpcSs C:\windows\system32\rpcss.dll
20:01:08.0620 0x0980 RpcSs - ok
20:01:08.0636 0x0980 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
20:01:08.0651 0x0980 rspndr - ok
20:01:08.0683 0x0980 [ CFE738C524F35B6E523A4D0F54840C30, 73E051DEA744EEC5202693C11EDABB36DE2D086160648D4E41F1F299CBAD8409 ] RTL8168 C:\windows\system32\DRIVERS\Rt630x64.sys
20:01:08.0714 0x0980 RTL8168 - ok
20:01:08.0901 0x0980 [ A5278C648EBE09D953B8F8B326C220AC, 2A46AEFA02DF801FFBE3DBA9FA81BBDB6EB9EEF35C4695D919BF86B9C1FF5C47 ] RtlWlanu C:\windows\system32\DRIVERS\rtwlanu.sys
20:01:08.0980 0x0980 RtlWlanu - ok
20:01:09.0011 0x0980 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\windows\System32\drivers\vms3cap.sys
20:01:09.0011 0x0980 s3cap - ok
20:01:09.0042 0x0980 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\windows\system32\lsass.exe
20:01:09.0042 0x0980 SamSs - ok
20:01:09.0073 0x0980 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
20:01:09.0073 0x0980 sbp2port - ok
20:01:09.0105 0x0980 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\windows\System32\SCardSvr.dll
20:01:09.0120 0x0980 SCardSvr - ok
20:01:09.0152 0x0980 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\windows\System32\ScDeviceEnum.dll
20:01:09.0152 0x0980 ScDeviceEnum - ok
20:01:09.0183 0x0980 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
20:01:09.0183 0x0980 scfilter - ok
20:01:09.0230 0x0980 [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\windows\system32\schedsvc.dll
20:01:09.0261 0x0980 Schedule - ok
20:01:09.0292 0x0980 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\windows\System32\certprop.dll
20:01:09.0308 0x0980 SCPolicySvc - ok
20:01:09.0339 0x0980 [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\windows\System32\drivers\sdbus.sys
20:01:09.0339 0x0980 sdbus - ok
20:01:09.0355 0x0980 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\windows\System32\drivers\sdstor.sys
20:01:09.0355 0x0980 sdstor - ok
20:01:09.0370 0x0980 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
20:01:09.0386 0x0980 secdrv - ok
20:01:09.0417 0x0980 [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\windows\system32\seclogon.dll
20:01:09.0417 0x0980 seclogon - ok
20:01:09.0452 0x0980 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\windows\System32\sens.dll
20:01:09.0467 0x0980 SENS - ok
20:01:09.0501 0x0980 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\windows\system32\sensrsvc.dll
20:01:09.0515 0x0980 SensrSvc - ok
20:01:09.0532 0x0980 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\windows\system32\drivers\SerCx.sys
20:01:09.0541 0x0980 SerCx - ok
20:01:09.0554 0x0980 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\windows\system32\drivers\SerCx2.sys
20:01:09.0565 0x0980 SerCx2 - ok
20:01:09.0586 0x0980 [ 1F0135949A6AD6025F363F80FE268251, DB2D503863143F2251E589F7B0B3E9FBF997D7333D54C55856590B5080B5513D ] Serenum C:\windows\System32\drivers\serenum.sys
20:01:09.0596 0x0980 Serenum - ok
20:01:09.0610 0x0980 [ 81633C87B42B63BA484A6177179AC750, A22BA40E9EC74E88D8098CBDC954E1D63B832FCB789E3C7B731DE5DA39BEE2CA ] Serial C:\windows\System32\drivers\serial.sys
20:01:09.0620 0x0980 Serial - ok
20:01:09.0651 0x0980 [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\windows\System32\drivers\sermouse.sys
20:01:09.0661 0x0980 sermouse - ok
20:01:09.0709 0x0980 [ 389458EA0B5FAEBA325FAC47B9ED589E, F7F37A1F1E912069F65E4629FF733F080AE675DF6FE255AF48F5E23EB47D0622 ] SessionEnv C:\windows\system32\sessenv.dll
20:01:09.0724 0x0980 SessionEnv - ok
20:01:09.0743 0x0980 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\windows\System32\drivers\sfloppy.sys
20:01:09.0752 0x0980 sfloppy - ok
20:01:09.0775 0x0980 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\windows\System32\ipnathlp.dll
20:01:09.0797 0x0980 SharedAccess - ok
20:01:09.0860 0x0980 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:01:09.0907 0x0980 ShellHWDetection - ok
20:01:09.0922 0x0980 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
20:01:09.0938 0x0980 SiSRaid2 - ok
20:01:09.0954 0x0980 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
20:01:09.0954 0x0980 SiSRaid4 - ok
20:01:10.0001 0x0980 [ 4E6FAEE3F259DAC82213D935785991FB, ADA019AD261BBEAE78495B508B4D375BEC1005DF119F20897D29C3C613A0CA46 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:01:10.0001 0x0980 SkypeUpdate - ok
20:01:10.0032 0x0980 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\windows\System32\smphost.dll
20:01:10.0047 0x0980 smphost - ok
20:01:10.0063 0x0980 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\windows\System32\snmptrap.exe
20:01:10.0079 0x0980 SNMPTRAP - ok
20:01:10.0110 0x0980 [ 546B88E6906EE9813EFE314DC95E3488, FC172C2DCC7ACDBBC9CE07CFCBAEDFAEAD2641A037E126174525DBE8BA660CC4 ] spaceport C:\windows\system32\drivers\spaceport.sys
20:01:10.0126 0x0980 spaceport - ok
20:01:10.0141 0x0980 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\windows\system32\drivers\SpbCx.sys
20:01:10.0157 0x0980 SpbCx - ok
