Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.

Antwort
Alt 22.06.2016, 14:58   #1
FCK191
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Hallo,

wie in diesem Thread beschrieben (http://www.trojaner-board.de/179741-...-gefunden.html) kam es in den letzten zwei Monaten zweimal dazu, dass ein Google-E-Mail-Passwort von mir geknackt wurde, welches ich in meiner dropbox gespeichert habe (mehrere Leute benötigen den Zugriff auf dieses E-Mail-Postfach).

Ich möchte nun sicher gehen, dass die auf meinem Desktop-PC-gefundenen Probleme nicht auch auf meinem Laptop bestehen. Könnte daher bitte jemand die Logs von meinem Laptop auf Auffälligkeiten untersuchen?

Hier die logs:

FRST.txt

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-06-2016 01
durchgeführt von Florian (Administrator) auf FLORIANS-YOGA (22-06-2016 14:37:46)
Gestartet von C:\Users\Florian\Desktop
Geladene Profile: Florian (Verfügbare Profile: Florian)
Platform: Windows 10 Home Version 1511 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
(Lenovo) C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dolby Laboratories Inc.) C:\Program Files\Dolby\DDP_F3\ddpf3.exe
() C:\Program Files\Lenovo\LenovoUtility\utility.exe
() C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_21_0_0_242.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_21_0_0_242.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Oracle Corporation) C:\Program Files\Java\jre1.8.0_92\bin\javaw.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3743648 2015-06-25] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-04] (Realtek Semiconductor)
HKLM\...\Run: [DDPF3] => C:\Program Files\Dolby\DDP_F3\ddpf3.exe [746496 2014-11-03] (Dolby Laboratories Inc.)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [791368 2015-07-14] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [67840 2016-05-19] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [814608 2016-05-25] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [23972712 2016-05-31] (Dropbox, Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597016 2016-03-31] (Oracle Corporation)
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe [10566352 2015-09-02] ()
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [721504 2015-09-02] (Microsoft Corporation)
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc.)
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [149504 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.34.dll [2016-05-31] (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3666e1e5-cf40-4bc8-b6b6-f11588290e20}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.de/
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1101365829-4141904682-1815683913-1001 -> DefaultScope {309DEA23-9318-4566-B917-58CF2C1B3537} URL = 
SearchScopes: HKU\S-1-5-21-1101365829-4141904682-1815683913-1001 -> {309DEA23-9318-4566-B917-58CF2C1B3537} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-06-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_92\bin\ssv.dll [2016-05-01] (Oracle Corporation)
BHO: Kein Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> Keine Datei
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-06-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_92\bin\jp2ssv.dll [2016-05-01] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2016-06-10] (Microsoft Corporation)
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxps://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1455884056334
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-06-10] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Florian\AppData\Roaming\Mozilla\Firefox\Profiles\yp1xkkTN.default
FF Homepage: hxxps://www.facebook.com/
hxxps://web.whatsapp.com/
hxxps://www.linkedin.com/
hxxps://www.xing.com/
hxxps://network.meine-freiheit.de/user/login?destination=activities/users
hxxp://member.berater-mainz.de/index.php?r=user/auth/login
hxxps://login.microsoftonline.com/login.srf?wa=wsignin1.0&rpsnv=4&ct=1451348455&rver=6.7.6640.0&wp=MCMBI&wreply=hxxps:%2F%2Fportal.office.com%2Flanding.aspx%3Ftarget%3D%252fHome&lc=1031&id=501392&msafed=0
FF Session Restore: -> ist aktiviert.
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-16] ()
FF Plugin: @java.com/DTPlugin,version=11.92.2 -> C:\Program Files\Java\jre1.8.0_92\bin\dtplugin\npDeployJava1.dll [2016-05-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.92.2 -> C:\Program Files\Java\jre1.8.0_92\bin\plugin2\npjp2.dll [2016-05-01] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-16] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-06-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-06-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-12] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1101365829-4141904682-1815683913-1001: @Google.com/GoogleEarthPlugin -> C:\Users\Florian\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll [2012-04-14] (Google)
FF Extension: NoScript - C:\Users\Florian\AppData\Roaming\Mozilla\Firefox\Profiles\yp1xkkTN.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-04-10]
FF Extension: Avira Browser Safety - C:\Users\Florian\AppData\Roaming\Mozilla\Firefox\Profiles\yp1xkkTN.default\Extensions\abs@avira.com [2016-06-13]
FF Extension: BetterPrivacy - C:\Users\Florian\AppData\Roaming\Mozilla\Firefox\Profiles\yp1xkkTN.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2016-05-04]

