|
Plagegeister aller Art und deren Bekämpfung: Schadsoftware?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
19.12.2015, 22:08 | #1 |
| Schadsoftware? Hallo! ich habe folgendes Problem: Ich habe ein gebrauchtes Notebook gekauft, darauf installiert ist Windows 10. Angeblich wurde es bereits neu formatiert. Es gab bis heute nachmittag keine Probleme, als ich mich vor ca. 1 h in meinem bisher regelmäßig verwendeten gmx Account einloggen wollte, stimmte mein Passwort nicht mehr! obwohl ich es nicht geändert habe. Also habe ich mir einen Key an meine private Handynummer schicken lassen, insgesamt 2 x und diesen dann jeweils eingegeben und ein neues Passwort jeweils erstellt, jedoch war niemals mehr ein Login möglich. Wärend dieser Aktivitäten poppte ganz plötzlich eine Warnmeldung auf, in der stand, dass ein unbekannter Fehler aufgetreten sei, das Notebook wurde prompt neu gestartet. Ich habe große Sorgen wegen meinem online Banking ob jemand alle meine online Aktivitäten mitlesen kann bzw. ob ich mir einen Trojaner über eine email eingefangen habe oder irgendeine schädliche Software bei einem Download. |
19.12.2015, 23:10 | #2 |
/// TB-Ausbilder /// Anleitungs-Guru | Schadsoftware?Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...
Hinweis: Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden. Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert. Adware & Co. können wir sehr gut entfernen. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst. Los geht's: Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Lesestoff Posten in CODE-Tags: So gehts... Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
20.12.2015, 17:33 | #3 |
| Schadsoftware?Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:19-12-2015 durchgeführt von J (Administrator) auf DESKTOP-BSKNV1M (20-12-2015 10:29:19) Gestartet von C:\Users\J\Desktop Geladene Profile: J (Verfügbare Profile: J) Platform: Windows 10 Pro Version 1511 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Opera) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_IATIILE.EXE (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.0_none_95e4f9a171a1ad95\TiWorker.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2015-12-18] (AVAST Software) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-3067355-1179460849-3221998070-1001\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIILE.EXE [283232 2014-12-12] (SEIKO EPSON CORPORATION) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-12-18] (AVAST Software) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{80072d17-0ec2-479e-868f-25e28f58c3ae}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-12-18] (AVAST Software) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-18] (AVAST Software) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (Seiko Epson Corporation) FireFox: ======== FF ProfilePath: C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\ql81c0oh.default FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-18] Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-18] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2015-12-18] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109520 2015-12-18] (AVAST Software) R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-12-18] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-12-18] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2015-12-18] (AVAST Software) R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [466400 2015-12-18] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-12-18] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-12-18] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2015-12-18] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2015-12-18] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2015-12-18] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2015-12-18] (AVAST Software) R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-20] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [195336 2015-09-04] (Intel Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek ) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-20 10:25 - 2015-12-20 10:25 - 425817292 _____ C:\Windows\MEMORY.DMP 2015-12-20 10:25 - 2015-12-20 10:25 - 00397116 _____ C:\Windows\Minidump\122015-15125-01.dmp 2015-12-19 22:52 - 2015-12-19 22:52 - 00000000 ____D C:\Users\J\AppData\Local\PeerDistRepub 2015-12-19 21:47 - 2015-12-19 21:48 - 00019340 _____ C:\Users\J\Desktop\Addition.txt 2015-12-19 21:46 - 2015-12-20 10:29 - 00008218 _____ C:\Users\J\Desktop\FRST.txt 2015-12-19 21:24 - 2015-12-20 10:27 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-12-19 21:23 - 2015-12-19 21:23 - 00001167 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-19 21:23 - 2015-12-19 21:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-19 21:23 - 2015-12-19 21:23 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-19 21:23 - 2015-12-19 21:23 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-19 21:23 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-12-19 21:23 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-12-19 21:23 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-12-19 21:22 - 2015-12-19 21:23 - 22908888 _____ (Malwarebytes ) C:\Users\J\Desktop\mbam-setup-2.2.0.1024.exe 2015-12-19 21:20 - 2015-12-20 10:29 - 00000000 ____D C:\FRST 2015-12-19 21:19 - 2015-12-19 21:19 - 02370048 _____ (Farbar) C:\Users\J\Desktop\FRST64.exe 2015-12-19 21:17 - 2015-12-19 21:17 - 02370048 _____ (Farbar) C:\Users\J\Downloads\FRST64.exe 2015-12-19 20:56 - 2015-12-19 20:56 - 00000000 ____D C:\Windows\system32\SleepStudy 2015-12-19 20:33 - 2015-12-19 20:38 - 00000000 ____D C:\Windows\Minidump 2015-12-19 14:10 - 2015-12-19 14:10 - 00000000 ____D C:\Users\J\AppData\Roaming\EPSON 2015-12-19 14:09 - 2015-12-19 14:09 - 00000000 ____D C:\Users\J\AppData\LocalLow\Adobe 2015-12-19 14:09 - 2015-12-19 14:09 - 00000000 ____D C:\Users\J\AppData\Local\CEF 2015-12-19 14:09 - 2015-12-19 14:09 - 00000000 ____D C:\Users\J\AppData\Local\Adobe 2015-12-19 00:58 - 2015-12-19 22:13 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-12-19 00:58 - 2015-12-19 22:08 - 00000946 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job 2015-12-19 00:58 - 2015-12-19 00:59 - 00004080 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2015-12-19 00:58 - 2015-12-19 00:59 - 00003870 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-12-19 00:58 - 2015-12-19 00:58 - 19452096 _____ (Adobe Systems Incorporated) C:\Users\J\Downloads\install_flash_player_ppapi.exe 2015-12-19 00:55 - 2015-12-19 14:20 - 00003972 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-12-19 00:55 - 2015-12-19 14:20 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2015-12-19 00:55 - 2015-12-19 00:55 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-12-19 00:52 - 2015-12-19 14:09 - 00000000 ____D C:\ProgramData\Adobe 2015-12-19 00:50 - 2015-12-19 00:52 - 82474680 _____ (Adobe Systems Incorporated) C:\Users\J\Downloads\AcroRdrDC1500920069_de_DE.exe 2015-12-18 23:03 - 2015-12-18 23:03 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-12-18 23:03 - 2015-12-18 23:03 - 00000000 ____D C:\ProgramData\UDL 2015-12-18 23:03 - 2015-12-18 23:03 - 00000000 ____D C:\ProgramData\Sony Corporation 2015-12-18 23:03 - 2015-12-18 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software 2015-12-18 23:03 - 2015-12-18 23:03 - 00000000 ____D C:\Program Files (x86)\Epson Software 2015-12-18 22:59 - 2015-12-18 23:02 - 60698624 _____ C:\Users\J\Downloads\epson513696eu.exe 2015-12-18 22:59 - 2015-12-18 22:59 - 00000000 ____D C:\Program Files (x86)\epson 2015-12-18 22:59 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll 2015-12-18 22:59 - 2011-12-12 00:00 - 00135824 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe 2015-12-18 22:58 - 2015-12-18 22:58 - 22437888 _____ C:\Users\J\Downloads\epson602555eu.exe 2015-12-18 22:57 - 2015-12-18 22:57 - 21978688 _____ C:\Users\J\Downloads\epson377484eu.exe 2015-12-18 22:54 - 2015-12-18 22:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2015-12-18 22:54 - 2015-12-18 22:54 - 00000000 ____D C:\Program Files\Common Files\EPSON 2015-12-18 22:53 - 2015-12-18 23:03 - 00000000 ____D C:\ProgramData\EPSON 2015-12-18 22:53 - 2014-12-12 03:11 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMILE.DLL 2015-12-18 22:53 - 2014-12-12 03:11 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ID4BILE.DLL 2015-12-18 22:53 - 2014-12-12 03:11 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL 2015-12-18 21:51 - 2015-12-18 21:51 - 00000000 ____D C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-18 21:51 - 2015-12-18 21:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-12-18 21:50 - 2015-12-18 21:51 - 00000000 ____D C:\Program Files\WinRAR 2015-12-18 21:50 - 2015-12-18 21:50 - 02076544 _____ C:\Users\J\Downloads\winrar-x64-530d.exe 2015-12-18 21:48 - 2015-12-18 21:48 - 02422880 _____ (Irfan Skiljan) C:\Users\J\Downloads\iview441g_setup.exe 2015-12-18 21:48 - 2015-12-18 21:48 - 00000000 ____D C:\Users\J\AppData\Roaming\IrfanView 2015-12-18 21:48 - 2015-12-18 21:48 - 00000000 ____D C:\Program Files (x86)\IrfanView 2015-12-18 21:46 - 2015-12-18 21:46 - 00000000 ____D C:\Languages 2015-12-18 21:46 - 2015-12-18 21:46 - 00000000 ____D C:\Help 2015-12-18 21:13 - 2015-12-18 21:13 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2015-12-18 21:13 - 2015-12-18 21:13 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-12-18 21:13 - 2015-12-18 21:13 - 00000000 ____D C:\Program Files\MSBuild 2015-12-18 21:13 - 2015-12-18 21:13 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-12-18 21:13 - 2015-12-18 21:13 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-12-18 21:11 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll 2015-12-18 21:11 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-12-18 21:11 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2015-12-18 21:11 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll 2015-12-18 21:11 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2015-12-18 21:11 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-12-18 20:24 - 2015-12-18 21:10 - 02959376 _____ (Microsoft Corporation) C:\Users\J\Downloads\dotnetfx35setup.exe 2015-12-18 20:24 - 2015-12-18 20:39 - 373578968 _____ (Microsoft Corporation) C:\Users\J\Downloads\office2007sp3-kb2526086-fullfile-de-de.exe 2015-12-18 20:24 - 2015-12-18 20:26 - 50584792 _____ (Microsoft Corporation) C:\Users\J\Downloads\Windows-KB890830-x64-V5.31.exe 2015-12-18 20:24 - 2015-12-18 20:26 - 39074536 _____ (Microsoft Corporation) C:\Users\J\Downloads\FileFormatConverters.exe 2015-12-18 19:44 - 2015-12-18 19:44 - 00003184 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1450464297 2015-12-18 19:44 - 2015-12-18 19:44 - 00001082 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2015-12-18 19:43 - 2015-12-18 19:43 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premier.lnk 2015-12-18 19:42 - 2015-12-18 19:42 - 00466400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys 2015-12-18 19:42 - 2015-12-18 19:42 - 00028144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2015-12-18 19:42 - 2015-12-18 17:56 - 00386096 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2015-12-18 18:04 - 2015-12-18 19:41 - 00000000 ____D C:\Users\J\AppData\Local\Mozilla 2015-12-18 18:04 - 2015-12-18 18:04 - 00001224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-12-18 18:04 - 2015-12-18 18:04 - 00000000 ____D C:\Users\J\AppData\Roaming\Mozilla 2015-12-18 18:04 - 2015-12-18 18:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-12-18 18:04 - 2015-12-18 18:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-12-18 18:03 - 2015-12-18 18:03 - 00249736 _____ C:\Users\J\Downloads\Firefox Setup Stub 43.0.1.exe 2015-12-18 17:57 - 2015-12-18 17:57 - 00002862 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2015-12-18 17:57 - 2015-12-18 17:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-12-18 17:57 - 2015-12-18 17:57 - 00000000 ____D C:\Program Files\CCleaner 2015-12-18 17:56 - 2015-12-18 19:43 - 00451040 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys 2015-12-18 17:56 - 2015-12-18 19:43 - 00097648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys 2015-12-18 17:56 - 2015-12-18 19:43 - 00004006 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2015-12-18 17:56 - 2015-12-18 17:56 - 00273784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2015-12-18 17:56 - 2015-12-18 17:56 - 00155304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2015-12-18 17:56 - 2015-12-18 17:56 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2015-12-18 17:56 - 2015-12-18 17:56 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2015-12-18 17:56 - 2015-12-18 17:56 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr 2015-12-18 17:56 - 2015-12-18 17:56 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2015-12-18 17:56 - 2015-12-18 17:56 - 00000000 ____D C:\Users\J\AppData\Roaming\AVAST Software 2015-12-18 17:56 - 2015-12-18 17:55 - 01055560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2015-12-18 17:54 - 2015-12-18 17:56 - 06801752 _____ (Piriform Ltd) C:\Users\J\Downloads\ccsetup512.exe 2015-12-18 17:54 - 2015-12-18 17:54 - 00000000 ____D C:\Users\J\AppData\Roaming\Macromedia 2015-12-18 17:54 - 2015-12-18 17:54 - 00000000 ____D C:\Users\J\AppData\Local\Comms 2015-12-18 17:53 - 2015-12-18 19:42 - 00000000 ____D C:\Program Files\AVAST Software 2015-12-18 17:52 - 2015-12-18 19:42 - 00000000 ____D C:\ProgramData\AVAST Software 2015-12-18 17:52 - 2015-12-18 17:52 - 05066104 _____ (AVAST Software) C:\Users\J\Downloads\avast_free_antivirus_setup_online_cnet2.exe 2015-12-18 17:50 - 2015-12-18 17:50 - 00000000 ____D C:\Users\J\AppData\Local\MicrosoftEdge 2015-12-18 17:43 - 2015-12-09 04:39 - 00301728 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-12-18 17:41 - 2015-12-18 17:42 - 00000000 ____D C:\Windows\system32\MRT 2015-12-18 17:41 - 2015-11-23 19:10 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-12-18 17:40 - 2015-12-07 05:57 - 00973664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll 2015-12-18 17:40 - 2015-12-07 05:55 - 01281376 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 02544256 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 02180136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 01299504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 01155944 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 01118208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 01092456 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 01065080 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 01020096 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00983464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00884256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00823264 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00794888 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00696160 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00670928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00526856 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00502112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00498448 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00462760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00450904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00337840 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00289248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll 2015-12-18 17:40 - 2015-12-07 05:48 - 00245848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2015-12-18 17:40 - 2015-12-07 05:47 - 00925064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2015-12-18 17:40 - 2015-12-07 05:47 - 00898184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:47 - 00716928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll 2015-12-18 17:40 - 2015-12-07 05:47 - 00116720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll 2015-12-18 17:40 - 2015-12-07 05:46 - 03671888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-12-18 17:40 - 2015-12-07 05:46 - 02919320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-12-18 17:40 - 2015-12-07 05:45 - 00264544 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll 2015-12-18 17:40 - 2015-12-07 05:15 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll 2015-12-18 17:40 - 2015-12-07 05:10 - 00824320 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll 2015-12-18 17:40 - 2015-12-07 05:07 - 16984064 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2015-12-18 17:40 - 2015-12-07 05:06 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll 2015-12-18 17:40 - 2015-12-07 05:06 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe 2015-12-18 17:40 - 2015-12-07 05:03 - 13017600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2015-12-18 17:40 - 2015-12-07 05:01 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll 2015-12-18 17:40 - 2015-12-07 05:00 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll 2015-12-18 17:40 - 2015-12-07 05:00 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll 2015-12-18 17:40 - 2015-12-07 04:59 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll 2015-12-18 17:40 - 2015-12-07 04:59 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll 2015-12-18 17:40 - 2015-12-07 04:59 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll 2015-12-18 17:40 - 2015-12-07 04:58 - 24601600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-12-18 17:40 - 2015-12-07 04:58 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll 2015-12-18 17:40 - 2015-12-07 04:57 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll 2015-12-18 17:40 - 2015-12-07 04:56 - 00607232 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll 2015-12-18 17:40 - 2015-12-07 04:56 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll 2015-12-18 17:40 - 2015-12-07 04:53 - 19339264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-12-18 17:40 - 2015-12-07 04:53 - 00381952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll 2015-12-18 17:40 - 2015-12-07 04:51 - 01318912 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll 2015-12-18 17:40 - 2015-12-07 04:50 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll 2015-12-18 17:40 - 2015-12-07 04:49 - 01105920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll 2015-12-18 17:40 - 2015-12-07 04:47 - 03428864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2015-12-18 17:40 - 2015-12-07 04:45 - 02582016 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2015-12-18 17:40 - 2015-12-07 04:45 - 00900608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll 2015-12-18 17:40 - 2015-12-07 04:45 - 00683008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll 2015-12-18 17:40 - 2015-12-07 04:44 - 02796032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll 2015-12-18 17:40 - 2015-12-07 04:43 - 02598400 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll 2015-12-18 17:40 - 2015-12-07 04:43 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL 2015-12-18 17:40 - 2015-12-07 04:41 - 02061824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2015-12-18 17:40 - 2015-12-07 04:40 - 03593216 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2015-12-18 17:40 - 2015-12-07 04:40 - 01995776 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll 2015-12-18 17:40 - 2015-12-07 04:40 - 01706496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll 2015-12-18 17:40 - 2015-12-07 04:38 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL 2015-12-18 17:40 - 2015-12-07 04:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll 2015-12-18 17:40 - 2015-12-01 08:12 - 02152800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2015-12-18 17:40 - 2015-11-24 13:07 - 01817160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-12-18 17:40 - 2015-11-24 12:06 - 01540768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-12-18 17:40 - 2015-11-24 11:26 - 01399224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2015-12-18 17:40 - 2015-11-24 10:37 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys 2015-12-18 17:40 - 2015-11-24 10:26 - 01337240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2015-12-18 17:40 - 2015-11-24 10:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll 2015-12-18 17:40 - 2015-11-24 09:58 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-12-18 17:40 - 2015-11-24 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2015-12-18 17:40 - 2015-11-24 09:52 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2015-12-18 17:40 - 2015-11-24 09:49 - 01648640 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2015-12-18 17:40 - 2015-11-24 09:03 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-12-18 17:40 - 2015-11-24 08:59 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2015-12-18 17:40 - 2015-11-24 08:57 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2015-12-18 17:40 - 2015-11-24 08:35 - 22393856 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2015-12-18 17:40 - 2015-11-24 08:29 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-12-18 17:40 - 2015-11-24 08:23 - 13381120 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-12-18 17:40 - 2015-11-24 08:11 - 18678272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2015-12-18 17:40 - 2015-11-24 08:08 - 12125184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-12-18 17:40 - 2015-11-24 08:04 - 02155008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-12-18 17:40 - 2015-11-22 11:47 - 07476576 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-12-18 17:40 - 2015-11-22 11:47 - 02653816 _____ C:\Windows\system32\CoreUIComponents.dll 2015-12-18 17:40 - 2015-11-22 11:41 - 01859448 _____ C:\Windows\SysWOW64\CoreUIComponents.dll 2015-12-18 17:40 - 2015-11-22 11:33 - 00095072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys 2015-12-18 17:40 - 2015-11-22 11:30 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2015-12-18 17:40 - 2015-11-22 11:24 - 02772584 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2015-12-18 17:40 - 2015-11-22 11:20 - 00795840 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-12-18 17:40 - 2015-11-22 11:19 - 00440160 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-12-18 17:40 - 2015-11-22 11:14 - 02185840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2015-12-18 17:40 - 2015-11-22 10:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManagerProxy.dll 2015-12-18 17:40 - 2015-11-22 10:54 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\ETWCoreUIComponentsResources.dll 2015-12-18 17:40 - 2015-11-22 10:54 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\capimg.sys 2015-12-18 17:40 - 2015-11-22 10:49 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe 2015-12-18 17:40 - 2015-11-22 10:45 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll 2015-12-18 17:40 - 2015-11-22 10:45 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-12-18 17:40 - 2015-11-22 10:43 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll 2015-12-18 17:40 - 2015-11-22 10:42 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll 2015-12-18 17:40 - 2015-11-22 10:42 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ETWCoreUIComponentsResources.dll 2015-12-18 17:40 - 2015-11-22 10:41 - 00948224 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll 2015-12-18 17:40 - 2015-11-22 10:39 - 02126848 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-12-18 17:40 - 2015-11-22 10:39 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll 2015-12-18 17:40 - 2015-11-22 10:39 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll 2015-12-18 17:40 - 2015-11-22 10:39 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-12-18 17:40 - 2015-11-22 10:38 - 01223168 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll 2015-12-18 17:40 - 2015-11-22 10:38 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll 2015-12-18 17:40 - 2015-11-22 10:38 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll 2015-12-18 17:40 - 2015-11-22 10:38 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll 2015-12-18 17:40 - 2015-11-22 10:37 - 02624512 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll 2015-12-18 17:40 - 2015-11-22 10:37 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2015-12-18 17:40 - 2015-11-22 10:37 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll 2015-12-18 17:40 - 2015-11-22 10:36 - 01042432 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll 2015-12-18 17:40 - 2015-11-22 10:34 - 02843136 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll 2015-12-18 17:40 - 2015-11-22 10:34 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll 2015-12-18 17:40 - 2015-11-22 10:32 - 00340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll 2015-12-18 17:40 - 2015-11-22 10:32 - 00334848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-12-18 17:40 - 2015-11-22 10:31 - 00470528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll 2015-12-18 17:40 - 2015-11-22 10:31 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll 2015-12-18 17:40 - 2015-11-22 10:28 - 01734656 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-12-18 17:40 - 2015-11-22 10:28 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-12-18 17:40 - 2015-11-22 10:28 - 00948224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll 2015-12-18 17:40 - 2015-11-22 10:28 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll 2015-12-18 17:40 - 2015-11-22 10:28 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll 2015-12-18 17:40 - 2015-11-22 10:28 - 00686592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-12-18 17:40 - 2015-11-22 10:27 - 03993600 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll 2015-12-18 17:40 - 2015-11-22 10:27 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-12-18 17:40 - 2015-11-22 10:27 - 01944576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll 2015-12-18 17:40 - 2015-11-22 10:27 - 00241664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll 2015-12-18 17:40 - 2015-11-22 10:26 - 03355136 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2015-12-18 17:40 - 2015-11-22 10:26 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2015-12-18 17:40 - 2015-11-22 10:26 - 00709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll 2015-12-18 17:40 - 2015-11-22 10:26 - 00421888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll 2015-12-18 17:40 - 2015-11-22 10:25 - 02280448 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-12-18 17:40 - 2015-11-22 10:24 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-12-18 17:40 - 2015-11-22 10:24 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll 2015-12-18 17:40 - 2015-11-22 10:20 - 01860096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll 2015-12-18 17:40 - 2015-11-22 10:18 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-12-18 17:40 - 2015-11-22 10:18 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll 2015-12-18 17:40 - 2015-11-22 10:18 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll 2015-12-18 17:40 - 2015-11-22 10:17 - 02680320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2015-12-18 17:40 - 2015-11-22 10:17 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-12-18 17:40 - 2015-11-22 10:11 - 00517632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll 2015-12-18 17:40 - 2015-11-21 06:29 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll 2015-12-18 17:40 - 2015-11-21 06:07 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll 2015-12-18 17:40 - 2015-11-13 07:51 - 00334736 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll 2015-12-18 17:40 - 2015-11-13 07:43 - 00586208 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2015-12-18 17:40 - 2015-11-13 07:42 - 00516544 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2015-12-18 17:40 - 2015-11-13 07:41 - 22572632 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-12-18 17:40 - 2015-11-13 07:33 - 00911648 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll 2015-12-18 17:40 - 2015-11-13 07:33 - 00586080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll 2015-12-18 17:40 - 2015-11-13 07:33 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-12-18 17:40 - 2015-11-13 07:32 - 00296488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll 2015-12-18 17:40 - 2015-11-13 07:21 - 00511320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2015-12-18 17:40 - 2015-11-13 07:21 - 00454056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll 2015-12-18 17:40 - 2015-11-13 07:18 - 21125408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-12-18 17:40 - 2015-11-13 07:09 - 00675064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll 2015-12-18 17:40 - 2015-11-13 06:58 - 11545088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2015-12-18 17:40 - 2015-11-13 06:58 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll 2015-12-18 17:40 - 2015-11-13 06:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll 2015-12-18 17:40 - 2015-11-13 06:55 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll 2015-12-18 17:40 - 2015-11-13 06:53 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2015-12-18 17:40 - 2015-11-13 06:50 - 01063424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2015-12-18 17:40 - 2015-11-13 06:49 - 00674816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll 2015-12-18 17:40 - 2015-11-13 06:39 - 02444288 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2015-12-18 17:40 - 2015-11-13 06:29 - 09918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2015-12-18 17:40 - 2015-11-13 06:27 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2015-12-18 17:40 - 2015-11-13 06:19 - 02001408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll 2015-12-18 17:40 - 2015-11-05 13:05 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2015-12-18 17:40 - 2015-11-05 11:40 - 00630632 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe 2015-12-18 17:40 - 2015-11-05 11:25 - 00578912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2015-12-18 17:40 - 2015-11-05 10:41 - 00540752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe 2015-12-18 17:40 - 2015-11-05 10:13 - 00969728 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-12-18 17:40 - 2015-11-05 10:10 - 00803840 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-12-18 17:40 - 2015-11-05 09:18 - 00791552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-12-18 17:40 - 2015-11-05 09:15 - 00647168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-12-18 17:39 - 2015-12-07 05:49 - 00412512 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe 2015-12-18 17:39 - 2015-12-07 05:48 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll 2015-12-18 17:39 - 2015-12-07 05:48 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll 2015-12-18 17:39 - 2015-12-07 05:15 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.XboxLive.ProxyStub.dll 2015-12-18 17:39 - 2015-12-07 05:09 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\flvprophandler.dll 2015-12-18 17:39 - 2015-12-07 05:09 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll 2015-12-18 17:39 - 2015-12-07 05:09 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll 2015-12-18 17:39 - 2015-12-07 05:07 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll 2015-12-18 17:39 - 2015-12-07 05:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll 2015-12-18 17:39 - 2015-12-07 05:06 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll 2015-12-18 17:39 - 2015-12-07 05:05 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll 2015-12-18 17:39 - 2015-12-07 05:05 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\BackgroundTransferHost.exe 2015-12-18 17:39 - 2015-12-07 