20:01:10.0188 0x0980 [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler C:\windows\System32\spoolsv.exe
20:01:10.0219 0x0980 Spooler - ok
20:01:10.0344 0x0980 [ F264662C057A54AA2DE41B3C7551712F, 2C123C6ACD967CDF1AD2855187CF3D8357B16A4FD9C2F18AE54CFA384165FA11 ] sppsvc C:\windows\system32\sppsvc.exe
20:01:10.0501 0x0980 sppsvc - ok
20:01:10.0532 0x0980 [ 36B082C7A764A34FB1DC72D975870B61, 572CB632D9FDC1183F7BF8BFCBC51765C647945E0C13D1C91ADE3D0E76DF83BC ] srv C:\windows\system32\DRIVERS\srv.sys
20:01:10.0547 0x0980 srv - ok
20:01:10.0563 0x0980 [ F5849909D4B29B4E3D4445F943E5C7E3, 3FCA1423753716FE1AFDD27EE1E13C4D779A3C976185B5C998EF1A9A39BFC186 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
20:01:10.0579 0x0980 srv2 - ok
20:01:10.0594 0x0980 [ FABC49666708EA562549E78E6FBF3191, BE1FEBFC259308B39C727915C41A67CD50720A6E2A68D148F4F2F926AED43B02 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
20:01:10.0610 0x0980 srvnet - ok
20:01:10.0641 0x0980 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
20:01:10.0641 0x0980 SSDPSRV - ok
20:01:10.0673 0x0980 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\windows\system32\sstpsvc.dll
20:01:10.0688 0x0980 SstpSvc - ok
20:01:10.0704 0x0980 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\windows\system32\DRIVERS\ssudmdm.sys
20:01:10.0719 0x0980 ssudmdm - ok
20:01:10.0735 0x0980 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\windows\system32\drivers\stexstor.sys
20:01:10.0735 0x0980 stexstor - ok
20:01:10.0782 0x0980 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\windows\System32\wiaservc.dll
20:01:10.0797 0x0980 stisvc - ok
20:01:10.0813 0x0980 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\windows\system32\drivers\storahci.sys
20:01:10.0829 0x0980 storahci - ok
20:01:10.0844 0x0980 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\windows\system32\drivers\vmstorfl.sys
20:01:10.0844 0x0980 storflt - ok
20:01:10.0876 0x0980 [ 0EDD1F4D470C775740625B06A60C9DD5, 94964D0A793B1C984E87095249EE383A5E669D05BA6BF9F655587887E6CE3C19 ] stornvme C:\windows\system32\drivers\stornvme.sys
20:01:10.0891 0x0980 stornvme - ok
20:01:10.0907 0x0980 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\windows\system32\storsvc.dll
20:01:10.0922 0x0980 StorSvc - ok
20:01:10.0938 0x0980 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\windows\system32\drivers\storvsc.sys
20:01:10.0938 0x0980 storvsc - ok
20:01:10.0969 0x0980 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\windows\system32\svsvc.dll
20:01:10.0985 0x0980 svsvc - ok
20:01:11.0001 0x0980 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\windows\System32\drivers\swenum.sys
20:01:11.0017 0x0980 swenum - ok
20:01:11.0048 0x0980 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\windows\System32\swprv.dll
20:01:11.0079 0x0980 swprv - ok
20:01:11.0110 0x0980 [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\windows\system32\sysmain.dll
20:01:11.0142 0x0980 SysMain - ok
20:01:11.0173 0x0980 [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
20:01:11.0173 0x0980 SystemEventsBroker - ok
20:01:11.0204 0x0980 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\windows\System32\TabSvc.dll
20:01:11.0220 0x0980 TabletInputService - ok
20:01:11.0267 0x0980 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\windows\System32\tapisrv.dll
20:01:11.0282 0x0980 TapiSrv - ok
20:01:11.0329 0x0980 [ 2F10C145F517419E17203632FCDA0A13, 143F5837AE79E3EDB98F17A4661ECD5BCBFEB317077286B51E765560339B53A8 ] Tcpip C:\windows\system32\drivers\tcpip.sys
20:01:11.0392 0x0980 Tcpip - ok
20:01:11.0439 0x0980 [ 2F10C145F517419E17203632FCDA0A13, 143F5837AE79E3EDB98F17A4661ECD5BCBFEB317077286B51E765560339B53A8 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
20:01:11.0485 0x0980 TCPIP6 - ok
20:01:11.0517 0x0980 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
20:01:11.0517 0x0980 tcpipreg - ok
20:01:11.0548 0x0980 [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\windows\system32\DRIVERS\tdx.sys
20:01:11.0564 0x0980 tdx - ok
20:01:11.0579 0x0980 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\windows\System32\drivers\terminpt.sys
20:01:11.0579 0x0980 terminpt - ok
20:01:11.0642 0x0980 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\windows\System32\termsrv.dll
20:01:11.0657 0x0980 TermService - ok
20:01:11.0704 0x0980 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\windows\system32\themeservice.dll
20:01:11.0704 0x0980 Themes - ok
20:01:11.0735 0x0980 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\windows\system32\mmcss.dll
20:01:11.0751 0x0980 THREADORDER - ok
20:01:11.0782 0x0980 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\windows\System32\TimeBrokerServer.dll
20:01:11.0798 0x0980 TimeBroker - ok
20:01:11.0829 0x0980 [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\windows\system32\drivers\tpm.sys
20:01:11.0845 0x0980 TPM - ok
20:01:11.0860 0x0980 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\windows\System32\trkwks.dll