Chrome: 
=======
CHR Profile: C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-26]
CHR Extension: (Google Docs) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-27]
CHR Extension: (Google Drive) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-27]
CHR Extension: (YouTube) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-27]
CHR Extension: (Google-Suche) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-27]
CHR Extension: (Avira Browserschutz) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2016-02-27]
CHR Extension: (Google Docs Offline) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-02-27]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-26]
CHR Extension: (Google Mail) - C:\Users\Florian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-27]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [970656 2016-05-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [467016 2016-05-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [467016 2016-05-25] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1435704 2016-05-25] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [285176 2016-05-19] (Avira Operations GmbH & Co. KG)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [644080 2014-10-22] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2944768 2016-06-10] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-26] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-26] (Dropbox, Inc.)
R2 DptfParticipantAcpiProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-09-17] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [150760 2013-09-17] (Intel Corporation)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [134888 2015-06-25] (ELAN Microelectronics Corp.)
R2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [122984 2014-09-15] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-08-27] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [167176 2014-05-28] (PointGrab LTD)
R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [524552 2014-05-28] (PointGrab LTD)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [30464 2015-01-15] (Lenovo)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [128664 2016-03-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146712 2016-05-25] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [78208 2016-05-25] (Avira Operations GmbH & Co. KG)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [165376 2015-10-30] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\system32\DRIVERS\BthHfAud.sys [36864 2015-10-30] (Microsoft Corporation)
R3 DptfDevAcpiProc; C:\Windows\system32\DRIVERS\DptfDevAcpiProc.sys [198808 2013-09-17] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [493240 2013-09-17] (Intel Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2014-06-09] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [69632 2014-06-09] (Intel Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [263952 2015-07-14] (Intel Corporation)
R3 KMDFVirtualKbd; C:\Windows\System32\drivers\KMDFVirtualKbd.sys [22264 2014-08-04] ()
S3 KMDFVirtualMouse; C:\Windows\System32\drivers\KMDFVirtualMouse.sys [21240 2014-08-04] ()
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-10] (Intel Corporation)
R3 NETwNb64; C:\Windows\System32\drivers\Netwbw02.sys [3485696 2015-10-30] (Intel Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek                                            )
R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [402960 2015-05-14] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [3057920 2015-06-02] (Realtek Semiconductor Corp.)
R3 SpbAccelerometer; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [88592 2014-01-15] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-22 14:37 - 2016-06-22 14:38 - 00024663 _____ C:\Users\Florian\Desktop\FRST.txt
2016-06-22 14:37 - 2016-06-22 14:37 - 02387456 _____ (Farbar) C:\Users\Florian\Desktop\FRST64.exe
2016-06-22 14:37 - 2016-06-22 14:37 - 00000000 ____D C:\FRST
2016-06-22 12:40 - 2016-06-22 12:41 - 00234884 _____ C:\WINDOWS\Minidump\062216-67562-01.dmp
2016-06-17 11:50 - 2016-06-21 12:42 - 00002847 _____ C:\Users\Florian\Desktop\20160313_FAZ_10_Regeln_fuer_gute_Meetings.txt
2016-06-16 09:39 - 2016-05-28 08:13 - 01401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-16 09:39 - 2016-05-28 08:13 - 00046784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-16 09:39 - 2016-05-28 07:07 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-16 09:39 - 2016-05-28 07:07 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-06-16 09:39 - 2016-05-28 06:58 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-16 09:39 - 2016-05-28 06:57 - 01594416 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-16 09:39 - 2016-05-28 06:57 - 01372312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-16 09:39 - 2016-05-28 06:57 - 00636304 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-16 09:39 - 2016-05-28 06:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-06-16 09:39 - 2016-05-28 06:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-16 09:39 - 2016-05-28 06:35 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-16 09:39 - 2016-05-28 06:35 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-16 09:39 - 2016-05-28 06:31 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-16 09:39 - 2016-05-28 06:29 - 22379008 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-16 09:39 - 2016-05-28 06:29 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-16 09:39 - 2016-05-28 06:28 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-16 09:39 - 2016-05-28 06:27 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-06-16 09:39 - 2016-05-28 06:27 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-16 09:39 - 2016-05-28 06:26 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-16 