05:04 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll 2015-12-18 17:39 - 2015-12-07 05:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe 2015-12-18 17:39 - 2015-12-07 05:02 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll 2015-12-18 17:39 - 2015-12-07 05:02 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe 2015-12-18 17:39 - 2015-12-07 05:01 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BackgroundTransferHost.exe 2015-12-18 17:39 - 2015-12-07 05:00 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll 2015-12-18 17:39 - 2015-12-07 05:00 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll 2015-12-18 17:39 - 2015-12-07 04:59 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll 2015-12-18 17:39 - 2015-12-07 04:57 - 00387072 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2015-12-18 17:39 - 2015-12-07 04:57 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll 2015-12-18 17:39 - 2015-12-07 04:55 - 07979008 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll 2015-12-18 17:39 - 2015-12-07 04:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll 2015-12-18 17:39 - 2015-12-07 04:54 - 00850432 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll 2015-12-18 17:39 - 2015-12-07 04:54 - 00569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2015-12-18 17:39 - 2015-12-07 04:51 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll 2015-12-18 17:39 - 2015-12-07 04:48 - 06297088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll 2015-12-18 17:39 - 2015-12-07 04:39 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2015-12-18 17:39 - 2015-12-07 04:33 - 00375296 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2015-12-18 17:39 - 2015-11-24 11:01 - 02756096 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-12-18 17:39 - 2015-11-24 10:54 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\readingviewresources.dll 2015-12-18 17:39 - 2015-11-24 10:53 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-12-18 17:39 - 2015-11-24 10:45 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll 2015-12-18 17:39 - 2015-11-24 10:19 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll 2015-12-18 17:39 - 2015-11-24 09:54 - 02756096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-12-18 17:39 - 2015-11-24 09:14 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll 2015-12-18 17:39 - 2015-11-22 11:41 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-12-18 17:39 - 2015-11-22 11:35 - 00538632 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll 2015-12-18 17:39 - 2015-11-22 11:34 - 00080600 _____ (Microsoft Corporation) C:\Windows\system32\wwapi.dll 2015-12-18 17:39 - 2015-11-22 11:33 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll 2015-12-18 17:39 - 2015-11-22 11:33 - 00051680 _____ (Microsoft Corporation) C:\Windows\system32\SensorsUtilsV2.dll 2015-12-18 17:39 - 2015-11-22 11:30 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-12-18 17:39 - 2015-11-22 11:26 - 00431232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll 2015-12-18 17:39 - 2015-11-22 11:25 - 00063528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wwapi.dll 2015-12-18 17:39 - 2015-11-22 11:00 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll 2015-12-18 17:39 - 2015-11-22 11:00 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\MosResource.dll 2015-12-18 17:39 - 2015-11-22 10:57 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MapControls.dll 2015-12-18 17:39 - 2015-11-22 10:57 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCoreRes.dll 2015-12-18 17:39 - 2015-11-22 10:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosTrace.dll 2015-12-18 17:39 - 2015-11-22 10:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosHost.dll 2015-12-18 17:39 - 2015-11-22 10:56 - 01268736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll 2015-12-18 17:39 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll 2015-12-18 17:39 - 2015-11-22 10:56 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\ihvrilproxy.dll 2015-12-18 17:39 - 2015-11-22 10:56 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rilproxy.dll 2015-12-18 17:39 - 2015-11-22 10:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvcProxy.dll 2015-12-18 17:39 - 2015-11-22 10:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll 2015-12-18 17:39 - 2015-11-22 10:54 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll 2015-12-18 17:39 - 2015-11-22 10:54 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\wsplib.dll 2015-12-18 17:39 - 2015-11-22 10:54 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-12-18 17:39 - 2015-11-22 10:54 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll 2015-12-18 17:39 - 2015-11-22 10:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\nativemap.dll 2015-12-18 17:39 - 2015-11-22 10:54 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\MapControlStringsRes.dll 2015-12-18 17:39 - 2015-11-22 10:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\wininetlui.dll 2015-12-18 17:39 - 2015-11-22 10:52 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthTokenBrokerExt.dll 2015-12-18 17:39 - 2015-11-22 10:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-12-18 17:39 - 2015-11-22 10:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll 2015-12-18 17:39 - 2015-11-22 10:51 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe 2015-12-18 17:39 - 2015-11-22 10:51 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll 2015-12-18 17:39 - 2015-11-22 10:51 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll 2015-12-18 17:39 - 2015-11-22 10:51 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\mapstoasttask.dll 2015-12-18 17:39 - 2015-11-22 10:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-12-18 17:39 - 2015-11-22 10:50 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll 2015-12-18 17:39 - 2015-11-22 10:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-12-18 17:39 - 2015-11-22 10:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Wwanpref.dll 2015-12-18 17:39 - 2015-11-22 10:48 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosResource.dll 2015-12-18 17:39 - 2015-11-22 10:46 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll 2015-12-18 17:39 - 2015-11-22 10:45 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll 2015-12-18 17:39 - 2015-11-22 10:45 - 00264192 _____ (Nokia) C:\Windows\system32\NmaDirect.dll 2015-12-18 17:39 - 2015-11-22 10:45 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MapControls.dll 2015-12-18 17:39 - 2015-11-22 10:45 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll 2015-12-18 17:39 - 2015-11-22 10:45 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCoreRes.dll 2015-12-18 17:39 - 2015-11-22 10:45 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MosTrace.dll 2015-12-18 17:39 - 2015-11-22 10:45 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MosHost.dll 2015-12-18 17:39 - 2015-11-22 10:44 - 01268736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll 2015-12-18 17:39 - 2015-11-22 10:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll 2015-12-18 17:39 - 2015-11-22 10:43 - 00704000 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll 2015-12-18 17:39 - 2015-11-22 10:43 - 00382464 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-12-18 17:39 - 2015-11-22 10:43 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XblAuthManagerProxy.dll 2015-12-18 17:39 - 2015-11-22 10:42 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll 2015-12-18 17:39 - 2015-11-22 10:42 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WordBreakers.dll 2015-12-18 17:39 - 2015-11-22 10:42 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlStringsRes.dll 2015-12-18 17:39 - 2015-11-22 10:41 - 01814528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll 2015-12-18 17:39 - 2015-11-22 10:40 - 01056256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll 2015-12-18 17:39 - 2015-11-22 10:40 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2015-12-18 17:39 - 2015-11-22 10:40 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininetlui.dll 2015-12-18 17:39 - 2015-11-22 10:40 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XblAuthTokenBrokerExt.dll 2015-12-18 17:39 - 2015-11-22 10:39 - 01713664 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll 2015-12-18 17:39 - 2015-11-22 10:39 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll 2015-12-18 17:39 - 2015-11-22 10:39 - 00957440 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2015-12-18 17:39 - 2015-11-22 10:39 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll 2015-12-18 17:39 - 2015-11-22 10:39 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll 2015-12-18 17:39 - 2015-11-22 10:39 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll 2015-12-18 17:39 - 2015-11-22 10:39 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-12-18 17:39 - 2015-11-22 10:38 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll 2015-12-18 17:39 - 2015-11-22 10:34 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll 2015-12-18 17:39 - 2015-11-22 10:34 - 00166912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll 2015-12-18 17:39 - 2015-11-22 10:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll 2015-12-18 17:39 - 2015-11-22 10:34 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll 2015-12-18 17:39 - 2015-11-22 10:33 - 00205824 _____ (Nokia) C:\Windows\SysWOW64\NmaDirect.dll 2015-12-18 17:39 - 2015-11-22 10:31 - 07199232 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2015-12-18 17:39 - 2015-11-22 10:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll 2015-12-18 17:39 - 2015-11-22 10:28 - 01443328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll 2015-12-18 17:39 - 2015-11-22 10:28 - 00784896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll 2015-12-18 17:39 - 2015-11-22 10:28 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinelsa.dll 2015-12-18 17:39 - 2015-11-22 10:27 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll 2015-12-18 17:39 - 2015-11-22 10:27 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll 2015-12-18 17:39 - 2015-11-22 10:25 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll 2015-12-18 17:39 - 2015-11-22 10:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputLocaleManager.dll 2015-12-18 17:39 - 2015-11-22 10:24 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditBufferTestHook.dll 2015-12-18 17:39 - 2015-11-22 10:23 - 05202944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll 2015-12-18 17:39 - 2015-11-21 07:21 - 00809312 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe 2015-12-18 17:39 - 2015-11-21 07:02 - 00704352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe 2015-12-18 17:39 - 2015-11-21 06:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-AppModelExecEvents.dll 2015-12-18 17:39 - 2015-11-13 07:55 - 00035680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys 2015-12-18 17:39 - 2015-11-13 07:51 - 00698208 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll 2015-12-18 17:39 - 2015-11-13 07:51 - 00523616 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe 2015-12-18 17:39 - 2015-11-13 07:43 - 00536768 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2015-12-18 17:39 - 2015-11-13 07:43 - 00369912 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2015-12-18 17:39 - 2015-11-13 07:43 - 00110032 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2015-12-18 17:39 - 2015-11-13 07:43 - 00035656 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2015-12-18 17:39 - 2015-11-13 07:42 - 00408128 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2015-12-18 17:39 - 2015-11-13 07:42 - 00088392 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll 2015-12-18 17:39 - 2015-11-13 07:21 - 00405048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2015-12-18 17:39 - 2015-11-13 07:21 - 00366224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll 2015-12-18 17:39 - 2015-11-13 07:21 - 00073360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll 2015-12-18 17:39 - 2015-11-13 07:21 - 00032040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe 2015-12-18 17:39 - 2015-11-13 07:07 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll 2015-12-18 17:39 - 2015-11-13 07:06 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll 2015-12-18 17:39 - 2015-11-13 07:05 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll 2015-12-18 17:39 - 2015-11-13 07:05 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll 2015-12-18 17:39 - 2015-11-13 07:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.proxy.dll 2015-12-18 17:39 - 2015-11-13 07:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\tetheringconfigsp.dll 2015-12-18 17:39 - 2015-11-13 07:04 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll 2015-12-18 17:39 - 2015-11-13 07:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe 2015-12-18 17:39 - 2015-11-13 07:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\IcsEntitlementHost.exe 2015-12-18 17:39 - 2015-11-13 07:03 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll 2015-12-18 17:39 - 2015-11-13 07:00 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll 2015-12-18 17:39 - 2015-11-13 06:59 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll 2015-12-18 17:39 - 2015-11-13 06:56 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll 2015-12-18 17:39 - 2015-11-13 06:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2015-12-18 17:39 - 2015-11-13 06:40 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe 2015-12-18 17:39 - 2015-11-13 06:40 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.proxy.dll 2015-12-18 17:39 - 2015-11-13 06:34 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll 2015-12-18 17:39 - 2015-11-13 06:33 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe 2015-12-18 17:39 - 2015-11-13 06:30 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe 2015-12-18 17:39 - 2015-11-13 06:30 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll 2015-12-18 17:39 - 2015-11-13 06:23 - 00490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll 2015-12-18 17:39 - 2015-11-05 11:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-12-18 17:39 - 2015-11-05 11:08 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-12-18 17:39 - 2015-11-05 11:04 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-12-18 17:39 - 2015-11-05 11:00 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-12-18 17:39 - 2015-11-05 10:44 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-12-18 17:39 - 2015-11-05 10:03 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2015-12-18 17:39 - 2015-11-05 10:02 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2015-12-18 17:39 - 2015-11-05 09:59 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-12-18 17:39 - 2015-11-05 09:55 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2015-12-18 17:39 - 2015-11-05 09:42 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-12-18 17:33 - 2015-12-19 20:40 - 01799166 _____ C:\Windows\system32\PerfStringBackup.INI 2015-12-18 17:32 - 2015-12-18 17:32 - 00002367 _____ C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-12-18 17:32 - 2015-12-18 17:32 - 00000000 ___RD C:\Users\J\OneDrive 2015-12-18 17:31 - 2015-12-18 17:31 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2015-12-18 17:31 - 2015-12-18 17:31 - 00000000 ____D C:\Program Files (x86)\Intel 2015-12-18 17:31 - 2015-12-18 17:31 - 00000000 ____D C:\Intel 2015-12-18 17:30 - 2015-12-18 17:30 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf 2015-12-18 17:30 - 2015-12-18 17:30 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2015-12-18 17:30 - 2015-12-18 17:30 - 00000000 ____D C:\Users\J\AppData\Local\ActiveSync 2015-12-18 17:30 - 2015-12-18 17:30 - 00000000 ____D C:\Program Files\Synaptics 2015-12-18 17:30 - 2015-06-03 03:16 - 00042696 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys 2015-12-18 17:29 - 2015-12-18 17:29 - 00000000 ____D C:\Users\J\AppData\Local\Publishers 2015-12-18 17:28 - 2015-12-19 23:02 - 00000000 ____D C:\Users\J 2015-12-18 17:28 - 2015-12-19 14:09 - 00000000 ____D C:\Users\J\AppData\Roaming\Adobe 2015-12-18 17:28 - 2015-12-19 00:58 - 00000000 ____D C:\Users\J\AppData\Local\VirtualStore 2015-12-18 17:28 - 2015-12-18 21:29 - 00000000 ____D C:\Users\J\AppData\Local\Packages 2015-12-18 17:28 - 2015-12-18 17:49 - 00000000 __RHD C:\Users\Public\AccountPictures 2015-12-18 17:28 - 2015-12-18 17:28 - 00000020 ___SH C:\Users\J\ntuser.ini 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Vorlagen 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Startmenü 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Netzwerkumgebung 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Lokale Einstellungen 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Eigene Dateien 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Druckumgebung 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Documents\Eigene Videos 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Documents\Eigene Musik 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Documents\Eigene Bilder 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\AppData\Local\Verlauf 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\AppData\Local\Anwendungsdaten 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 _SHDL C:\Users\J\Anwendungsdaten 2015-12-18 17:28 - 2015-12-18 17:28 - 00000000 ____D C:\Users\J\AppData\Local\TileDataLayer 2015-12-18 17:22 - 2015-12-18 17:22 - 00000000 ____D C:\Windows\CSC 2015-12-18 17:22 - 2015-12-18 17:22 - 00000000 ____D C:\ProgramData\USOShared 2015-12-18 17:22 - 2015-10-30 08:17 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2015-12-18 17:20 - 2015-12-20 10:25 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Videos 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Videos 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Videos 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Programme 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\ProgramData\Vorlagen 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\ProgramData\Startmenü 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\ProgramData\Dokumente 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2015-12-18 17:20 - 2015-12-18 17:20 - 00000000 _SHDL C:\Dokumente und Einstellungen 2015-12-18 17:16 - 2015-12-18 17:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-12-18 17:15 - 2015-12-18 18:01 - 00000000 ____D C:\Windows\Panther 2015-12-18 17:15 - 2015-12-18 17:48 - 00189344 _____ C:\Windows\system32\FNTCACHE.DAT ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-20 10:29 - 2015-10-30 07:28 - 00000000 ____D C:\Windows 2015-12-20 10:24 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\LiveKernelReports 2015-12-19 20:40 - 2015-10-30 19:35 - 00776766 _____ C:\Windows\system32\perfh007.dat 2015-12-19 20:40 - 2015-10-30 19:35 - 00155544 _____ C:\Windows\system32\perfc007.dat 2015-12-19 20:40 - 2015-10-30 08:21 - 00000000 ____D C:\Windows\INF 2015-12-19 20:13 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\AppReadiness 2015-12-19 13:29 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\appcompat 2015-12-19 01:20 - 2015-10-30 07:28 - 00262144 ___SH C:\Windows\system32\config\BBI 2015-12-18 22:55 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\FxsTmp 2015-12-18 21:29 - 2015-10-30 08:24 - 00000000 ___HD C:\Program Files\WindowsApps 2015-12-18 21:14 - 2015-10-30 08:11 - 00000000 ____D C:\Windows\CbsTemp 2015-12-18 21:13 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\SysWOW64\MUI 2015-12-18 21:13 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\MUI 2015-12-18 20:55 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\WinBioDatabase 2015-12-18 17:51 - 2015-10-30 08:24 - 00000000 ___RD C:\Windows\DevicesFlow 2015-12-18 17:46 - 2015-10-30 08:24 - 00000000 ___RD C:\Windows\PurchaseDialog 2015-12-18 17:46 - 2015-10-30 08:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2015-12-18 17:46 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2015-12-18 17:46 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\oobe 2015-12-18 17:46 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\appraiser 2015-12-18 17:46 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\Provisioning 2015-12-18 17:46 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\bcastdvr 2015-12-18 17:46 - 2015-10-30 07:28 - 00000000 ____D C:\Windows\SysWOW64\Dism 2015-12-18 17:46 - 2015-10-30 07:28 - 00000000 ____D C:\Windows\system32\Dism 2015-12-18 17:29 - 2015-10-30 08:24 - 00000000 ___RD C:\Windows\PrintDialog 2015-12-18 17:29 - 2015-10-30 08:24 - 00000000 ___RD C:\Windows\MiracastView 2015-12-18 17:24 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\rescache 2015-12-18 17:22 - 2015-10-30 08:24 - 00000000 ____D C:\Windows\system32\spool 2015-12-18 17:22 - 2015-10-30 08:24 - 00000000 ____D C:\ProgramData\USOPrivate 2015-12-18 17:22 - 2015-10-30 07:28 - 00032768 ___SH C:\Windows\system32\config\ELAM 2015-12-18 17:20 - 2015-10-30 08:24 - 00000000 ____D C:\Program Files\Windows NT 2015-12-18 17:18 - 2015-10-30 07:28 - 00000000 ____D C:\Windows\system32\Sysprep 2015-12-18 17:15 - 2015-10-30 19:58 - 00000000 ____D C:\Windows\ServiceProfiles 2015-12-18 17:15 - 2015-10-30 08:24 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2015-12-01 01:33 - 2015-10-30 08:26 - 00826872 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-12-01 01:33 - 2015-10-30 08:26 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-18 17:15 ==================== Ende von FRST.txt ============================ Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:19-12-2015 durchgeführt von J (2015-12-19 21:47:40) Gestartet von C:\Users\J\Desktop Windows 10 Pro (X64) (2015-12-18 16:26:08) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-3067355-1179460849-3221998070-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3067355-1179460849-3221998070-503 - Limited - Disabled) Gast (S-1-5-21-3067355-1179460849-3221998070-501 - Limited - Disabled) J (S-1-5-21-3067355-1179460849-3221998070-1001 - Administrator - Enabled) => C:\Users\J ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe Flash Player 20 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 20.0.0.228 - Adobe Systems Incorporated) Avast Premier (HKLM-x32\...\Avast) (Version: 11.1.2245 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) Druckerdeinstallation für EPSON XP-205 207 Series (HKLM\...\EPSON XP-205 207 Series) (Version: - SEIKO EPSON Corporation) Epson Easy Photo Print 2 (HKLM-x32\...\{07AA1C7F-E8CA-4FDC-B975-BC9EBC22B6DE}) (Version: 2.7.0.0 - SEIKO EPSON CORPORATION) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.41 - Irfan Skiljan) Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Mozilla Firefox 43.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 de)) (Version: 43.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.1 - Mozilla) SafeZone Stable 1.46.1990.139 (x32 Version: 1.46.1990.139 - Avast Software) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.9.5 - Synaptics Incorporated) WinRAR 5.30 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-3067355-1179460849-3221998070-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\J\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation) ==================== Wiederherstellungspunkte ========================= 18-12-2015 17:24:32 Windows Modules Installer ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2015-10-30 08:24 - 2015-10-30 08:21 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {04024DF8-F0EA-498F-B4B5-C17F2BB73DF5} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-11-23] (Microsoft Corporation) Task: {2F3E0B4C-CE89-407E-8DC8-93003751441B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {6F78876D-100A-4E8C-85B9-AEDE5AB8E488} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-19] (Adobe Systems Incorporated) Task: {C3EDD13F-E1B7-43DD-B6CE-63BB538BA32C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {C9B2AA13-2366-4252-A1A5-8A9ED627C68E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-18] (AVAST Software) Task: {D36AC11B-9B1F-4E21-A7E3-E9A0E88034DA} - System32\Tasks\SafeZone scheduled Autoupdate 1450464297 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2015-12-01] (Avast Software) Task: {E8460A9D-B525-4634-9475-8AA2C35475D5} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe [2015-12-19] (Adobe Systems Incorporated) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_20_0_0_228_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\Windows\SYSTEM32\ism32k.dll 2015-12-18 17:40 - 2015-11-22 11:47 - 02653816 _____ () C:\Windows\system32\CoreUIComponents.dll 2015-12-18 17:40 - 2015-11-22 11:47 - 02653816 _____ () C:\Windows\System32\CoreUIComponents.dll 2015-12-18 17:39 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2015-12-18 17:39 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-12-18 17:40 - 2015-12-07 04:37 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-12-18 17:40 - 2015-12-07 04:33 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-12-18 17:40 - 2015-12-07 04:34 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-12-18 17:40 - 2015-12-07 04:36 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-06-01 21:00 - 2015-06-01 21:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll 2015-12-18 17:56 - 2015-12-18 17:56 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-12-18 17:56 - 2015-12-18 17:56 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-12-18 17:59 - 2015-12-18 17:59 - 02805760 _____ () C:\Program Files\AVAST Software\Avast\defs\15121703\algo.dll 2015-12-18 17:56 - 2015-12-18 17:56 - 00469008 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2015-12-19 20:34 - 2015-12-19 20:34 - 02805760 _____ () C:\Program Files\AVAST Software\Avast\defs\15121901\algo.dll 2015-12-18 17:56 - 2015-12-18 17:56 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-3067355-1179460849-3221998070-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\J\Desktop\08d405e9-de67-4065-8ded-afd92b716598_4.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-3067355-1179460849-3221998070-1001\...\StartupApproved\Run: => "CCleaner Monitoring" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{E463DC49-076D-4C96-89CB-16D81943A1EE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{379DC2B3-215F-44BF-BFC7-D7478A561A31}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: USB2.0-CRW Description: USB2.0-CRW Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: EgisTec_ES603 Description: EgisTec_ES603 Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (12/19/2015 08:56:40 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (12/19/2015 08:35:50 PM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Der Index kann nicht initialisiert werden. Details: Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an. (HRESULT : 0x80040d06) (0x80040d06) Error: (12/19/2015 08:35:50 PM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Die Anwendung kann nicht initialisiert werden. Kontext: Windows Anwendung Details: Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an. (HRESULT : 0x80040d06) (0x80040d06) Error: (12/19/2015 08:35:50 PM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Das Gatherer-Objekt kann nicht initialisiert werden. Kontext: Windows Anwendung, SystemIndex Katalog Details: Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an. (HRESULT : 0x80040d06) (0x80040d06) Error: (12/19/2015 08:35:50 PM) (Source: Windows Search Service) (EventID: 3029) (User: ) Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden. Kontext: Windows Anwendung, SystemIndex Katalog Details: Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an. (HRESULT : 0x80040d06) (0x80040d06) Error: (12/19/2015 08:35:50 PM) (Source: Windows Search Service) (EventID: 3057) (User: ) Description: Der Plug-In-Manager <Search.TripoliIndexer> kann nicht initialisiert werden. Kontext: Windows Anwendung Details: (HRESULT : 0x8e5e0210) (0x8e5e0210) Error: (12/19/2015 08:35:50 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet. Details: Der Inhaltsindexkatalog ist fehlerhaft. 0xc0041801 (0xc0041801) Error: (12/19/2015 08:34:55 PM) (Source: Windows Search Service) (EventID: 7040) (User: ) Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=4810 - base\appmodel\search\search\ytrip\common\util\jetutil.cpp (203)} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben. Details: 0x8e5e0210 (0x8e5e0210) Error: (12/19/2015 08:34:55 PM) (Source: ESENT) (EventID: 455) (User: ) Description: SearchIndexer (4040) Windows: Fehler -1811 (0xfffff8ed) beim Öffnen von Protokolldatei C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb00014.log. Error: (12/19/2015 02:59:01 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm AvastSZB.exe, Version 1.46.1990.139 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1638 Startzeit: 01d13a622b5fb39e Beendigungszeit: 40314 Anwendungspfad: C:\Program Files\AVAST Software\SZBrowser\1.46.1990.139\AvastSZB.exe Berichts-ID: 83e28f16-a658-11e5-b303-f0def1e13405 Vollständiger Name des fehlerhaften Pakets: Auf das fehlerhafte Paket bezogene Anwendungs-ID: Systemfehler: ============= Error: (12/19/2015 09:05:03 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (12/19/2015 08:36:02 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-BSKNV1M) Description: 1053WSearchNicht verfügbar{9E175B6D-F52A-11D8-B9A5-505054503030} Error: (12/19/2015 08:36:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/19/2015 08:36:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Search erreicht. Error: (12/19/2015 08:35:50 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts. Error: (12/19/2015 08:35:50 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Der Dienst "Windows Search" wurde mit dem folgenden dienstspezifischen Fehler beendet: %%2147749126 Error: (12/19/2015 08:33:44 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: 0x0000000a (0xfffffffffffffff8, 0x0000000000000002, 0x0000000000000000, 0xfffff80185666440)C:\Windows\MEMORY.DMP1adbf5d4-9877-4c6e-a6e4-7a3ecd128aab Error: (12/19/2015 08:33:23 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: Das System wurde zuvor am 19.12.2015 um 20:11:54 unerwartet heruntergefahren. Error: (12/19/2015 08:12:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-BSKNV1M) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-BSKNV1MJS-1-5-21-3067355-1179460849-3221998070-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (12/19/2015 08:12:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-BSKNV1M) Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-BSKNV1MJS-1-5-21-3067355-1179460849-3221998070-1001LocalHost (unter Verwendung von LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 CodeIntegrity: =================================== Date: 2015-12-18 23:18:32.459 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-18 21:18:38.947 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-18 17:49:15.419 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-18 17:44:24.906 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-18 17:25:07.384 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-18 17:16:48.907 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz Prozentuale Nutzung des RAM: 41% Installierter physikalischer RAM: 4010.15 MB Verfügbarer physikalischer RAM: 2336.82 MB Summe virtueller Speicher: 5418.15 MB Verfügbarer virtueller Speicher: 3685.08 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:465.21 GB) (Free:446.12 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 50ED1CE1) Partition: GPT. ==================== Ende von Addition.txt ============================ |
20.12.2015, 17:38 | #4 |