20:01:11.0876 0x0980 TrkWks - ok
20:01:11.0907 0x0980 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:01:11.0939 0x0980 TrustedInstaller - ok
20:01:11.0954 0x0980 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
20:01:11.0970 0x0980 TsUsbFlt - ok
20:01:11.0986 0x0980 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\windows\System32\drivers\TsUsbGD.sys
20:01:12.0001 0x0980 TsUsbGD - ok
20:01:12.0032 0x0980 [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
20:01:12.0048 0x0980 tunnel - ok
20:01:12.0064 0x0980 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\windows\system32\drivers\uagp35.sys
20:01:12.0064 0x0980 uagp35 - ok
20:01:12.0079 0x0980 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\windows\System32\drivers\uaspstor.sys
20:01:12.0095 0x0980 UASPStor - ok
20:01:12.0126 0x0980 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\windows\System32\drivers\ucx01000.sys
20:01:12.0142 0x0980 UCX01000 - ok
20:01:12.0173 0x0980 [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\windows\system32\DRIVERS\udfs.sys
20:01:12.0173 0x0980 udfs - ok
20:01:12.0189 0x0980 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\windows\System32\drivers\UEFI.sys
20:01:12.0189 0x0980 UEFI - ok
20:01:12.0204 0x0980 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\windows\system32\UI0Detect.exe
20:01:12.0220 0x0980 UI0Detect - ok
20:01:12.0236 0x0980 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
20:01:12.0251 0x0980 uliagpkx - ok
20:01:12.0251 0x0980 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\windows\System32\drivers\umbus.sys
20:01:12.0267 0x0980 umbus - ok
20:01:12.0267 0x0980 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\windows\System32\drivers\umpass.sys
20:01:12.0282 0x0980 UmPass - ok
20:01:12.0314 0x0980 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\windows\System32\umrdp.dll
20:01:12.0329 0x0980 UmRdpService - ok
20:01:12.0361 0x0980 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\windows\System32\upnphost.dll
20:01:12.0376 0x0980 upnphost - ok
20:01:12.0407 0x0980 [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64 C:\windows\System32\Drivers\usbaapl64.sys
20:01:12.0423 0x0980 USBAAPL64 - ok
20:01:12.0470 0x0980 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\windows\System32\drivers\usbccgp.sys
20:01:12.0470 0x0980 usbccgp - ok
20:01:12.0501 0x0980 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\windows\System32\drivers\usbcir.sys
20:01:12.0517 0x0980 usbcir - ok
20:01:12.0564 0x0980 [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\windows\System32\drivers\usbehci.sys
20:01:12.0564 0x0980 usbehci - ok
20:01:12.0611 0x0980 [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\windows\System32\drivers\usbhub.sys
20:01:12.0626 0x0980 usbhub - ok
20:01:12.0657 0x0980 [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\windows\System32\drivers\UsbHub3.sys
20:01:12.0673 0x0980 USBHUB3 - ok
20:01:12.0704 0x0980 [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\windows\System32\drivers\usbohci.sys
20:01:12.0704 0x0980 usbohci - ok
20:01:12.0736 0x0980 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\windows\System32\drivers\usbprint.sys
20:01:12.0751 0x0980 usbprint - ok
20:01:12.0767 0x0980 [ 0F030491BA4A27BD46F8B8ACEEE83F1A, 7063855611BEF94D4D229BA1BE507ECBDD89F5861641A407EB3E2919A352F9D4 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
20:01:12.0782 0x0980 usbscan - ok
20:01:12.0814 0x0980 [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\windows\System32\drivers\USBSTOR.SYS
20:01:12.0814 0x0980 USBSTOR - ok
20:01:12.0829 0x0980 [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\windows\System32\drivers\usbuhci.sys
20:01:12.0845 0x0980 usbuhci - ok
20:01:12.0861 0x0980 [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\windows\System32\drivers\USBXHCI.SYS
20:01:12.0876 0x0980 USBXHCI - ok
20:01:12.0892 0x0980 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\windows\system32\lsass.exe
20:01:12.0907 0x0980 VaultSvc - ok
20:01:12.0923 0x0980 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
20:01:12.0923 0x0980 vdrvroot - ok
20:01:12.0986 0x0980 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\windows\System32\vds.exe
20:01:13.0032 0x0980 vds - ok
20:01:13.0048 0x0980 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\windows\system32\drivers\VerifierExt.sys
20:01:13.0048 0x0980 VerifierExt - ok
20:01:13.0079 0x0980 [ 8ABB4BABF59F092DF0B43778D8FD1884, 94C2100CE86448543A8DD586AD4A128AB9EB37959238D70F33EF59202270AC6C ] vhdmp C:\windows\System32\drivers\vhdmp.sys
20:01:13.0111 0x0980 vhdmp - ok
20:01:13.0111 0x0980 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\windows\system32\drivers\viaide.sys
20:01:13.0126 0x0980 viaide - ok
20:01:13.0157 0x0980 [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\windows\system32\drivers\vmbus.sys
20:01:13.0157 0x0980 vmbus - ok
20:01:13.0173 0x0980 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\windows\System32\drivers\VMBusHID.sys