09:39 - 2016-05-28 06:26 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-16 09:39 - 2016-05-28 06:24 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-16 09:39 - 2016-05-28 06:22 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-16 09:39 - 2016-05-28 06:22 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-06-16 09:39 - 2016-05-28 06:22 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-06-16 09:39 - 2016-05-28 06:19 - 24605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-16 09:39 - 2016-05-28 06:18 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-16 09:39 - 2016-05-28 06:18 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-16 09:39 - 2016-05-28 06:17 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-16 09:39 - 2016-05-28 06:15 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-16 09:39 - 2016-05-28 06:15 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-16 09:39 - 2016-05-28 06:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-06-16 09:39 - 2016-05-28 06:14 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-16 09:39 - 2016-05-28 06:14 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-16 09:39 - 2016-05-28 06:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-06-16 09:39 - 2016-05-28 06:13 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-16 09:39 - 2016-05-28 06:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-06-16 09:39 - 2016-05-28 06:11 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-06-16 09:39 - 2016-05-28 06:11 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-06-16 09:39 - 2016-05-28 06:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-16 09:39 - 2016-05-28 06:08 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-06-16 09:39 - 2016-05-28 06:06 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-16 09:39 - 2016-05-28 06:04 - 06973952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-16 09:39 - 2016-05-28 06:03 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-06-16 09:39 - 2016-05-28 06:03 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-16 09:39 - 2016-05-28 06:00 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-06-16 09:39 - 2016-05-28 05:58 - 01996288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-16 09:38 - 2016-05-28 07:22 - 07474528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-16 09:38 - 2016-05-28 07:08 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-16 09:38 - 2016-05-28 07:07 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-16 09:38 - 2016-05-28 07:07 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-16 09:38 - 2016-05-28 07:07 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-16 09:38 - 2016-05-28 06:57 - 02548944 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-16 09:38 - 2016-05-28 06:35 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-16 09:38 - 2016-05-28 06:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-16 09:38 - 2016-05-28 06:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-06-16 09:38 - 2016-05-28 06:19 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-16 09:38 - 2016-05-28 06:18 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-16 09:38 - 2016-05-28 06:17 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-16 09:38 - 2016-05-28 06:16 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-16 09:38 - 2016-05-28 06:15 - 00794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-16 09:38 - 2016-05-28 06:14 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-06-16 09:38 - 2016-05-28 06:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-16 09:38 - 2016-05-28 06:08 - 13385728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-16 09:38 - 2016-05-28 06:06 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-16 09:38 - 2016-05-28 06:06 - 01339904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-16 09:38 - 2016-05-28 06:05 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-16 09:38 - 2016-05-28 06:05 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-16 09:38 - 2016-05-28 06:05 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-16 09:38 - 2016-05-28 06:03 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-16 09:38 - 2016-05-28 06:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationFramework.dll
2016-06-16 09:38 - 2016-05-28 06:02 - 03590144 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-16 09:38 - 2016-05-28 06:02 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-16 09:38 - 2016-05-28 06:00 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-06-16 09:38 - 2016-05-28 06:00 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-16 09:38 - 2016-05-28 06:00 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-16 09:38 - 2016-05-28 06:00 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-16 09:38 - 2016-05-28 05:58 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-16 09:38 - 2016-05-28 05:58 - 04896256 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-16 08:25 - 2016-05-28 08:13 - 01184960 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-16 08:25 - 2016-05-28 08:13 - 00514752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-16 08:25 - 2016-05-28 08:13 - 00290496 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-16 08:25 - 2016-05-28 08:13 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-16 08:25 - 2016-05-28 07:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2016-06-16 08:25 - 2016-05-28 07:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-16 08:25 - 2016-05-28 07:23 - 00312160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-16 08:25 - 2016-05-28 07:22 - 04387680 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-16 08:25 - 2016-05-28 07:22 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-16 08:25 - 