/// TB-Ausbilder /// Anleitungs-Guru | Schadsoftware? Hi, Schritt 1 Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
20.12.2015, 18:40 | #5 |
| Schadsoftware?Code:
ATTFilter 18:12:21.0252 0x1354 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12 18:12:21.0252 0x1354 UEFI system 18:12:32.0828 0x1354 ============================================================ 18:12:32.0828 0x1354 Current date / time: 2015/12/20 18:12:32.0828 18:12:32.0828 0x1354 SystemInfo: 18:12:32.0828 0x1354 18:12:32.0828 0x1354 OS Version: 10.0.10586 ServicePack: 0.0 18:12:32.0828 0x1354 Product type: Workstation 18:12:32.0828 0x1354 ComputerName: DESKTOP-BSKNV1M 18:12:32.0828 0x1354 UserName: J 18:12:32.0829 0x1354 Windows directory: C:\Windows 18:12:32.0829 0x1354 System windows directory: C:\Windows 18:12:32.0829 0x1354 Running under WOW64 18:12:32.0829 0x1354 Processor architecture: Intel x64 18:12:32.0829 0x1354 Number of processors: 4 18:12:32.0829 0x1354 Page size: 0x1000 18:12:32.0829 0x1354 Boot type: Normal boot 18:12:32.0829 0x1354 ============================================================ 18:12:33.0543 0x1354 KLMD registered as C:\Windows\system32\drivers\77342635.sys 18:12:34.0175 0x1354 System UUID: {8C4666C2-83B6-E94C-782C-D74E662B57AC} 18:12:35.0325 0x1354 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:12:35.0338 0x1354 ============================================================ 18:12:35.0338 0x1354 \Device\Harddisk0\DR0: 18:12:35.0339 0x1354 GPT partitions: 18:12:35.0339 0x1354 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {40EEE059-2917-484B-A236-AB13FC557B1D}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xE1000 18:12:35.0340 0x1354 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {109DAB21-58A2-4AEC-9B47-684C32BFD105}, Name: EFI system partition, StartLBA 0xE1800, BlocksNum 0x32000 18:12:35.0340 0x1354 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {DD8D2D6E-A30D-4054-A5D5-996651F273C4}, Name: Microsoft reserved partition, StartLBA 0x113800, BlocksNum 0x8000 18:12:35.0340 0x1354 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1365158F-94B7-42D2-BE2D-8DE53D90467E}, Name: Basic data partition, StartLBA 0x11B800, BlocksNum 0x3A26A800 18:12:35.0340 0x1354 MBR partitions: 18:12:35.0340 0x1354 ============================================================ 18:12:35.0403 0x1354 C: <-> \Device\Harddisk0\DR0\Partition4 18:12:35.0404 0x1354 ============================================================ 18:12:35.0404 0x1354 Initialize success 18:12:35.0404 0x1354 ============================================================ 18:12:58.0301 0x17a8 ============================================================ 18:12:58.0301 0x17a8 Scan started 18:12:58.0301 0x17a8 Mode: Manual; 18:12:58.0301 0x17a8 ============================================================ 18:12:58.0301 0x17a8 KSN ping started 18:13:00.0717 0x17a8 KSN ping finished: true 18:13:03.0268 0x17a8 ================ Scan system memory ======================== 18:13:03.0268 0x17a8 System memory - ok 18:13:03.0270 0x17a8 ================ Scan services ============================= 18:13:03.0504 0x17a8 [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys 18:13:03.0538 0x17a8 1394ohci - ok 18:13:03.0581 0x17a8 [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware C:\Windows\system32\drivers\3ware.sys 18:13:03.0590 0x17a8 3ware - ok 18:13:03.0655 0x17a8 [ 6B6C39AB2CD7BEB6CFF624522E5449DE, 740D99D2C525FB4F81FB2754281CECEA5FF13DD2120081306728FE33859F28F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 18:13:03.0700 0x17a8 ACPI - ok 18:13:03.0736 0x17a8 [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex C:\Windows\system32\Drivers\acpiex.sys 18:13:03.0747 0x17a8 acpiex - ok 18:13:03.0769 0x17a8 [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr C:\Windows\System32\drivers\acpipagr.sys 18:13:03.0773 0x17a8 acpipagr - ok 18:13:03.0817 0x17a8 [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys 18:13:03.0820 0x17a8 AcpiPmi - ok 18:13:03.0832 0x17a8 [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime C:\Windows\System32\drivers\acpitime.sys 18:13:03.0835 0x17a8 acpitime - ok 18:13:03.0897 0x17a8 [ E13DE7CD2B62254DD4FF658B7798A37D, 9FCCC90DEF6BE83F8C41D4552D235A7BB5534954D2E7CB7B1C336A31FCCAB3AD ] ACPIVPC C:\Windows\System32\drivers\AcpiVpc.sys 18:13:03.0902 0x17a8 ACPIVPC - ok 18:13:04.0034 0x17a8 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 18:13:04.0041 0x17a8 AdobeARMservice - ok 18:13:04.0179 0x17a8 [ BC9CB5E2A6C7FC587CAC3E1658F8462C, 785DE220AC906C30E9853E7DE94C5330529472C9B4ABF5F99F124A8D516EB33C ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 18:13:04.0196 0x17a8 AdobeFlashPlayerUpdateSvc - ok 18:13:04.0312 0x17a8 [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX C:\Windows\system32\drivers\ADP80XX.SYS 18:13:04.0394 0x17a8 ADP80XX - ok 18:13:04.0461 0x17a8 [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD C:\Windows\system32\drivers\afd.sys 18:13:04.0478 0x17a8 AFD - ok 18:13:04.0503 0x17a8 [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440 C:\Windows\system32\drivers\agp440.sys 18:13:04.0505 0x17a8 agp440 - ok 18:13:04.0542 0x17a8 [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache C:\Windows\system32\DRIVERS\ahcache.sys 18:13:04.0555 0x17a8 ahcache - ok 18:13:04.0594 0x17a8 [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter C:\Windows\System32\AJRouter.dll 18:13:04.0597 0x17a8 AJRouter - ok 18:13:04.0646 0x17a8 [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG C:\Windows\System32\alg.exe 18:13:04.0656 0x17a8 ALG - ok 18:13:04.0682 0x17a8 [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys 18:13:04.0692 0x17a8 AmdK8 - ok 18:13:04.0710 0x17a8 [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys 18:13:04.0719 0x17a8 AmdPPM - ok 18:13:04.0742 0x17a8 [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata C:\Windows\system32\drivers\amdsata.sys 18:13:04.0748 0x17a8 amdsata - ok 18:13:04.0773 0x17a8 [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 18:13:04.0786 0x17a8 amdsbs - ok 18:13:04.0805 0x17a8 [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata C:\Windows\system32\drivers\amdxata.sys 18:13:04.0808 0x17a8 amdxata - ok 18:13:04.0836 0x17a8 [ 2BBD3A492B93C7E669D01EE88977D7DE, 311EA890E555E144F4B0DDC3112B2EB5CB848DEA4F33A300942494D8989473E0 ] AppID C:\Windows\system32\drivers\appid.sys 18:13:04.0846 0x17a8 AppID - ok 18:13:04.0877 0x17a8 [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc C:\Windows\System32\appidsvc.dll 18:13:04.0883 0x17a8 AppIDSvc - ok 18:13:04.0916 0x17a8 [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo C:\Windows\System32\appinfo.dll 18:13:04.0924 0x17a8 Appinfo - ok 18:13:04.0953 0x17a8 [ B4AE5296C9597F45E1CFE0B1DBE7739E, C9DCA8EF32720D68119CC23DF4BCD783FFB5F999D14EDCC7937D17C590323B4B ] AppMgmt C:\Windows\System32\appmgmts.dll 18:13:04.0972 0x17a8 AppMgmt - ok 18:13:05.0020 0x17a8 [ 610499A73DF3599608EBB6B3F9929052, A9CA49C4A39A825916AB3791090BCFC7044FDB6B2C3538E01F0CFBC2A9931152 ] AppReadiness C:\Windows\system32\AppReadiness.dll 18:13:05.0051 0x17a8 AppReadiness - ok 18:13:05.0170 0x17a8 [ BF58041024FEF96B48F7D691003B4BCB, FAD25702256AA8E668F082E16C2C05FD7FA907DCA88787BF36121D1B073350C9 ] AppXSvc C:\Windows\system32\appxdeploymentserver.dll 18:13:05.0222 0x17a8 AppXSvc - ok 18:13:05.0239 0x17a8 [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas C:\Windows\system32\drivers\arcsas.sys 18:13:05.0243 0x17a8 arcsas - ok 18:13:05.0298 0x17a8 [ 7BC1F2FC2A9D79E1EBBBF6D69AC3BA1F, 236265BE3F1B2130025A3A10152893BD0D18AD8965732361058B775F010539A2 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys 18:13:05.0300 0x17a8 aswHwid - ok 18:13:05.0326 0x17a8 [ 42AE0F2BF37CE46EB01A753F96FCC9B8, 3FCECB863664CA9877BF00B7B9E781608BD19CB9E409C98A45D1AFA4E7187882 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys 18:13:05.0328 0x17a8 aswKbd - ok 18:13:05.0344 0x17a8 [ 68E76C1675AC171A84F5B7230652E19D, A707A4E51110B15FF7D73C95D4D9C1E457FC9D93E1479BDB67EBDDDD6AC28D8E ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys 18:13:05.0349 0x17a8 aswMonFlt - ok 18:13:05.0376 0x17a8 [ E017E15F8EFD7675976743A8FBECCEBB, 64B3628E65AA0BC9093374726C76418CF4CB99743E8BE98A969CF5CA82E6D7EE ] aswNdisFlt C:\Windows\system32\DRIVERS\aswNdisFlt.sys 18:13:05.0388 0x17a8 aswNdisFlt - ok 18:13:05.0399 0x17a8 [ 2D6B49A071216796106E7804AB2BA7DC, 6A58A3B36EA05A24333482F87CFD315F73E56A64E46493E82E0FE9115E284168 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys 18:13:05.0402 0x17a8 aswRdr - ok 18:13:05.0413 0x17a8 [ E46B51C99BB750A81AC6A68362475A5C, 2A61C09902B39696D151B9D5E6A60FFC3CF3EA02613EC64BBAB4DEE3C78838E2 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys 18:13:05.0416 0x17a8 aswRvrt - ok 18:13:05.0467 0x17a8 [ A428CC308673A5E74F91D92E4A2B205D, 0A768AA4BD1CD22B5181EDA692F7CB9A43F627BB4FFEEFBB8CBC77A45107A443 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys 18:13:05.0552 0x17a8 aswSnx - ok 18:13:05.0610 0x17a8 [ C24A42A7689DB63EEF157797AA7012B5, AC25AFAD13E59DFBF68B9F9B9527F266F4671A5E0A1F04D9EA71D36C00AC21E9 ] aswSP C:\Windows\system32\drivers\aswSP.sys 18:13:05.0651 0x17a8 aswSP - ok 18:13:05.0678 0x17a8 [ D9079E1A1C2A1F8ED5F37AF8E6CD3161, 629E3A642C5E3BEA65CDD2E08CAD69F9649A98BDA906678B51D3D2C9DB5BB253 ] aswStm C:\Windows\system32\drivers\aswStm.sys 18:13:05.0689 0x17a8 aswStm - ok 18:13:05.0729 0x17a8 [ 3BEC32A0B646D914921FD56AA39998C1, 8DB7CBF3DEF8EAE1D7D28C38B3A0FCD5C2A04D772078B907F35C66451355A04A ] aswVmm C:\Windows\system32\drivers\aswVmm.sys 18:13:05.0775 0x17a8 aswVmm - ok 18:13:05.0805 0x17a8 [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac C:\Windows\System32\drivers\asyncmac.sys 18:13:05.0810 0x17a8 AsyncMac - ok 18:13:05.0839 0x17a8 [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi C:\Windows\system32\drivers\atapi.sys 18:13:05.0842 0x17a8 atapi - ok 18:13:06.0036 0x17a8 [ F1F16542AC6404DDC44A447A875AD13A, 0A59586E68EF58A4D791F244B3C34CEF0A6B3B51CB5F3E85856B0F69AA5029E3 ] athr C:\Windows\System32\drivers\athwnx.sys 18:13:06.0201 0x17a8 athr - ok 18:13:06.0264 0x17a8 [ 890BF20BDF500E4E84720EA84448EDDF, EF5EECA20FFB6B78277CE551877479DB79E91DB23B46530C1D0E746F0F51FBBF ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll 18:13:06.0295 0x17a8 AudioEndpointBuilder - ok 18:13:06.0467 0x17a8 [ FAC1E762CB49992381691B00D2069B3E, 9973814BB259A370E6A17EDFB785CED9C634721E6D6FE069667B669AE60EB5F6 ] Audiosrv C:\Windows\System32\Audiosrv.dll 18:13:06.0498 0x17a8 Audiosrv - ok 18:13:06.0592 0x17a8 [ F5CB8703A4F51EE30E5C090C78073AA4, 90683F39E9AA315FFB66A9F014AD1BEBF19EA62908247C133455815F6632E578 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe 18:13:06.0607 0x17a8 avast! Antivirus - ok 18:13:06.0639 0x17a8 [ 21144F53F79975801AB9A9A027707A85, 445F4838EF0B42A94D997244FE72744E72C7D669C169BC60F23DD3286AF32051 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe 18:13:06.0639 0x17a8 avast! Firewall - ok 18:13:06.0670 0x17a8 [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV C:\Windows\System32\AxInstSV.dll 18:13:06.0686 0x17a8 AxInstSV - ok 18:13:06.0764 0x17a8 [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 18:13:06.0811 0x17a8 b06bdrv - ok 18:13:06.0826 0x17a8 [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys 18:13:06.0826 0x17a8 BasicDisplay - ok 18:13:06.0842 0x17a8 [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender C:\Windows\System32\drivers\BasicRender.sys 18:13:06.0857 0x17a8 BasicRender - ok 18:13:06.0889 0x17a8 [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn C:\Windows\System32\drivers\bcmfn.sys 18:13:06.0889 0x17a8 bcmfn - ok 18:13:06.0904 0x17a8 [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2 C:\Windows\System32\drivers\bcmfn2.sys 18:13:06.0904 0x17a8 bcmfn2 - ok 18:13:06.0936 0x17a8 [ F8F398A4AF7E0917320BC2B2CD812888, 02B9A6EA0AA750CA9B62AB09E99956C35E252A12B22C2CBFDC4E941ED5870591 ] BDESVC C:\Windows\System32\bdesvc.dll 18:13:06.0967 0x17a8 BDESVC - ok 18:13:06.0998 0x17a8 [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep C:\Windows\system32\drivers\Beep.sys 18:13:06.0998 0x17a8 Beep - ok 18:13:07.0076 0x17a8 [ 8EA08141590CB9331FA773FB430E91E4, 0507499EF423CC9EE9AC18C2B5CBF9965E69481C69DC96E361C2184C53C3F404 ] BFE C:\Windows\System32\bfe.dll 18:13:07.0107 0x17a8 BFE - ok 18:13:07.0217 0x17a8 [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS C:\Windows\System32\qmgr.dll 18:13:07.0311 0x17a8 BITS - ok 18:13:07.0342 0x17a8 [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser C:\Windows\system32\DRIVERS\bowser.sys 18:13:07.0342 0x17a8 bowser - ok 18:13:07.0389 0x17a8 [ 62C0D7CD771F26198F76F56B81D8A5B5, 3505DA8B68486D393BF7DCE5F463EA7F88387E6F06BC8175F3514BD6AFE25C37 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll 18:13:07.0404 0x17a8 BrokerInfrastructure - ok 18:13:07.0436 0x17a8 [ DA4C9335434E71D6CC86A3CA567769CC, 9FE5EE3CC91CADBF952446E0A9A79A8834B03C8D4C47D6E9257AF64B2C17F518 ] Browser C:\Windows\System32\browser.dll 18:13:07.0436 0x17a8 Browser - ok 18:13:07.0467 0x17a8 [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys 18:13:07.0467 0x17a8 BthAvrcpTg - ok 18:13:07.0483 0x17a8 [ 7F2165B51C19A5F59BCA94E0A1B1E0D3, 09F0A23554761C5559BED50941BCC40519F88003B6D655527F514D5F9D4CB469 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 18:13:07.0498 0x17a8 BthEnum - ok 18:13:07.0514 0x17a8 [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys 18:13:07.0514 0x17a8 BthHFEnum - ok 18:13:07.0529 0x17a8 [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys 18:13:07.0545 0x17a8 bthhfhid - ok 18:13:07.0576 0x17a8 [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv C:\Windows\System32\BthHFSrv.dll 18:13:07.0623 0x17a8 BthHFSrv - ok 18:13:07.0654 0x17a8 [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys 18:13:07.0654 0x17a8 BTHMODEM - ok 18:13:07.0701 0x17a8 [ 09C3DB1B137B269A822F941D867A6BB6, CC99FBD76DA19D951864D4967EA9F3C048811E9BB7BBB67B724FC82A50B14516 ] BthPan C:\Windows\System32\drivers\bthpan.sys 18:13:07.0717 0x17a8 BthPan - ok 18:13:07.0779 0x17a8 [ 6D75ECFB3891B61B81225F36A0C408B8, F0A08B40DBED7CB134671AA01AB0E5EEB7B1FE31331C857616E0204A3C8F08ED ] BTHPORT C:\Windows\system32\DRIVERS\BTHport.sys 18:13:07.0842 0x17a8 BTHPORT - ok 18:13:07.0858 0x17a8 [ 7A177E18AA6A6A6365E6351C2BF8EDAE, A35224A20014B1215A6824AE5E17B8869A775EA272EF7F25EAFFA18733F8D09D ] bthserv C:\Windows\system32\bthserv.dll 18:13:07.0858 0x17a8 bthserv - ok 18:13:07.0873 0x17a8 [ F001B81D47CEBF96E60CE971FFCC45C4, EE419B557C52B0F1704B5D58E7FA9A996B33E78CC02EA4CA1D28CAB8CFD77D95 ] BTHUSB C:\Windows\system32\DRIVERS\BTHUSB.sys 18:13:07.0873 0x17a8 BTHUSB - ok 18:13:07.0904 0x17a8 [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys 18:13:07.0904 0x17a8 buttonconverter - ok 18:13:07.0936 0x17a8 [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg C:\Windows\System32\drivers\capimg.sys 18:13:07.0936 0x17a8 CapImg - ok 18:13:07.0967 0x17a8 [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 18:13:07.0967 0x17a8 cdfs - ok 18:13:07.0998 0x17a8 [ 0A92DC116CFC7F6BE8167DD25CB925CC, 50CAC7BE14FF69B10C029E049F7C441A5572540F027F95F940B185C76C689409 ] CDPSvc C:\Windows\System32\CDPSvc.dll 18:13:08.0029 0x17a8 CDPSvc - ok 18:13:08.0076 0x17a8 [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom C:\Windows\System32\drivers\cdrom.sys 18:13:08.0076 0x17a8 cdrom - ok 18:13:08.0108 0x17a8 [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc C:\Windows\System32\certprop.dll 18:13:08.0123 0x17a8 CertPropSvc - ok 18:13:08.0170 0x17a8 [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass C:\Windows\System32\drivers\circlass.sys 18:13:08.0170 0x17a8 circlass - ok 18:13:08.0233 0x17a8 [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS C:\Windows\system32\drivers\CLFS.sys 18:13:08.0295 0x17a8 CLFS - ok 18:13:08.0342 0x17a8 [ BE10905777246CA6AA74F48FE9236517, D51B13FB176D82665C91B59B3C6E229CE746E20ED1BB20DADF6184C7A29E69AF ] ClipSVC C:\Windows\System32\ClipSVC.dll 18:13:08.0373 0x17a8 ClipSVC - ok 18:13:08.0420 0x17a8 [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt C:\Windows\System32\drivers\CmBatt.sys 18:13:08.0420 0x17a8 CmBatt - ok 18:13:08.0514 0x17a8 [ 80977779A19947939D680A4899E829EC, 6D510B1EFA39D79D0A8B3CD4F00937A4DDC1411664B001D4ABC546C98345F630 ] CNG C:\Windows\system32\Drivers\cng.sys 18:13:08.0576 0x17a8 CNG - ok 18:13:08.0608 0x17a8 [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist C:\Windows\system32\DRIVERS\cnghwassist.sys 18:13:08.0623 0x17a8 cnghwassist - ok 18:13:08.0717 0x17a8 [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys 18:13:08.0717 0x17a8 CompositeBus - ok 18:13:08.0733 0x17a8 COMSysApp - ok 18:13:08.0764 0x17a8 [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv C:\Windows\system32\drivers\condrv.sys 18:13:08.0779 0x17a8 condrv - ok 18:13:08.0873 0x17a8 [ DE6DF2C34718EADCFF8776E597F2104D, 35D03E95853CEAC69F674FB09C819A4698EBEDFD8AC0474F0ADF02741492401E ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll 18:13:08.0889 0x17a8 CoreMessagingRegistrar - ok 18:13:09.0045 0x17a8 [ B18D590BC5220FDB4A747BC16D78ABC7, D46F8B43BAC22E55DE9AFC19CF371B1C4E8D3707163598B2F9884BB31D730C09 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe 18:13:09.0092 0x17a8 cphs - ok 18:13:09.0139 0x17a8 [ 2CE0D74AED86A372997E9D77AE10B9F5, 1AFAA22C68FD0B81F73CE0EB763AD77AB97E78916752843A5056E1352F0FEA82 ] CryptSvc C:\Windows\system32\cryptsvc.dll 18:13:09.0139 0x17a8 CryptSvc - ok 18:13:09.0201 0x17a8 [ 5D578EAAFB6FD4F59523E5878B541296, 73573124787B79179880AFAF9CB8427237A1605A9F13D7783228DE24D18963C0 ] CSC C:\Windows\system32\drivers\csc.sys 18:13:09.0248 0x17a8 CSC - ok 18:13:09.0311 0x17a8 [ 5F07CCEE514894C9474AEDCA50B6C2C7, 38F54897C91A2E7D80D00852CEB173B26E822D7C68F35D31228245F811E028A8 ] CscService C:\Windows\System32\cscsvc.dll 18:13:09.0342 0x17a8 CscService - ok 18:13:09.0358 0x17a8 [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam C:\Windows\system32\drivers\dam.sys 18:13:09.0358 0x17a8 dam - ok 18:13:09.0467 0x17a8 [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch C:\Windows\system32\rpcss.dll 18:13:09.0498 0x17a8 DcomLaunch - ok 18:13:09.0545 0x17a8 [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc C:\Windows\system32\dcpsvc.dll 18:13:09.0545 0x17a8 DcpSvc - ok 18:13:09.0592 0x17a8 [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc C:\Windows\System32\defragsvc.dll 18:13:09.0608 0x17a8 defragsvc - ok 18:13:09.0654 0x17a8 [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\Windows\system32\das.dll 18:13:09.0701 0x17a8 DeviceAssociationService - ok 18:13:09.0717 0x17a8 [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll 18:13:09.0748 0x17a8 DeviceInstall - ok 18:13:09.0779 0x09a8 Object required for P2P: [ 21144F53F79975801AB9A9A027707A85 ] avast! Firewall 18:13:09.0779 0x17a8 [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker C:\Windows\system32\DevQueryBroker.dll 18:13:09.0795 0x17a8 DevQueryBroker - ok 18:13:09.0842 0x17a8 [ C9478D7DB7BE5D7ACE65CB1167F07320, D5082D09EE62E34A195768040B741E22ACC9421CFF315423D77A63ABF8F5E39E ] Dfsc C:\Windows\system32\Drivers\dfsc.sys 18:13:09.0842 0x17a8 Dfsc - ok 18:13:09.0904 0x17a8 [ 5841A361D28069DFC82E1E98040FDC3F, 3A48DB7ADE90654242CB54DAD07F5FF0CD5CABF372C50D5B2C4D7AED068986E1 ] Dhcp C:\Windows\system32\dhcpcore.dll 18:13:09.0936 0x17a8 Dhcp - ok 18:13:09.0983 0x17a8 [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe 18:13:09.0998 0x17a8 diagnosticshub.standardcollector.service - ok 18:13:10.0108 0x17a8 [ 7AE76C7BC60B53999AD07F6A8AFF15C0, 8DC5DA1FAE508D03433C051C877657038BA346707D37FDBC2FE74B4C1F3509A0 ] DiagTrack C:\Windows\system32\diagtrack.dll 18:13:10.0139 0x17a8 DiagTrack - ok 18:13:10.0170 0x17a8 [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk C:\Windows\system32\drivers\disk.sys 18:13:10.0170 0x17a8 disk - ok 18:13:10.0217 0x17a8 [ 49F069E2D22F33955A69D44DFD1B5179, 739C52C7B961BA683E8C7CCDB0E95423C17561B2F1F506BAE923DC53DB96B067 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll 18:13:10.0264 0x17a8 DmEnrollmentSvc - ok 18:13:10.0295 0x17a8 [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc C:\Windows\System32\drivers\dmvsc.sys 18:13:10.0311 0x17a8 dmvsc - ok 18:13:10.0342 0x17a8 [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll 18:13:10.0342 0x17a8 dmwappushservice - ok 18:13:10.0405 0x17a8 [ 570BB222E3AFC4407636B53F6EABFA70, D0194A128370BB0A337B61402F9EEDD6F7942ADB19BF672D0F92DA2DA563D0DD ] Dnscache C:\Windows\System32\dnsrslvr.dll 18:13:10.0420 0x17a8 Dnscache - ok 18:13:10.0467 0x17a8 [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc C:\Windows\System32\dot3svc.dll 18:13:10.0498 0x17a8 dot3svc - ok 18:13:10.0530 0x17a8 [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS C:\Windows\system32\dps.dll 18:13:10.0545 0x17a8 DPS - ok 18:13:10.0592 0x17a8 [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud C:\Windows\system32\DRIVERS\drmkaud.sys 18:13:10.0592 0x17a8 drmkaud - ok 18:13:10.0670 0x17a8 [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll 18:13:10.0686 0x17a8 DsmSvc - ok 18:13:10.0717 0x17a8 [ 120BECF7452992DAEBD3878BFE5B2412, A1FE8FC039835A5B59ABD789F5C1BFEA2C091A29978CE386C9880E13178930E5 ] DsSvc C:\Windows\System32\DsSvc.dll 18:13:10.0748 0x17a8 DsSvc - ok 18:13:10.0873 0x17a8 [ A2512BC5F2ABD84D8B3CB0D76ADB749A, 14A1FBF606ED537B9E1B7A939C010A2BA9D609D147FB89AE52D116E59A21D99E ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 18:13:10.0998 0x17a8 DXGKrnl - ok 18:13:11.0030 0x17a8 [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost C:\Windows\System32\eapsvc.dll 18:13:11.0045 0x17a8 Eaphost - ok 18:13:11.0201 0x17a8 [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv C:\Windows\system32\drivers\evbda.sys 18:13:11.0358 0x17a8 ebdrv - ok 18:13:11.0389 0x17a8 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS C:\Windows\System32\lsass.exe 18:13:11.0389 0x17a8 EFS - ok 18:13:11.0405 0x17a8 [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys 18:13:11.0405 0x17a8 EhStorClass - ok 18:13:11.0420 0x17a8 [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys 18:13:11.0436 0x17a8 EhStorTcgDrv - ok 18:13:11.0467 0x17a8 [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode C:\Windows\System32\embeddedmodesvc.dll 18:13:11.0467 0x17a8 embeddedmode - ok 18:13:11.0483 0x17a8 [ 062152DD5B225518A991DFCD8536770C, 5C8EF4E0C7DE3B24387FF239A8D0CDA39C2376826F16EAFF09739A6C7EDA01E0 ] EntAppSvc C:\Windows\system32\EnterpriseAppMgmtSvc.dll 18:13:11.0498 0x17a8 EntAppSvc - ok 18:13:11.0545 0x17a8 [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc C:\Windows\system32\EscSvc64.exe 18:13:11.0545 0x17a8 EpsonScanSvc - ok 18:13:11.0561 0x17a8 [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev C:\Windows\System32\drivers\errdev.sys 18:13:11.0561 0x17a8 ErrDev - ok 18:13:11.0623 0x17a8 [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem C:\Windows\system32\es.dll 18:13:11.0655 0x17a8 EventSystem - ok 18:13:11.0701 0x17a8 [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat C:\Windows\system32\drivers\exfat.sys 18:13:11.0748 0x17a8 exfat - ok 18:13:11.0795 0x17a8 [ 03DE0EC072C5EBD5B018CAD83F1E522A, 9D0B30A2870FBA20B95017CE3A4205F2DD53FE169A0D16715E962D83DE040FB3 ] fastfat C:\Windows\system32\drivers\fastfat.sys 18:13:11.0826 0x17a8 fastfat - ok 18:13:11.0905 0x17a8 [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax C:\Windows\system32\fxssvc.exe 18:13:11.0951 0x17a8 Fax - ok 18:13:11.0967 0x17a8 [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc C:\Windows\System32\drivers\fdc.sys 18:13:11.0967 0x17a8 fdc - ok 18:13:11.0998 0x17a8 [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost C:\Windows\system32\fdPHost.dll 18:13:11.0998 0x17a8 fdPHost - ok 18:13:12.0045 0x17a8 [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub C:\Windows\system32\fdrespub.dll 18:13:12.0045 0x17a8 FDResPub - ok 18:13:12.0061 0x17a8 [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc C:\Windows\system32\fhsvc.dll 18:13:12.0076 0x17a8 fhsvc - ok 18:13:12.0108 0x17a8 [ 8F12AB59336143B680F71B217B495AD2, A28F62F065C68CC1A7EEF0CA52F83C3284B001565D8E154BF8568DE4A525104E ] FileCrypt C:\Windows\system32\drivers\filecrypt.sys 18:13:12.0108 0x17a8 FileCrypt - ok 18:13:12.0139 0x17a8 [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 18:13:12.0155 0x17a8 FileInfo - ok 18:13:12.0170 0x17a8 [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 18:13:12.0170 0x17a8 Filetrace - ok 18:13:12.0186 0x17a8 [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk C:\Windows\System32\drivers\flpydisk.sys 18:13:12.0186 0x17a8 flpydisk - ok 18:13:12.0233 0x17a8 [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 18:13:12.0264 0x09a8 Object send P2P result: true 18:13:12.0264 0x17a8 FltMgr - ok 18:13:12.0389 0x17a8 [ 4387DE200BF8DD0E2EE828E655434B9A, 9148D65E54663EEC139E754091F47ABF439A637BEA83F600D30736522DAA845D ] FontCache C:\Windows\system32\FntCache.dll 18:13:12.0498 0x17a8 FontCache - ok 18:13:12.0623 0x17a8 [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 18:13:12.0623 0x17a8 FontCache3.0.0.0 - ok 18:13:12.0655 0x17a8 [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 18:13:12.0670 0x17a8 FsDepends - ok 18:13:12.0686 0x17a8 [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 18:13:12.0686 0x17a8 Fs_Rec - ok 18:13:12.0748 0x17a8 [ 421497634C86EF4B8F86D0EBC076728F, E0D1449555D8849364E00AA747DBC820EF914A9F5B796E35070072FCBC532ADE ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 18:13:12.0811 0x17a8 fvevol - ok 18:13:12.0827 0x17a8 [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 18:13:12.0842 0x17a8 gagp30kx - ok 18:13:12.0889 0x17a8 [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys 18:13:12.0889 0x17a8 gencounter - ok 18:13:12.0920 0x17a8 [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn C:\Windows\System32\drivers\genericusbfn.sys 18:13:12.0920 0x17a8 genericusbfn - ok 18:13:12.0952 0x17a8 [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys 18:13:12.0967 0x17a8 GPIOClx0101 - ok 18:13:13.0077 0x17a8 [ B55458A83395A2CFD4E745E9EC4AB5F2, EAB06B089D8A7DBC9AE2A1C919B489911690D341013A5F8F906819C68431CA85 ] gpsvc C:\Windows\System32\gpsvc.dll 18:13:13.0108 0x17a8 gpsvc - ok 18:13:13.0123 0x17a8 [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv C:\Windows\system32\drivers\gpuenergydrv.sys 18:13:13.0123 0x17a8 GpuEnergyDrv - ok 18:13:13.0170 0x17a8 [ 0F93EBE9071A6BB1548BF0F816EEA24B, 79A99544C00F59996980D299BFACA0463D86158BFA51C8045CE4FF4951779A44 ] HdAudAddService C:\Windows\system32\DRIVERS\HdAudio.sys 18:13:13.0170 0x17a8 HdAudAddService - ok 18:13:13.0217 0x17a8 [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys 18:13:13.0217 0x17a8 HDAudBus - ok 18:13:13.0233 0x17a8 [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt C:\Windows\System32\drivers\HidBatt.sys 18:13:13.0233 0x17a8 HidBatt - ok 18:13:13.0280 0x17a8 [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth C:\Windows\System32\drivers\hidbth.sys 18:13:13.0295 0x17a8 HidBth - ok 18:13:13.0311 0x17a8 [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c C:\Windows\System32\drivers\hidi2c.sys 18:13:13.0311 0x17a8 hidi2c - ok 18:13:13.0358 0x17a8 [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt C:\Windows\System32\drivers\hidinterrupt.sys 18:13:13.0358 0x17a8 hidinterrupt - ok 18:13:13.0389 0x17a8 [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr C:\Windows\System32\drivers\hidir.sys 18:13:13.0389 0x17a8 HidIr - ok 18:13:13.0436 0x17a8 [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv C:\Windows\system32\hidserv.dll 18:13:13.0436 0x17a8 hidserv - ok 18:13:13.0483 0x17a8 [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb C:\Windows\System32\drivers\hidusb.sys 18:13:13.0483 0x17a8 HidUsb - ok 18:13:13.0530 0x17a8 [ 2FEF4D90C0CAED258C93CFF72A8FFD71, 56473D90E9FE52849067D080FD88B29C0BBE76E5266657E2ABD6366B7A4E9474 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 18:13:13.0577 0x17a8 HomeGroupListener - ok 18:13:13.0639 0x17a8 [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 18:13:13.0670 0x17a8 HomeGroupProvider - ok 18:13:13.0686 0x17a8 [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 18:13:13.0702 0x17a8 HpSAMD - ok 18:13:13.0764 0x17a8 [ A403DAE4B083EB96BC6CEDB47639B4F8, 6F5709CEA93789C075E4BE4041EC43C94910617DA4123DEE178E74E4A9B26708 ] HTTP C:\Windows\system32\drivers\HTTP.sys 18:13:13.0842 0x17a8 HTTP - ok 18:13:13.0858 0x17a8 [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 18:13:13.0858 0x17a8 hwpolicy - ok 18:13:13.0889 0x17a8 [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys 18:13:13.0889 0x17a8 hyperkbd - ok 18:13:13.0920 0x17a8 [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt C:\Windows\System32\drivers\i8042prt.sys 18:13:13.0936 0x17a8 i8042prt - ok 18:13:13.0967 0x17a8 [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\Windows\System32\drivers\iai2c.sys 18:13:13.0967 0x17a8 iai2c - ok 18:13:13.0998 0x17a8 [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C C:\Windows\System32\drivers\iaLPSS2i_I2C.sys 18:13:14.0014 0x17a8 iaLPSS2i_I2C - ok 18:13:14.0030 0x17a8 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 18:13:14.0045 0x17a8 iaLPSSi_GPIO - ok 18:13:14.0061 0x17a8 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\Windows\System32\drivers\iaLPSSi_I2C.sys 18:13:14.0077 0x17a8 iaLPSSi_I2C - ok 18:13:14.0139 0x17a8 [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV C:\Windows\system32\drivers\iaStorAV.sys 18:13:14.0170 0x17a8 iaStorAV - ok 18:13:14.0186 0x17a8 [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 18:13:14.0202 0x17a8 iaStorV - ok 18:13:14.0248 0x17a8 [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus C:\Windows\System32\drivers\ibbus.sys 18:13:14.0264 0x17a8 ibbus - ok 18:13:14.0280 0x17a8 [ 80BF2990E01E774D64F6E13F30661942, ADFEA2280D29F2C7B0A556C61709301D6327C288064FF5A4D29358403DF41DCE ] icssvc C:\Windows\System32\tetheringservice.dll 18:13:14.0295 0x17a8 icssvc - ok 18:13:14.0295 0x17a8 IEEtwCollectorService - ok 18:13:14.0545 0x17a8 [ 79AE3CC82CA1563A4B392207997ACE7C, A1E4A1DA95CA2FA197EF5975657822F0F813F6C33DA38E1FA5A840194034D071 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 18:13:14.0780 0x17a8 igfx - ok 18:13:14.0858 0x17a8 [ 12F8D27ED8623DDDC09A549EDADCBAC9, D3A3F0588D9CAF1027D8BC14601E2A6AB7E5924A2C23C90D38A9E14538DB02A9 ] IKEEXT C:\Windows\System32\ikeext.dll 18:13:14.0920 0x17a8 IKEEXT - ok 18:13:14.0952 0x17a8 [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide C:\Windows\system32\drivers\intelide.sys 18:13:14.0952 0x17a8 intelide - ok 18:13:14.0967 0x17a8 [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep C:\Windows\system32\drivers\intelpep.sys 18:13:14.0967 0x17a8 intelpep - ok 18:13:15.0014 0x17a8 [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm C:\Windows\System32\drivers\intelppm.sys 18:13:15.0030 0x17a8 intelppm - ok 18:13:15.0045 0x17a8 [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos C:\Windows\system32\drivers\ioqos.sys 18:13:15.0045 0x17a8 IoQos - ok 18:13:15.0061 0x17a8 [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 18:13:15.0077 0x17a8 IpFilterDriver - ok 18:13:15.0170 0x17a8 [ 6E75B731A8A7EFED0821327B08DAB46D, A77B746447824BD3C68B82D7329B82D62098B2409F8AEE4738FA23CB1561E629 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 18:13:15.0202 0x17a8 iphlpsvc - ok 18:13:15.0233 0x17a8 [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys 18:13:15.0233 0x17a8 IPMIDRV - ok 18:13:15.0233 0x17a8 [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 18:13:15.0248 0x17a8 IPNAT - ok 18:13:15.0264 0x17a8 [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM C:\Windows\system32\drivers\irenum.sys 18:13:15.0264 0x17a8 IRENUM - ok 18:13:15.0280 0x17a8 [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp C:\Windows\system32\drivers\isapnp.sys 