20:01:13.0173 0x0980 VMBusHID - ok
20:01:13.0220 0x0980 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\windows\System32\ICSvc.dll
20:01:13.0236 0x0980 vmicguestinterface - ok
20:01:13.0251 0x0980 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\windows\System32\ICSvc.dll
20:01:13.0267 0x0980 vmicheartbeat - ok
20:01:13.0282 0x0980 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\windows\System32\ICSvc.dll
20:01:13.0298 0x0980 vmickvpexchange - ok
20:01:13.0314 0x0980 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\windows\System32\ICSvc.dll
20:01:13.0329 0x0980 vmicrdv - ok
20:01:13.0329 0x0980 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\windows\System32\ICSvc.dll
20:01:13.0361 0x0980 vmicshutdown - ok
20:01:13.0361 0x0980 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\windows\System32\ICSvc.dll
20:01:13.0376 0x0980 vmictimesync - ok
20:01:13.0392 0x0980 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\windows\System32\ICSvc.dll
20:01:13.0407 0x0980 vmicvss - ok
20:01:13.0439 0x0980 [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr C:\windows\system32\drivers\volmgr.sys
20:01:13.0439 0x0980 volmgr - ok
20:01:13.0454 0x0980 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\windows\system32\drivers\volmgrx.sys
20:01:13.0470 0x0980 volmgrx - ok
20:01:13.0501 0x0980 [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap C:\windows\system32\drivers\volsnap.sys
20:01:13.0517 0x0980 volsnap - ok
20:01:13.0548 0x0980 [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci C:\windows\System32\drivers\vpci.sys
20:01:13.0564 0x0980 vpci - ok
20:01:13.0579 0x0980 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\windows\system32\drivers\vsmraid.sys
20:01:13.0595 0x0980 vsmraid - ok
20:01:13.0642 0x0980 [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS C:\windows\system32\vssvc.exe
20:01:13.0673 0x0980 VSS - ok
20:01:13.0689 0x0980 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\windows\system32\drivers\vstxraid.sys
20:01:13.0704 0x0980 VSTXRAID - ok
20:01:13.0736 0x0980 [ 71066FF95C487327E44C8AF1B72EBE8B, EA2729126B452CAE0C80D07501779D804B08E47F1217B61D53277B40869FEC25 ] vwifibus C:\windows\System32\drivers\vwifibus.sys
20:01:13.0736 0x0980 vwifibus - ok
20:01:13.0767 0x0980 [ 29AB43937FFDA0B0FB56984226E698C6, 6A1A559964FE5D594E54988C46149969E6FFD5A8D5A6862E14648B608794CC29 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
20:01:13.0782 0x0980 vwififlt - ok
20:01:13.0798 0x0980 [ 8B8624A93E3F88CB923AEB05B6313227, 2856B63CD376BF2B1A9129581E7B9207588D4EAFD29A2C8D98F176FEAFDE26A9 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
20:01:13.0814 0x0980 vwifimp - ok
20:01:13.0845 0x0980 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\windows\system32\w32time.dll
20:01:13.0861 0x0980 W32Time - ok
20:01:13.0861 0x0980 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\windows\System32\drivers\wacompen.sys
20:01:13.0876 0x0980 WacomPen - ok
20:01:13.0907 0x0980 [ 841345442390953CBC8801B95D3D0540, FD4F9FD2C4C60A1A580177FFF2E9035009AC6A38E78D4236B0ED4773E3B263EE ] wbengine C:\windows\system32\wbengine.exe
20:01:13.0954 0x0980 wbengine - ok
20:01:13.0986 0x0980 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
20:01:14.0017 0x0980 WbioSrvc - ok
20:01:14.0033 0x0980 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\windows\System32\wcmsvc.dll
20:01:14.0048 0x0980 Wcmsvc - ok
20:01:14.0095 0x0980 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\windows\System32\wcncsvc.dll
20:01:14.0111 0x0980 wcncsvc - ok
20:01:14.0126 0x0980 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:01:14.0142 0x0980 WcsPlugInService - ok
20:01:14.0173 0x0980 [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\windows\system32\drivers\WdBoot.sys
20:01:14.0173 0x0980 WdBoot - ok
20:01:14.0204 0x0980 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
20:01:14.0220 0x0980 Wdf01000 - ok
20:01:14.0236 0x0980 [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\windows\system32\drivers\WdFilter.sys
20:01:14.0251 0x0980 WdFilter - ok
20:01:14.0267 0x0980 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\windows\system32\wdi.dll
20:01:14.0282 0x0980 WdiServiceHost - ok
20:01:14.0282 0x0980 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\windows\system32\wdi.dll
20:01:14.0298 0x0980 WdiSystemHost - ok
20:01:14.0314 0x0980 [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\windows\system32\Drivers\WdNisDrv.sys
20:01:14.0329 0x0980 WdNisDrv - ok
20:01:14.0345 0x0980 WdNisSvc - ok
20:01:14.0376 0x0980 [ A70CAF5EA36CBA5FCA24244306D4D5C6, 76C3E20B62B89D9699A1E817377FAD70B144B877BCC5C850A5B64CC68184D8DA ] WebClient C:\windows\System32\webclnt.dll
20:01:14.0408 0x0980 WebClient - ok
20:01:14.0439 0x0980 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\windows\system32\wecsvc.dll
20:01:14.0465 0x0980 Wecsvc - ok
20:01:14.0492 0x0980 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\windows\system32\wephostsvc.dll