2016-05-28 07:22 - 00211296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-16 08:25 - 2016-05-28 07:22 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-16 08:25 - 2016-05-28 07:20 - 00430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-16 08:25 - 2016-05-28 07:18 - 00357216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-16 08:25 - 2016-05-28 07:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-16 08:25 - 2016-05-28 07:09 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-06-16 08:25 - 2016-05-28 07:09 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-16 08:25 - 2016-05-28 07:09 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-06-16 08:25 - 2016-05-28 07:08 - 00258912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-16 08:25 - 2016-05-28 07:08 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-16 08:25 - 2016-05-28 07:07 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-06-16 08:25 - 2016-05-28 07:07 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-16 08:25 - 2016-05-28 07:06 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-06-16 08:25 - 2016-05-28 07:06 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-06-16 08:25 - 2016-05-28 07:06 - 00730344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-16 08:25 - 2016-05-28 07:06 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-16 08:25 - 2016-05-28 07:06 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-06-16 08:25 - 2016-05-28 07:05 - 04515264 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-16 08:25 - 2016-05-28 07:04 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-16 08:25 - 2016-05-28 07:04 - 00431296 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-16 08:25 - 2016-05-28 07:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-16 08:25 - 2016-05-28 07:04 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-16 08:25 - 2016-05-28 07:04 - 00111064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-16 08:25 - 2016-05-28 07:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-06-16 08:25 - 2016-05-28 07:03 - 00131248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-16 08:25 - 2016-05-28 06:58 - 01996640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-16 08:25 - 2016-05-28 06:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2016-06-16 08:25 - 2016-05-28 06:57 - 00649792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-16 08:25 - 2016-05-28 06:57 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-16 08:25 - 2016-05-28 06:57 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2016-06-16 08:25 - 2016-05-28 06:31 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-06-16 08:25 - 2016-05-28 06:31 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-06-16 08:25 - 2016-05-28 06:29 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-16 08:25 - 2016-05-28 06:29 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-16 08:25 - 2016-05-28 06:28 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-16 08:25 - 2016-05-28 06:28 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-16 08:25 - 2016-05-28 06:26 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-16 08:25 - 2016-05-28 06:26 - 00157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-16 08:25 - 2016-05-28 06:26 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-16 08:25 - 2016-05-28 06:25 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-06-16 08:25 - 2016-05-28 06:24 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-16 08:25 - 2016-05-28 06:24 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-16 08:25 - 2016-05-28 06:24 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-16 08:25 - 2016-05-28 06:24 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-16 08:25 - 2016-05-28 06:24 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-16 08:25 - 2016-05-28 06:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-16 08:25 - 2016-05-28 06:23 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-16 08:25 - 2016-05-28 06:23 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-16 08:25 - 2016-05-28 06:22 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-16 08:25 - 2016-05-28 06:22 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-16 08:25 - 2016-05-28 06:22 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-16 08:25 - 2016-05-28 06:22 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-16 08:25 - 2016-05-28 06:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-06-16 08:25 - 2016-05-28 06:22 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-16 08:25 - 2016-05-28 06:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-16 08:25 - 2016-05-28 06:21 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-16 08:25 - 2016-05-28 06:21 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-16 08:25 - 2016-05-28 06:21 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-16 08:25 - 2016-05-28 06:20 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-16 08:25 - 2016-05-28 06:20 - 00511488 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-16 08:25 - 2016-05-28 06:20 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-16 08:25 - 2016-05-28 06:20 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-16 08:25 - 2016-05-28 06:20 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-16 08:25 - 2016-05-28 06:20 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-16 08:25 - 2016-05-28 06:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2016-06-16 08:25 - 2016-05-28 06:19 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-06-16 08:25 - 2016-05-28 06:19 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-16 08:25 - 2016-05-28 06:19 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-16 08:25 - 2016-05-28 06:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2016-06-16 