18:13:15.0280 0x17a8 isapnp - ok 18:13:15.0327 0x17a8 [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys 18:13:15.0342 0x17a8 iScsiPrt - ok 18:13:15.0342 0x17a8 [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys 18:13:15.0358 0x17a8 kbdclass - ok 18:13:15.0374 0x17a8 [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys 18:13:15.0374 0x17a8 kbdhid - ok 18:13:15.0389 0x17a8 [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic C:\Windows\System32\drivers\kdnic.sys 18:13:15.0389 0x17a8 kdnic - ok 18:13:15.0405 0x17a8 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] KeyIso C:\Windows\system32\lsass.exe 18:13:15.0405 0x17a8 KeyIso - ok 18:13:15.0420 0x17a8 [ 982C795DE20CED7AEDD2E7899B5D9BC1, 9F4E7536DB253CD83AA2AB89E9F3311714CD70F13AFD16F9B4D4CD86A70FC164 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 18:13:15.0436 0x17a8 KSecDD - ok 18:13:15.0483 0x17a8 [ 7D8B9214692C4D0F1646215D9984E19A, DC73503A8CA67F4E167DEA69AADDEA5F2D756E1C1F4FF42B6ECEA7E637BB80AB ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 18:13:15.0499 0x17a8 KSecPkg - ok 18:13:15.0514 0x17a8 [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 18:13:15.0530 0x17a8 ksthunk - ok 18:13:15.0577 0x17a8 [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm C:\Windows\system32\msdtckrm.dll 18:13:15.0624 0x17a8 KtmRm - ok 18:13:15.0686 0x17a8 [ 8BBB2B4429AF340481520C20C17FC5B6, 9E32815349195FC4B1BE213600FD407F2EAEEC8368289EB3E6B769125A739C08 ] LanmanServer C:\Windows\system32\srvsvc.dll 18:13:15.0702 0x17a8 LanmanServer - ok 18:13:15.0733 0x17a8 [ 1F5D48B1DA1B812BD2411CA44D75DD32, D1BDB8142CB13E8C6DD6F42E07C9D19BBBF6410D5122A04C01B34B95B442DD95 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 18:13:15.0749 0x17a8 LanmanWorkstation - ok 18:13:15.0780 0x17a8 [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc C:\Windows\System32\lfsvc.dll 18:13:15.0780 0x17a8 lfsvc - ok 18:13:15.0795 0x17a8 [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager C:\Windows\system32\LicenseManagerSvc.dll 18:13:15.0811 0x17a8 LicenseManager - ok 18:13:15.0827 0x17a8 [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio C:\Windows\system32\drivers\lltdio.sys 18:13:15.0827 0x17a8 lltdio - ok 18:13:15.0874 0x17a8 [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc C:\Windows\System32\lltdsvc.dll 18:13:15.0920 0x17a8 lltdsvc - ok 18:13:15.0952 0x17a8 [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts C:\Windows\System32\lmhsvc.dll 18:13:15.0952 0x17a8 lmhosts - ok 18:13:15.0999 0x17a8 [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 18:13:15.0999 0x17a8 LSI_SAS - ok 18:13:16.0030 0x17a8 [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i C:\Windows\system32\drivers\lsi_sas2i.sys 18:13:16.0030 0x17a8 LSI_SAS2i - ok 18:13:16.0061 0x17a8 [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i C:\Windows\system32\drivers\lsi_sas3i.sys 18:13:16.0061 0x17a8 LSI_SAS3i - ok 18:13:16.0092 0x17a8 [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys 18:13:16.0092 0x17a8 LSI_SSS - ok 18:13:16.0170 0x17a8 [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM C:\Windows\System32\lsm.dll 18:13:16.0202 0x17a8 LSM - ok 18:13:16.0249 0x17a8 [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv C:\Windows\system32\drivers\luafv.sys 18:13:16.0264 0x17a8 luafv - ok 18:13:16.0295 0x17a8 [ 88B38A7435DFA9B7E8F94F5D5FE999D2, FF4EBB6CE013D0EA62FEDA5FBBD1205D9A6F684E701F40039A95A4EF4145DC16 ] MapsBroker C:\Windows\System32\moshost.dll 18:13:16.0311 0x17a8 MapsBroker - ok 18:13:16.0342 0x17a8 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 18:13:16.0342 0x17a8 MBAMProtector - ok 18:13:16.0499 0x17a8 [ AB176B9E59C0435499D83047D84EDD59, 85B826A3972CE9AD885313B69B9C60328B850257667D0EB65DDE890D0BB06361 ] MBAMScheduler C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe 18:13:16.0545 0x17a8 MBAMScheduler - ok 18:13:16.0624 0x17a8 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe 18:13:16.0655 0x17a8 MBAMService - ok 18:13:16.0686 0x17a8 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys 18:13:16.0702 0x17a8 MBAMSwissArmy - ok 18:13:16.0733 0x17a8 [ 08DECFCB9BA97786165A69AB1015BC30, EDC8C8447B57BD412E2DEBCA9B5B1B58C19D40105DC7CE9520DE214081696B05 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys 18:13:16.0733 0x17a8 MBAMWebAccessControl - ok 18:13:16.0780 0x17a8 [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas C:\Windows\system32\drivers\megasas.sys 18:13:16.0795 0x17a8 megasas - ok 18:13:16.0842 0x17a8 [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr C:\Windows\system32\drivers\megasr.sys 18:13:16.0889 0x17a8 megasr - ok 18:13:16.0936 0x17a8 [ C7DFCC5470DBBE00114723A233701CF8, 8E00E8975BD3ABDD7F774E76FE33024EE09755DFC3C46F880E4EAA7F7D8393B6 ] MEIx64 C:\Windows\System32\drivers\TeeDriverW8x64.sys 18:13:16.0936 0x17a8 MEIx64 - ok 18:13:16.0967 0x17a8 [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\Windows\System32\MessagingService.dll 18:13:16.0967 0x17a8 MessagingService - ok 18:13:17.0014 0x17a8 [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus C:\Windows\System32\drivers\mlx4_bus.sys 18:13:17.0045 0x17a8 mlx4_bus - ok 18:13:17.0077 0x17a8 [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS C:\Windows\system32\drivers\mmcss.sys 18:13:17.0077 0x17a8 MMCSS - ok 18:13:17.0092 0x17a8 [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem C:\Windows\system32\drivers\modem.sys 18:13:17.0092 0x17a8 Modem - ok 18:13:17.0108 0x17a8 [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor C:\Windows\System32\drivers\monitor.sys 18:13:17.0108 0x17a8 monitor - ok 18:13:17.0139 0x17a8 [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass C:\Windows\System32\drivers\mouclass.sys 18:13:17.0139 0x17a8 mouclass - ok 18:13:17.0170 0x17a8 [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid C:\Windows\System32\drivers\mouhid.sys 18:13:17.0170 0x17a8 mouhid - ok 18:13:17.0202 0x17a8 [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 18:13:17.0217 0x17a8 mountmgr - ok 18:13:17.0295 0x17a8 [ EB4B5C8AB9DA5585CCC975CD3D072115, BEED5B7478F92C9FB1BBB62FFCEB5321A5C12A7C1AA9B20151BF22064589CD46 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 18:13:17.0311 0x17a8 MozillaMaintenance - ok 18:13:17.0342 0x17a8 [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 18:13:17.0342 0x17a8 mpsdrv - ok 18:13:17.0452 0x17a8 [ 3B3906F069DB567C3D092F195FEA5F87, 1EAD704AD8E81D083FE3D458B529F8ECBE99569EFD20F7B520339F054E2F6515 ] MpsSvc C:\Windows\system32\mpssvc.dll 18:13:17.0483 0x17a8 MpsSvc - ok 18:13:17.0514 0x17a8 [ 37C9EC0398BFC22C616711E41AE157D5, C8DD6B6B47513696CD4BD376C5D9F82C0F52F5A351FFAFE149E3B13C4684D40E ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 18:13:17.0530 0x17a8 MRxDAV - ok 18:13:17.0577 0x17a8 [ 61F9F27A8C3D7BCD287FE98A440421CE, 773208951BD0B8C0B9510F4C317484D5FCF36D09310D4E20F2BDB85D61088BA5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 18:13:17.0608 0x17a8 mrxsmb - ok 18:13:17.0624 0x17a8 [ CCAD845F4D21D0E0E0468205EE865473, 8F93B61F407BCE5910A7A9F01F8A51FDB7A3C4F03E59C144C1D4FD974D10C2D4 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 18:13:17.0639 0x17a8 mrxsmb10 - ok 18:13:17.0670 0x17a8 [ 0F47A6C09F0A7FB5513D322A2B9BE4EC, 00A17CB55D232E11F3D24D0B43FE4FA9E55F7EF5E5607B26ED84C13108AAC4FA ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 18:13:17.0670 0x17a8 mrxsmb20 - ok 18:13:17.0686 0x17a8 [ A934DF064C503A31683DD7EECDBD327A, 3ED943A2CFE9BB00898A4FCE08D3A5C814FE6E546FC10E9F30E6C2619B1AD162 ] MsBridge C:\Windows\system32\drivers\bridge.sys 18:13:17.0702 0x17a8 MsBridge - ok 18:13:17.0733 0x17a8 [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC C:\Windows\System32\msdtc.exe 18:13:17.0733 0x17a8 MSDTC - ok 18:13:17.0764 0x17a8 [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs C:\Windows\system32\drivers\Msfs.sys 18:13:17.0764 0x17a8 Msfs - ok 18:13:17.0764 0x17a8 [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys 18:13:17.0780 0x17a8 msgpiowin32 - ok 18:13:17.0796 0x17a8 [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 18:13:17.0796 0x17a8 mshidkmdf - ok 18:13:17.0796 0x17a8 [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys 18:13:17.0796 0x17a8 mshidumdf - ok 18:13:17.0811 0x17a8 [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 18:13:17.0827 0x17a8 msisadrv - ok 18:13:17.0858 0x17a8 [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 18:13:17.0858 0x17a8 MSiSCSI - ok |
20.12.2015, 19:06 | #6 |
| Schadsoftware?Code:
ATTFilter 18:13:17.0874 0x17a8 msiserver - ok 18:13:17.0889 0x17a8 [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV C:\Windows\system32\DRIVERS\MSKSSRV.sys 18:13:17.0889 0x17a8 MSKSSRV - ok 18:13:17.0905 0x17a8 [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp C:\Windows\system32\drivers\mslldp.sys 18:13:17.0920 0x17a8 MsLldp - ok 18:13:17.0920 0x17a8 [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK C:\Windows\system32\DRIVERS\MSPCLOCK.sys 18:13:17.0920 0x17a8 MSPCLOCK - ok 18:13:17.0936 0x17a8 [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM C:\Windows\system32\DRIVERS\MSPQM.sys 18:13:17.0936 0x17a8 MSPQM - ok 18:13:17.0983 0x17a8 [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 18:13:18.0014 0x17a8 MsRPC - ok 18:13:18.0030 0x17a8 [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios C:\Windows\System32\drivers\mssmbios.sys 18:13:18.0030 0x17a8 mssmbios - ok 18:13:18.0030 0x17a8 [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE C:\Windows\system32\DRIVERS\MSTEE.sys 18:13:18.0046 0x17a8 MSTEE - ok 18:13:18.0046 0x17a8 [ 4FA0483896FC16583851EFB733FCB083, BB59243ABE32FBE92EC1B04D24239BE2DF7C2354A407C2EFF97623F07DCBDA35 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys 18:13:18.0046 0x17a8 MTConfig - ok 18:13:18.0061 0x17a8 [ 60F88248608315E13391C2F1C3B4473F, 99E8B74118A01FC281A1C6B323EFD1A8EA1997B81A013442205066F55327D555 ] Mup C:\Windows\system32\Drivers\mup.sys 18:13:18.0077 0x17a8 Mup - ok 18:13:18.0139 0x17a8 [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis C:\Windows\system32\drivers\mvumis.sys 18:13:18.0139 0x17a8 mvumis - ok 18:13:18.0233 0x17a8 [ 536A0806CE2061A2157E65D4D8ABF30C, F9893F66505E3F748365CD4625B34357531804BDFE33E57285C0106C03F7916C ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 18:13:18.0249 0x17a8 NativeWifiP - ok 18:13:18.0311 0x17a8 [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc C:\Windows\System32\ncasvc.dll 18:13:18.0358 0x17a8 NcaSvc - ok 18:13:18.0405 0x17a8 [ 7467BD76D6ED5981E6C3DBFEB50F0F4D, 237E1C2E15D5F3BAC49B09E1CD0EAE56A6998AE1FF560A4F7A7EFFEB46884798 ] NcbService C:\Windows\System32\ncbservice.dll 18:13:18.0421 0x17a8 NcbService - ok 18:13:18.0436 0x17a8 [ 476466DC3AB2327E2DBFAEC11798E2EE, 9ACD74720664CF3F239601DF0BE80AC443AF0FBF666CBB8509169364FB22B95D ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll 18:13:18.0452 0x17a8 NcdAutoSetup - ok 18:13:18.0499 0x17a8 [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr C:\Windows\System32\drivers\ndfltr.sys 18:13:18.0499 0x17a8 ndfltr - ok 18:13:18.0608 0x17a8 [ AFAECF904F1C343EBD50F91BC8D0DBE8, FABAE70F62895708415B8E176A880D2D20D46D9A14C3D41D371B905CE4D64BA0 ] NDIS C:\Windows\system32\drivers\ndis.sys 18:13:18.0671 0x17a8 NDIS - ok 18:13:18.0702 0x17a8 [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap C:\Windows\system32\drivers\ndiscap.sys 18:13:18.0702 0x17a8 NdisCap - ok 18:13:18.0717 0x17a8 [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform C:\Windows\system32\drivers\NdisImPlatform.sys 18:13:18.0733 0x17a8 NdisImPlatform - ok 18:13:18.0749 0x17a8 [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 18:13:18.0749 0x17a8 NdisTapi - ok 18:13:18.0764 0x17a8 [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio C:\Windows\system32\drivers\ndisuio.sys 18:13:18.0780 0x17a8 Ndisuio - ok 18:13:18.0811 0x17a8 [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus C:\Windows\System32\drivers\NdisVirtualBus.sys 18:13:18.0811 0x17a8 NdisVirtualBus - ok 18:13:18.0842 0x17a8 [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] NdisWan C:\Windows\System32\drivers\ndiswan.sys 18:13:18.0874 0x17a8 NdisWan - ok 18:13:18.0905 0x17a8 [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] ndiswanlegacy C:\Windows\system32\DRIVERS\ndiswan.sys 18:13:18.0921 0x17a8 ndiswanlegacy - ok 18:13:18.0936 0x17a8 [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy C:\Windows\system32\DRIVERS\NDProxy.sys 18:13:18.0936 0x17a8 ndproxy - ok 18:13:18.0967 0x17a8 [ D358DF634F52247CB43F0781218F4D6E, D375E9E681551467FC5F7AB2AC053C9F22AAC541C0BCBA57090211F45009342C ] Ndu C:\Windows\system32\drivers\Ndu.sys 18:13:18.0983 0x17a8 Ndu - ok 18:13:18.0999 0x17a8 [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS C:\Windows\system32\drivers\netbios.sys 18:13:19.0014 0x17a8 NetBIOS - ok 18:13:19.0046 0x17a8 [ F51C02D992A8D6BC5EC4D990F227D4C7, DBBDA422BFA82219403689637BE8D6B0D0A893895143E807FA5A007C166454CB ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 18:13:19.0077 0x17a8 NetBT - ok 18:13:19.0092 0x17a8 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] Netlogon C:\Windows\system32\lsass.exe 18:13:19.0108 0x17a8 Netlogon - ok 18:13:19.0155 0x17a8 [ 7FD4C3D32DAE890608F44074A3437CD8, 5B7D9E9AEE26896B818F3C5DBE4C96A33D43CE2CF7716B95AAB7203611C03BFE ] Netman C:\Windows\System32\netman.dll 18:13:19.0186 0x17a8 Netman - ok 18:13:19.0249 0x17a8 [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm C:\Windows\System32\netprofmsvc.dll 18:13:19.0280 0x17a8 netprofm - ok 18:13:19.0327 0x17a8 [ 01C759FD50DFD46E30CC56B2B672B1A7, 88F46C89DCE1869D9932E809A24718B50C3B0161A1DD63DED899C0AFA8C7CFF5 ] NetSetupSvc C:\Windows\System32\NetSetupSvc.dll 18:13:19.0342 0x17a8 NetSetupSvc - ok 18:13:19.0421 0x17a8 [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:13:19.0436 0x17a8 NetTcpPortSharing - ok 18:13:19.0483 0x17a8 [ 91B32D7036700BEED5343E1F6A7122CC, 8123CA398A79F0E69126F962AA29C2464FAB50182E961CB6A6ADB6CEA09A6732 ] NgcCtnrSvc C:\Windows\System32\NgcCtnrSvc.dll 18:13:19.0514 0x17a8 NgcCtnrSvc - ok 18:13:19.0546 0x17a8 [ 4547118EADA9FDBB054A211CD01866BB, 51656BDAD78B4CC452B2AE06061247BECD07307BB31B9D6AA615917EC97342E0 ] NgcSvc C:\Windows\system32\ngcsvc.dll 18:13:19.0577 0x17a8 NgcSvc - ok 18:13:19.0624 0x17a8 [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc C:\Windows\System32\nlasvc.dll 18:13:19.0639 0x17a8 NlaSvc - ok 18:13:19.0686 0x17a8 [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs C:\Windows\system32\drivers\Npfs.sys 18:13:19.0686 0x17a8 Npfs - ok 18:13:19.0702 0x17a8 [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys 18:13:19.0717 0x17a8 npsvctrig - ok 18:13:19.0717 0x17a8 [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi C:\Windows\system32\nsisvc.dll 18:13:19.0733 0x17a8 nsi - ok 18:13:19.0764 0x17a8 [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 18:13:19.0764 0x17a8 nsiproxy - ok 18:13:19.0905 0x17a8 [ EFEFC245B884B1BE0401931398DCD707, 43A7BDB9BF523791EC41E76F51E7DC56EFC55CCDA0D130ECFCD9990C43D67587 ] NTFS C:\Windows\system32\drivers\NTFS.sys 18:13:20.0014 0x17a8 NTFS - ok 18:13:20.0077 0x17a8 [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null C:\Windows\system32\drivers\Null.sys 18:13:20.0077 0x17a8 Null - ok 18:13:20.0124 0x17a8 [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid C:\Windows\system32\drivers\nvraid.sys 18:13:20.0139 0x17a8 nvraid - ok 18:13:20.0155 0x17a8 [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor C:\Windows\system32\drivers\nvstor.sys 18:13:20.0171 0x17a8 nvstor - ok 18:13:20.0202 0x17a8 [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 18:13:20.0217 0x17a8 nv_agp - ok 18:13:20.0264 0x17a8 [ 7F3A0D052B8E00E730316210B1DD092F, 14BD026EA759F6C81ED6B4DBB04E0584B7F6456725503FC73CD4347B7743005F ] OneSyncSvc C:\Windows\System32\APHostService.dll 18:13:20.0280 0x17a8 OneSyncSvc - ok 18:13:20.0327 0x17a8 [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 18:13:20.0374 0x17a8 p2pimsvc - ok 18:13:20.0421 0x17a8 [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc C:\Windows\system32\p2psvc.dll 18:13:20.0452 0x17a8 p2psvc - ok 18:13:20.0499 0x17a8 [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport C:\Windows\System32\drivers\parport.sys 18:13:20.0499 0x17a8 Parport - ok 18:13:20.0530 0x17a8 [ 24AC0FD10325FBC2303B29A5F237AEB0, D94B26A36EBE4EFE8EA270FA6600811206830480BE953809F74FAB80628DF879 ] partmgr C:\Windows\system32\drivers\partmgr.sys 18:13:20.0530 0x17a8 partmgr - ok 18:13:20.0592 0x17a8 [ 0ECA2ADD5FBCE73183A68935C71B40B7, 08CC5F2F10D1DD1A1396CC29196314003491D3AF3DE59CADB281F252577F1860 ] PcaSvc C:\Windows\System32\pcasvc.dll 18:13:20.0624 0x17a8 PcaSvc - ok 18:13:20.0655 0x17a8 [ 1D4E995955BDAE781C46CB97AE1CFB58, FF7475F19782CA253AA839DDB86E5AC20C5785D5CC1DD57D9FECBE4F5A5C0BFB ] pci C:\Windows\system32\drivers\pci.sys 18:13:20.0671 0x17a8 pci - ok 18:13:20.0686 0x17a8 [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide C:\Windows\system32\drivers\pciide.sys 18:13:20.0686 0x17a8 pciide - ok 18:13:20.0718 0x17a8 [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 18:13:20.0718 0x17a8 pcmcia - ok 18:13:20.0749 0x17a8 [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw C:\Windows\system32\drivers\pcw.sys 18:13:20.0749 0x17a8 pcw - ok 18:13:20.0764 0x17a8 [ 48F3A3222CF340FE31535CB6D49C6D6F, 5F8904871219FA6C1BD74747583855B0FBCE42F340A3BE10270D8D3F02766E9D ] pdc C:\Windows\system32\drivers\pdc.sys 18:13:20.0764 0x17a8 pdc - ok 18:13:20.0827 0x17a8 [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 18:13:20.0874 0x17a8 PEAUTH - ok 18:13:21.0014 0x17a8 [ C7D210982B6C8454E52191D0DCF6DC52, D53D575CD9A0AB7EA94E7D1B9730ABE0A582CA3460AEAC4680D01034D69D3949 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 18:13:21.0061 0x17a8 PeerDistSvc - ok 18:13:21.0077 0x17a8 [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i C:\Windows\system32\drivers\percsas2i.sys 18:13:21.0077 0x17a8 percsas2i - ok 18:13:21.0093 0x17a8 [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i C:\Windows\system32\drivers\percsas3i.sys 18:13:21.0093 0x17a8 percsas3i - ok 18:13:21.0218 0x17a8 [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost C:\Windows\SysWow64\perfhost.exe 18:13:21.0233 0x17a8 PerfHost - ok 18:13:21.0327 0x17a8 [ 8C5737B889752EC37B49D730C24FB80B, 0101AEBE3870B59BE69DBF20FDD307BEDB10A6DB21750E57B9BD3B1961386979 ] PhoneSvc C:\Windows\System32\PhoneService.dll 18:13:21.0405 0x17a8 PhoneSvc - ok 18:13:21.0436 0x17a8 [ 940BD7A32391F325A1A4285F91FAF7AC, A0FE4B8705B268E1978D9C66EB39B3DBBCB2A70F02F380C7062FE72E92DDF964 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll 18:13:21.0452 0x17a8 PimIndexMaintenanceSvc - ok 18:13:21.0561 0x17a8 [ A546F72EFFE5CBBC98003A0CA19DA0F8, 89AE396676A37D851F46427E421E8E8ED5B4BADC33023F1E215CC352A4110F44 ] pla C:\Windows\system32\pla.dll 18:13:21.0624 0x17a8 pla - ok 18:13:21.0655 0x17a8 [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 18:13:21.0655 0x17a8 PlugPlay - ok 18:13:21.0686 0x17a8 [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 18:13:21.0686 0x17a8 PNRPAutoReg - ok 18:13:21.0718 0x17a8 [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 18:13:21.0749 0x17a8 PNRPsvc - ok 18:13:21.0796 0x17a8 [ 5A91C28F99043215121499257468C4BD, 816D2AEBA29B8A050747E01CE11EB12A05C1CDDF91835C44BBB6A7B9D348B15A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 18:13:21.0858 0x17a8 PolicyAgent - ok 18:13:21.0889 0x17a8 [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power C:\Windows\system32\umpo.dll 18:13:21.0921 0x17a8 Power - ok 18:13:21.0968 0x17a8 [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport C:\Windows\System32\drivers\raspptp.sys 18:13:21.0968 0x17a8 PptpMiniport - ok 18:13:22.0233 0x17a8 [ 959F94AD1255BC749884EDDD14EC29C4, 2CD6DA9778EA36FA0B4080F6DB1C634712238E014E47546403CD3CDB35A1DCA8 ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll 18:13:22.0389 0x17a8 PrintNotify - ok 18:13:22.0436 0x17a8 [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor C:\Windows\System32\drivers\processr.sys 18:13:22.0436 0x17a8 Processor - ok 18:13:22.0468 0x17a8 [ A08AAC62EF7A1E291B3E895B5864BB86, 340E6648F9A5F4B7543FDEC5BDAFBDA3DE319B8F998FF2EF60D02EE5EF3D56CB ] ProfSvc C:\Windows\system32\profsvc.dll 18:13:22.0468 0x17a8 ProfSvc - ok 18:13:22.0499 0x17a8 [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched C:\Windows\system32\drivers\pacer.sys 18:13:22.0514 0x17a8 Psched - ok 18:13:22.0561 0x17a8 [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE C:\Windows\system32\qwave.dll 18:13:22.0577 0x17a8 QWAVE - ok 18:13:22.0608 0x17a8 [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 18:13:22.0608 0x17a8 QWAVEdrv - ok 18:13:22.0624 0x17a8 [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 18:13:22.0624 0x17a8 RasAcd - ok 18:13:22.0655 0x17a8 [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn C:\Windows\System32\drivers\AgileVpn.sys 18:13:22.0671 0x17a8 RasAgileVpn - ok 18:13:22.0702 0x17a8 [ 2976970887157CBB05747CBCD0793354, 43499D90B6340BD679CA51FDAB4ABCD0CF7E995367876716B7879422D206D677 ] RasAuto C:\Windows\System32\rasauto.dll 18:13:22.0733 0x17a8 RasAuto - ok 18:13:22.0765 0x17a8 [ 381B8F2311A0375676B635EA5E7C8AB0, F64697F75894844E72F260E9E88CCFE6B882BC89F6124DCA187771A29C3EF929 ] Rasl2tp C:\Windows\System32\drivers\rasl2tp.sys 18:13:22.0780 0x17a8 Rasl2tp - ok 18:13:22.0858 0x17a8 [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan C:\Windows\System32\rasmans.dll 18:13:22.0905 0x17a8 RasMan - ok 18:13:22.0936 0x17a8 [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 18:13:22.0952 0x17a8 RasPppoe - ok 18:13:22.0983 0x17a8 [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp C:\Windows\System32\drivers\rassstp.sys 18:13:22.0999 0x17a8 RasSstp - ok 18:13:23.0061 0x17a8 [ 2B648363E4C5E34B469C58596F377DD9, 30F82770468BBA562CEA0E9E39B24ACEFBE022343D0180C82E2ACE8957B73E44 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 18:13:23.0108 0x17a8 rdbss - ok 18:13:23.0124 0x17a8 [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus C:\Windows\System32\drivers\rdpbus.sys 18:13:23.0171 0x17a8 rdpbus - ok 18:13:23.0202 0x17a8 [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 18:13:23.0218 0x17a8 RDPDR - ok 18:13:23.0249 0x17a8 [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 18:13:23.0249 0x17a8 RdpVideoMiniport - ok 18:13:23.0296 0x17a8 [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 18:13:23.0327 0x17a8 rdyboost - ok 18:13:23.0421 0x17a8 [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1 C:\Windows\system32\drivers\ReFSv1.sys 18:13:23.0483 0x17a8 ReFSv1 - ok 18:13:23.0530 0x17a8 [ 8355BCA85B0928382DFCDD02FCD1681A, F306F038DA09C8D2095C311818E2F991B55BCD96B40B95D2A53A60EA6AC37014 ] RemoteAccess C:\Windows\System32\mprdim.dll 18:13:23.0561 0x17a8 RemoteAccess - ok 18:13:23.0593 0x17a8 [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry C:\Windows\system32\regsvc.dll 18:13:23.0593 0x17a8 RemoteRegistry - ok 18:13:23.0686 0x17a8 [ AD43141CE6D5074DA1D28B5BCD4E4507, C1A9AA856DD4FEE00BBA329C150E0CBCD1CE13ED0BB7B4AC9B152321CD854212 ] RetailDemo C:\Windows\system32\RDXService.dll 18:13:23.0780 0x17a8 RetailDemo - ok 18:13:23.0796 0x17a8 [ 60BFD9EE962C87747A0EB648634281ED, 3E8610F597405944BFD42EE8C397818850BC7D97ACC14AC43B6E3632A1FB916C ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys 18:13:23.0796 0x17a8 RFCOMM - ok 18:13:23.0827 0x17a8 [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 18:13:23.0827 0x17a8 RpcEptMapper - ok 18:13:23.0858 0x17a8 [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator C:\Windows\system32\locator.exe 18:13:23.0874 0x17a8 RpcLocator - ok 18:13:23.0952 0x17a8 [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] RpcSs C:\Windows\system32\rpcss.dll 18:13:23.0983 0x17a8 RpcSs - ok 18:13:23.0999 0x17a8 [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr C:\Windows\system32\drivers\rspndr.sys 18:13:23.0999 0x17a8 rspndr - ok 18:13:24.0030 0x17a8 [ FBEFF38DE03450E03E6CD9E8E37A8C74, C1C0876785DB4366D67792A3AFA219FC933FC1894AF93D07B0016BBCC81A5886 ] rt640x64 C:\Windows\System32\drivers\rt640x64.sys 18:13:24.0077 0x17a8 rt640x64 - ok 18:13:24.0093 0x17a8 [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap C:\Windows\System32\drivers\vms3cap.sys 18:13:24.0093 0x17a8 s3cap - ok 18:13:24.0108 0x17a8 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] SamSs C:\Windows\system32\lsass.exe 18:13:24.0108 0x17a8 SamSs - ok 18:13:24.0155 0x17a8 [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 18:13:24.0171 0x17a8 sbp2port - ok 18:13:24.0218 0x17a8 [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr C:\Windows\System32\SCardSvr.dll 18:13:24.0265 0x17a8 SCardSvr - ok 18:13:24.0280 0x17a8 [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum C:\Windows\System32\ScDeviceEnum.dll 18:13:24.0311 0x17a8 ScDeviceEnum - ok 18:13:24.0327 0x17a8 [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 18:13:24.0327 0x17a8 scfilter - ok 18:13:24.0405 0x17a8 [ 5A459E0585FF3A980D10604B6D4BA03D, 3DF9CB96258A44458DF98EA4C6D57342D1207B7BFB94174461B347BE3B5CA317 ] Schedule C:\Windows\system32\schedsvc.dll 18:13:24.0483 0x17a8 Schedule - ok 18:13:24.0546 0x17a8 [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc C:\Windows\System32\certprop.dll 18:13:24.0546 0x17a8 SCPolicySvc - ok 18:13:24.0593 0x17a8 [ E1137E39C3BB3EF9AF2243745D901D60, 0BE86E4E48DA6D25AF0E71F09E55A5C4E525C61831EDC5135DEB240CCD02335D ] sdbus C:\Windows\System32\drivers\sdbus.sys 18:13:24.0593 0x17a8 sdbus - ok 18:13:24.0624 0x17a8 [ 811EC0B1221402FCED0BA37E112BF627, 366EB8AF04C603BED6CF53652CC937099B247D5DD8C58D699D0D8DA22F8FDD51 ] SDRSVC C:\Windows\System32\SDRSVC.dll 18:13:24.0640 0x17a8 SDRSVC - ok 18:13:24.0686 0x17a8 [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor C:\Windows\System32\drivers\sdstor.sys 18:13:24.0702 0x17a8 sdstor - ok 18:13:24.0718 0x17a8 [ 286450F698EBD81A8AC1B22CF6BABF11, ED05C2723FCD399FD085AE7AB1178D24F9745A4F31DD711DE896D15412B82BA2 ] seclogon C:\Windows\system32\seclogon.dll 18:13:24.0733 0x17a8 seclogon - ok 18:13:24.0765 0x17a8 [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS C:\Windows\System32\sens.dll 18:13:24.0780 0x17a8 SENS - ok 18:13:24.0905 0x17a8 [ D14DD7D766664F880FECF44CE6017966, ECF966E3ACF4EBD5A3259468A076619A539E35F1B97AB6A98FBD7882F1FBBBAB ] SensorDataService C:\Windows\System32\SensorDataService.exe 18:13:24.0999 0x17a8 SensorDataService - ok 18:13:25.0030 0x17a8 [ A74C62AE99A015CD6275F0D8D8843886, DF08E0BB1160E054C6B000BC5F62DEF77C6D9E4B5679AD013C313BA14207B589 ] SensorService C:\Windows\system32\SensorService.dll 18:13:25.0077 0x17a8 SensorService - ok 18:13:25.0108 0x17a8 [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc C:\Windows\system32\sensrsvc.dll 18:13:25.0124 0x17a8 SensrSvc - ok 18:13:25.0155 0x17a8 [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx C:\Windows\system32\drivers\SerCx.sys 18:13:25.0155 0x17a8 SerCx - ok 18:13:25.0187 0x17a8 [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2 C:\Windows\system32\drivers\SerCx2.sys 18:13:25.0187 0x17a8 SerCx2 - ok 18:13:25.0218 0x17a8 [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum C:\Windows\System32\drivers\serenum.sys 18:13:25.0218 0x17a8 Serenum - ok 18:13:25.0233 0x17a8 [ 88D58E1DAA6C5062DD3A26273106961F, D1E2FF37C888245BD0BABCD7C6B76AD5A87415B68FEFE37B5FA29AE3342AE50B ] Serial C:\Windows\System32\drivers\serial.sys 18:13:25.0233 0x17a8 Serial - ok 18:13:25.0249 0x17a8 [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse C:\Windows\System32\drivers\sermouse.sys 18:13:25.0249 0x17a8 sermouse - ok 18:13:25.0280 0x17a8 [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv C:\Windows\system32\sessenv.dll 18:13:25.0296 0x17a8 SessionEnv - ok 18:13:25.0311 0x17a8 [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys 18:13:25.0327 0x17a8 sfloppy - ok 18:13:25.0358 0x17a8 [ 2C7B006EB0B5479ED389D0CA5DE6AB83, 2E7C6E3E99A2668CB361A31567A4DB81021530E78213B39983D14197DB72E43C ] SharedAccess C:\Windows\System32\ipnathlp.dll 18:13:25.0405 0x17a8 SharedAccess - ok 18:13:25.0483 0x17a8 [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\Windows\System32\shsvcs.dll 18:13:25.0515 0x17a8 ShellHWDetection - ok 18:13:25.0577 0x17a8 [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 18:13:25.0577 0x17a8 SiSRaid2 - ok 18:13:25.0608 0x17a8 [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 18:13:25.0608 0x17a8 SiSRaid4 - ok 18:13:25.0640 0x17a8 [ 8A6571231D93C08434A56E19E33A35CB, 78A12B58D129D5B2017C9A94734656B9F1ED41345DF1D01F82702D4D95C1BE3F ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys 18:13:25.0655 0x17a8 SmbDrvI - ok 18:13:25.0702 0x17a8 [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost C:\Windows\System32\smphost.dll 18:13:25.0718 0x17a8 smphost - ok 18:13:25.0780 0x17a8 [ 0BA53B01A02848A1545E2A743FF17B2F, ADAD55B9E0172BD7FBA92C5CD4870419FE9EF16F907DA1EEF2A9AE6492DE1909 ] SmsRouter C:\Windows\system32\SmsRouterSvc.dll 18:13:25.0827 0x17a8 SmsRouter - ok 18:13:25.0858 0x17a8 [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP C:\Windows\System32\snmptrap.exe 18:13:25.0874 0x17a8 SNMPTRAP - ok 18:13:25.0937 0x17a8 [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport C:\Windows\system32\drivers\spaceport.sys 18:13:25.0983 0x17a8 spaceport - ok 18:13:26.0015 0x17a8 [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx C:\Windows\system32\drivers\SpbCx.sys 18:13:26.0015 0x17a8 SpbCx - ok 18:13:26.0077 0x17a8 [ DC520253EC32B515E7792DB05DB43EB2, 8A614286522CA637EF0D58F79143146D5FB40DCD0CA1333752989BCD51DE00C0 ] Spooler C:\Windows\System32\spoolsv.exe 18:13:26.0124 0x17a8 Spooler - ok 18:13:26.0358 0x17a8 [ 7C58AFEC26E9F7730A8AA7FD40225937, 546EAD8889F2A1BB6DCCB7781976B975F34DA1C9047F95FEAA52CF38EC60C6DD ] sppsvc C:\Windows\system32\sppsvc.exe 18:13:26.0499 0x17a8 sppsvc - ok 18:13:26.0515 0x17a8 [ ACC1709EC7FE6EB8999DBC91C50C2B34, 83ABF51751A264291C53A32B86239A607361E56CB045CD2CBE6E41DBB8A01F54 ] srv C:\Windows\system32\DRIVERS\srv.sys 18:13:26.0530 0x17a8 srv - ok 18:13:26.0562 0x17a8 [ AFBCFC946FAE7483E27BD316D03F94A5, CC9478EA717E85C38304957E923997821DFE2A995D7C8DF98C15267D952BEFBE ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 18:13:26.0593 0x17a8 srv2 - ok 18:13:26.0624 0x17a8 [ 107C1EBE79710E4A759449BD6604245A, 963D693F4E61EDC7B3AA9006CC274D56E577CE0035A61DDB2A6DE72116D5C52B ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 18:13:26.0640 0x17a8 srvnet - ok 18:13:26.0702 0x17a8 [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 18:13:26.0718 0x17a8 SSDPSRV - ok 18:13:26.0765 0x17a8 [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc C:\Windows\system32\sstpsvc.dll 18:13:26.0812 0x17a8 SstpSvc - ok 18:13:26.0968 0x17a8 [ 58863C57E4598C4F9DA967C5C36CFA5D, BB34FBC324E84E05128258CE3755241ECB63F7F2AE7F96716AC373931FAF92A8 ] StateRepository C:\Windows\system32\windows.staterepository.dll 18:13:27.0030 0x17a8 StateRepository - ok 18:13:27.0046 0x17a8 [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor C:\Windows\system32\drivers\stexstor.sys 18:13:27.0046 0x17a8 stexstor - ok 18:13:27.0093 0x17a8 [ 75476CAA8FA0A4E573948CDE8C7F0304, 68C4405CACA77AEED71761875A9AF60BCFBDD39E356BEA1BA8226E099BAA5FA4 ] stisvc C:\Windows\System32\wiaservc.dll 18:13:27.0155 0x17a8 stisvc - ok 18:13:27.0171 0x17a8 [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci C:\Windows\system32\drivers\storahci.sys 18:13:27.0187 0x17a8 storahci - ok 18:13:27.0233 0x17a8 [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 18:13:27.0233 0x17a8 storflt - ok 18:13:27.0249 0x17a8 [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme C:\Windows\system32\drivers\stornvme.sys 18:13:27.0265 0x17a8 stornvme - ok 18:13:27.0296 0x17a8 [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt C:\Windows\system32\drivers\storqosflt.sys 