20:01:14.0502 0x0980 WEPHOSTSVC - ok
20:01:14.0517 0x0980 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\windows\System32\wercplsupport.dll
20:01:14.0529 0x0980 wercplsupport - ok
20:01:14.0552 0x0980 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\windows\System32\WerSvc.dll
20:01:14.0564 0x0980 WerSvc - ok
20:01:14.0595 0x0980 [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\windows\system32\DRIVERS\wfplwfs.sys
20:01:14.0605 0x0980 WFPLWFS - ok
20:01:14.0639 0x0980 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\windows\System32\wiarpc.dll
20:01:14.0650 0x0980 WiaRpc - ok
20:01:14.0664 0x0980 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\windows\system32\drivers\wimmount.sys
20:01:14.0671 0x0980 WIMMount - ok
20:01:14.0675 0x0980 WinDefend - ok
20:01:14.0718 0x0980 [ 0E70990EC2E5D2331AA5E88DB0CFB826, 79DFF565C3FCBC691E8FEB669CEC00E340FD2A2AFA4488D23A7CC63A2A98A5C1 ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
20:01:14.0739 0x0980 WinHttpAutoProxySvc - ok
20:01:14.0781 0x0980 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
20:01:14.0796 0x0980 Winmgmt - ok
20:01:14.0875 0x0980 [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM C:\windows\system32\WsmSvc.dll
20:01:14.0922 0x0980 WinRM - ok
20:01:14.0953 0x0980 [ 3AF1FA17F1C4ACBDB660D8F98B1A9C13, 99B0851410B462685F6705EBF832D10943FB9634030B02D15BF5D0C66F26F2C2 ] WinUsb C:\windows\System32\drivers\WinUsb.sys
20:01:14.0968 0x0980 WinUsb - ok
20:01:15.0031 0x0980 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\windows\System32\wlansvc.dll
20:01:15.0062 0x0980 WlanSvc - ok
20:01:15.0093 0x0980 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\windows\system32\wlidsvc.dll
20:01:15.0140 0x0980 wlidsvc - ok
20:01:15.0156 0x0980 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\windows\System32\drivers\wmiacpi.sys
20:01:15.0156 0x0980 WmiAcpi - ok
20:01:15.0187 0x0980 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
20:01:15.0203 0x0980 wmiApSrv - ok
20:01:15.0218 0x0980 WMPNetworkSvc - ok
20:01:15.0234 0x0980 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\windows\system32\drivers\Wof.sys
20:01:15.0250 0x0980 Wof - ok
20:01:15.0312 0x0980 [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc C:\windows\system32\workfolderssvc.dll
20:01:15.0343 0x0980 workfolderssvc - ok
20:01:15.0390 0x0980 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\windows\system32\DRIVERS\wpcfltr.sys
20:01:15.0390 0x0980 wpcfltr - ok
20:01:15.0422 0x0980 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\windows\System32\wpcsvc.dll
20:01:15.0437 0x0980 WPCSvc - ok
20:01:15.0468 0x0980 [ DBDCE2378F65F0A07D4644AC103037E7, 99714F0CD31297C9831BAF04768F467F6E0BF710C859CEDCA83069226BF1A68A ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
20:01:15.0468 0x0980 WPDBusEnum - ok
20:01:15.0484 0x0980 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\windows\system32\drivers\WpdUpFltr.sys
20:01:15.0500 0x0980 WpdUpFltr - ok
20:01:15.0515 0x0980 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
20:01:15.0531 0x0980 ws2ifsl - ok
20:01:15.0547 0x0980 [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\windows\System32\wscsvc.dll
20:01:15.0562 0x0980 wscsvc - ok
20:01:15.0593 0x0980 [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\windows\System32\drivers\WSDPrint.sys
20:01:15.0593 0x0980 WSDPrintDevice - ok
20:01:15.0625 0x0980 [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan C:\windows\System32\drivers\WSDScan.sys
20:01:15.0625 0x0980 WSDScan - ok
20:01:15.0640 0x0980 WSearch - ok
20:01:15.0734 0x0980 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\windows\System32\WSService.dll
20:01:15.0812 0x0980 WSService - ok
20:01:15.0906 0x0980 [ F3F60C88A6BBC8D0C68FE5B1C91181AF, AF9A4D282CD4BB1127BC3F48AB89DC294408D96F7906553C636F37D1503CFA48 ] wuauserv C:\windows\system32\wuaueng.dll
20:01:15.0968 0x0980 wuauserv - ok
20:01:15.0984 0x0980 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\windows\system32\drivers\WudfPf.sys
20:01:16.0000 0x0980 WudfPf - ok
20:01:16.0032 0x0980 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\windows\System32\drivers\WUDFRd.sys
20:01:16.0047 0x0980 WUDFRd - ok
20:01:16.0047 0x0980 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP C:\windows\System32\drivers\WUDFRd.sys
20:01:16.0063 0x0980 WUDFSensorLP - ok
20:01:16.0094 0x0980 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\windows\System32\WUDFSvc.dll
20:01:16.0110 0x0980 wudfsvc - ok
20:01:16.0110 0x0980 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\windows\System32\drivers\WUDFRd.sys
20:01:16.0125 0x0980 WUDFWpdFs - ok
20:01:16.0125 0x0980 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\windows\System32\drivers\WUDFRd.sys
20:01:16.0141 0x0980 WUDFWpdMtp - ok
20:01:16.0188 0x0980 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\windows\System32\wwansvc.dll
20:01:16.0203 0x0980 WwanSvc - ok
20:01:16.0203 0x0980 ================ Scan global