08:25 - 2016-05-28 06:18 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-16 08:25 - 2016-05-28 06:18 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-16 08:25 - 2016-05-28 06:18 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-16 08:25 - 2016-05-28 06:18 - 00380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-16 08:25 - 2016-05-28 06:18 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-16 08:25 - 2016-05-28 06:17 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-16 08:25 - 2016-05-28 06:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2016-06-16 08:25 - 2016-05-28 06:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-06-16 08:25 - 2016-05-28 06:17 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-16 08:25 - 2016-05-28 06:17 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-16 08:25 - 2016-05-28 06:17 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-16 08:25 - 2016-05-28 06:16 - 00690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-16 08:25 - 2016-05-28 06:16 - 00684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-16 08:25 - 2016-05-28 06:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-16 08:25 - 2016-05-28 06:16 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-16 08:25 - 2016-05-28 06:16 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-16 08:25 - 2016-05-28 06:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-16 08:25 - 2016-05-28 06:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2016-06-16 08:25 - 2016-05-28 06:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2016-06-16 08:25 - 2016-05-28 06:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2016-06-16 08:25 - 2016-05-28 06:15 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-16 08:25 - 2016-05-28 06:14 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-16 08:25 - 2016-05-28 06:14 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-16 08:25 - 2016-05-28 06:14 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-16 08:25 - 2016-05-28 06:14 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-06-16 08:25 - 2016-05-28 06:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2016-06-16 08:25 - 2016-05-28 06:13 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-16 08:25 - 2016-05-28 06:13 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-16 08:25 - 2016-05-28 06:13 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-16 08:25 - 2016-05-28 06:13 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-06-16 08:25 - 2016-05-28 06:13 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-16 08:25 - 2016-05-28 06:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2016-06-16 08:25 - 2016-05-28 06:13 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-06-16 08:25 - 2016-05-28 06:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-16 08:25 - 2016-05-28 06:11 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-06-16 08:25 - 2016-05-28 06:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2016-06-16 08:25 - 2016-05-28 06:11 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-06-16 08:25 - 2016-05-28 06:11 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-16 08:25 - 2016-05-28 06:11 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-16 08:25 - 2016-05-28 06:09 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-16 08:25 - 2016-05-28 06:05 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-16 08:25 - 2016-05-28 06:04 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-16 08:25 - 2016-05-28 06:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-06-16 08:25 - 2016-05-28 06:03 - 00693760 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-16 08:25 - 2016-05-28 06:03 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-16 08:25 - 2016-05-28 06:02 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-06-16 08:25 - 2016-05-28 06:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2016-06-16 08:25 - 2016-05-28 06:01 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-06-16 08:25 - 2016-05-28 06:01 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2016-06-16 08:25 - 2016-05-28 06:01 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-16 08:25 - 2016-05-28 06:01 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-16 08:25 - 2016-05-28 06:00 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-16 08:25 - 2016-05-28 06:00 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-16 08:25 - 2016-05-28 06:00 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-16 08:25 - 2016-05-28 06:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-06-16 08:25 - 2016-05-28 06:00 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-16 08:25 - 2016-05-28 05:59 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-16 08:25 - 2016-05-28 05:58 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-16 08:25 - 2016-05-28 05:58 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-16 08:25 - 2016-05-28 05:57 - 02281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-16 08:25 - 2016-05-28 05:55 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-16 08:25 - 2016-05-28 05:53 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-14 05:50 - 2016-06-14 05:50 - 00001222 _____ C:\Users\Public\Desktop\Avira Launcher.lnk
2016-06-13 18:24 - 2016-06-13 18:24 - 00001833 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-06-13 18:24 - 2016-06-13 18:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-06-13 18:24 - 2016-06-13 18:24 - 00000000 ____D C:\Program Files\iTunes
2016-06-13 18:24 - 2016-06-13 18:24 - 00000000 ____D C:\Program Files\iPod
2016-06-13 18:24 - 2016-06-13 18:24 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-06-13 18:19 - 2016-06-18 22:08 - 00000000 ____D C:\Users\Florian\AppData\Roaming\vlc