18:13:27.0296 0x17a8 storqosflt - ok 18:13:27.0374 0x17a8 [ B1305CDD98D5FC49863279D4B51DB510, 4B745E8D14591CA69429CA579467B9528B94C54EBD2FCFD446000C9C1BCB3B07 ] StorSvc C:\Windows\system32\storsvc.dll 18:13:27.0421 0x17a8 StorSvc - ok 18:13:27.0437 0x17a8 [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs C:\Windows\system32\drivers\storufs.sys 18:13:27.0437 0x17a8 storufs - ok 18:13:27.0452 0x17a8 [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc C:\Windows\system32\drivers\storvsc.sys 18:13:27.0468 0x17a8 storvsc - ok 18:13:27.0515 0x17a8 [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc C:\Windows\system32\svsvc.dll 18:13:27.0515 0x17a8 svsvc - ok 18:13:27.0546 0x17a8 [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum C:\Windows\System32\drivers\swenum.sys 18:13:27.0546 0x17a8 swenum - ok 18:13:27.0608 0x17a8 [ 22E539A9B96C66A713583EC017562616, 210DA61DFC7AA9AD23277D9CC0239B781F4EABD322D0803AEC9434D68B81FABD ] swprv C:\Windows\System32\swprv.dll 18:13:27.0640 0x17a8 swprv - ok 18:13:27.0671 0x17a8 [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc C:\Windows\System32\drivers\Synth3dVsc.sys 18:13:27.0671 0x17a8 Synth3dVsc - ok 18:13:27.0749 0x17a8 [ 7DC2B34FB6F1798F2D13453E0321D025, 60EF12A8824384DD88D9C5D188E8FB137F0F85A63C06AAF720CB2D616EB847F4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 18:13:27.0780 0x17a8 SynTP - ok 18:13:27.0827 0x17a8 [ 6FBDBC24B1642868E041463795CBFA44, E9FA0DB094E7B2129ABD325BC91A48D6646380D6AA97BE6233C220E0C98637AF ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe 18:13:27.0843 0x17a8 SynTPEnhService - ok 18:13:27.0952 0x17a8 [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain C:\Windows\system32\sysmain.dll 18:13:28.0015 0x17a8 SysMain - ok 18:13:28.0046 0x17a8 [ AF2C8D7C1D4DCFD5C31501F009DF42B7, 3DDF9353F014EE99B031BBC969620CA07647FBB8D78EB4697C8D633021B46B11 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll 18:13:28.0077 0x17a8 SystemEventsBroker - ok 18:13:28.0140 0x17a8 [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\Windows\System32\TabSvc.dll 18:13:28.0218 0x17a8 TabletInputService - ok 18:13:28.0280 0x17a8 [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv C:\Windows\System32\tapisrv.dll 18:13:28.0358 0x17a8 TapiSrv - ok 18:13:28.0468 0x17a8 [ 892F30506DCCF230C5A57019C1D8D31B, 52C83A963E2D05770B6A281E8E559C8203E102D6B4C9C37801B1F58CB4B92D2F ] Tcpip C:\Windows\system32\drivers\tcpip.sys 18:13:28.0546 0x099c Object required for P2P: [ A403DAE4B083EB96BC6CEDB47639B4F8 ] HTTP 18:13:28.0593 0x17a8 Tcpip - ok 18:13:28.0702 0x17a8 [ 892F30506DCCF230C5A57019C1D8D31B, 52C83A963E2D05770B6A281E8E559C8203E102D6B4C9C37801B1F58CB4B92D2F ] Tcpip6 C:\Windows\system32\drivers\tcpip.sys 18:13:28.0749 0x17a8 Tcpip6 - ok 18:13:28.0796 0x17a8 [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 18:13:28.0796 0x17a8 tcpipreg - ok 18:13:28.0827 0x17a8 [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 18:13:28.0843 0x17a8 tdx - ok 18:13:28.0859 0x17a8 [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt C:\Windows\System32\drivers\terminpt.sys 18:13:28.0874 0x17a8 terminpt - ok 18:13:28.0952 0x17a8 [ 14307D4801C8CEF0A615907C09E886B3, C7F34C294D70DE689F673E0B5E9253B27EFEBBE6FA38B68B3B0B0374A896407E ] TermService C:\Windows\System32\termsrv.dll 18:13:29.0015 0x17a8 TermService - ok 18:13:29.0046 0x17a8 [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes C:\Windows\system32\themeservice.dll 18:13:29.0062 0x17a8 Themes - ok 18:13:29.0124 0x17a8 [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\Windows\system32\TieringEngineService.exe 18:13:29.0155 0x17a8 TieringEngineService - ok 18:13:29.0202 0x17a8 [ FC971E1D1B5900C231591A7720FCD8B8, DF58C350977019E4A8F381FB35702E9BEA89F6A8C6BF36C56376D36BC8FE630F ] tiledatamodelsvc C:\Windows\system32\tileobjserver.dll 18:13:29.0234 0x17a8 tiledatamodelsvc - ok 18:13:29.0265 0x17a8 [ 4BA0AB760971A0109A3442BD8B4F9AA0, 681171ECE155B7B1048525AA9BF14E4FDB437EE6BD91B6C5C9FFE122757D6BEB ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll 18:13:29.0280 0x17a8 TimeBroker - ok 18:13:29.0312 0x17a8 [ 169B0A246067457FEF8A18EED7EED9D5, BF5AC0CB29E1E456253B881CD0608B578D7343E9DFE1738A14598D1DFFE1AB66 ] TPM C:\Windows\System32\drivers\tpm.sys 18:13:29.0327 0x17a8 TPM - ok 18:13:29.0343 0x17a8 [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks C:\Windows\System32\trkwks.dll 18:13:29.0359 0x17a8 TrkWks - ok 18:13:29.0405 0x17a8 [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 18:13:29.0405 0x17a8 TrustedInstaller - ok 18:13:29.0437 0x17a8 [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt C:\Windows\system32\drivers\TsUsbFlt.sys 18:13:29.0452 0x17a8 tsusbflt - ok 18:13:29.0452 0x17a8 [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys 18:13:29.0452 0x17a8 TsUsbGD - ok 18:13:29.0484 0x17a8 [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel C:\Windows\System32\drivers\tunnel.sys 18:13:29.0499 0x17a8 tunnel - ok 18:13:29.0530 0x17a8 [ 1A9A77ACDAC29C39F50D2A492FD0DB16, E21F2E2BA6EABE0F6B5A1930DDB2CE5A921389A58C08A2D3F66D245E8698E6B4 ] tzautoupdate C:\Windows\system32\tzautoupdate.dll 18:13:29.0546 0x17a8 tzautoupdate - ok 18:13:29.0562 0x17a8 [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 18:13:29.0562 0x17a8 uagp35 - ok 18:13:29.0593 0x17a8 [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor C:\Windows\System32\drivers\uaspstor.sys 18:13:29.0593 0x17a8 UASPStor - ok 18:13:29.0609 0x17a8 [ 3995CC3DEDED258768B8EBC2F4C0DC73, 130E99EF13EB494B8BB6A8E037DD8D59C195190EA3C27CA9E3A695AF4349DC7C ] UcmCx0101 C:\Windows\system32\Drivers\UcmCx.sys 18:13:29.0624 0x17a8 UcmCx0101 - ok 18:13:29.0624 0x17a8 [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi C:\Windows\System32\drivers\UcmUcsi.sys 18:13:29.0640 0x17a8 UcmUcsi - ok 18:13:29.0655 0x17a8 [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000 C:\Windows\system32\drivers\ucx01000.sys 18:13:29.0671 0x17a8 Ucx01000 - ok 18:13:29.0687 0x17a8 [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx C:\Windows\system32\drivers\udecx.sys 18:13:29.0687 0x17a8 UdeCx - ok 18:13:29.0702 0x17a8 [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 18:13:29.0718 0x17a8 udfs - ok 18:13:29.0734 0x17a8 [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI C:\Windows\System32\drivers\UEFI.sys 18:13:29.0734 0x17a8 UEFI - ok 18:13:29.0765 0x17a8 [ 5F0D997E6FC5A418D7673148CEF72887, 6C142CB8F06E5958045451253C9188CE876A84D08266FFD7F64AAE09964D8431 ] Ufx01000 C:\Windows\system32\drivers\ufx01000.sys 18:13:29.0765 0x17a8 Ufx01000 - ok 18:13:29.0780 0x17a8 [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea C:\Windows\System32\drivers\UfxChipidea.sys 18:13:29.0796 0x17a8 UfxChipidea - ok 18:13:29.0812 0x17a8 [ DB630FC660443D63EBAB2C830C298EFE, 7698772FF9C988DF752DF3FAF1B154E923EBA425B92F288ABB6EF0805ABD3296 ] ufxsynopsys C:\Windows\System32\drivers\ufxsynopsys.sys 18:13:29.0827 0x17a8 ufxsynopsys - ok 18:13:29.0859 0x17a8 [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect C:\Windows\system32\UI0Detect.exe 18:13:29.0874 0x17a8 UI0Detect - ok 18:13:29.0905 0x17a8 [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 18:13:29.0921 0x17a8 uliagpkx - ok 18:13:29.0952 0x17a8 [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus C:\Windows\System32\drivers\umbus.sys 18:13:29.0952 0x17a8 umbus - ok 18:13:29.0984 0x17a8 [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass C:\Windows\System32\drivers\umpass.sys 18:13:29.0984 0x17a8 UmPass - ok 18:13:30.0046 0x17a8 [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService C:\Windows\System32\umrdp.dll 18:13:30.0093 0x17a8 UmRdpService - ok 18:13:30.0202 0x17a8 [ 87E291D9CC3ECE9AA56ABFD8063C4050, 781958969DB79454C91156473B4DA363F6D540D99974C2924ED81604CF45C3E0 ] UnistoreSvc C:\Windows\System32\unistore.dll 18:13:30.0249 0x17a8 UnistoreSvc - ok 18:13:30.0296 0x17a8 [ B85A8CF2BE74DFF1E80097AC94584112, B1DBACC33A4143FEE2CF54E567590A69580312AD7A053BCC85B487C4D451FBDA ] upnphost C:\Windows\System32\upnphost.dll 18:13:30.0343 0x17a8 upnphost - ok 18:13:30.0343 0x17a8 [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea C:\Windows\System32\drivers\urschipidea.sys 18:13:30.0359 0x17a8 UrsChipidea - ok 18:13:30.0359 0x17a8 [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000 C:\Windows\system32\drivers\urscx01000.sys 18:13:30.0359 0x17a8 UrsCx01000 - ok 18:13:30.0390 0x17a8 [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys C:\Windows\System32\drivers\urssynopsys.sys 18:13:30.0390 0x17a8 UrsSynopsys - ok 18:13:30.0421 0x17a8 [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp C:\Windows\System32\drivers\usbccgp.sys 18:13:30.0437 0x17a8 usbccgp - ok 18:13:30.0437 0x17a8 [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir C:\Windows\System32\drivers\usbcir.sys 18:13:30.0452 0x17a8 usbcir - ok 18:13:30.0468 0x17a8 [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci C:\Windows\System32\drivers\usbehci.sys 18:13:30.0484 0x17a8 usbehci - ok 18:13:30.0515 0x17a8 [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub C:\Windows\System32\drivers\usbhub.sys 18:13:30.0546 0x17a8 usbhub - ok 18:13:30.0609 0x17a8 [ 12A0B486EA13DF46C27B90CC2CE92FE5, 643D8B906F02FBC0802B3468C24D6C6A0BDB07FEA894B68E0F404AB5287C4409 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys 18:13:30.0624 0x17a8 USBHUB3 - ok 18:13:30.0640 0x17a8 [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci C:\Windows\System32\drivers\usbohci.sys 18:13:30.0640 0x17a8 usbohci - ok 18:13:30.0655 0x17a8 [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint C:\Windows\System32\drivers\usbprint.sys 18:13:30.0655 0x17a8 usbprint - ok 18:13:30.0655 0x17a8 [ D67B6A4A6FB99D29444C2DBA2B636799, 62BC778D60593B2AB0DA13C4DB3EA5971895AE09DA06E8AB2D03973C940C890C ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 18:13:30.0655 0x17a8 usbscan - ok 18:13:30.0702 0x17a8 [ CA6369870F91F3D367D26278E0AD0DDF, 651B97E73AFC615C80DE2076872DEB49DCD775B5C9988AB4AC0A0162DAB09F70 ] usbser C:\Windows\System32\drivers\usbser.sys 18:13:30.0718 0x17a8 usbser - ok 18:13:30.0734 0x17a8 [ 37C2CD8587BF7F785381EB7B26916B52, E8F65BF7BBDEF82BD97629921A1148304CA44DCD03E079E28D75D04244B71C39 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS 18:13:30.0749 0x17a8 USBSTOR - ok 18:13:30.0765 0x17a8 [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci C:\Windows\System32\drivers\usbuhci.sys 18:13:30.0765 0x17a8 usbuhci - ok 18:13:30.0796 0x17a8 [ 4B13B61CBB9CC3CB373C60B930D648F5, C79D10A1BF2B6BF141DD37A90BCCA0E1F2AF31B5028BB21537A8EE6EED630F5B ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 18:13:30.0812 0x17a8 usbvideo - ok 18:13:30.0859 0x17a8 [ 325727F01F03C504CF788618A13DC266, 9F685113F714ADBC6DCD423CCD205F71E00D1AA9B5DD045B95E61E53B0F8E9AF ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS 18:13:30.0905 0x17a8 USBXHCI - ok 18:13:31.0015 0x17a8 [ ED06681482E0B9B4D573684CD5FB18F5, 1CCFBD37F8B895900B860AAF107130C5890C01F5327A4AEBB910F6B2BB0BA61D ] UserDataSvc C:\Windows\System32\userdataservice.dll 18:13:31.0046 0x099c Object send P2P result: true 18:13:31.0046 0x099c Object required for P2P: [ 9A2A2F3C69B9A30B6E78536F6D258BAD ] iai2c 18:13:31.0062 0x17a8 UserDataSvc - ok 18:13:31.0124 0x17a8 [ CA902510DAF327CCFA59BCBFC00B3BAE, 3282993B28B64E2D7D4C94E5B2643431C96BF1AB30B48C30BED565F457D02B45 ] UserManager C:\Windows\System32\usermgr.dll 18:13:31.0171 0x17a8 UserManager - ok 18:13:31.0202 0x17a8 [ 05F4CB5991D897E4253BF61FA5E828F8, 25B5B6751B4455491E9A050DF5C12F788B5677F70FB4844E0BF851090AC1F74C ] UsoSvc C:\Windows\system32\usocore.dll 18:13:31.0234 0x17a8 UsoSvc - ok 18:13:31.0265 0x17a8 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] VaultSvc C:\Windows\system32\lsass.exe 18:13:31.0281 0x17a8 VaultSvc - ok 18:13:31.0296 0x17a8 [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 18:13:31.0296 0x17a8 vdrvroot - ok 18:13:31.0374 0x17a8 [ 67A6E949395A09914AD8B38FE14B8D15, 593F2FAA880B2E0468F98BD58B5214A170E5890907B25294D7A47C66505A3D45 ] vds C:\Windows\System32\vds.exe 18:13:31.0452 0x17a8 vds - ok 18:13:31.0499 0x17a8 [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys 18:13:31.0515 0x17a8 VerifierExt - ok 18:13:31.0577 0x17a8 [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys 18:13:31.0624 0x17a8 vhdmp - ok 18:13:31.0640 0x17a8 [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf C:\Windows\System32\drivers\vhf.sys 18:13:31.0640 0x17a8 vhf - ok 18:13:31.0671 0x17a8 [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus C:\Windows\system32\drivers\vmbus.sys 18:13:31.0671 0x17a8 vmbus - ok 18:13:31.0687 0x17a8 [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys 18:13:31.0687 0x17a8 VMBusHID - ok 18:13:31.0749 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicguestinterface C:\Windows\System32\ICSvc.dll 18:13:31.0781 0x17a8 vmicguestinterface - ok 18:13:31.0812 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicheartbeat C:\Windows\System32\ICSvc.dll 18:13:31.0827 0x17a8 vmicheartbeat - ok 18:13:31.0843 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmickvpexchange C:\Windows\System32\ICSvc.dll 18:13:31.0874 0x17a8 vmickvpexchange - ok 18:13:31.0890 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicrdv C:\Windows\System32\ICSvc.dll 18:13:31.0906 0x17a8 vmicrdv - ok 18:13:31.0921 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicshutdown C:\Windows\System32\ICSvc.dll 18:13:31.0937 0x17a8 vmicshutdown - ok 18:13:31.0952 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmictimesync C:\Windows\System32\ICSvc.dll 18:13:31.0952 0x17a8 vmictimesync - ok 18:13:31.0984 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvmsession C:\Windows\System32\ICSvc.dll 18:13:31.0984 0x17a8 vmicvmsession - ok 18:13:32.0015 0x17a8 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvss C:\Windows\System32\ICSvc.dll 18:13:32.0015 0x17a8 vmicvss - ok 18:13:32.0046 0x17a8 [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr C:\Windows\system32\drivers\volmgr.sys 18:13:32.0046 0x17a8 volmgr - ok 18:13:32.0093 0x17a8 [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 18:13:32.0140 0x17a8 volmgrx - ok 18:13:32.0187 0x17a8 [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap C:\Windows\system32\drivers\volsnap.sys 18:13:32.0249 0x17a8 volsnap - ok 18:13:32.0312 0x17a8 [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci C:\Windows\System32\drivers\vpci.sys 18:13:32.0312 0x17a8 vpci - ok 18:13:32.0359 0x17a8 [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 18:13:32.0374 0x17a8 vsmraid - ok 18:13:32.0499 0x17a8 [ 4CF5A1E0C4FCA956ACD6C654E2A8610E, 57F3C7200C25E8717AF92AF2ED7615C6605179D3514B432220FA6EA94CAB4F2E ] VSS C:\Windows\system32\vssvc.exe 18:13:32.0546 0x17a8 VSS - ok 18:13:32.0562 0x17a8 [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys 18:13:32.0577 0x17a8 VSTXRAID - ok 18:13:32.0593 0x17a8 [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 18:13:32.0593 0x17a8 vwifibus - ok 18:13:32.0624 0x17a8 [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt C:\Windows\system32\drivers\vwififlt.sys 18:13:32.0624 0x17a8 vwififlt - ok 18:13:32.0640 0x17a8 [ 3BE5AAC930447FD18D4A8255A2FEC95C, A517357188FE4A5BD98A3CDB2165ACCE96CCE4BE2B90DDBEAF70B6DDF393F506 ] vwifimp C:\Windows\System32\drivers\vwifimp.sys 18:13:32.0640 0x17a8 vwifimp - ok 18:13:32.0718 0x17a8 [ 48C1A256591297C43ECFC4E30D144EAA, 8E66833ED2CEB6D7E499EB2E4282B4F9DFA28B6D21757BB88EC52FD069D7FACE ] W32Time C:\Windows\system32\w32time.dll 18:13:32.0765 0x17a8 W32Time - ok 18:13:32.0781 0x17a8 [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen C:\Windows\System32\drivers\wacompen.sys 18:13:32.0781 0x17a8 WacomPen - ok 18:13:32.0859 0x17a8 [ D76D1AC4F2C642D09A68227D129A4726, D14D6C4D94E9660848C74B220359683D91A4A3D70750E781A20B6D86D46794CE ] WalletService C:\Windows\system32\WalletService.dll 18:13:32.0890 0x17a8 WalletService - ok 18:13:32.0906 0x17a8 [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp C:\Windows\system32\DRIVERS\wanarp.sys 18:13:32.0921 0x17a8 wanarp - ok 18:13:32.0921 0x17a8 [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 18:13:32.0937 0x17a8 wanarpv6 - ok 18:13:33.0062 0x17a8 [ 2598BBF11C9E7D0885DCA52E7FD5BCBD, 46B1FB080A2CD88C89A0EB8BA2594A1FA2C341ED77A6C6835CBFFE42907FAC55 ] wbengine C:\Windows\system32\wbengine.exe 18:13:33.0156 0x17a8 wbengine - ok 18:13:33.0249 0x17a8 [ 6950271D0C75A33BD05F7155EF1B2DD4, C6959972D490710CA7539EA8F51B5CC1FA64FF9799242075719C4FD394B6F9C7 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 18:13:33.0296 0x17a8 WbioSrvc - ok 18:13:33.0359 0x17a8 [ 39E07EE74F50C39C1EB315152F03199C, 053562C2656A76265AE09045952A4C9473BE2B4426D9ECC1A025ED4BC204AC25 ] Wcmsvc C:\Windows\System32\wcmsvc.dll 18:13:33.0390 0x17a8 Wcmsvc - ok 18:13:33.0437 0x17a8 [ 53A036CED1270F2459E708A05922FD49, 2F281A72E4B0408DE6C8153F5988C9AA38591FB1E72558767D389637D0666A85 ] wcncsvc C:\Windows\System32\wcncsvc.dll 18:13:33.0468 0x17a8 wcncsvc - ok 18:13:33.0484 0x17a8 [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 18:13:33.0499 0x17a8 WcsPlugInService - ok 18:13:33.0515 0x17a8 [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot C:\Windows\system32\drivers\WdBoot.sys 18:13:33.0515 0x17a8 WdBoot - ok 18:13:33.0531 0x099c Object send P2P result: true 18:13:33.0531 0x099c Object required for P2P: [ 59A20F5AD9F4AE54098154359519408E ] iaLPSS2i_I2C 18:13:33.0609 0x17a8 [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 18:13:33.0671 0x17a8 Wdf01000 - ok 18:13:33.0703 0x17a8 [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter C:\Windows\system32\drivers\WdFilter.sys 18:13:33.0718 0x17a8 WdFilter - ok 18:13:33.0734 0x17a8 [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost C:\Windows\system32\wdi.dll 18:13:33.0749 0x17a8 WdiServiceHost - ok 18:13:33.0765 0x17a8 [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost C:\Windows\system32\wdi.dll 18:13:33.0765 0x17a8 WdiSystemHost - ok 18:13:33.0812 0x17a8 [ E70DDD8E2245CC67547B0861983912D8, 64C73B1496FFF1F6BB3D877CB5BE54DE35C303AE234B11FC90038DC4F73241D9 ] wdiwifi C:\Windows\system32\DRIVERS\wdiwifi.sys 18:13:33.0828 0x17a8 wdiwifi - ok 18:13:33.0843 0x17a8 [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv C:\Windows\system32\Drivers\WdNisDrv.sys 18:13:33.0843 0x17a8 WdNisDrv - ok 18:13:33.0906 0x17a8 WdNisSvc - ok 18:13:33.0921 0x17a8 [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient C:\Windows\System32\webclnt.dll 18:13:33.0937 0x17a8 WebClient - ok 18:13:33.0953 0x17a8 [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc C:\Windows\system32\wecsvc.dll 18:13:33.0968 0x17a8 Wecsvc - ok 18:13:33.0968 0x17a8 [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC C:\Windows\system32\wephostsvc.dll 18:13:33.0968 0x17a8 WEPHOSTSVC - ok 18:13:33.0984 0x17a8 [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport C:\Windows\System32\wercplsupport.dll 18:13:33.0999 0x17a8 wercplsupport - ok 18:13:34.0015 0x17a8 [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc C:\Windows\System32\WerSvc.dll 18:13:34.0031 0x17a8 WerSvc - ok 18:13:34.0062 0x17a8 [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS C:\Windows\system32\drivers\wfplwfs.sys 18:13:34.0078 0x17a8 WFPLWFS - ok 18:13:34.0109 0x17a8 [ 205A1FAE910F5C493D236245850BB62A, DBA4D1D734BAA3CDEB8A7F9C81A8DAA88CEA55AF5C4C5908E76FB8E522C5EC8A ] WiaRpc C:\Windows\System32\wiarpc.dll 18:13:34.0124 0x17a8 WiaRpc - ok 18:13:34.0156 0x17a8 [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount C:\Windows\system32\drivers\wimmount.sys 18:13:34.0171 0x17a8 WIMMount - ok 18:13:34.0171 0x17a8 WinDefend - ok 18:13:34.0218 0x17a8 [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys 18:13:34.0234 0x17a8 WindowsTrustedRT - ok 18:13:34.0249 0x17a8 [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys 18:13:34.0249 0x17a8 WindowsTrustedRTProxy - ok 18:13:34.0343 0x17a8 [ 1859EEE0BAFDF8F20B7B3C40708B1CD3, C17792B9B41D384751A601A3B2CC3C35089257C6D4B63FC5CC0ABC7A34814688 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll 18:13:34.0406 0x17a8 WinHttpAutoProxySvc - ok 18:13:34.0437 0x17a8 [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad C:\Windows\System32\drivers\winmad.sys 18:13:34.0437 0x17a8 WinMad - ok 18:13:34.0499 0x17a8 [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 18:13:34.0515 0x17a8 Winmgmt - ok 18:13:34.0703 0x17a8 [ 703D0F62C5AA4D08EE8756516C0D125D, 02015A5E62490C11EC968160C528C2AFD1D7194AACA27F407B06EB462657511F ] WinRM C:\Windows\system32\WsmSvc.dll 18:13:34.0859 0x17a8 WinRM - ok 18:13:34.0890 0x17a8 [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB C:\Windows\System32\drivers\WinUSB.SYS 18:13:34.0890 0x17a8 WINUSB - ok 18:13:34.0921 0x17a8 [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs C:\Windows\System32\drivers\winverbs.sys 18:13:34.0921 0x17a8 WinVerbs - ok 18:13:35.0062 0x17a8 [ EF0A5EFFBC78F7677D3591BB58AC5A52, 0860B9D0F1A1FFE14F1A0FDFD3B66C90CED90092D9CF9AA35D6D6D088E2DC4A9 ] WlanSvc C:\Windows\System32\wlansvc.dll 18:13:35.0109 0x17a8 WlanSvc - ok 18:13:35.0234 0x17a8 [ 58A8B8B2A343829602AC105F66988583, 46D142A3A7D74F6383B8D7E642E796535CE15BEDAF82AEFB4BEF46F0355411FD ] wlidsvc C:\Windows\system32\wlidsvc.dll 18:13:35.0359 0x17a8 wlidsvc - ok 18:13:35.0374 0x17a8 [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys 18:13:35.0374 0x17a8 WmiAcpi - ok 18:13:35.0406 0x17a8 [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 18:13:35.0421 0x17a8 wmiApSrv - ok 18:13:35.0468 0x17a8 WMPNetworkSvc - ok 18:13:35.0499 0x17a8 [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof C:\Windows\system32\drivers\Wof.sys 18:13:35.0531 0x17a8 Wof - ok 18:13:35.0718 0x17a8 [ 4090C6738AA92B428220857B4D44F638, 4A3EE47494051E5BA8393F2AC8226EF434DA3AA1895CF4BADC9BC1BC378647C6 ] workfolderssvc C:\Windows\system32\workfolderssvc.dll 18:13:35.0828 0x17a8 workfolderssvc - ok 18:13:35.0859 0x17a8 [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys 18:13:35.0874 0x17a8 wpcfltr - ok 18:13:35.0906 0x17a8 [ D282ECA35ADAC7A93D6B4943E775010B, A76A9698A95646FA63AC18DFFA02B744D7C6043934CBF6C37832ED2E6B21F570 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 18:13:35.0921 0x17a8 WPDBusEnum - ok 18:13:35.0937 0x17a8 [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys 18:13:35.0937 0x17a8 WpdUpFltr - ok 18:13:35.0968 0x17a8 [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService C:\Windows\system32\WpnService.dll 18:13:35.0984 0x17a8 WpnService - ok 18:13:35.0999 0x17a8 [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 18:13:36.0015 0x17a8 ws2ifsl - ok 18:13:36.0015 0x099c Object send P2P result: true 18:13:36.0031 0x099c Object required for P2P: [ 807A6636828E5F43C10A01474B8907EE ] MSDTC 18:13:36.0078 0x17a8 [ FB45052D7C13963465DFF8D56746B10B, 21B0DC0D383061CEF079586AE8E2FD5E8BBA22B8494666F14D5A8591275943E5 ] wscsvc C:\Windows\System32\wscsvc.dll 18:13:36.0124 0x17a8 wscsvc - ok 18:13:36.0140 0x17a8 WSearch - ok 18:13:36.0359 0x17a8 [ A904D7950ED275273357AA7B1EAE445F, 0E41EA26A923FCE7072CC7DDDDB852E54C95992E01A79C67D1D544B1CB1E18DA ] WSService C:\Windows\System32\WSService.dll 18:13:36.0515 0x17a8 WSService - ok 18:13:36.0640 0x17a8 [ C2D78B6667E0341802C4F38E9C02F93D, D2639EF935C5C5BCFECF1BDACC1BA480786A810084EEB62B7C5A0E57618FCCE1 ] wuauserv C:\Windows\system32\wuaueng.dll 18:13:36.0750 0x17a8 wuauserv - ok 18:13:36.0765 0x17a8 [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 18:13:36.0781 0x17a8 WudfPf - ok 18:13:36.0812 0x17a8 [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd C:\Windows\system32\drivers\WudfRd.sys 18:13:36.0812 0x17a8 WUDFRd - ok 18:13:36.0843 0x17a8 [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 18:13:36.0875 0x17a8 wudfsvc - ok 18:13:36.0906 0x17a8 [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys 18:13:36.0921 0x17a8 WUDFWpdFs - ok 18:13:37.0031 0x17a8 [ 2D7E3C2913AAE063774795E6790BCC48, 686CF1CE1CF2553236E0983CBF283D841FB5FBB998C33D97FBB5D7A83EF83867 ] WwanSvc C:\Windows\System32\wwansvc.dll 18:13:37.0125 0x17a8 WwanSvc - ok 18:13:37.0171 0x17a8 [ 7443938BC4B8DCE1D8E6C51BC3F9DBFE, F2D41BFB2303AEAE39A33E6873A9C07DEF9090CA6D5602B2D232C59D1899D620 ] XblAuthManager C:\Windows\System32\XblAuthManager.dll 18:13:37.0218 0x17a8 XblAuthManager - ok 18:13:37.0265 0x17a8 [ FACC53D144952319038FAE7442FCC045, 8BCA4ADC5162FC12AF2A88A8A570DA9DAB80AE9B62C873A2121EBAF8AA9FBA98 ] XblGameSave C:\Windows\System32\XblGameSave.dll 18:13:37.0359 0x17a8 XblGameSave - ok 18:13:37.0390 0x17a8 [ 80BC02A73A3949A7AEF34791206C7D7F, 41E547EFC722D3E01CD8E261FA233D8C799FC59A9C5320B7FD65B09831373CDB ] xboxgip C:\Windows\System32\drivers\xboxgip.sys 18:13:37.0406 0x17a8 xboxgip - ok 18:13:37.0484 0x17a8 [ 69E727F94BEA64E66C284F3C482F33E6, B3E0F287E7A251E0FC17C41089C45737027E54F0213BDE847356AC882B4D3700 ] XboxNetApiSvc C:\Windows\system32\XboxNetApiSvc.dll 18:13:37.0546 0x17a8 XboxNetApiSvc - ok 18:13:37.0562 0x17a8 [ 1F1EF8E701859581251B52035C1C1CEF, 3A7D3EC619A7F45FBB04EDA6963E3C55DC50358CF2D71ED66EE4BB07ACC0EE3C ] xinputhid C:\Windows\System32\drivers\xinputhid.sys 18:13:37.0562 0x17a8 xinputhid - ok 18:13:37.0562 0x17a8 ================ Scan global =============================== 18:13:37.0609 0x17a8 [ D923EC03E24F7633DED3F2D46AD59A28, C635DB4483E24BE0188583E63B06D0F37BDE7AD944E4D0246A7D19CBC3EA3A6B ] C:\Windows\system32\basesrv.dll 18:13:37.0640 0x17a8 [ E2899695BD30B5F93EC626EBBEF2CB69, B190D2903A109D2C146D881F90769060A0E971942F4AA61AEAD81861032D89C3 ] C:\Windows\system32\winsrv.dll 18:13:37.0687 0x17a8 [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\Windows\system32\sxssrv.dll 18:13:37.0750 0x17a8 [ 2AB2C72D88CE2BC73E6F708D0B1A9657, 8DF9D8C83BC2078D88FE7B2E9CDD5ABA9A2075F40D30CD344595DA217ECCCB3B ] C:\Windows\system32\services.exe 18:13:37.0796 0x17a8 [ Global ] - ok 18:13:37.0796 0x17a8 ================ Scan MBR ================================== 18:13:37.0812 0x17a8 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0 18:13:37.0843 0x17a8 \Device\Harddisk0\DR0 - ok 18:13:37.0843 0x17a8 ================ Scan VBR ================================== 18:13:37.0859 0x17a8 [ 13634E6A2CDCB7BA08A9D69506322035 ] \Device\Harddisk0\DR0\Partition1 18:13:37.0890 0x17a8 \Device\Harddisk0\DR0\Partition1 - ok 18:13:37.0906 0x17a8 [ B8547E395996D52FED12BFD1BC21220F ] \Device\Harddisk0\DR0\Partition2 18:13:37.0921 0x17a8 \Device\Harddisk0\DR0\Partition2 - ok 18:13:37.0937 0x17a8 [ FC4CA031F795317029113BBD004CD19C ] \Device\Harddisk0\DR0\Partition3 18:13:37.0937 0x17a8 \Device\Harddisk0\DR0\Partition3 - ok 18:13:37.0953 0x17a8 [ 51EFEC3EA865E8B7AC1308979F20F537 ] \Device\Harddisk0\DR0\Partition4 18:13:37.0968 0x17a8 \Device\Harddisk0\DR0\Partition4 - ok 18:13:37.0968 0x17a8 ================ Scan generic autorun ====================== 18:13:38.0015 0x17a8 [ 0C3154D0620F974AD5C4E8D87626C8CF, 4E6B751F9C0D5D4833A12166BC5142E0A7402E98D00F570926ED9CA0936A8007 ] C:\Windows\system32\igfxtray.exe 18:13:38.0031 0x17a8 IgfxTray - ok 18:13:38.0078 0x17a8 [ E4AA3D28753EF9DB333FE40079993B09, ECC60BAA7D21EF97CDA17F45277FBFE52B2169155DDB157E34A7AE2EC1BEC185 ] C:\Windows\system32\hkcmd.exe 18:13:38.0093 0x17a8 HotKeysCmds - ok 18:13:38.0125 0x17a8 [ CF40080765D6F66FA93318C0DB6C7D1F, 015EE5BE439DAC6D3F7C7471EEF554C11F28947492E3F7AA14BB72622C327DCD ] C:\Windows\system32\igfxpers.exe 18:13:38.0140 0x17a8 Persistence - ok 18:13:38.0140 0x17a8 SynTPEnh - ok 18:13:38.0453 0x17a8 [ 8A312D5764B4FC4C55CEDDEED4652CF1, C4E726C9C77614CD32D5B76DA2E9A049EC490C2392D9A94B84712BCBF47BA7C6 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe 18:13:38.0531 0x099c Object send P2P result: true 18:13:38.0593 0x17a8 AvastUI.exe - ok 18:13:39.0015 0x17a8 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe 18:13:39.0312 0x17a8 OneDriveSetup - ok 18:13:39.0625 0x17a8 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe 18:13:39.0781 0x17a8 OneDriveSetup - ok 18:13:39.0984 0x17a8 [ 2287DAEA100837E40232FD9053F635D8, 8E905B8BC72F8DD6C7C71A7E04CD8D8EC1E9AD2B77EF5A48E089E439A75043D6 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIILE.EXE 18:13:40.0000 0x17a8 EPLTarget\P0000000000000000 - ok 18:13:40.0000 0x17a8 Waiting for KSN requests completion. In queue: 172 18:13:41.0015 0x17a8 Waiting for KSN requests completion. In queue: 172 18:13:42.0031 0x17a8 Waiting for KSN requests completion. In queue: 172 18:13:42.0453 0x15f0 Object required for P2P: [ 7C58AFEC26E9F7730A8AA7FD40225937 ] sppsvc 18:13:43.0047 0x17a8 Waiting for KSN requests completion. In queue: 169 18:13:44.0062 0x17a8 Waiting for KSN requests completion. In queue: 169 18:13:44.0984 0x15f0 Object send P2P result: true 18:13:44.0984 0x15f0 Object required for P2P: [ 34A3EB84B2A830E6F450B8F885AE4E6E ] SysMain 18:13:45.0078 0x17a8 Waiting for KSN requests completion. In queue: 147 18:13:46.0094 0x17a8 Waiting for KSN requests completion. In queue: 147 18:13:47.0109 0x17a8 Waiting for KSN requests completion. In queue: 147 18:13:47.0484 0x15f0 Object send P2P result: true 18:13:47.0500 0x15f0 Object required for P2P: [ 4CF5A1E0C4FCA956ACD6C654E2A8610E ] VSS 18:13:48.0125 0x17a8 Waiting for KSN requests completion. In queue: 69 18:13:49.0141 0x17a8 Waiting for KSN requests completion. In queue: 69 18:13:49.0985 0x15f0 Object send P2P result: true 18:13:50.0016 0x15f0 Object required for P2P: [ 8A312D5764B4FC4C55CEDDEED4652CF1 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe 18:13:50.0156 0x17a8 Waiting for KSN requests completion. In queue: 4 18:13:51.0172 0x17a8 Waiting for KSN requests completion. In queue: 4 18:13:52.0188 0x17a8 Waiting for KSN requests completion. In queue: 4 18:13:52.0532 0x15f0 Object send P2P result: true 18:13:53.0266 0x17a8 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x60100 ( disabled : updated ) 18:13:53.0266 0x17a8 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41000 ( enabled : updated ) 18:13:53.0266 0x17a8 FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41010 ( enabled ) 18:13:55.0688 0x17a8 ============================================================ 18:13:55.0688 0x17a8 Scan finished 18:13:55.0688 0x17a8 ============================================================ 18:13:55.0704 0x17d8 Detected object count: 0 18:13:55.0704 0x17d8 Actual detected object count: 0 18:19:14.0015 0x045c Deinitialize success Hier kommt nun der zweite Check: |
20.12.2015, 19:07 | #7 |
| Schadsoftware?Code:
ATTFilter 19:01:09.0045 0x03ac TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12 19:01:09.0045 0x03ac UEFI system 19:01:18.0702 0x03ac ============================================================ 19:01:18.0702 0x03ac Current date / time: 2015/12/20 19:01:18.0702 19:01:18.0702 0x03ac SystemInfo: 19:01:18.0703 0x03ac 19:01:18.0703 0x03ac OS Version: 10.0.10586 ServicePack: 0.0 19:01:18.0703 0x03ac Product type: Workstation 19:01:18.0703 0x03ac ComputerName: DESKTOP-BSKNV1M 19:01:18.0703 0x03ac UserName: J 19:01:18.0703 0x03ac Windows directory: C:\Windows 19:01:18.0703 0x03ac System windows directory: C:\Windows 19:01:18.0703 0x03ac Running under WOW64 19:01:18.0703 0x03ac Processor architecture: Intel x64 19:01:18.0703 0x03ac Number of processors: 4 19:01:18.0703 0x03ac Page size: 0x1000 19:01:18.0703 0x03ac Boot type: Normal boot 19:01:18.0703 0x03ac ============================================================ 19:01:19.0129 0x03ac KLMD registered as C:\Windows\system32\drivers\35559086.sys 19:01:19.0558 0x03ac System UUID: {8C4666C2-83B6-E94C-782C-D74E662B57AC} 19:01:20.0406 0x03ac Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:01:20.0418 0x03ac ============================================================ 19:01:20.0418 0x03ac \Device\Harddisk0\DR0: 19:01:20.0418 0x03ac GPT partitions: 19:01:20.0419 0x03ac \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {40EEE059-2917-484B-A236-AB13FC557B1D}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xE1000 19:01:20.0420 0x03ac \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {109DAB21-58A2-4AEC-9B47-684C32BFD105}, Name: EFI system partition, StartLBA 0xE1800, BlocksNum 0x32000 19:01:20.0420 0x03ac \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {DD8D2D6E-A30D-4054-A5D5-996651F273C4}, Name: Microsoft reserved partition, StartLBA 0x113800, BlocksNum 0x8000 19:01:20.0420 0x03ac \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1365158F-94B7-42D2-BE2D-8DE53D90467E}, Name: Basic data partition, StartLBA 0x11B800, BlocksNum 0x3A26A800 19:01:20.0420 0x03ac MBR partitions: 19:01:20.0420 0x03ac ============================================================ 19:01:20.0451 0x03ac C: <-> \Device\Harddisk0\DR0\Partition4 19:01:20.0451 0x03ac ============================================================ 19:01:20.0451 0x03ac Initialize success 19:01:20.0451 0x03ac ============================================================ 19:01:44.0233 0x1478 ============================================================ 19:01:44.0233 0x1478 Scan started 19:01:44.0233 0x1478 Mode: Manual; SigCheck; TDLFS; 19:01:44.0233 0x1478 ============================================================ 19:01:44.0233 0x1478 KSN ping started 19:01:46.0686 0x1478 KSN ping finished: true 19:01:47.0670 0x1478 ================ Scan system memory ======================== 19:01:47.0670 0x1478 System memory - ok 19:01:47.0670 0x1478 ================ Scan services ============================= 19:01:47.0889 0x1478 [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys 19:01:48.0092 0x1478 1394ohci - ok 19:01:48.0123 0x1478 [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware C:\Windows\system32\drivers\3ware.sys 19:01:48.0155 0x1478 3ware - ok 19:01:48.0186 0x1478 [ 6B6C39AB2CD7BEB6CFF624522E5449DE, 740D99D2C525FB4F81FB2754281CECEA5FF13DD2120081306728FE33859F28F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 19:01:48.0233 0x1478 ACPI - ok 19:01:48.0248 0x1478 [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex C:\Windows\system32\Drivers\acpiex.sys 19:01:48.0280 0x1478 acpiex - ok 19:01:48.0280 0x1478 [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr C:\Windows\System32\drivers\acpipagr.sys 19:01:48.0342 0x1478 acpipagr - ok 19:01:48.0373 0x1478 [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys 19:01:48.0451 0x1478 AcpiPmi - ok 19:01:48.0467 0x1478 [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime C:\Windows\System32\drivers\acpitime.sys 19:01:48.0514 0x1478 acpitime - ok 19:01:48.0561 0x1478 [ E13DE7CD2B62254DD4FF658B7798A37D, 9FCCC90DEF6BE83F8C41D4552D235A7BB5534954D2E7CB7B1C336A31FCCAB3AD ] ACPIVPC C:\Windows\System32\drivers\AcpiVpc.sys 19:01:48.0608 0x1478 ACPIVPC - ok 19:01:48.0748 0x1478 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 19:01:48.0780 0x1478 AdobeARMservice - ok 19:01:48.0936 0x1478 [ BC9CB5E2A6C7FC587CAC3E1658F8462C, 785DE220AC906C30E9853E7DE94C5330529472C9B4ABF5F99F124A8D516EB33C ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 19:01:48.0967 0x1478 AdobeFlashPlayerUpdateSvc - ok 19:01:49.0061 0x1478 [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX C:\Windows\system32\drivers\ADP80XX.SYS 19:01:49.0123 0x1478 ADP80XX - ok 19:01:49.0201 0x1478 [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD C:\Windows\system32\drivers\afd.sys 19:01:49.0264 0x1478 AFD - ok 19:01:49.0327 0x1478 [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440 C:\Windows\system32\drivers\agp440.sys 19:01:49.0373 0x1478 agp440 - ok 19:01:49.0405 0x1478 [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache C:\Windows\system32\DRIVERS\ahcache.sys 19:01:49.0483 0x1478 ahcache - ok 19:01:49.0498 0x1478 [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter C:\Windows\System32\AJRouter.dll 19:01:49.0545 0x1478 AJRouter - ok 19:01:49.0592 0x1478 [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG C:\Windows\System32\alg.exe 19:01:49.0670 0x1478 ALG - ok 19:01:49.0702 0x1478 [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8 C:\Windows\System32\drivers\amdk8.sys 19:01:49.0764 0x1478 AmdK8 - ok 19:01:49.0780 0x1478 [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys 19:01:49.0842 0x1478 AmdPPM - ok 19:01:49.0889 0x1478 [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata C:\Windows\system32\drivers\amdsata.sys 19:01:49.0936 0x1478 amdsata - ok 19:01:49.0952 0x1478 [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 19:01:49.0998 0x1478 amdsbs - ok 19:01:50.0014 0x1478 [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata C:\Windows\system32\drivers\amdxata.sys 19:01:50.0030 0x1478 amdxata - ok 19:01:50.0045 0x1478 [ 2BBD3A492B93C7E669D01EE88977D7DE, 311EA890E555E144F4B0DDC3112B2EB5CB848DEA4F33A300942494D8989473E0 ] AppID C:\Windows\system32\drivers\appid.sys 19:01:50.0077 0x1478 AppID - ok 19:01:50.0108 0x1478 [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc C:\Windows\System32\appidsvc.dll 19:01:50.0139 0x1478 AppIDSvc - ok 19:01:50.0155 0x1478 [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo C:\Windows\System32\appinfo.dll 19:01:50.0233 0x1478 Appinfo - ok 19:01:50.0264 0x1478 [ B4AE5296C9597F45E1CFE0B1DBE7739E, C9DCA8EF32720D68119CC23DF4BCD783FFB5F999D14EDCC7937D17C590323B4B ] AppMgmt C:\Windows\System32\appmgmts.dll 19:01:50.0311 0x1478 AppMgmt - ok 19:01:50.0373 0x1478 [ 610499A73DF3599608EBB6B3F9929052, A9CA49C4A39A825916AB3791090BCFC7044FDB6B2C3538E01F0CFBC2A9931152 ] AppReadiness C:\Windows\system32\AppReadiness.dll 19:01:50.0436 0x1478 AppReadiness - ok 19:01:50.0577 0x1478 [ BF58041024FEF96B48F7D691003B4BCB, FAD25702256AA8E668F082E16C2C05FD7FA907DCA88787BF36121D1B073350C9 ] AppXSvc C:\Windows\system32\appxdeploymentserver.dll 19:01:50.0702 0x1478 AppXSvc - ok 19:01:50.0733 0x1478 [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas C:\Windows\system32\drivers\arcsas.sys 19:01:50.0795 0x1478 arcsas - ok 19:01:50.0842 0x1478 [ 7BC1F2FC2A9D79E1EBBBF6D69AC3BA1F, 236265BE3F1B2130025A3A10152893BD0D18AD8965732361058B775F010539A2 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys 19:01:50.0889 0x1478 aswHwid - ok 19:01:50.0920 0x1478 [ 42AE0F2BF37CE46EB01A753F96FCC9B8, 3FCECB863664CA9877BF00B7B9E781608BD19CB9E409C98A45D1AFA4E7187882 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys 19:01:50.0967 0x1478 aswKbd - ok 19:01:50.0998 0x1478 [ 68E76C1675AC171A84F5B7230652E19D, A707A4E51110B15FF7D73C95D4D9C1E457FC9D93E1479BDB67EBDDDD6AC28D8E ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys 19:01:51.0030 0x1478 aswMonFlt - ok 19:01:51.0061 0x1478 [ E017E15F8EFD7675976743A8FBECCEBB, 64B3628E65AA0BC9093374726C76418CF4CB99743E8BE98A969CF5CA82E6D7EE ] aswNdisFlt C:\Windows\system32\DRIVERS\aswNdisFlt.sys 19:01:51.0108 0x1478 aswNdisFlt - ok 19:01:51.0123 0x1478 [ 2D6B49A071216796106E7804AB2BA7DC, 6A58A3B36EA05A24333482F87CFD315F73E56A64E46493E82E0FE9115E284168 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys 19:01:51.0170 0x1478 aswRdr - ok 19:01:51.0202 0x1478 [ E46B51C99BB750A81AC6A68362475A5C, 2A61C09902B39696D151B9D5E6A60FFC3CF3EA02613EC64BBAB4DEE3C78838E2 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys 19:01:51.0233 0x1478 aswRvrt - ok 19:01:51.0327 0x1478 [ A428CC308673A5E74F91D92E4A2B205D, 0A768AA4BD1CD22B5181EDA692F7CB9A43F627BB4FFEEFBB8CBC77A45107A443 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys 19:01:51.0389 0x1478 aswSnx - ok 19:01:51.0420 0x1478 [ C24A42A7689DB63EEF157797AA7012B5, AC25AFAD13E59DFBF68B9F9B9527F266F4671A5E0A1F04D9EA71D36C00AC21E9 ] aswSP C:\Windows\system32\drivers\aswSP.sys 19:01:51.0452 0x1478 aswSP - ok 19:01:51.0467 0x1478 [ D9079E1A1C2A1F8ED5F37AF8E6CD3161, 629E3A642C5E3BEA65CDD2E08CAD69F9649A98BDA906678B51D3D2C9DB5BB253 ] aswStm C:\Windows\system32\drivers\aswStm.sys 19:01:51.0483 0x1478 aswStm - ok 19:01:51.0499 0x1478 [ 3BEC32A0B646D914921FD56AA39998C1, 8DB7CBF3DEF8EAE1D7D28C38B3A0FCD5C2A04D772078B907F35C66451355A04A ] aswVmm C:\Windows\system32\drivers\aswVmm.sys 19:01:51.0530 0x1478 aswVmm - ok 19:01:51.0561 0x1478 [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac C:\Windows\System32\drivers\asyncmac.sys 19:01:51.0670 0x1478 AsyncMac - ok 19:01:51.0686 0x1478 [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi C:\Windows\system32\drivers\atapi.sys 19:01:51.0733 0x1478 atapi - ok 19:01:51.0920 0x1478 [ F1F16542AC6404DDC44A447A875AD13A, 0A59586E68EF58A4D791F244B3C34CEF0A6B3B51CB5F3E85856B0F69AA5029E3 ] athr C:\Windows\System32\drivers\athwnx.sys 19:01:52.0155 0x1478 athr - ok 19:01:52.0233 0x1478 [ 890BF20BDF500E4E84720EA84448EDDF, EF5EECA20FFB6B78277CE551877479DB79E91DB23B46530C1D0E746F0F51FBBF ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll 19:01:52.0295 0x1478 AudioEndpointBuilder - ok 19:01:52.0405 0x1478 [ FAC1E762CB49992381691B00D2069B3E, 9973814BB259A370E6A17EDFB785CED9C634721E6D6FE069667B669AE60EB5F6 ] Audiosrv C:\Windows\System32\Audiosrv.dll 19:01:52.0530 0x1478 Audiosrv - ok 19:01:52.0624 0x1478 [ F5CB8703A4F51EE30E5C090C78073AA4, 90683F39E9AA315FFB66A9F014AD1BEBF19EA62908247C133455815F6632E578 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe 19:01:52.0670 0x1478 avast! Antivirus - ok 19:01:52.0686 0x1478 [ 21144F53F79975801AB9A9A027707A85, 445F4838EF0B42A94D997244FE72744E72C7D669C169BC60F23DD3286AF32051 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe 19:01:52.0702 0x1478 avast! Firewall - ok 19:01:52.0749 0x1478 [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV C:\Windows\System32\AxInstSV.dll 19:01:52.0780 0x1478 AxInstSV - ok 19:01:52.0858 0x1478 [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 19:01:52.0920 0x1478 b06bdrv - ok 19:01:52.0936 0x1478 [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys 19:01:52.0999 0x1478 BasicDisplay - ok 19:01:53.0014 0x1478 [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender C:\Windows\System32\drivers\BasicRender.sys 19:01:53.0061 0x1478 BasicRender - ok 19:01:53.0108 0x1478 [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn C:\Windows\System32\drivers\bcmfn.sys 19:01:53.0139 0x1478 bcmfn - ok 19:01:53.0139 0x1478 [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2 C:\Windows\System32\drivers\bcmfn2.sys 19:01:53.0217 0x1478 bcmfn2 - ok 19:01:53.0249 0x1478 [ F8F398A4AF7E0917320BC2B2CD812888, 02B9A6EA0AA750CA9B62AB09E99956C35E252A12B22C2CBFDC4E941ED5870591 ] BDESVC C:\Windows\System32\bdesvc.dll 19:01:53.0327 0x1478 BDESVC - ok 19:01:53.0358 0x1478 [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep C:\Windows\system32\drivers\Beep.sys 19:01:53.0405 0x1478 Beep - ok 19:01:53.0483 0x1478 [ 8EA08141590CB9331FA773FB430E91E4, 0507499EF423CC9EE9AC18C2B5CBF9965E69481C69DC96E361C2184C53C3F404 ] BFE C:\Windows\System32\bfe.dll 19:01:53.0545 0x1478 BFE - ok 19:01:53.0608 0x1478 [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS C:\Windows\System32\qmgr.dll 19:01:53.0686 0x1478 BITS - ok 19:01:53.0702 0x1478 [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser C:\Windows\system32\DRIVERS\bowser.sys 19:01:53.0749 0x1478 bowser - ok 19:01:53.0827 0x1478 [ 62C0D7CD771F26198F76F56B81D8A5B5, 3505DA8B68486D393BF7DCE5F463EA7F88387E6F06BC8175F3514BD6AFE25C37 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll 19:01:53.0905 0x1478 BrokerInfrastructure - ok 19:01:53.0936 0x1478 [ DA4C9335434E71D6CC86A3CA567769CC, 9FE5EE3CC91CADBF952446E0A9A79A8834B03C8D4C47D6E9257AF64B2C17F518 ] Browser C:\Windows\System32\browser.dll 19:01:53.0983 0x1478 Browser - ok 19:01:54.0014 0x1478 [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys 19:01:54.0108 0x1478 BthAvrcpTg - ok 19:01:54.0139 0x1478 [ 7F2165B51C19A5F59BCA94E0A1B1E0D3, 09F0A23554761C5559BED50941BCC40519F88003B6D655527F514D5F9D4CB469 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 19:01:54.0202 0x1478 BthEnum - ok 19:01:54.0217 0x1478 [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys 19:01:54.0233 0x1478 BthHFEnum - ok 19:01:54.0249 0x1478 [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys 19:01:54.0280 0x1478 bthhfhid - ok 19:01:54.0311 0x1478 [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv C:\Windows\System32\BthHFSrv.dll 19:01:54.0342 0x1478 BthHFSrv - ok 19:01:54.0358 0x1478 [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys 19:01:54.0389 0x1478 BTHMODEM - ok 19:01:54.0420 0x1478 [ 09C3DB1B137B269A822F941D867A6BB6, CC99FBD76DA19D951864D4967EA9F3C048811E9BB7BBB67B724FC82A50B14516 ] BthPan C:\Windows\System32\drivers\bthpan.sys 19:01:54.0452 0x1478 BthPan - ok 19:01:54.0514 0x1478 [ 6D75ECFB3891B61B81225F36A0C408B8, F0A08B40DBED7CB134671AA01AB0E5EEB7B1FE31331C857616E0204A3C8F08ED ] BTHPORT C:\Windows\system32\DRIVERS\BTHport.sys 19:01:54.0608 0x1478 BTHPORT - ok 19:01:54.0639 0x1478 [ 7A177E18AA6A6A6365E6351C2BF8EDAE, A35224A20014B1215A6824AE5E17B8869A775EA272EF7F25EAFFA18733F8D09D ] bthserv C:\Windows\system32\bthserv.dll 19:01:54.0671 0x1478 bthserv - ok 19:01:54.0686 0x1478 [ F001B81D47CEBF96E60CE971FFCC45C4, EE419B557C52B0F1704B5D58E7FA9A996B33E78CC02EA4CA1D28CAB8CFD77D95 ] BTHUSB C:\Windows\system32\DRIVERS\BTHUSB.sys 19:01:54.0717 0x1478 BTHUSB - ok 19:01:54.0749 0x1478 [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys 19:01:54.0827 0x1478 buttonconverter - ok 19:01:54.0858 0x1478 [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg C:\Windows\System32\drivers\capimg.sys 19:01:54.0952 0x1478 CapImg - ok 19:01:54.0999 0x1478 [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 19:01:55.0077 0x1478 cdfs - ok 19:01:55.0139 0x1478 [ 0A92DC116CFC7F6BE8167DD25CB925CC, 50CAC7BE14FF69B10C029E049F7C441A5572540F027F95F940B185C76C689409 ] CDPSvc C:\Windows\System32\CDPSvc.dll 19:01:55.0202 0x1478 CDPSvc - ok 19:01:55.0233 0x1478 [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom C:\Windows\System32\drivers\cdrom.sys 19:01:55.0327 0x1478 cdrom - ok 19:01:55.0358 0x1478 [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc C:\Windows\System32\certprop.dll 19:01:55.0436 0x1478 CertPropSvc - ok 19:01:55.0467 0x1478 [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass C:\Windows\System32\drivers\circlass.sys 19:01:55.0546 0x1478 circlass - ok 19:01:55.0639 0x1478 [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS C:\Windows\system32\drivers\CLFS.sys 19:01:55.0702 0x1478 CLFS - ok 19:01:55.0764 0x1478 [ BE10905777246CA6AA74F48FE9236517, D51B13FB176D82665C91B59B3C6E229CE746E20ED1BB20DADF6184C7A29E69AF ] ClipSVC C:\Windows\System32\ClipSVC.dll 19:01:55.0827 0x1478 ClipSVC - ok 19:01:55.0874 0x1478 [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt C:\Windows\System32\drivers\CmBatt.sys 19:01:55.0967 0x1478 CmBatt - ok 19:01:56.0046 0x1478 [ 80977779A19947939D680A4899E829EC, 6D510B1EFA39D79D0A8B3CD4F00937A4DDC1411664B001D4ABC546C98345F630 ] CNG C:\Windows\system32\Drivers\cng.sys 19:01:56.0108 0x1478 CNG - ok 19:01:56.0139 0x1478 [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist C:\Windows\system32\DRIVERS\cnghwassist.sys 19:01:56.0186 0x1478 cnghwassist - ok 19:01:56.0264 0x1478 [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys 19:01:56.0342 0x1478 CompositeBus - ok 19:01:56.0358 0x1478 COMSysApp - ok 19:01:56.0389 0x1478 [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv C:\Windows\system32\drivers\condrv.sys 19:01:56.0436 0x1478 condrv - ok 19:01:56.0483 0x1478 [ DE6DF2C34718EADCFF8776E597F2104D, 35D03E95853CEAC69F674FB09C819A4698EBEDFD8AC0474F0ADF02741492401E ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll 19:01:56.0530 0x1478 CoreMessagingRegistrar - ok 19:01:56.0686 0x1478 [ B18D590BC5220FDB4A747BC16D78ABC7, D46F8B43BAC22E55DE9AFC19CF371B1C4E8D3707163598B2F9884BB31D730C09 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe 19:01:56.0733 0x1478 cphs - ok 19:01:56.0764 0x1478 [ 2CE0D74AED86A372997E9D77AE10B9F5, 1AFAA22C68FD0B81F73CE0EB763AD77AB97E78916752843A5056E1352F0FEA82 ] CryptSvc C:\Windows\system32\cryptsvc.dll 19:01:56.0796 0x1478 CryptSvc - ok 19:01:56.0858 0x1478 [ 5D578EAAFB6FD4F59523E5878B541296, 73573124787B79179880AFAF9CB8427237A1605A9F13D7783228DE24D18963C0 ] CSC C:\Windows\system32\drivers\csc.sys 19:01:56.0936 0x1478 CSC - ok 19:01:56.0983 0x1478 [ 5F07CCEE514894C9474AEDCA50B6C2C7, 38F54897C91A2E7D80D00852CEB173B26E822D7C68F35D31228245F811E028A8 ] CscService C:\Windows\System32\cscsvc.dll 19:01:57.0061 0x1478 CscService - ok 19:01:57.0093 0x1478 [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam C:\Windows\system32\drivers\dam.sys 19:01:57.0124 0x1478 dam - ok 19:01:57.0233 0x1478 [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch C:\Windows\system32\rpcss.dll 19:01:57.0296 0x1478 DcomLaunch - ok 19:01:57.0343 0x1478 [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc C:\Windows\system32\dcpsvc.dll 19:01:57.0405 0x1478 DcpSvc - ok 19:01:57.0436 0x1478 [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc C:\Windows\System32\defragsvc.dll 19:01:57.0483 0x1478 defragsvc - ok 19:01:57.0514 0x1478 [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\Windows\system32\das.dll 19:01:57.0561 0x1478 DeviceAssociationService - ok 19:01:57.0593 0x1478 [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll 19:01:57.0624 0x1478 DeviceInstall - ok 19:01:57.0639 0x1478 [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker C:\Windows\system32\DevQueryBroker.dll 19:01:57.0686 0x1478 DevQueryBroker - ok 19:01:57.0733 0x1478 [ C9478D7DB7BE5D7ACE65CB1167F07320, D5082D09EE62E34A195768040B741E22ACC9421CFF315423D77A63ABF8F5E39E ] Dfsc C:\Windows\system32\Drivers\dfsc.sys 19:01:57.0811 0x1478 Dfsc - ok 19:01:57.0858 0x1478 [ 5841A361D28069DFC82E1E98040FDC3F, 3A48DB7ADE90654242CB54DAD07F5FF0CD5CABF372C50D5B2C4D7AED068986E1 ] Dhcp C:\Windows\system32\dhcpcore.dll 19:01:57.0905 0x1478 Dhcp - ok 19:01:57.0952 0x1478 [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe 19:01:58.0014 0x1478 diagnosticshub.standardcollector.service - ok 19:01:58.0124 0x1478 [ 7AE76C7BC60B53999AD07F6A8AFF15C0, 8DC5DA1FAE508D03433C051C877657038BA346707D37FDBC2FE74B4C1F3509A0 ] DiagTrack C:\Windows\system32\diagtrack.dll 19:01:58.0186 0x1478 DiagTrack - ok 19:01:58.0218 0x1478 [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk C:\Windows\system32\drivers\disk.sys 19:01:58.0233 0x1478 disk - ok 19:01:58.0280 0x1478 [ 49F069E2D22F33955A69D44DFD1B5179, 739C52C7B961BA683E8C7CCDB0E95423C17561B2F1F506BAE923DC53DB96B067 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll 19:01:58.0343 0x1478 DmEnrollmentSvc - ok 19:01:58.0374 0x1478 [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc C:\Windows\System32\drivers\dmvsc.sys 19:01:58.0436 0x1478 dmvsc - ok 19:01:58.0468 0x1478 [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll 19:01:58.0530 0x1478 dmwappushservice - ok 19:01:58.0577 0x1478 [ 570BB222E3AFC4407636B53F6EABFA70, D0194A128370BB0A337B61402F9EEDD6F7942ADB19BF672D0F92DA2DA563D0DD ] Dnscache C:\Windows\System32\dnsrslvr.dll 19:01:58.0639 0x1478 Dnscache - ok 19:01:58.0671 0x1478 [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc C:\Windows\System32\dot3svc.dll 19:01:58.0718 0x1478 dot3svc - ok 19:01:58.0733 0x1478 [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS C:\Windows\system32\dps.dll 19:01:58.0811 0x1478 DPS - ok 19:01:58.0858 0x1478 [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud C:\Windows\system32\DRIVERS\drmkaud.sys 19:01:58.0889 0x1478 drmkaud - ok 19:01:58.0936 0x1478 [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll 19:01:58.0983 0x1478 DsmSvc - ok 19:01:59.0014 0x1478 [ 120BECF7452992DAEBD3878BFE5B2412, A1FE8FC039835A5B59ABD789F5C1BFEA2C091A29978CE386C9880E13178930E5 ] DsSvc C:\Windows\System32\DsSvc.dll 19:01:59.0093 0x1478 DsSvc - ok 19:01:59.0186 0x1478 [ A2512BC5F2ABD84D8B3CB0D76ADB749A, 14A1FBF606ED537B9E1B7A939C010A2BA9D609D147FB89AE52D116E59A21D99E ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 19:01:59.0296 0x1478 DXGKrnl - ok 19:01:59.0327 0x1478 [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost C:\Windows\System32\eapsvc.dll 19:01:59.0374 0x1478 Eaphost - ok 19:01:59.0561 0x1478 [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv C:\Windows\system32\drivers\evbda.sys 19:01:59.0718 0x1478 ebdrv - ok 19:01:59.0749 0x1478 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS C:\Windows\System32\lsass.exe 19:01:59.0764 0x1478 EFS - ok 19:01:59.0780 0x1478 [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys 19:01:59.0843 0x1478 EhStorClass - ok 19:01:59.0874 0x1478 [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys 19:01:59.0921 0x1478 EhStorTcgDrv - ok 19:01:59.0952 0x1478 [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode C:\Windows\System32\embeddedmodesvc.dll 19:01:59.0968 0x1478 embeddedmode - ok 19:01:59.0983 0x1478 [ 062152DD5B225518A991DFCD8536770C, 5C8EF4E0C7DE3B24387FF239A8D0CDA39C2376826F16EAFF09739A6C7EDA01E0 ] EntAppSvc C:\Windows\system32\EnterpriseAppMgmtSvc.dll 19:02:00.0030 0x1478 EntAppSvc - ok 19:02:00.0061 0x1478 [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc C:\Windows\system32\EscSvc64.exe 19:02:00.0077 0x1478 EpsonScanSvc - ok 19:02:00.0093 0x1478 [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev C:\Windows\System32\drivers\errdev.sys 19:02:00.0124 0x1478 ErrDev - ok 19:02:00.0171 0x1478 [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem C:\Windows\system32\es.dll 19:02:00.0218 0x1478 EventSystem - ok 19:02:00.0249 0x1478 [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat C:\Windows\system32\drivers\exfat.sys 19:02:00.0358 0x1478 exfat - ok 19:02:00.0390 0x1478 [ 03DE0EC072C5EBD5B018CAD83F1E522A, 9D0B30A2870FBA20B95017CE3A4205F2DD53FE169A0D16715E962D83DE040FB3 ] fastfat C:\Windows\system32\drivers\fastfat.sys 19:02:00.0452 0x1478 fastfat - ok 19:02:00.0530 0x1478 [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax C:\Windows\system32\fxssvc.exe 19:02:00.0671 0x1478 Fax - ok 19:02:00.0686 0x1478 [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc C:\Windows\System32\drivers\fdc.sys 19:02:00.0765 0x1478 fdc - ok 19:02:00.0811 0x1478 [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost C:\Windows\system32\fdPHost.dll 19:02:00.0858 0x1478 fdPHost - ok 19:02:00.0890 0x1478 [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub C:\Windows\system32\fdrespub.dll 19:02:00.0921 0x1478 FDResPub - ok 19:02:00.0936 0x1478 [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc C:\Windows\system32\fhsvc.dll 19:02:00.0968 0x1478 fhsvc - ok 19:02:00.0999 0x1478 [ 8F12AB59336143B680F71B217B495AD2, A28F62F065C68CC1A7EEF0CA52F83C3284B001565D8E154BF8568DE4A525104E ] FileCrypt C:\Windows\system32\drivers\filecrypt.sys 19:02:01.0046 0x1478 FileCrypt - ok 19:02:01.0077 0x1478 [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 19:02:01.0093 0x1478 FileInfo - ok 19:02:01.0108 0x1478 [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 19:02:01.0171 0x1478 Filetrace - ok 19:02:01.0186 0x1478 [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk C:\Windows\System32\drivers\flpydisk.sys 19:02:01.0233 0x1478 flpydisk - ok 19:02:01.0249 0x1478 [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 19:02:01.0296 0x1478 FltMgr - ok 19:02:01.0436 0x1478 [ 4387DE200BF8DD0E2EE828E655434B9A, 9148D65E54663EEC139E754091F47ABF439A637BEA83F600D30736522DAA845D ] FontCache C:\Windows\system32\FntCache.dll 19:02:01.0577 0x1478 FontCache - ok 19:02:01.0702 0x1478 [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 19:02:01.0718 0x1478 FontCache3.0.0.0 - ok 19:02:01.0733 0x1478 [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 19:02:01.0765 0x1478 FsDepends - ok 19:02:01.0780 0x1478 [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 19:02:01.0811 0x1478 Fs_Rec - ok 19:02:01.0827 0x1478 [ 421497634C86EF4B8F86D0EBC076728F, E0D1449555D8849364E00AA747DBC820EF914A9F5B796E35070072FCBC532ADE ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 19:02:01.0874 0x1478 fvevol - ok 19:02:01.0905 0x1478 [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 19:02:01.0936 0x1478 gagp30kx - ok 19:02:01.0983 0x1478 [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys 19:02:02.0077 0x1478 gencounter - ok 19:02:02.0093 0x1478 [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn C:\Windows\System32\drivers\genericusbfn.sys 19:02:02.0171 0x1478 genericusbfn - ok 19:02:02.0202 0x1478 [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys 19:02:02.0265 0x1478 GPIOClx0101 - ok 19:02:02.0421 0x1478 [ B55458A83395A2CFD4E745E9EC4AB5F2, EAB06B089D8A7DBC9AE2A1C919B489911690D341013A5F8F906819C68431CA85 ] gpsvc C:\Windows\System32\gpsvc.dll 19:02:02.0546 0x1478 gpsvc - ok 19:02:02.0562 0x1478 [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv C:\Windows\system32\drivers\gpuenergydrv.sys 19:02:02.0608 0x1478 GpuEnergyDrv - ok 19:02:02.0640 0x1478 [ 0F93EBE9071A6BB1548BF0F816EEA24B, 79A99544C00F59996980D299BFACA0463D86158BFA51C8045CE4FF4951779A44 ] HdAudAddService C:\Windows\system32\DRIVERS\HdAudio.sys 19:02:02.0718 0x1478 HdAudAddService - ok 19:02:02.0733 0x1478 [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys 19:02:02.0780 0x1478 HDAudBus - ok 19:02:02.0812 0x1478 [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt C:\Windows\System32\drivers\HidBatt.sys 19:02:02.0858 0x1478 HidBatt - ok 19:02:02.0874 0x1478 [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth C:\Windows\System32\drivers\hidbth.sys 19:02:02.0905 0x1478 HidBth - ok 19:02:02.0921 0x1478 [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c C:\Windows\System32\drivers\hidi2c.sys 19:02:02.0968 0x1478 hidi2c - ok 19:02:02.0983 0x1478 [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt C:\Windows\System32\drivers\hidinterrupt.sys 19:02:03.0015 0x1478 hidinterrupt - ok 19:02:03.0015 0x1478 [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr C:\Windows\System32\drivers\hidir.sys 19:02:03.0062 0x1478 HidIr - ok 19:02:03.0093 0x1478 [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv C:\Windows\system32\hidserv.dll 19:02:03.0140 0x1478 hidserv - ok 19:02:03.0187 0x1478 [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb C:\Windows\System32\drivers\hidusb.sys 19:02:03.0233 0x1478 HidUsb - ok 19:02:03.0296 0x1478 [ 2FEF4D90C0CAED258C93CFF72A8FFD71, 56473D90E9FE52849067D080FD88B29C0BBE76E5266657E2ABD6366B7A4E9474 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 19:02:03.0343 0x1478 HomeGroupListener - ok 19:02:03.0405 0x1478 [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 19:02:03.0452 0x1478 HomeGroupProvider - ok 19:02:03.0468 0x1478 [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 19:02:03.0499 0x1478 HpSAMD - ok 19:02:03.0562 0x1478 [ A403DAE4B083EB96BC6CEDB47639B4F8, 6F5709CEA93789C075E4BE4041EC43C94910617DA4123DEE178E74E4A9B26708 ] HTTP C:\Windows\system32\drivers\HTTP.sys 19:02:03.0640 0x1478 HTTP - ok 19:02:03.0671 0x1478 [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 19:02:03.0733 0x1478 hwpolicy - ok 19:02:03.0733 0x1478 [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys 19:02:03.0780 0x1478 hyperkbd - ok 19:02:03.0796 0x1478 [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt C:\Windows\System32\drivers\i8042prt.sys 19:02:03.0843 0x1478 i8042prt - ok 19:02:03.0858 0x1478 [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c C:\Windows\System32\drivers\iai2c.sys 19:02:03.0890 0x1478 iai2c - ok 19:02:03.0905 0x1478 [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C C:\Windows\System32\drivers\iaLPSS2i_I2C.sys 19:02:03.0937 0x1478 iaLPSS2i_I2C - ok 19:02:03.0952 0x1478 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\Windows\System32\drivers\iaLPSSi_GPIO.sys 19:02:03.0983 0x1478 iaLPSSi_GPIO - ok 19:02:03.0999 0x1478 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\Windows\System32\drivers\iaLPSSi_I2C.sys 19:02:04.0030 0x1478 iaLPSSi_I2C - ok 19:02:04.0077 0x1478 [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV C:\Windows\system32\drivers\iaStorAV.sys 19:02:04.0155 0x1478 iaStorAV - ok 19:02:04.0171 0x1478 [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 19:02:04.0202 0x1478 iaStorV - ok 19:02:04.0233 0x1478 [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus C:\Windows\System32\drivers\ibbus.sys 19:02:04.0265 0x1478 ibbus - ok 19:02:04.0296 0x1478 [ 80BF2990E01E774D64F6E13F30661942, ADFEA2280D29F2C7B0A556C61709301D6327C288064FF5A4D29358403DF41DCE ] icssvc C:\Windows\System32\tetheringservice.dll 19:02:04.0327 0x1478 icssvc - ok 19:02:04.0343 0x1478 IEEtwCollectorService - ok 19:02:04.0577 0x1478 [ 79AE3CC82CA1563A4B392207997ACE7C, A1E4A1DA95CA2FA197EF5975657822F0F813F6C33DA38E1FA5A840194034D071 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 19:02:04.0765 0x1478 igfx - ok 19:02:04.0812 0x1478 [ 12F8D27ED8623DDDC09A549EDADCBAC9, D3A3F0588D9CAF1027D8BC14601E2A6AB7E5924A2C23C90D38A9E14538DB02A9 ] IKEEXT C:\Windows\System32\ikeext.dll 19:02:04.0905 0x1478 IKEEXT - ok 19:02:04.0937 0x1478 [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide C:\Windows\system32\drivers\intelide.sys 19:02:04.0983 0x1478 intelide - ok 19:02:04.0999 0x1478 [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep C:\Windows\system32\drivers\intelpep.sys 19:02:05.0046 0x1478 intelpep - ok 19:02:05.0093 0x1478 [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm C:\Windows\System32\drivers\intelppm.sys 19:02:05.0187 0x1478 intelppm - ok 19:02:05.0187 0x1478 [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos C:\Windows\system32\drivers\ioqos.sys 19:02:05.0265 0x1478 IoQos - ok 19:02:05.0265 0x1478 [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 19:02:05.0312 0x1478 IpFilterDriver - ok 19:02:05.0374 0x1478 [ 6E75B731A8A7EFED0821327B08DAB46D, A77B746447824BD3C68B82D7329B82D62098B2409F8AEE4738FA23CB1561E629 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 19:02:05.0452 0x1478 iphlpsvc - ok 19:02:05.0484 0x1478 [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys 19:02:05.0530 0x1478 IPMIDRV - ok 19:02:05.0530 0x1478 [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 19:02:05.0562 0x1478 IPNAT - ok 19:02:05.0593 0x1478 [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM C:\Windows\system32\drivers\irenum.sys 19:02:05.0671 0x1478 IRENUM - ok 19:02:05.0702 0x1478 [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp C:\Windows\system32\drivers\isapnp.sys 19:02:05.0718 0x1478 isapnp - ok 19:02:05.0734 0x1478 [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys 19:02:05.0765 0x1478 iScsiPrt - ok 19:02:05.0796 0x1478 [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys 19:02:05.0827 0x1478 kbdclass - ok 19:02:05.0874 0x1478 [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid C:\Windows\System32\drivers\kbdhid.sys 19:02:05.0937 0x1478 kbdhid - ok 19:02:05.0952 0x1478 [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic C:\Windows\System32\drivers\kdnic.sys 19:02:05.0984 0x1478 kdnic - ok 19:02:05.0999 0x1478 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] KeyIso C:\Windows\system32\lsass.exe 19:02:06.0030 0x1478 KeyIso - ok 19:02:06.0046 0x1478 [ 982C795DE20CED7AEDD2E7899B5D9BC1, 9F4E7536DB253CD83AA2AB89E9F3311714CD70F13AFD16F9B4D4CD86A70FC164 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 19:02:06.0109 0x1478 KSecDD - ok 19:02:06.0155 0x1478 [ 7D8B9214692C4D0F1646215D9984E19A, DC73503A8CA67F4E167DEA69AADDEA5F2D756E1C1F4FF42B6ECEA7E637BB80AB ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 19:02:06.0218 0x1478 KSecPkg - ok 19:02:06.0234 0x1478 [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 19:02:06.0296 0x1478 ksthunk - ok 19:02:06.0343 0x1478 [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm C:\Windows\system32\msdtckrm.dll 19:02:06.0405 0x1478 KtmRm - ok 19:02:06.0452 0x1478 [ 8BBB2B4429AF340481520C20C17FC5B6, 9E32815349195FC4B1BE213600FD407F2EAEEC8368289EB3E6B769125A739C08 ] LanmanServer C:\Windows\system32\srvsvc.dll 19:02:06.0499 0x1478 LanmanServer - ok 19:02:06.0515 0x1478 [ 1F5D48B1DA1B812BD2411CA44D75DD32, D1BDB8142CB13E8C6DD6F42E07C9D19BBBF6410D5122A04C01B34B95B442DD95 