Alt 31.12.2016, 19:07   #7
Schnitte
 
Online pay AG Virus? - Standard

Online pay AG Virus?



===============================
20:01:16.0250 0x0980 [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\windows\system32\basesrv.dll
20:01:16.0281 0x0980 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\windows\system32\winsrv.dll
20:01:16.0297 0x0980 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\windows\system32\sxssrv.dll
20:01:16.0328 0x0980 [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\windows\system32\services.exe
20:01:16.0344 0x0980 [ Global ] - ok
20:01:16.0344 0x0980 ================ Scan MBR ==================================
20:01:16.0344 0x0980 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR3
20:01:17.0844 0x0980 \Device\Harddisk1\DR3 - ok
20:01:17.0860 0x0980 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
20:01:17.0938 0x0980 \Device\Harddisk0\DR0 - ok
20:01:17.0938 0x0980 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR3
20:01:19.0174 0x0980 \Device\Harddisk1\DR3 - ok
20:01:19.0174 0x0980 ================ Scan VBR ==================================
20:01:19.0174 0x0980 [ E29E107919E2A65F5ACE96DC041C54C9 ] \Device\Harddisk1\DR3\Partition1
20:01:19.0174 0x0980 \Device\Harddisk1\DR3\Partition1 - ok
20:01:19.0190 0x0980 [ 6428079B8C1BEB56D6D33F3BBA7F4443 ] \Device\Harddisk0\DR0\Partition1
20:01:19.0190 0x0980 \Device\Harddisk0\DR0\Partition1 - ok
20:01:19.0190 0x0980 [ 0A3DC6202A0D23E1CC8E32C6E343CFD5 ] \Device\Harddisk0\DR0\Partition2
20:01:19.0190 0x0980 \Device\Harddisk0\DR0\Partition2 - ok
20:01:19.0206 0x0980 [ 68492777A10F581CA995315C3B1C63CF ] \Device\Harddisk0\DR0\Partition3
20:01:19.0206 0x0980 \Device\Harddisk0\DR0\Partition3 - ok
20:01:19.0221 0x0980 [ 9FE02B0F2E3C7A0BE238B55574CF4405 ] \Device\Harddisk0\DR0\Partition4
20:01:19.0221 0x0980 \Device\Harddisk0\DR0\Partition4 - ok
20:01:19.0221 0x0980 [ DDF1339F02BF02A4E763B799015EBEB3 ] \Device\Harddisk0\DR0\Partition5
20:01:19.0237 0x0980 \Device\Harddisk0\DR0\Partition5 - ok
20:01:19.0252 0x0980 [ 48A7475D50030AD555AB2CF4D6F28744 ] \Device\Harddisk0\DR0\Partition6
20:01:19.0252 0x0980 \Device\Harddisk0\DR0\Partition6 - ok
20:01:19.0268 0x0980 [ E29E107919E2A65F5ACE96DC041C54C9 ] \Device\Harddisk1\DR3\Partition1
20:01:19.0268 0x0980 \Device\Harddisk1\DR3\Partition1 - ok
20:01:19.0268 0x0980 ================ Scan generic autorun ======================
20:01:19.0315 0x0980 [ E6A3062BDB2E18EBDEB69CF7F7A3A070, 48AB0CCA0230DCBB47CCC765659E390A4A42AC7303A27B835B9FBB1168AC7BF1 ] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
20:01:19.0315 0x0980 IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
20:01:19.0459 0x0980 Detect skipped due to KSN trusted
20:01:19.0459 0x0980 IAStorIcon - ok
20:01:19.0501 0x0980 [ 75FBFC49CE8A7EF087AB450145C093C1, 9682D832BFA8054D32A6C977CE3EF2B376EDDCBD9D722703029690203EA0061F ] C:\windows\system32\igfxtray.exe
20:01:19.0533 0x0980 IgfxTray - ok
20:01:19.0782 0x0980 [ 37C6C318D6AFAFA2EBA99820EDF21DA6, 5693AA141B947761EE41FBDC6F16FDC5BBB5BA8EBE1DEC90AD6EF33BFAF885A5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
20:01:19.0970 0x0980 RTHDVCPL - ok
20:01:20.0017 0x0980 [ 1710A603D1EEBF86D738D1C6283C39B3, 5427A41AB64122FC119A42D7E4954A04A650FE88BD2B7FD2D4CDD1E823433268 ] C:\Program Files\iTunes\iTunesHelper.exe
20:01:20.0017 0x0980 iTunesHelper - ok
20:01:20.0079 0x0980 [ 4E9AF25BA5E8219310E384AEA5B0EED8, 743062F755E7A88BA394E96CA26A988CCFDF73B441B779B3149D54A769CBC411 ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
20:01:20.0079 0x0980 CLMLServer_For_P2G8 - ok
20:01:20.0095 0x0980 [ B69D9FA1CF97A80109FA8D1152552AB6, D56A4B0DCDF7CF6417520622FE365641A3E66C69DB1D3FD388668796430DABDE ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
20:01:20.0111 0x0980 CLVirtualDrive - ok
20:01:20.0142 0x0980 [ FD5C43ACDBB9E3C7F91523FAFD74D4C0, 5DDA45E0B4C1F275801F00EF65672BC1A90B3C298723E1064191142FB83D4831 ] C:\Program Files (x86)\PDF24\pdf24.exe
20:01:20.0157 0x0980 PDFPrint - ok
20:01:20.0251 0x0980 [ 41A602561741C62D7BCE4E05754152F4, 53742048DB673C4254A59CEB2DD7B5BD791ABAA5CE7169C5E5F178F5DCFB8F7E ] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
20:01:20.0298 0x0980 PMBVolumeWatcher - ok
20:01:20.0392 0x0980 [ 6DB9A0FBDA5556B925D64651D57031D3, AE4C9196EFD61B973F93FDDAA001F7C239100EDD7E3F840927C0C07B08C69C04 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
20:01:20.0423 0x0980 iCloudServices - ok
20:01:20.0439 0x0980 [ F1F940D766026D99DCCB999168CC1E73, FC947CC3E10D220D62004354EE731F874762C4298DB6DCC5E7DBA2FC46A4677D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
20:01:20.0454 0x0980 ApplePhotoStreams - ok
20:01:20.0501 0x0980 [ DE2E1198B4D01AA71F35350BEECFA519, 51806EE62498D989B47781C716BF41797B922B070AE939EDBF971C666C324BB2 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
20:01:20.0532 0x0980 AppleIEDAV - ok
20:01:20.0564 0x0980 [ DD854D7F89E3994DA48490E9C440036A, 25775650B62015D6F612C77ADCC7A31E019AEBDC2D40BB9EA1DA620F8B124007 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
20:01:20.0579 0x0980 iCloudDrive - ok
20:01:20.0611 0x0980 [ 3C9A02CB0C05C96263E2193C7B728930, 4B948C9DF036228145B60BA0327F259694D0812B99F92BDBBB2CD6ED997E9A13 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
20:01:20.0611 0x0980 iCloudPhotos - ok
20:01:20.0642 0x0980 Skype - ok
20:01:20.0642 0x0980 [ 6DB9A0FBDA5556B925D64651D57031D3, AE4C9196EFD61B973F93FDDAA001F7C239100EDD7E3F840927C0C07B08C69C04 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
20:01:20.0657 0x0980 iCloudServices - ok
20:01:20.0657 0x0980 [ F1F940D766026D99DCCB999168CC1E73, FC947CC3E10D220D62004354EE731F874762C4298DB6DCC5E7DBA2FC46A4677D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
20:01:20.0657 0x0980 ApplePhotoStreams - ok
20:01:20.0704 0x0980 [ DE2E1198B4D01AA71F35350BEECFA519, 51806EE62498D989B47781C716BF41797B922B070AE939EDBF971C666C324BB2 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
20:01:20.0720 0x0980 AppleIEDAV - ok
20:01:20.0720 0x0980 [ DD854D7F89E3994DA48490E9C440036A, 25775650B62015D6F612C77ADCC7A31E019AEBDC2D40BB9EA1DA620F8B124007 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
20:01:20.0736 0x0980 iCloudDrive - ok
20:01:20.0736 0x0980 Waiting for KSN requests completion. In queue: 15
20:01:21.0772 0x0980 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
20:01:21.0772 0x0980 AV detected via SS2: McAfee Anti-Virus und Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 15.0.0.0 ), 0x51000 ( enabled : updated )
20:01:21.0788 0x0980 FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 15.0.0.0 ), 0x51010 ( enabled )
20:01:21.0882 0x0980 ============================================================
20:01:21.0882 0x0980 Scan finished
20:01:21.0882 0x0980 ============================================================
20:01:21.0882 0x0d08 Detected object count: 0
20:01:21.0882 0x0d08 Actual detected object count: 0