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 19:02:06.0562 0x1478 LanmanWorkstation - ok 19:02:06.0593 0x1478 [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc C:\Windows\System32\lfsvc.dll 19:02:06.0624 0x1478 lfsvc - ok 19:02:06.0655 0x1478 [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager C:\Windows\system32\LicenseManagerSvc.dll 19:02:06.0687 0x1478 LicenseManager - ok 19:02:06.0702 0x1478 [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio C:\Windows\system32\drivers\lltdio.sys 19:02:06.0780 0x1478 lltdio - ok 19:02:06.0812 0x1478 [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc C:\Windows\System32\lltdsvc.dll 19:02:06.0890 0x1478 lltdsvc - ok 19:02:06.0921 0x1478 [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts C:\Windows\System32\lmhsvc.dll 19:02:06.0984 0x1478 lmhosts - ok 19:02:07.0030 0x1478 [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 19:02:07.0093 0x1478 LSI_SAS - ok 19:02:07.0109 0x1478 [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i C:\Windows\system32\drivers\lsi_sas2i.sys 19:02:07.0155 0x1478 LSI_SAS2i - ok 19:02:07.0171 0x1478 [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i C:\Windows\system32\drivers\lsi_sas3i.sys 19:02:07.0234 0x1478 LSI_SAS3i - ok 19:02:07.0249 0x1478 [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys 19:02:07.0312 0x1478 LSI_SSS - ok 19:02:07.0390 0x1478 [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM C:\Windows\System32\lsm.dll 19:02:07.0452 0x1478 LSM - ok 19:02:07.0484 0x1478 [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv C:\Windows\system32\drivers\luafv.sys 19:02:07.0531 0x1478 luafv - ok 19:02:07.0546 0x1478 [ 88B38A7435DFA9B7E8F94F5D5FE999D2, FF4EBB6CE013D0EA62FEDA5FBBD1205D9A6F684E701F40039A95A4EF4145DC16 ] MapsBroker C:\Windows\System32\moshost.dll 19:02:07.0577 0x1478 MapsBroker - ok 19:02:07.0609 0x1478 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 19:02:07.0624 0x1478 MBAMProtector - ok 19:02:07.0781 0x1478 [ AB176B9E59C0435499D83047D84EDD59, 85B826A3972CE9AD885313B69B9C60328B850257667D0EB65DDE890D0BB06361 ] MBAMScheduler C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe 19:02:07.0827 0x1478 MBAMScheduler - ok 19:02:07.0890 0x1478 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe 19:02:07.0921 0x1478 MBAMService - ok 19:02:07.0952 0x1478 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys 19:02:08.0015 0x1478 MBAMSwissArmy - ok 19:02:08.0046 0x1478 [ 08DECFCB9BA97786165A69AB1015BC30, EDC8C8447B57BD412E2DEBCA9B5B1B58C19D40105DC7CE9520DE214081696B05 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys 19:02:08.0093 0x1478 MBAMWebAccessControl - ok 19:02:08.0156 0x1478 [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas C:\Windows\system32\drivers\megasas.sys 19:02:08.0218 0x1478 megasas - ok 19:02:08.0265 0x1478 [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr C:\Windows\system32\drivers\megasr.sys 19:02:08.0312 0x1478 megasr - ok 19:02:08.0359 0x1478 [ C7DFCC5470DBBE00114723A233701CF8, 8E00E8975BD3ABDD7F774E76FE33024EE09755DFC3C46F880E4EAA7F7D8393B6 ] MEIx64 C:\Windows\System32\drivers\TeeDriverW8x64.sys 19:02:08.0406 0x1478 MEIx64 - ok 19:02:08.0437 0x1478 [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\Windows\System32\MessagingService.dll 19:02:08.0468 0x1478 MessagingService - ok 19:02:08.0499 0x1478 [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus C:\Windows\System32\drivers\mlx4_bus.sys 19:02:08.0546 0x1478 mlx4_bus - ok 19:02:08.0562 0x1478 [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS C:\Windows\system32\drivers\mmcss.sys 19:02:08.0609 0x1478 MMCSS - ok 19:02:08.0640 0x1478 [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem C:\Windows\system32\drivers\modem.sys 19:02:08.0671 0x1478 Modem - ok 19:02:08.0687 0x1478 [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor C:\Windows\System32\drivers\monitor.sys 19:02:08.0718 0x1478 monitor - ok 19:02:08.0749 0x1478 [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass C:\Windows\System32\drivers\mouclass.sys 19:02:08.0765 0x1478 mouclass - ok 19:02:08.0812 0x1478 [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid C:\Windows\System32\drivers\mouhid.sys 19:02:08.0843 0x1478 mouhid - ok 19:02:08.0859 0x1478 [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 19:02:08.0874 0x1478 mountmgr - ok 19:02:08.0937 0x1478 [ EB4B5C8AB9DA5585CCC975CD3D072115, BEED5B7478F92C9FB1BBB62FFCEB5321A5C12A7C1AA9B20151BF22064589CD46 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 19:02:08.0968 0x1478 MozillaMaintenance - ok 19:02:08.0984 0x1478 [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 19:02:09.0046 0x1478 mpsdrv - ok 19:02:09.0140 0x1478 [ 3B3906F069DB567C3D092F195FEA5F87, 1EAD704AD8E81D083FE3D458B529F8ECBE99569EFD20F7B520339F054E2F6515 ] MpsSvc C:\Windows\system32\mpssvc.dll 19:02:09.0218 0x1478 MpsSvc - ok 19:02:09.0281 0x1478 [ 37C9EC0398BFC22C616711E41AE157D5, C8DD6B6B47513696CD4BD376C5D9F82C0F52F5A351FFAFE149E3B13C4684D40E ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 19:02:09.0390 0x1478 MRxDAV - ok 19:02:09.0452 0x1478 [ 61F9F27A8C3D7BCD287FE98A440421CE, 773208951BD0B8C0B9510F4C317484D5FCF36D09310D4E20F2BDB85D61088BA5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 19:02:09.0499 0x1478 mrxsmb - ok 19:02:09.0515 0x1478 [ CCAD845F4D21D0E0E0468205EE865473, 8F93B61F407BCE5910A7A9F01F8A51FDB7A3C4F03E59C144C1D4FD974D10C2D4 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 19:02:09.0562 0x1478 mrxsmb10 - ok 19:02:09.0577 0x1478 [ 0F47A6C09F0A7FB5513D322A2B9BE4EC, 00A17CB55D232E11F3D24D0B43FE4FA9E55F7EF5E5607B26ED84C13108AAC4FA ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 19:02:09.0624 0x1478 mrxsmb20 - ok 19:02:09.0656 0x1478 [ A934DF064C503A31683DD7EECDBD327A, 3ED943A2CFE9BB00898A4FCE08D3A5C814FE6E546FC10E9F30E6C2619B1AD162 ] MsBridge C:\Windows\system32\drivers\bridge.sys 19:02:09.0702 0x1478 MsBridge - ok 19:02:09.0749 0x1478 [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC C:\Windows\System32\msdtc.exe 19:02:09.0781 0x1478 MSDTC - ok 19:02:09.0796 0x1478 [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs C:\Windows\system32\drivers\Msfs.sys 19:02:09.0859 0x1478 Msfs - ok 19:02:09.0890 0x1478 [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys 19:02:09.0953 0x1478 msgpiowin32 - ok 19:02:09.0984 0x1478 [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 19:02:10.0031 0x1478 mshidkmdf - ok 19:02:10.0062 0x1478 [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys 19:02:10.0109 0x1478 mshidumdf - ok 19:02:10.0124 0x1478 [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 19:02:10.0156 0x1478 msisadrv - ok 19:02:10.0187 0x1478 [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 19:02:10.0249 0x1478 MSiSCSI - ok 19:02:10.0265 0x1478 msiserver - ok 19:02:10.0296 0x1478 [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV C:\Windows\system32\DRIVERS\MSKSSRV.sys 19:02:10.0359 0x1478 MSKSSRV - ok 19:02:10.0390 0x1478 [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp C:\Windows\system32\drivers\mslldp.sys 19:02:10.0453 0x1478 MsLldp - ok 19:02:10.0484 0x1478 [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK C:\Windows\system32\DRIVERS\MSPCLOCK.sys 19:02:10.0546 0x1478 MSPCLOCK - ok 19:02:10.0562 0x1478 [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM C:\Windows\system32\DRIVERS\MSPQM.sys 19:02:10.0624 0x1478 MSPQM - ok 19:02:10.0671 0x1478 [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 19:02:10.0734 0x1478 MsRPC - ok 19:02:10.0749 0x1478 [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios C:\Windows\System32\drivers\mssmbios.sys 19:02:10.0812 0x1478 mssmbios - ok 19:02:10.0828 0x1478 [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE C:\Windows\system32\DRIVERS\MSTEE.sys 19:02:10.0890 0x1478 MSTEE - ok 19:02:10.0890 0x1478 [ 4FA0483896FC16583851EFB733FCB083, BB59243ABE32FBE92EC1B04D24239BE2DF7C2354A407C2EFF97623F07DCBDA35 ] MTConfig C:\Windows\System32\drivers\MTConfig.sys 19:02:10.0937 0x1478 MTConfig - ok 19:02:10.0968 0x1478 [ 60F88248608315E13391C2F1C3B4473F, 99E8B74118A01FC281A1C6B323EFD1A8EA1997B81A013442205066F55327D555 ] Mup C:\Windows\system32\Drivers\mup.sys 19:02:10.0999 0x1478 Mup - ok 19:02:11.0031 0x1478 [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis C:\Windows\system32\drivers\mvumis.sys 19:02:11.0062 0x1478 mvumis - ok 19:02:11.0124 0x1478 [ 536A0806CE2061A2157E65D4D8ABF30C, F9893F66505E3F748365CD4625B34357531804BDFE33E57285C0106C03F7916C ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 19:02:11.0187 0x1478 NativeWifiP - ok 19:02:11.0234 0x1478 [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc C:\Windows\System32\ncasvc.dll 19:02:11.0281 0x1478 NcaSvc - ok 19:02:11.0312 0x1478 [ 7467BD76D6ED5981E6C3DBFEB50F0F4D, 237E1C2E15D5F3BAC49B09E1CD0EAE56A6998AE1FF560A4F7A7EFFEB46884798 ] NcbService C:\Windows\System32\ncbservice.dll 19:02:11.0359 0x1478 NcbService - ok 19:02:11.0359 0x1478 [ 476466DC3AB2327E2DBFAEC11798E2EE, 9ACD74720664CF3F239601DF0BE80AC443AF0FBF666CBB8509169364FB22B95D ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll 19:02:11.0406 0x1478 NcdAutoSetup - ok 19:02:11.0453 0x1478 [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr C:\Windows\System32\drivers\ndfltr.sys 19:02:11.0515 0x1478 ndfltr - ok 19:02:11.0578 0x1478 [ AFAECF904F1C343EBD50F91BC8D0DBE8, FABAE70F62895708415B8E176A880D2D20D46D9A14C3D41D371B905CE4D64BA0 ] NDIS C:\Windows\system32\drivers\ndis.sys 19:02:11.0656 0x1478 NDIS - ok 19:02:11.0671 0x1478 [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap C:\Windows\system32\drivers\ndiscap.sys 19:02:11.0749 0x1478 NdisCap - ok 19:02:11.0749 0x1478 [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform C:\Windows\system32\drivers\NdisImPlatform.sys 19:02:11.0812 0x1478 NdisImPlatform - ok 19:02:11.0828 0x1478 [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 19:02:11.0906 0x1478 NdisTapi - ok 19:02:11.0921 0x1478 [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio C:\Windows\system32\drivers\ndisuio.sys 19:02:11.0984 0x1478 Ndisuio - ok 19:02:11.0999 0x1478 [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus C:\Windows\System32\drivers\NdisVirtualBus.sys 19:02:12.0031 0x1478 NdisVirtualBus - ok 19:02:12.0046 0x1478 [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] NdisWan C:\Windows\System32\drivers\ndiswan.sys 19:02:12.0093 0x1478 NdisWan - ok 19:02:12.0109 0x1478 [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] ndiswanlegacy C:\Windows\system32\DRIVERS\ndiswan.sys 19:02:12.0140 0x1478 ndiswanlegacy - ok 19:02:12.0156 0x1478 [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy C:\Windows\system32\DRIVERS\NDProxy.sys 19:02:12.0203 0x1478 ndproxy - ok 19:02:12.0218 0x1478 [ D358DF634F52247CB43F0781218F4D6E, D375E9E681551467FC5F7AB2AC053C9F22AAC541C0BCBA57090211F45009342C ] Ndu C:\Windows\system32\drivers\Ndu.sys 19:02:12.0249 0x1478 Ndu - ok 19:02:12.0265 0x1478 [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS C:\Windows\system32\drivers\netbios.sys 19:02:12.0281 0x1478 NetBIOS - ok 19:02:12.0312 0x1478 [ F51C02D992A8D6BC5EC4D990F227D4C7, DBBDA422BFA82219403689637BE8D6B0D0A893895143E807FA5A007C166454CB ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 19:02:12.0359 0x1478 NetBT - ok 19:02:12.0374 0x1478 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] Netlogon C:\Windows\system32\lsass.exe 19:02:12.0390 0x1478 Netlogon - ok 19:02:12.0453 0x1478 [ 7FD4C3D32DAE890608F44074A3437CD8, 5B7D9E9AEE26896B818F3C5DBE4C96A33D43CE2CF7716B95AAB7203611C03BFE ] Netman C:\Windows\System32\netman.dll 19:02:12.0531 0x1478 Netman - ok 19:02:12.0593 0x1478 [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm C:\Windows\System32\netprofmsvc.dll 19:02:12.0703 0x1478 netprofm - ok 19:02:12.0734 0x1478 [ 01C759FD50DFD46E30CC56B2B672B1A7, 88F46C89DCE1869D9932E809A24718B50C3B0161A1DD63DED899C0AFA8C7CFF5 ] NetSetupSvc C:\Windows\System32\NetSetupSvc.dll 19:02:12.0781 0x1478 NetSetupSvc - ok 19:02:12.0875 0x1478 [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:02:12.0921 0x1478 NetTcpPortSharing - ok 19:02:12.0953 0x1478 [ 91B32D7036700BEED5343E1F6A7122CC, 8123CA398A79F0E69126F962AA29C2464FAB50182E961CB6A6ADB6CEA09A6732 ] NgcCtnrSvc C:\Windows\System32\NgcCtnrSvc.dll 19:02:13.0000 0x1478 NgcCtnrSvc - ok 19:02:13.0031 0x1478 [ 4547118EADA9FDBB054A211CD01866BB, 51656BDAD78B4CC452B2AE06061247BECD07307BB31B9D6AA615917EC97342E0 ] NgcSvc C:\Windows\system32\ngcsvc.dll 19:02:13.0078 0x1478 NgcSvc - ok 19:02:13.0156 0x1478 [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc C:\Windows\System32\nlasvc.dll 19:02:13.0218 0x1478 NlaSvc - ok 19:02:13.0265 0x1478 [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs C:\Windows\system32\drivers\Npfs.sys 19:02:13.0281 0x1478 Npfs - ok 19:02:13.0312 0x1478 [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys 19:02:13.0328 0x1478 npsvctrig - ok 19:02:13.0328 0x1478 [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi C:\Windows\system32\nsisvc.dll 19:02:13.0359 0x1478 nsi - ok 19:02:13.0359 0x1478 [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 19:02:13.0390 0x1478 nsiproxy - ok 19:02:13.0515 0x1478 [ EFEFC245B884B1BE0401931398DCD707, 43A7BDB9BF523791EC41E76F51E7DC56EFC55CCDA0D130ECFCD9990C43D67587 ] NTFS C:\Windows\system32\drivers\NTFS.sys 19:02:13.0625 0x1478 NTFS - ok 19:02:13.0687 0x1478 [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null C:\Windows\system32\drivers\Null.sys 19:02:13.0765 0x1478 Null - ok 19:02:13.0812 0x1478 [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid C:\Windows\system32\drivers\nvraid.sys 19:02:13.0875 0x1478 nvraid - ok 19:02:13.0890 0x1478 [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor C:\Windows\system32\drivers\nvstor.sys 19:02:13.0937 0x1478 nvstor - ok 19:02:13.0953 0x1478 [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 19:02:13.0984 0x1478 nv_agp - ok 19:02:14.0015 0x1478 [ 7F3A0D052B8E00E730316210B1DD092F, 14BD026EA759F6C81ED6B4DBB04E0584B7F6456725503FC73CD4347B7743005F ] OneSyncSvc C:\Windows\System32\APHostService.dll 19:02:14.0140 0x1478 OneSyncSvc - ok 19:02:14.0203 0x1478 [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 19:02:14.0328 0x1478 p2pimsvc - ok 19:02:14.0406 0x1478 [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc C:\Windows\system32\p2psvc.dll 19:02:14.0484 0x1478 p2psvc - ok 19:02:14.0500 0x1478 [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport C:\Windows\System32\drivers\parport.sys 19:02:14.0546 0x1478 Parport - ok 19:02:14.0578 0x1478 [ 24AC0FD10325FBC2303B29A5F237AEB0, D94B26A36EBE4EFE8EA270FA6600811206830480BE953809F74FAB80628DF879 ] partmgr C:\Windows\system32\drivers\partmgr.sys 19:02:14.0609 0x1478 partmgr - ok 19:02:14.0656 0x1478 [ 0ECA2ADD5FBCE73183A68935C71B40B7, 08CC5F2F10D1DD1A1396CC29196314003491D3AF3DE59CADB281F252577F1860 ] PcaSvc C:\Windows\System32\pcasvc.dll 19:02:14.0687 0x1478 PcaSvc - ok 19:02:14.0718 0x1478 [ 1D4E995955BDAE781C46CB97AE1CFB58, FF7475F19782CA253AA839DDB86E5AC20C5785D5CC1DD57D9FECBE4F5A5C0BFB ] pci C:\Windows\system32\drivers\pci.sys 19:02:14.0750 0x1478 pci - ok 19:02:14.0781 0x1478 [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide C:\Windows\system32\drivers\pciide.sys 19:02:14.0828 0x1478 pciide - ok 19:02:14.0843 0x1478 [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 19:02:14.0906 0x1478 pcmcia - ok 19:02:14.0937 0x1478 [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw C:\Windows\system32\drivers\pcw.sys 19:02:15.0000 0x1478 pcw - ok 19:02:15.0015 0x1478 [ 48F3A3222CF340FE31535CB6D49C6D6F, 5F8904871219FA6C1BD74747583855B0FBCE42F340A3BE10270D8D3F02766E9D ] pdc C:\Windows\system32\drivers\pdc.sys 19:02:15.0093 0x1478 pdc - ok 19:02:15.0156 0x1478 [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 19:02:15.0296 0x1478 PEAUTH - ok 19:02:15.0437 0x1478 [ C7D210982B6C8454E52191D0DCF6DC52, D53D575CD9A0AB7EA94E7D1B9730ABE0A582CA3460AEAC4680D01034D69D3949 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 19:02:15.0547 0x1478 PeerDistSvc - ok 19:02:15.0578 0x1478 [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i C:\Windows\system32\drivers\percsas2i.sys 19:02:15.0593 0x1478 percsas2i - ok 19:02:15.0625 0x1478 [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i C:\Windows\system32\drivers\percsas3i.sys 19:02:15.0640 0x1478 percsas3i - ok 19:02:15.0765 0x1478 [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost C:\Windows\SysWow64\perfhost.exe 19:02:15.0812 0x1478 PerfHost - ok 19:02:15.0953 0x1478 [ 8C5737B889752EC37B49D730C24FB80B, 0101AEBE3870B59BE69DBF20FDD307BEDB10A6DB21750E57B9BD3B1961386979 ] PhoneSvc C:\Windows\System32\PhoneService.dll 19:02:16.0031 0x1478 PhoneSvc - ok 19:02:16.0062 0x1478 [ 940BD7A32391F325A1A4285F91FAF7AC, A0FE4B8705B268E1978D9C66EB39B3DBBCB2A70F02F380C7062FE72E92DDF964 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll 19:02:16.0125 0x1478 PimIndexMaintenanceSvc - ok 19:02:16.0218 0x1478 [ A546F72EFFE5CBBC98003A0CA19DA0F8, 89AE396676A37D851F46427E421E8E8ED5B4BADC33023F1E215CC352A4110F44 ] pla C:\Windows\system32\pla.dll 19:02:16.0297 0x1478 pla - ok 19:02:16.0328 0x1478 [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 19:02:16.0359 0x1478 PlugPlay - ok 19:02:16.0375 0x1478 [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 19:02:16.0406 0x1478 PNRPAutoReg - ok 19:02:16.0453 0x1478 [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 19:02:16.0547 0x1478 PNRPsvc - ok 19:02:16.0609 0x1478 [ 5A91C28F99043215121499257468C4BD, 816D2AEBA29B8A050747E01CE11EB12A05C1CDDF91835C44BBB6A7B9D348B15A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 19:02:16.0656 0x1478 PolicyAgent - ok 19:02:16.0703 0x1478 [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power C:\Windows\system32\umpo.dll 19:02:16.0718 0x1478 Power - ok 19:02:16.0765 0x1478 [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport C:\Windows\System32\drivers\raspptp.sys 19:02:16.0828 0x1478 PptpMiniport - ok 19:02:17.0109 0x1478 [ 959F94AD1255BC749884EDDD14EC29C4, 2CD6DA9778EA36FA0B4080F6DB1C634712238E014E47546403CD3CDB35A1DCA8 ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll 19:02:17.0281 0x1478 PrintNotify - ok 19:02:17.0297 0x1478 [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor C:\Windows\System32\drivers\processr.sys 19:02:17.0406 0x1478 Processor - ok 19:02:17.0453 0x1478 [ A08AAC62EF7A1E291B3E895B5864BB86, 340E6648F9A5F4B7543FDEC5BDAFBDA3DE319B8F998FF2EF60D02EE5EF3D56CB ] ProfSvc C:\Windows\system32\profsvc.dll 19:02:17.0531 0x1478 ProfSvc - ok 19:02:17.0562 0x1478 [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched C:\Windows\system32\drivers\pacer.sys 19:02:17.0625 0x1478 Psched - ok 19:02:17.0672 0x1478 [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE C:\Windows\system32\qwave.dll 19:02:17.0718 0x1478 QWAVE - ok 19:02:17.0734 0x1478 [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 19:02:17.0797 0x1478 QWAVEdrv - ok 19:02:17.0812 0x1478 [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 19:02:17.0875 0x1478 RasAcd - ok 19:02:17.0906 0x1478 [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn C:\Windows\System32\drivers\AgileVpn.sys 19:02:17.0984 0x1478 RasAgileVpn - ok 19:02:18.0000 0x1478 [ 2976970887157CBB05747CBCD0793354, 43499D90B6340BD679CA51FDAB4ABCD0CF7E995367876716B7879422D206D677 ] RasAuto C:\Windows\System32\rasauto.dll 19:02:18.0031 0x1478 RasAuto - ok 19:02:18.0047 0x1478 [ 381B8F2311A0375676B635EA5E7C8AB0, F64697F75894844E72F260E9E88CCFE6B882BC89F6124DCA187771A29C3EF929 ] Rasl2tp C:\Windows\System32\drivers\rasl2tp.sys 19:02:18.0125 0x1478 Rasl2tp - ok 19:02:18.0203 0x1478 [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan C:\Windows\System32\rasmans.dll 19:02:18.0281 0x1478 RasMan - ok 19:02:18.0297 0x1478 [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 19:02:18.0344 0x1478 RasPppoe - ok 19:02:18.0375 0x1478 [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp C:\Windows\System32\drivers\rassstp.sys 19:02:18.0437 0x1478 RasSstp - ok 19:02:18.0469 0x1478 [ 2B648363E4C5E34B469C58596F377DD9, 30F82770468BBA562CEA0E9E39B24ACEFBE022343D0180C82E2ACE8957B73E44 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 19:02:18.0547 0x1478 rdbss - ok 19:02:18.0562 0x1478 [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus C:\Windows\System32\drivers\rdpbus.sys 19:02:18.0609 0x1478 rdpbus - ok 19:02:18.0640 0x1478 [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 19:02:18.0703 0x1478 RDPDR - ok 19:02:18.0719 0x1478 [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 19:02:18.0765 0x1478 RdpVideoMiniport - ok 19:02:18.0781 0x1478 [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 19:02:18.0828 0x1478 rdyboost - ok 19:02:18.0906 0x1478 [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1 C:\Windows\system32\drivers\ReFSv1.sys 19:02:18.0984 0x1478 ReFSv1 - ok 19:02:19.0031 0x1478 [ 8355BCA85B0928382DFCDD02FCD1681A, F306F038DA09C8D2095C311818E2F991B55BCD96B40B95D2A53A60EA6AC37014 ] RemoteAccess C:\Windows\System32\mprdim.dll 19:02:19.0078 0x1478 RemoteAccess - ok 19:02:19.0094 0x1478 [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry C:\Windows\system32\regsvc.dll 19:02:19.0140 0x1478 RemoteRegistry - ok 19:02:19.0219 0x1478 [ AD43141CE6D5074DA1D28B5BCD4E4507, C1A9AA856DD4FEE00BBA329C150E0CBCD1CE13ED0BB7B4AC9B152321CD854212 ] RetailDemo C:\Windows\system32\RDXService.dll 19:02:19.0312 0x1478 RetailDemo - ok 19:02:19.0375 0x1478 [ 60BFD9EE962C87747A0EB648634281ED, 3E8610F597405944BFD42EE8C397818850BC7D97ACC14AC43B6E3632A1FB916C ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys 19:02:19.0469 0x1478 RFCOMM - ok 19:02:19.0500 0x1478 [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 19:02:19.0562 0x1478 RpcEptMapper - ok 19:02:19.0594 0x1478 [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator C:\Windows\system32\locator.exe 19:02:19.0640 0x1478 RpcLocator - ok 19:02:19.0734 0x1478 [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] RpcSs C:\Windows\system32\rpcss.dll 19:02:19.0844 0x1478 RpcSs - ok 19:02:19.0859 0x1478 [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr C:\Windows\system32\drivers\rspndr.sys 19:02:19.0906 0x1478 rspndr - ok 19:02:19.0953 0x1478 [ FBEFF38DE03450E03E6CD9E8E37A8C74, C1C0876785DB4366D67792A3AFA219FC933FC1894AF93D07B0016BBCC81A5886 ] rt640x64 C:\Windows\System32\drivers\rt640x64.sys 19:02:20.0062 0x1478 rt640x64 - ok 19:02:20.0094 0x1478 [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap C:\Windows\System32\drivers\vms3cap.sys 19:02:20.0125 0x1478 s3cap - ok 19:02:20.0172 0x1478 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] SamSs C:\Windows\system32\lsass.exe 19:02:20.0203 0x1478 SamSs - ok 19:02:20.0250 0x1478 [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 19:02:20.0297 0x1478 sbp2port - ok 19:02:20.0344 0x1478 [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr C:\Windows\System32\SCardSvr.dll 19:02:20.0453 0x1478 SCardSvr - ok 19:02:20.0469 0x1478 [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum C:\Windows\System32\ScDeviceEnum.dll 19:02:20.0515 0x1478 ScDeviceEnum - ok 19:02:20.0547 0x1478 [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 19:02:20.0625 0x1478 scfilter - ok 19:02:20.0719 0x1478 [ 5A459E0585FF3A980D10604B6D4BA03D, 3DF9CB96258A44458DF98EA4C6D57342D1207B7BFB94174461B347BE3B5CA317 ] Schedule C:\Windows\system32\schedsvc.dll 19:02:20.0844 0x1478 Schedule - ok 19:02:20.0875 0x1478 [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc C:\Windows\System32\certprop.dll 19:02:20.0906 0x1478 SCPolicySvc - ok 19:02:20.0953 0x1478 [ E1137E39C3BB3EF9AF2243745D901D60, 0BE86E4E48DA6D25AF0E71F09E55A5C4E525C61831EDC5135DEB240CCD02335D ] sdbus C:\Windows\System32\drivers\sdbus.sys 19:02:21.0031 0x1478 sdbus - ok 19:02:21.0062 0x1478 [ 811EC0B1221402FCED0BA37E112BF627, 366EB8AF04C603BED6CF53652CC937099B247D5DD8C58D699D0D8DA22F8FDD51 ] SDRSVC C:\Windows\System32\SDRSVC.dll 19:02:21.0141 0x1478 SDRSVC - ok 19:02:21.0187 0x1478 [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor C:\Windows\System32\drivers\sdstor.sys 19:02:21.0266 0x1478 sdstor - ok 19:02:21.0297 0x1478 [ 286450F698EBD81A8AC1B22CF6BABF11, ED05C2723FCD399FD085AE7AB1178D24F9745A4F31DD711DE896D15412B82BA2 ] seclogon C:\Windows\system32\seclogon.dll 19:02:21.0359 0x1478 seclogon - ok 19:02:21.0391 0x1478 [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS C:\Windows\System32\sens.dll 19:02:21.0484 0x1478 SENS - ok 19:02:21.0594 0x1478 [ D14DD7D766664F880FECF44CE6017966, ECF966E3ACF4EBD5A3259468A076619A539E35F1B97AB6A98FBD7882F1FBBBAB ] SensorDataService C:\Windows\System32\SensorDataService.exe 19:02:21.0766 0x1478 SensorDataService - ok 19:02:21.0812 0x1478 [ A74C62AE99A015CD6275F0D8D8843886, DF08E0BB1160E054C6B000BC5F62DEF77C6D9E4B5679AD013C313BA14207B589 ] SensorService C:\Windows\system32\SensorService.dll 19:02:21.0906 0x1478 SensorService - ok 19:02:21.0937 0x1478 [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc C:\Windows\system32\sensrsvc.dll 19:02:22.0031 0x1478 SensrSvc - ok 19:02:22.0078 0x1478 [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx C:\Windows\system32\drivers\SerCx.sys 19:02:22.0125 0x1478 SerCx - ok 19:02:22.0141 0x1478 [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2 C:\Windows\system32\drivers\SerCx2.sys 19:02:22.0187 0x1478 SerCx2 - ok 19:02:22.0203 0x1478 [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum C:\Windows\System32\drivers\serenum.sys 19:02:22.0266 0x1478 Serenum - ok 19:02:22.0312 0x1478 [ 88D58E1DAA6C5062DD3A26273106961F, D1E2FF37C888245BD0BABCD7C6B76AD5A87415B68FEFE37B5FA29AE3342AE50B ] Serial C:\Windows\System32\drivers\serial.sys 19:02:22.0406 0x1478 Serial - ok 19:02:22.0406 0x1478 [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse C:\Windows\System32\drivers\sermouse.sys 19:02:22.0500 0x1478 sermouse - ok 19:02:22.0562 0x1478 [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv C:\Windows\system32\sessenv.dll 19:02:22.0625 0x1478 SessionEnv - ok 19:02:22.0625 0x1478 [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys 19:02:22.0672 0x1478 sfloppy - ok 19:02:22.0719 0x1478 [ 2C7B006EB0B5479ED389D0CA5DE6AB83, 2E7C6E3E99A2668CB361A31567A4DB81021530E78213B39983D14197DB72E43C ] SharedAccess C:\Windows\System32\ipnathlp.dll 19:02:22.0781 0x1478 SharedAccess - ok 19:02:22.0828 0x1478 [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\Windows\System32\shsvcs.dll 19:02:22.0891 0x1478 ShellHWDetection - ok 19:02:22.0938 0x1478 [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 19:02:22.0969 0x1478 SiSRaid2 - ok 19:02:22.0984 0x1478 [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 19:02:23.0016 0x1478 SiSRaid4 - ok 19:02:23.0047 0x17f8 Object required for P2P: [ 21144F53F79975801AB9A9A027707A85 ] avast! Firewall 19:02:23.0047 0x1478 [ 8A6571231D93C08434A56E19E33A35CB, 78A12B58D129D5B2017C9A94734656B9F1ED41345DF1D01F82702D4D95C1BE3F ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys 19:02:23.0062 0x1478 SmbDrvI - ok 19:02:23.0109 0x1478 [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost C:\Windows\System32\smphost.dll 19:02:23.0188 0x1478 smphost - ok 19:02:23.0250 0x1478 [ 0BA53B01A02848A1545E2A743FF17B2F, ADAD55B9E0172BD7FBA92C5CD4870419FE9EF16F907DA1EEF2A9AE6492DE1909 ] SmsRouter C:\Windows\system32\SmsRouterSvc.dll 19:02:23.0344 0x1478 SmsRouter - ok 19:02:23.0391 0x1478 [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP C:\Windows\System32\snmptrap.exe 19:02:23.0453 0x1478 SNMPTRAP - ok 19:02:23.0516 0x1478 [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport C:\Windows\system32\drivers\spaceport.sys 19:02:23.0594 0x1478 spaceport - ok 19:02:23.0609 0x1478 [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx C:\Windows\system32\drivers\SpbCx.sys 19:02:23.0625 0x1478 SpbCx - ok 19:02:23.0703 0x1478 [ DC520253EC32B515E7792DB05DB43EB2, 8A614286522CA637EF0D58F79143146D5FB40DCD0CA1333752989BCD51DE00C0 ] Spooler C:\Windows\System32\spoolsv.exe 19:02:23.0781 0x1478 Spooler - ok 19:02:24.0031 0x1478 [ 7C58AFEC26E9F7730A8AA7FD40225937, 546EAD8889F2A1BB6DCCB7781976B975F34DA1C9047F95FEAA52CF38EC60C6DD ] sppsvc C:\Windows\system32\sppsvc.exe 19:02:24.0266 0x1478 sppsvc - ok 19:02:24.0281 0x1478 [ ACC1709EC7FE6EB8999DBC91C50C2B34, 83ABF51751A264291C53A32B86239A607361E56CB045CD2CBE6E41DBB8A01F54 ] srv C:\Windows\system32\DRIVERS\srv.sys 19:02:24.0328 0x1478 srv - ok 19:02:24.0344 0x1478 [ AFBCFC946FAE7483E27BD316D03F94A5, CC9478EA717E85C38304957E923997821DFE2A995D7C8DF98C15267D952BEFBE ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 19:02:24.0422 0x1478 srv2 - ok 19:02:24.0453 0x1478 [ 107C1EBE79710E4A759449BD6604245A, 963D693F4E61EDC7B3AA9006CC274D56E577CE0035A61DDB2A6DE72116D5C52B ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 19:02:24.0516 0x1478 srvnet - ok 19:02:24.0563 0x1478 [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 19:02:24.0625 0x1478 SSDPSRV - ok 19:02:24.0672 0x1478 [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc C:\Windows\system32\sstpsvc.dll 19:02:24.0750 0x1478 SstpSvc - ok 19:02:24.0906 0x1478 [ 58863C57E4598C4F9DA967C5C36CFA5D, BB34FBC324E84E05128258CE3755241ECB63F7F2AE7F96716AC373931FAF92A8 ] StateRepository C:\Windows\system32\windows.staterepository.dll 19:02:25.0031 0x1478 StateRepository - ok 19:02:25.0047 0x1478 [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor C:\Windows\system32\drivers\stexstor.sys 19:02:25.0078 0x1478 stexstor - ok 19:02:25.0109 0x1478 [ 75476CAA8FA0A4E573948CDE8C7F0304, 68C4405CACA77AEED71761875A9AF60BCFBDD39E356BEA1BA8226E099BAA5FA4 ] stisvc C:\Windows\System32\wiaservc.dll 19:02:25.0156 0x1478 stisvc - ok 19:02:25.0172 0x1478 [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci C:\Windows\system32\drivers\storahci.sys 19:02:25.0203 0x1478 storahci - ok 19:02:25.0250 0x1478 [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 19:02:25.0297 0x1478 storflt - ok 19:02:25.0313 0x1478 [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme C:\Windows\system32\drivers\stornvme.sys 19:02:25.0344 0x1478 stornvme - ok 19:02:25.0391 0x1478 [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt C:\Windows\system32\drivers\storqosflt.sys 19:02:25.0453 0x1478 storqosflt - ok 19:02:25.0516 0x17f8 Object send P2P result: true 19:02:25.0531 0x1478 [ B1305CDD98D5FC49863279D4B51DB510, 4B745E8D14591CA69429CA579467B9528B94C54EBD2FCFD446000C9C1BCB3B07 ] StorSvc C:\Windows\system32\storsvc.dll 19:02:25.0547 0x17f8 Object required for P2P: [ A403DAE4B083EB96BC6CEDB47639B4F8 ] HTTP 19:02:25.0594 0x1478 StorSvc - ok 19:02:25.0609 0x1478 [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs C:\Windows\system32\drivers\storufs.sys 19:02:25.0625 0x1478 storufs - ok 19:02:25.0641 0x1478 [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc C:\Windows\system32\drivers\storvsc.sys 19:02:25.0656 0x1478 storvsc - ok 19:02:25.0703 0x1478 [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc C:\Windows\system32\svsvc.dll 19:02:25.0766 0x1478 svsvc - ok 19:02:25.0781 0x1478 [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum C:\Windows\System32\drivers\swenum.sys 19:02:25.0828 0x1478 swenum - ok 19:02:25.0875 0x1478 [ 22E539A9B96C66A713583EC017562616, 210DA61DFC7AA9AD23277D9CC0239B781F4EABD322D0803AEC9434D68B81FABD ] swprv C:\Windows\System32\swprv.dll 19:02:25.0953 0x1478 swprv - ok 19:02:25.0969 0x1478 [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc C:\Windows\System32\drivers\Synth3dVsc.sys 19:02:26.0047 0x1478 Synth3dVsc - ok 19:02:26.0125 0x1478 [ 7DC2B34FB6F1798F2D13453E0321D025, 60EF12A8824384DD88D9C5D188E8FB137F0F85A63C06AAF720CB2D616EB847F4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 19:02:26.0156 0x1478 SynTP - ok 19:02:26.0203 0x1478 [ 6FBDBC24B1642868E041463795CBFA44, E9FA0DB094E7B2129ABD325BC91A48D6646380D6AA97BE6233C220E0C98637AF ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe 19:02:26.0219 0x1478 SynTPEnhService - ok 19:02:26.0328 0x1478 [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain C:\Windows\system32\sysmain.dll 19:02:26.0406 0x1478 SysMain - ok 19:02:26.0438 0x1478 [ AF2C8D7C1D4DCFD5C31501F009DF42B7, 3DDF9353F014EE99B031BBC969620CA07647FBB8D78EB4697C8D633021B46B11 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll 19:02:26.0516 0x1478 SystemEventsBroker - ok 19:02:26.0578 0x1478 [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\Windows\System32\TabSvc.dll 19:02:26.0610 0x1478 TabletInputService - ok 19:02:26.0641 0x1478 [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv C:\Windows\System32\tapisrv.dll 19:02:26.0672 0x1478 TapiSrv - ok 19:02:26.0844 0x1478 [ 892F30506DCCF230C5A57019C1D8D31B, 52C83A963E2D05770B6A281E8E559C8203E102D6B4C9C37801B1F58CB4B92D2F ] Tcpip C:\Windows\system32\drivers\tcpip.sys 19:02:26.0969 0x1478 Tcpip - ok 19:02:27.0094 0x1478 [ 892F30506DCCF230C5A57019C1D8D31B, 52C83A963E2D05770B6A281E8E559C8203E102D6B4C9C37801B1F58CB4B92D2F ] Tcpip6 C:\Windows\system32\drivers\tcpip.sys 19:02:27.0219 0x1478 Tcpip6 - ok 19:02:27.0250 0x1478 [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 19:02:27.0281 0x1478 tcpipreg - ok 19:02:27.0313 0x1478 [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 19:02:27.0344 0x1478 tdx - ok 19:02:27.0360 0x1478 [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt C:\Windows\System32\drivers\terminpt.sys 19:02:27.0391 0x1478 terminpt - ok 19:02:27.0531 0x1478 [ 14307D4801C8CEF0A615907C09E886B3, C7F34C294D70DE689F673E0B5E9253B27EFEBBE6FA38B68B3B0B0374A896407E ] TermService C:\Windows\System32\termsrv.dll 19:02:27.0641 0x1478 TermService - ok 19:02:27.0656 0x1478 [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes C:\Windows\system32\themeservice.dll 19:02:27.0703 0x1478 Themes - ok 19:02:27.0766 0x1478 [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\Windows\system32\TieringEngineService.exe 19:02:27.0844 0x1478 TieringEngineService - ok 19:02:27.0875 0x1478 [ FC971E1D1B5900C231591A7720FCD8B8, DF58C350977019E4A8F381FB35702E9BEA89F6A8C6BF36C56376D36BC8FE630F ] tiledatamodelsvc C:\Windows\system32\tileobjserver.dll 19:02:27.0938 0x1478 tiledatamodelsvc - ok 19:02:27.0953 0x1478 [ 4BA0AB760971A0109A3442BD8B4F9AA0, 681171ECE155B7B1048525AA9BF14E4FDB437EE6BD91B6C5C9FFE122757D6BEB ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll 19:02:28.0000 0x1478 TimeBroker - ok 19:02:28.0047 0x1478 [ 169B0A246067457FEF8A18EED7EED9D5, BF5AC0CB29E1E456253B881CD0608B578D7343E9DFE1738A14598D1DFFE1AB66 ] TPM C:\Windows\System32\drivers\tpm.sys 19:02:28.0094 0x17f8 Object send P2P result: true 19:02:28.0094 0x17f8 Object required for P2P: [ 9A2A2F3C69B9A30B6E78536F6D258BAD ] iai2c 19:02:28.0094 0x1478 TPM - ok 19:02:28.0125 0x1478 [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks C:\Windows\System32\trkwks.dll 19:02:28.0219 0x1478 TrkWks - ok |