Sorry, beim ersten Durchlauf war nicht alles angeklickt.

Alt 02.01.2017, 13:48   #8
burningice
/// Malwareteam
 
Online pay AG Virus? - Standard

Online pay AG Virus?



Schritt: 1
Lade dir folgendes Programm herunter und installiere es: Malwarebytes Anti-Malware
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke links auf Einstellungen und wechsle zum Tab Schutz.
  • Unter Scan-Optionen aktiviere die Option Nach Rootkits suchen
  • Klicke im Anschluss auf Scan, wähle den Bedrohungs-Scan aus und klicke auf Scan starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Ausgewählte Elemente in die Quarantäne verschieben.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM nach dem Neustart, klicke auf Berichte.
  • Wähle den neuesten Scan-Bericht aus, klicke auf Bericht anzeigen und dann auf Export.
  • Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt: 2

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern...

Schritt: 3
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.


Bitte poste dein Ergebnis zwischen Code-Tags
Wenn ein Log zu lange ist, teile ihn bitte auf mehrere Antworten.

Code-Tags?

Drücke einfach die # in Antwortfenster und füge den Log dazwischen ein


__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Antwort

Themen zu Online pay AG Virus?
andere, angezeigt, bereich, bilder, bildern, dateien, eigene dateien, email, explorer, hallo zusammen, heute, leere, mcafee, online, ordner, programm, rechner, stelle, verweigert, virenprogramm, virus, virus?, windows, zugriff, zusammen



Ähnliche Themen: Online pay AG Virus?


  1. Baidu Virus - Skype - Keine Lösungsmöglichkeiten Online gefunden
    Überwachung, Datenschutz und Spam - 15.11.2016 (0)
  2. Online Banking umgeleitet - Virus/Trojaner zugeschlagen ?
    Plagegeister aller Art und deren Bekämpfung - 20.08.2014 (11)
  3. spam mails von meinem t-online.de email account Virus?
    Plagegeister aller Art und deren Bekämpfung - 09.08.2014 (31)
  4. Online Advertising Support Virus entfernen
    Log-Analyse und Auswertung - 22.05.2014 (13)
  5. My online search virus - redirect auf Bing.com
    Plagegeister aller Art und deren Bekämpfung - 18.12.2013 (11)
  6. Sparkassen Online Banking Virus
    Plagegeister aller Art und deren Bekämpfung - 04.04.2013 (19)
  7. T-Online MMS Virus auf Laptop
    Überwachung, Datenschutz und Spam - 15.02.2013 (1)
  8. T-Online Virus/Wurm durch mms E-Mail
    Plagegeister aller Art und deren Bekämpfung - 15.02.2013 (17)
  9. Raiffeisen Online Banking Virus/Trojaner
    Plagegeister aller Art und deren Bekämpfung - 23.11.2012 (3)
  10. virus banker gen2 eset online scan
    Plagegeister aller Art und deren Bekämpfung - 03.12.2011 (26)
  11. 20 tan abfrage bei volksbank online banking - virus
    Plagegeister aller Art und deren Bekämpfung - 04.02.2011 (3)
  12. Online-Shop v.Viren / Virus befallen.Was TUN?
    Plagegeister aller Art und deren Bekämpfung - 03.02.2011 (6)
  13. Spam Abuse Email von T-Online - Vieleicht ein Virus eingefangen?
    Log-Analyse und Auswertung - 30.05.2010 (16)
  14. kein online scanner funktioniert mehr (Virus??)
    Plagegeister aller Art und deren Bekämpfung - 28.09.2008 (5)
  15. Virus verhindert Online scanner Nutzung
    Mülltonne - 24.09.2008 (0)
  16. Virus Wird online erkannt aber auf dem PC nicht.
    Log-Analyse und Auswertung - 03.09.2008 (6)
  17. T-Online Virus oder ?
    Plagegeister aller Art und deren Bekämpfung - 16.06.2005 (1)

Zum Thema Online pay AG Virus? - Hallo zusammen, ich bin noch geschockt und Laie im Bereich PC. Ich habe die Email der online pay AG geöffnet und die zip-Datei ausgeführt. Mir ist aufgefallen, dass etwas mit - Online pay AG Virus?...
Archiv
Du betrachtest: Online pay AG Virus? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.