20.12.2015, 19:08 | #8 |
| Schadsoftware?Code:
ATTFilter 19:02:28.0297 0x1478 [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 19:02:28.0344 0x1478 TrustedInstaller - ok 19:02:28.0375 0x1478 [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt C:\Windows\system32\drivers\TsUsbFlt.sys 19:02:28.0438 0x1478 tsusbflt - ok 19:02:28.0438 0x1478 [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys 19:02:28.0469 0x1478 TsUsbGD - ok 19:02:28.0485 0x1478 [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel C:\Windows\System32\drivers\tunnel.sys 19:02:28.0547 0x1478 tunnel - ok 19:02:28.0594 0x1478 [ 1A9A77ACDAC29C39F50D2A492FD0DB16, E21F2E2BA6EABE0F6B5A1930DDB2CE5A921389A58C08A2D3F66D245E8698E6B4 ] tzautoupdate C:\Windows\system32\tzautoupdate.dll 19:02:28.0657 0x1478 tzautoupdate - ok 19:02:28.0672 0x1478 [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 19:02:28.0703 0x1478 uagp35 - ok 19:02:28.0735 0x1478 [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor C:\Windows\System32\drivers\uaspstor.sys 19:02:28.0797 0x1478 UASPStor - ok 19:02:28.0813 0x1478 [ 3995CC3DEDED258768B8EBC2F4C0DC73, 130E99EF13EB494B8BB6A8E037DD8D59C195190EA3C27CA9E3A695AF4349DC7C ] UcmCx0101 C:\Windows\system32\Drivers\UcmCx.sys 19:02:28.0844 0x1478 UcmCx0101 - ok 19:02:28.0860 0x1478 [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi C:\Windows\System32\drivers\UcmUcsi.sys 19:02:28.0907 0x1478 UcmUcsi - ok 19:02:28.0922 0x1478 [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000 C:\Windows\system32\drivers\ucx01000.sys 19:02:28.0953 0x1478 Ucx01000 - ok 19:02:28.0969 0x1478 [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx C:\Windows\system32\drivers\udecx.sys 19:02:29.0016 0x1478 UdeCx - ok 19:02:29.0032 0x1478 [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 19:02:29.0078 0x1478 udfs - ok 19:02:29.0094 0x1478 [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI C:\Windows\System32\drivers\UEFI.sys 19:02:29.0125 0x1478 UEFI - ok 19:02:29.0141 0x1478 [ 5F0D997E6FC5A418D7673148CEF72887, 6C142CB8F06E5958045451253C9188CE876A84D08266FFD7F64AAE09964D8431 ] Ufx01000 C:\Windows\system32\drivers\ufx01000.sys 19:02:29.0172 0x1478 Ufx01000 - ok 19:02:29.0219 0x1478 [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea C:\Windows\System32\drivers\UfxChipidea.sys 19:02:29.0266 0x1478 UfxChipidea - ok 19:02:29.0282 0x1478 [ DB630FC660443D63EBAB2C830C298EFE, 7698772FF9C988DF752DF3FAF1B154E923EBA425B92F288ABB6EF0805ABD3296 ] ufxsynopsys C:\Windows\System32\drivers\ufxsynopsys.sys 19:02:29.0313 0x1478 ufxsynopsys - ok 19:02:29.0360 0x1478 [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect C:\Windows\system32\UI0Detect.exe 19:02:29.0422 0x1478 UI0Detect - ok 19:02:29.0453 0x1478 [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 19:02:29.0500 0x1478 uliagpkx - ok 19:02:29.0532 0x1478 [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus C:\Windows\System32\drivers\umbus.sys 19:02:29.0578 0x1478 umbus - ok 19:02:29.0610 0x1478 [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass C:\Windows\System32\drivers\umpass.sys 19:02:29.0641 0x1478 UmPass - ok 19:02:29.0688 0x1478 [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService C:\Windows\System32\umrdp.dll 19:02:29.0735 0x1478 UmRdpService - ok 19:02:29.0875 0x1478 [ 87E291D9CC3ECE9AA56ABFD8063C4050, 781958969DB79454C91156473B4DA363F6D540D99974C2924ED81604CF45C3E0 ] UnistoreSvc C:\Windows\System32\unistore.dll 19:02:30.0000 0x1478 UnistoreSvc - ok 19:02:30.0063 0x1478 [ B85A8CF2BE74DFF1E80097AC94584112, B1DBACC33A4143FEE2CF54E567590A69580312AD7A053BCC85B487C4D451FBDA ] upnphost C:\Windows\System32\upnphost.dll 19:02:30.0125 0x1478 upnphost - ok 19:02:30.0125 0x1478 [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea C:\Windows\System32\drivers\urschipidea.sys 19:02:30.0157 0x1478 UrsChipidea - ok 19:02:30.0157 0x1478 [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000 C:\Windows\system32\drivers\urscx01000.sys 19:02:30.0172 0x1478 UrsCx01000 - ok 19:02:30.0203 0x1478 [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys C:\Windows\System32\drivers\urssynopsys.sys 19:02:30.0235 0x1478 UrsSynopsys - ok 19:02:30.0266 0x1478 [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp C:\Windows\System32\drivers\usbccgp.sys 19:02:30.0344 0x1478 usbccgp - ok 19:02:30.0344 0x1478 [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir C:\Windows\System32\drivers\usbcir.sys 19:02:30.0407 0x1478 usbcir - ok 19:02:30.0438 0x1478 [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci C:\Windows\System32\drivers\usbehci.sys 19:02:30.0485 0x1478 usbehci - ok 19:02:30.0516 0x1478 [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub C:\Windows\System32\drivers\usbhub.sys 19:02:30.0563 0x17f8 Object send P2P result: true 19:02:30.0563 0x17f8 Object required for P2P: [ 59A20F5AD9F4AE54098154359519408E ] iaLPSS2i_I2C 19:02:30.0578 0x1478 usbhub - ok 19:02:30.0610 0x1478 [ 12A0B486EA13DF46C27B90CC2CE92FE5, 643D8B906F02FBC0802B3468C24D6C6A0BDB07FEA894B68E0F404AB5287C4409 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys 19:02:30.0657 0x1478 USBHUB3 - ok 19:02:30.0672 0x1478 [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci C:\Windows\System32\drivers\usbohci.sys 19:02:30.0703 0x1478 usbohci - ok 19:02:30.0719 0x1478 [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint C:\Windows\System32\drivers\usbprint.sys 19:02:30.0735 0x1478 usbprint - ok 19:02:30.0750 0x1478 [ D67B6A4A6FB99D29444C2DBA2B636799, 62BC778D60593B2AB0DA13C4DB3EA5971895AE09DA06E8AB2D03973C940C890C ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 19:02:30.0782 0x1478 usbscan - ok 19:02:30.0813 0x1478 [ CA6369870F91F3D367D26278E0AD0DDF, 651B97E73AFC615C80DE2076872DEB49DCD775B5C9988AB4AC0A0162DAB09F70 ] usbser C:\Windows\System32\drivers\usbser.sys 19:02:30.0875 0x1478 usbser - ok 19:02:30.0891 0x1478 [ 37C2CD8587BF7F785381EB7B26916B52, E8F65BF7BBDEF82BD97629921A1148304CA44DCD03E079E28D75D04244B71C39 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS 19:02:30.0938 0x1478 USBSTOR - ok 19:02:30.0954 0x1478 [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci C:\Windows\System32\drivers\usbuhci.sys 19:02:31.0000 0x1478 usbuhci - ok 19:02:31.0032 0x1478 [ 4B13B61CBB9CC3CB373C60B930D648F5, C79D10A1BF2B6BF141DD37A90BCCA0E1F2AF31B5028BB21537A8EE6EED630F5B ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 19:02:31.0094 0x1478 usbvideo - ok 19:02:31.0141 0x1478 [ 325727F01F03C504CF788618A13DC266, 9F685113F714ADBC6DCD423CCD205F71E00D1AA9B5DD045B95E61E53B0F8E9AF ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS 19:02:31.0204 0x1478 USBXHCI - ok 19:02:31.0313 0x1478 [ ED06681482E0B9B4D573684CD5FB18F5, 1CCFBD37F8B895900B860AAF107130C5890C01F5327A4AEBB910F6B2BB0BA61D ] UserDataSvc C:\Windows\System32\userdataservice.dll 19:02:31.0391 0x1478 UserDataSvc - ok 19:02:31.0485 0x1478 [ CA902510DAF327CCFA59BCBFC00B3BAE, 3282993B28B64E2D7D4C94E5B2643431C96BF1AB30B48C30BED565F457D02B45 ] UserManager C:\Windows\System32\usermgr.dll 19:02:31.0563 0x1478 UserManager - ok 19:02:31.0594 0x1478 [ 05F4CB5991D897E4253BF61FA5E828F8, 25B5B6751B4455491E9A050DF5C12F788B5677F70FB4844E0BF851090AC1F74C ] UsoSvc C:\Windows\system32\usocore.dll 19:02:31.0657 0x1478 UsoSvc - ok 19:02:31.0672 0x1478 [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] VaultSvc C:\Windows\system32\lsass.exe 19:02:31.0719 0x1478 VaultSvc - ok 19:02:31.0735 0x1478 [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 19:02:31.0782 0x1478 vdrvroot - ok 19:02:31.0844 0x1478 [ 67A6E949395A09914AD8B38FE14B8D15, 593F2FAA880B2E0468F98BD58B5214A170E5890907B25294D7A47C66505A3D45 ] vds C:\Windows\System32\vds.exe 19:02:31.0907 0x1478 vds - ok 19:02:31.0969 0x1478 [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys 19:02:32.0016 0x1478 VerifierExt - ok 19:02:32.0063 0x1478 [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys 19:02:32.0125 0x1478 vhdmp - ok 19:02:32.0141 0x1478 [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf C:\Windows\System32\drivers\vhf.sys 19:02:32.0157 0x1478 vhf - ok 19:02:32.0172 0x1478 [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus C:\Windows\system32\drivers\vmbus.sys 19:02:32.0204 0x1478 vmbus - ok 19:02:32.0219 0x1478 [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys 19:02:32.0250 0x1478 VMBusHID - ok 19:02:32.0297 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicguestinterface C:\Windows\System32\ICSvc.dll 19:02:32.0391 0x1478 vmicguestinterface - ok 19:02:32.0454 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicheartbeat C:\Windows\System32\ICSvc.dll 19:02:32.0516 0x1478 vmicheartbeat - ok 19:02:32.0532 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmickvpexchange C:\Windows\System32\ICSvc.dll 19:02:32.0579 0x1478 vmickvpexchange - ok 19:02:32.0594 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicrdv C:\Windows\System32\ICSvc.dll 19:02:32.0625 0x1478 vmicrdv - ok 19:02:32.0641 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicshutdown C:\Windows\System32\ICSvc.dll 19:02:32.0688 0x1478 vmicshutdown - ok 19:02:32.0704 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmictimesync C:\Windows\System32\ICSvc.dll 19:02:32.0735 0x1478 vmictimesync - ok 19:02:32.0750 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvmsession C:\Windows\System32\ICSvc.dll 19:02:32.0797 0x1478 vmicvmsession - ok 19:02:32.0813 0x1478 [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvss C:\Windows\System32\ICSvc.dll 19:02:32.0844 0x1478 vmicvss - ok 19:02:32.0875 0x1478 [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr C:\Windows\system32\drivers\volmgr.sys 19:02:32.0891 0x1478 volmgr - ok 19:02:32.0922 0x1478 [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 19:02:32.0954 0x1478 volmgrx - ok 19:02:32.0985 0x1478 [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap C:\Windows\system32\drivers\volsnap.sys 19:02:33.0032 0x1478 volsnap - ok 19:02:33.0032 0x17f8 Object send P2P result: true 19:02:33.0047 0x17f8 Object required for P2P: [ 807A6636828E5F43C10A01474B8907EE ] MSDTC 19:02:33.0079 0x1478 [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci C:\Windows\System32\drivers\vpci.sys 19:02:33.0110 0x1478 vpci - ok 19:02:33.0141 0x1478 [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 19:02:33.0204 0x1478 vsmraid - ok 19:02:33.0329 0x1478 [ 4CF5A1E0C4FCA956ACD6C654E2A8610E, 57F3C7200C25E8717AF92AF2ED7615C6605179D3514B432220FA6EA94CAB4F2E ] VSS C:\Windows\system32\vssvc.exe 19:02:33.0422 0x1478 VSS - ok 19:02:33.0454 0x1478 [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys 19:02:33.0532 0x1478 VSTXRAID - ok 19:02:33.0563 0x1478 [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 19:02:33.0610 0x1478 vwifibus - ok 19:02:33.0641 0x1478 [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt C:\Windows\system32\drivers\vwififlt.sys 19:02:33.0704 0x1478 vwififlt - ok 19:02:33.0719 0x1478 [ 3BE5AAC930447FD18D4A8255A2FEC95C, A517357188FE4A5BD98A3CDB2165ACCE96CCE4BE2B90DDBEAF70B6DDF393F506 ] vwifimp C:\Windows\System32\drivers\vwifimp.sys 19:02:33.0751 0x1478 vwifimp - ok 19:02:33.0797 0x1478 [ 48C1A256591297C43ECFC4E30D144EAA, 8E66833ED2CEB6D7E499EB2E4282B4F9DFA28B6D21757BB88EC52FD069D7FACE ] W32Time C:\Windows\system32\w32time.dll 19:02:33.0860 0x1478 W32Time - ok 19:02:33.0876 0x1478 [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen C:\Windows\System32\drivers\wacompen.sys 19:02:33.0907 0x1478 WacomPen - ok 19:02:33.0985 0x1478 [ D76D1AC4F2C642D09A68227D129A4726, D14D6C4D94E9660848C74B220359683D91A4A3D70750E781A20B6D86D46794CE ] WalletService C:\Windows\system32\WalletService.dll 19:02:34.0063 0x1478 WalletService - ok 19:02:34.0094 0x1478 [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp C:\Windows\system32\DRIVERS\wanarp.sys 19:02:34.0157 0x1478 wanarp - ok 19:02:34.0157 0x1478 [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 19:02:34.0219 0x1478 wanarpv6 - ok 19:02:34.0313 0x1478 [ 2598BBF11C9E7D0885DCA52E7FD5BCBD, 46B1FB080A2CD88C89A0EB8BA2594A1FA2C341ED77A6C6835CBFFE42907FAC55 ] wbengine C:\Windows\system32\wbengine.exe 19:02:34.0391 0x1478 wbengine - ok 19:02:34.0438 0x1478 [ 6950271D0C75A33BD05F7155EF1B2DD4, C6959972D490710CA7539EA8F51B5CC1FA64FF9799242075719C4FD394B6F9C7 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 19:02:34.0485 0x1478 WbioSrvc - ok 19:02:34.0547 0x1478 [ 39E07EE74F50C39C1EB315152F03199C, 053562C2656A76265AE09045952A4C9473BE2B4426D9ECC1A025ED4BC204AC25 ] Wcmsvc C:\Windows\System32\wcmsvc.dll 19:02:34.0657 0x1478 Wcmsvc - ok 19:02:34.0688 0x1478 [ 53A036CED1270F2459E708A05922FD49, 2F281A72E4B0408DE6C8153F5988C9AA38591FB1E72558767D389637D0666A85 ] wcncsvc C:\Windows\System32\wcncsvc.dll 19:02:34.0782 0x1478 wcncsvc - ok 19:02:34.0797 0x1478 [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 19:02:34.0844 0x1478 WcsPlugInService - ok 19:02:34.0876 0x1478 [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot C:\Windows\system32\drivers\WdBoot.sys 19:02:34.0907 0x1478 WdBoot - ok 19:02:34.0985 0x1478 [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 19:02:35.0047 0x1478 Wdf01000 - ok 19:02:35.0079 0x1478 [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter C:\Windows\system32\drivers\WdFilter.sys 19:02:35.0141 0x1478 WdFilter - ok 19:02:35.0172 0x1478 [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost C:\Windows\system32\wdi.dll 19:02:35.0219 0x1478 WdiServiceHost - ok 19:02:35.0235 0x1478 [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost C:\Windows\system32\wdi.dll 19:02:35.0266 0x1478 WdiSystemHost - ok 19:02:35.0282 0x1478 [ E70DDD8E2245CC67547B0861983912D8, 64C73B1496FFF1F6BB3D877CB5BE54DE35C303AE234B11FC90038DC4F73241D9 ] wdiwifi C:\Windows\system32\DRIVERS\wdiwifi.sys 19:02:35.0344 0x1478 wdiwifi - ok 19:02:35.0376 0x1478 [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv C:\Windows\system32\Drivers\WdNisDrv.sys 19:02:35.0391 0x1478 WdNisDrv - ok 19:02:35.0438 0x1478 WdNisSvc - ok 19:02:35.0485 0x1478 [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient C:\Windows\System32\webclnt.dll 19:02:35.0516 0x17f8 Object send P2P result: true 19:02:35.0563 0x1478 WebClient - ok 19:02:35.0579 0x1478 [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc C:\Windows\system32\wecsvc.dll 19:02:35.0672 0x1478 Wecsvc - ok 19:02:35.0688 0x1478 [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC C:\Windows\system32\wephostsvc.dll 19:02:35.0735 0x1478 WEPHOSTSVC - ok 19:02:35.0751 0x1478 [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport C:\Windows\System32\wercplsupport.dll 19:02:35.0813 0x1478 wercplsupport - ok 19:02:35.0844 0x1478 [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc C:\Windows\System32\WerSvc.dll 19:02:35.0891 0x1478 WerSvc - ok 19:02:35.0922 0x1478 [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS C:\Windows\system32\drivers\wfplwfs.sys 19:02:35.0938 0x1478 WFPLWFS - ok 19:02:35.0954 0x1478 [ 205A1FAE910F5C493D236245850BB62A, DBA4D1D734BAA3CDEB8A7F9C81A8DAA88CEA55AF5C4C5908E76FB8E522C5EC8A ] WiaRpc C:\Windows\System32\wiarpc.dll 19:02:36.0001 0x1478 WiaRpc - ok 19:02:36.0016 0x1478 [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount C:\Windows\system32\drivers\wimmount.sys 19:02:36.0079 0x1478 WIMMount - ok 19:02:36.0079 0x1478 WinDefend - ok 19:02:36.0141 0x1478 [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys 19:02:36.0188 0x1478 WindowsTrustedRT - ok 19:02:36.0204 0x1478 [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys 19:02:36.0251 0x1478 WindowsTrustedRTProxy - ok 19:02:36.0344 0x1478 [ 1859EEE0BAFDF8F20B7B3C40708B1CD3, C17792B9B41D384751A601A3B2CC3C35089257C6D4B63FC5CC0ABC7A34814688 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll 19:02:36.0407 0x1478 WinHttpAutoProxySvc - ok 19:02:36.0438 0x1478 [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad C:\Windows\System32\drivers\winmad.sys 19:02:36.0469 0x1478 WinMad - ok 19:02:36.0532 0x1478 [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 19:02:36.0594 0x1478 Winmgmt - ok 19:02:36.0735 0x1478 [ 703D0F62C5AA4D08EE8756516C0D125D, 02015A5E62490C11EC968160C528C2AFD1D7194AACA27F407B06EB462657511F ] WinRM C:\Windows\system32\WsmSvc.dll 19:02:36.0891 0x1478 WinRM - ok 19:02:36.0923 0x1478 [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB C:\Windows\System32\drivers\WinUSB.SYS 19:02:37.0001 0x1478 WINUSB - ok 19:02:37.0016 0x1478 [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs C:\Windows\System32\drivers\winverbs.sys 19:02:37.0032 0x1478 WinVerbs - ok 19:02:37.0204 0x1478 [ EF0A5EFFBC78F7677D3591BB58AC5A52, 0860B9D0F1A1FFE14F1A0FDFD3B66C90CED90092D9CF9AA35D6D6D088E2DC4A9 ] WlanSvc C:\Windows\System32\wlansvc.dll 19:02:37.0391 0x1478 WlanSvc - ok 19:02:37.0485 0x1478 [ 58A8B8B2A343829602AC105F66988583, 46D142A3A7D74F6383B8D7E642E796535CE15BEDAF82AEFB4BEF46F0355411FD ] wlidsvc C:\Windows\system32\wlidsvc.dll 19:02:37.0579 0x1478 wlidsvc - ok 19:02:37.0594 0x1478 [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys 19:02:37.0641 0x1478 WmiAcpi - ok 19:02:37.0673 0x1478 [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 19:02:37.0719 0x1478 wmiApSrv - ok 19:02:37.0735 0x1478 WMPNetworkSvc - ok 19:02:37.0766 0x1478 [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof C:\Windows\system32\drivers\Wof.sys 19:02:37.0829 0x1478 Wof - ok 19:02:37.0938 0x1478 [ 4090C6738AA92B428220857B4D44F638, 4A3EE47494051E5BA8393F2AC8226EF434DA3AA1895CF4BADC9BC1BC378647C6 ] workfolderssvc C:\Windows\system32\workfolderssvc.dll 19:02:38.0048 0x1478 workfolderssvc - ok 19:02:38.0079 0x1478 [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys 19:02:38.0141 0x1478 wpcfltr - ok 19:02:38.0173 0x1478 [ D282ECA35ADAC7A93D6B4943E775010B, A76A9698A95646FA63AC18DFFA02B744D7C6043934CBF6C37832ED2E6B21F570 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 19:02:38.0204 0x1478 WPDBusEnum - ok 19:02:38.0219 0x1478 [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys 19:02:38.0235 0x1478 WpdUpFltr - ok 19:02:38.0251 0x1478 [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService C:\Windows\system32\WpnService.dll 19:02:38.0282 0x1478 WpnService - ok 19:02:38.0298 0x1478 [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 19:02:38.0376 0x1478 ws2ifsl - ok 19:02:38.0423 0x1478 [ FB45052D7C13963465DFF8D56746B10B, 21B0DC0D383061CEF079586AE8E2FD5E8BBA22B8494666F14D5A8591275943E5 ] wscsvc C:\Windows\System32\wscsvc.dll 19:02:38.0469 0x1478 wscsvc - ok 19:02:38.0469 0x1478 WSearch - ok 19:02:38.0735 0x1478 [ A904D7950ED275273357AA7B1EAE445F, 0E41EA26A923FCE7072CC7DDDDB852E54C95992E01A79C67D1D544B1CB1E18DA ] WSService C:\Windows\System32\WSService.dll 19:02:38.0923 0x1478 WSService - ok 19:02:39.0079 0x1478 [ C2D78B6667E0341802C4F38E9C02F93D, D2639EF935C5C5BCFECF1BDACC1BA480786A810084EEB62B7C5A0E57618FCCE1 ] wuauserv C:\Windows\system32\wuaueng.dll 19:02:39.0220 0x1478 wuauserv - ok 19:02:39.0235 0x1478 [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 19:02:39.0266 0x1478 WudfPf - ok 19:02:39.0298 0x1478 [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd C:\Windows\system32\drivers\WudfRd.sys 19:02:39.0345 0x1478 WUDFRd - ok 19:02:39.0360 0x1478 [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 19:02:39.0391 0x1478 wudfsvc - ok 19:02:39.0407 0x1478 [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys 19:02:39.0438 0x1478 WUDFWpdFs - ok 19:02:39.0501 0x1478 [ 2D7E3C2913AAE063774795E6790BCC48, 686CF1CE1CF2553236E0983CBF283D841FB5FBB998C33D97FBB5D7A83EF83867 ] WwanSvc C:\Windows\System32\wwansvc.dll 19:02:39.0563 0x1478 WwanSvc - ok 19:02:39.0610 0x1478 [ 7443938BC4B8DCE1D8E6C51BC3F9DBFE, F2D41BFB2303AEAE39A33E6873A9C07DEF9090CA6D5602B2D232C59D1899D620 ] XblAuthManager C:\Windows\System32\XblAuthManager.dll 19:02:39.0704 0x1478 XblAuthManager - ok 19:02:39.0751 0x1478 [ FACC53D144952319038FAE7442FCC045, 8BCA4ADC5162FC12AF2A88A8A570DA9DAB80AE9B62C873A2121EBAF8AA9FBA98 ] XblGameSave C:\Windows\System32\XblGameSave.dll 19:02:39.0845 0x1478 XblGameSave - ok 19:02:39.0876 0x1478 [ 80BC02A73A3949A7AEF34791206C7D7F, 41E547EFC722D3E01CD8E261FA233D8C799FC59A9C5320B7FD65B09831373CDB ] xboxgip C:\Windows\System32\drivers\xboxgip.sys 19:02:39.0938 0x1478 xboxgip - ok 19:02:40.0001 0x1478 [ 69E727F94BEA64E66C284F3C482F33E6, B3E0F287E7A251E0FC17C41089C45737027E54F0213BDE847356AC882B4D3700 ] XboxNetApiSvc C:\Windows\system32\XboxNetApiSvc.dll 19:02:40.0063 0x1478 XboxNetApiSvc - ok 19:02:40.0079 0x1478 [ 1F1EF8E701859581251B52035C1C1CEF, 3A7D3EC619A7F45FBB04EDA6963E3C55DC50358CF2D71ED66EE4BB07ACC0EE3C ] xinputhid C:\Windows\System32\drivers\xinputhid.sys 19:02:40.0141 0x1478 xinputhid - ok 19:02:40.0157 0x1478 ================ Scan global =============================== 19:02:40.0188 0x1478 [ D923EC03E24F7633DED3F2D46AD59A28, C635DB4483E24BE0188583E63B06D0F37BDE7AD944E4D0246A7D19CBC3EA3A6B ] C:\Windows\system32\basesrv.dll 19:02:40.0235 0x1478 [ E2899695BD30B5F93EC626EBBEF2CB69, B190D2903A109D2C146D881F90769060A0E971942F4AA61AEAD81861032D89C3 ] C:\Windows\system32\winsrv.dll 19:02:40.0282 0x1478 [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\Windows\system32\sxssrv.dll 19:02:40.0345 0x1478 [ 2AB2C72D88CE2BC73E6F708D0B1A9657, 8DF9D8C83BC2078D88FE7B2E9CDD5ABA9A2075F40D30CD344595DA217ECCCB3B ] C:\Windows\system32\services.exe 19:02:40.0376 0x1478 [ Global ] - ok 19:02:40.0376 0x1478 ================ Scan MBR ================================== 19:02:40.0391 0x1478 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0 19:02:40.0548 0x1478 \Device\Harddisk0\DR0 - ok 19:02:40.0548 0x1478 ================ Scan VBR ================================== 19:02:40.0548 0x1478 [ 13634E6A2CDCB7BA08A9D69506322035 ] \Device\Harddisk0\DR0\Partition1 19:02:40.0579 0x1478 \Device\Harddisk0\DR0\Partition1 - ok 19:02:40.0610 0x1478 [ B8547E395996D52FED12BFD1BC21220F ] \Device\Harddisk0\DR0\Partition2 19:02:40.0626 0x1478 \Device\Harddisk0\DR0\Partition2 - ok 19:02:40.0641 0x1478 [ FC4CA031F795317029113BBD004CD19C ] \Device\Harddisk0\DR0\Partition3 19:02:40.0641 0x1478 \Device\Harddisk0\DR0\Partition3 - ok 19:02:40.0657 0x1478 [ 51EFEC3EA865E8B7AC1308979F20F537 ] \Device\Harddisk0\DR0\Partition4 19:02:40.0673 0x1478 \Device\Harddisk0\DR0\Partition4 - ok 19:02:40.0673 0x1478 ================ Scan generic autorun ====================== 19:02:40.0720 0x1478 [ 0C3154D0620F974AD5C4E8D87626C8CF, 4E6B751F9C0D5D4833A12166BC5142E0A7402E98D00F570926ED9CA0936A8007 ] C:\Windows\system32\igfxtray.exe 19:02:40.0751 0x1478 IgfxTray - ok 19:02:40.0798 0x1478 [ E4AA3D28753EF9DB333FE40079993B09, ECC60BAA7D21EF97CDA17F45277FBFE52B2169155DDB157E34A7AE2EC1BEC185 ] C:\Windows\system32\hkcmd.exe 19:02:40.0845 0x1478 HotKeysCmds - ok 19:02:40.0860 0x1478 [ CF40080765D6F66FA93318C0DB6C7D1F, 015EE5BE439DAC6D3F7C7471EEF554C11F28947492E3F7AA14BB72622C327DCD ] C:\Windows\system32\igfxpers.exe 19:02:40.0907 0x1478 Persistence - ok 19:02:40.0907 0x1478 SynTPEnh - ok 19:02:41.0235 0x1478 [ 8A312D5764B4FC4C55CEDDEED4652CF1, C4E726C9C77614CD32D5B76DA2E9A049EC490C2392D9A94B84712BCBF47BA7C6 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe 19:02:41.0423 0x1478 AvastUI.exe - ok 19:02:41.0860 0x1478 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe 19:02:42.0095 0x1478 OneDriveSetup - ok 19:02:42.0438 0x1478 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe 19:02:42.0657 0x1478 OneDriveSetup - ok 19:02:42.0876 0x1478 [ 2287DAEA100837E40232FD9053F635D8, 8E905B8BC72F8DD6C7C71A7E04CD8D8EC1E9AD2B77EF5A48E089E439A75043D6 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIILE.EXE 19:02:42.0923 0x1478 EPLTarget\P0000000000000000 - ok 19:02:42.0923 0x1478 Waiting for KSN requests completion. In queue: 199 19:02:43.0939 0x1478 Waiting for KSN requests completion. In queue: 199 19:02:44.0954 0x1478 Waiting for KSN requests completion. In queue: 199 19:02:45.0423 0x120c Object required for P2P: [ 7C58AFEC26E9F7730A8AA7FD40225937 ] sppsvc 19:02:45.0970 0x1478 Waiting for KSN requests completion. In queue: 169 19:02:46.0986 0x1478 Waiting for KSN requests completion. In queue: 169 19:02:47.0987 0x1478 Waiting for KSN requests completion. In queue: 169 19:02:48.0009 0x120c Object send P2P result: true 19:02:48.0014 0x120c Object required for P2P: [ 34A3EB84B2A830E6F450B8F885AE4E6E ] SysMain 19:02:48.0987 0x1478 Waiting for KSN requests completion. In queue: 147 19:02:49.0988 0x1478 Waiting for KSN requests completion. In queue: 147 19:02:50.0514 0x120c Object send P2P result: true 19:02:50.0535 0x120c Object required for P2P: [ 4CF5A1E0C4FCA956ACD6C654E2A8610E ] VSS 19:02:50.0988 0x1478 Waiting for KSN requests completion. In queue: 69 19:02:51.0989 0x1478 Waiting for KSN requests completion. In queue: 69 19:02:52.0990 0x1478 Waiting for KSN requests completion. In queue: 69 19:02:53.0037 0x120c Object send P2P result: true 19:02:53.0062 0x120c Object required for P2P: [ 8A312D5764B4FC4C55CEDDEED4652CF1 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe 19:02:53.0991 0x1478 Waiting for KSN requests completion. In queue: 4 19:02:54.0991 0x1478 Waiting for KSN requests completion. In queue: 4 19:02:55.0611 0x120c Object send P2P result: true 19:02:56.0042 0x1478 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x60100 ( disabled : updated ) 19:02:56.0043 0x1478 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41000 ( enabled : updated ) 19:02:56.0046 0x1478 FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 11.1.2245.1540 ), 0x41010 ( enabled ) 19:02:58.0467 0x1478 ============================================================ 19:02:58.0467 0x1478 Scan finished 19:02:58.0467 0x1478 ============================================================ 19:02:58.0478 0x1764 Detected object count: 0 19:02:58.0478 0x1764 Actual detected object count: 0 |
21.12.2015, 18:59 | #9 |
/// TB-Ausbilder /// Anleitungs-Guru | Schadsoftware? Hi, jetzt bitte: Schritt 1 Downloade Dir HitmanProauf Deinen Desktop: HitmanPro-32 Bit Version HitmanPro-64 Bit Version
Schritt 2 ESET Online Scanner
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
21.12.2015, 21:08 | #10 |
| Schadsoftware?Code:
ATTFilter
Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=8c3a8825f9a5b84880d73aafb902253d # end=init # utc_time=2015-12-21 07:12:18 # local_time=2015-12-21 08:12:18 (+0100, Mitteleuropäische Zeit) # country="Germany" # osver=6.2.9200 NT Update Init Update Download esets_scanner_update returned -1 esets_gle=37126 Update Finalize Updated modules version: 0 Old modules - leave modules Update Init Update Download Update Finalize Updated modules version: 27303 Update Init Update Download esets_scanner_update returned -1 esets_gle=53251 Update Finalize Updated modules version: 27303 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=8c3a8825f9a5b84880d73aafb902253d # end=updated # utc_time=2015-12-21 07:25:52 # local_time=2015-12-21 08:25:52 (+0100, Mitteleuropäische Zeit) # country="Germany" # osver=6.2.9200 NT # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7777 # api_version=3.1.1 # EOSSerial=8c3a8825f9a5b84880d73aafb902253d # engine=27303 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2015-12-21 08:01:11 # local_time=2015-12-21 09:01:11 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1031 # osver=6.2.9200 NT # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 271048 4542214 0 0 # scanned=123188 # found=0 # cleaned=0 # scan_time=2119 |
22.12.2015, 20:46 | #11 |
/// TB-Ausbilder /// Anleitungs-Guru | Schadsoftware?Wir haben es geschafft! Die Logs sehen für mich im Moment sauber aus. Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen. Es bleibt mir nur noch, Dir unbeschwertes und sicheres Surfen zu wünschen und dass wir uns hier so bald nicht wiedersehen. Cleanup: (Die Reihenfolge ist hier entscheidend) Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken. Falls Combofix verwendet wurde: Combofix deinstallieren
Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen. Absicherung: Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken (z.B. hier) in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank. Meine Kauf-Empfehlung: ESET Smart Security Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware scannen. Optional: NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen. Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen. Lade Software von einem sauberen Portal wie . Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner . Abschließend noch ein paar grundsätzliche Bemerkungen: Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems. Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer |
Themen zu Schadsoftware? |
download, einloggen, email, erstellt, fehler, folge, gekauft, geändert, gmx, handy, meldung, neu, neues, nicht mehr, notebook, online, online banking, passwort, plötzlich, problem, probleme, schadsoftware, software, trojaner, warnmeldung, windows |