2016-06-10 21:53 - 2016-06-13 15:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-06 21:57 - 2016-06-06 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-06-02 19:25 - 2016-06-02 19:26 - 00286108 _____ C:\WINDOWS\Minidump\060216-27718-01.dmp
2016-06-02 00:01 - 2016-06-02 00:01 - 03598725 _____ C:\Users\Florian\Downloads\CJC - Denise Schneider.pdf
2016-05-27 15:03 - 2016-05-27 15:03 - 03599297 _____ C:\Users\Florian\Downloads\CJC - Svenja Stein.pdf
2016-05-26 14:23 - 2016-05-26 14:23 - 03600068 _____ C:\Users\Florian\Downloads\CJC - Florian ******.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-06-22 14:37 - 2015-12-28 04:03 - 00000000 ____D C:\Users\Florian\.freemind
2016-06-22 14:36 - 2015-12-27 12:01 - 00000000 ____D C:\Users\Florian\Documents\Outlook-Dateien
2016-06-22 14:18 - 2015-12-26 20:13 - 00001242 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2016-06-22 13:01 - 2015-12-26 19:03 - 01799166 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-22 13:01 - 2015-10-30 20:35 - 00778314 _____ C:\WINDOWS\system32\perfh007.dat
2016-06-22 13:01 - 2015-10-30 20:35 - 00156394 _____ C:\WINDOWS\system32\perfc007.dat
2016-06-22 13:01 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-06-22 12:45 - 2015-12-26 21:03 - 00000000 ___RD C:\Users\Florian\Dropbox
2016-06-22 12:43 - 2015-12-26 16:43 - 00000000 __SHD C:\Users\Florian\IntelGraphicsProfiles
2016-06-22 12:42 - 2015-12-26 22:12 - 00001142 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-06-22 12:42 - 2015-12-26 20:13 - 00001238 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2016-06-22 12:42 - 2015-12-26 18:50 - 00000000 ____D C:\Users\Florian
2016-06-22 12:40 - 2016-01-05 11:04 - 651376201 _____ C:\WINDOWS\MEMORY.DMP
2016-06-22 12:40 - 2016-01-05 11:04 - 00000000 ____D C:\WINDOWS\Minidump
2016-06-22 12:40 - 2015-12-26 19:03 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-22 10:45 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-22 07:50 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-22 00:06 - 2015-12-27 14:33 - 00000000 ____D C:\Users\Florian\Desktop\Bilder_sortieren
2016-06-21 10:34 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-06-21 10:31 - 2015-12-26 19:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-06-19 15:17 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-06-19 13:29 - 2015-12-26 21:40 - 00000000 ____D C:\Program Files (x86)\Opera
2016-06-18 22:08 - 2015-12-26 22:12 - 00002275 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-18 15:40 - 2015-12-27 01:26 - 00000000 ____D C:\Users\Florian\Desktop\Dateien_sortieren
2016-06-18 13:05 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-17 11:50 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-16 16:04 - 2015-12-26 16:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-16 13:12 - 2015-12-26 21:40 - 00003988 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1451158826
2016-06-16 13:12 - 2015-12-26 21:40 - 00001131 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-06-16 13:06 - 2015-12-26 18:44 - 05006792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-16 13:03 - 2015-10-30 09:24 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-16 13:03 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-16 13:03 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-16 09:57 - 2015-12-28 03:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-16 09:49 - 2015-12-28 03:50 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-14 20:33 - 2015-10-30 09:26 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-14 20:33 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-14 06:16 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-14 05:50 - 2015-12-27 00:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-06-14 05:50 - 2015-07-14 15:31 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-13 18:24 - 2015-12-26 21:57 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-06-13 18:15 - 2015-12-26 22:02 - 00000927 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-06-13 18:14 - 2015-12-29 02:37 - 00000000 ____D C:\Users\Florian\Documents\Meine FileHippo-Downloads
2016-06-13 15:44 - 2015-12-26 19:39 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-06-06 22:32 - 2015-12-26 22:17 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-06-06 21:57 - 2015-12-26 20:13 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-06-02 19:32 - 2016-02-14 19:58 - 00000000 ____D C:\Users\Florian\AppData\Roaming\Skype
2016-06-02 19:30 - 2016-02-14 19:57 - 00000000 ____D C:\ProgramData\Skype
2016-05-28 07:55 - 2015-12-26 18:47 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-05-25 08:03 - 2015-12-27 00:30 - 00146712 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2016-05-25 08:03 - 2015-12-27 00:30 - 00078208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-01-26 04:56 - 2016-04-16 13:32 - 0000132 _____ () C:\Users\Florian\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2015-12-26 18:47 - 2015-12-26 18:47 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Florian\AppData\Local\Temp\avgnt.exe
C:\Users\Florian\AppData\Local\Temp\McCSPInstall.dll
C:\Users\Florian\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Florian\AppData\Local\Temp\vlc-2.2.4-win64.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-06-20 23:07

==================== Ende von FRST.txt ============================
         
und

Addition.txt

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-06-2016 01
durchgeführt von Florian (2016-06-22 14:39:46)
Gestartet von C:\Users\Florian\Desktop
Windows 10 Home Version 1511 (X64) (2015-12-26 17:16:52)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1101365829-4141904682-1815683913-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1101365829-4141904682-1815683913-503 - Limited - Disabled)
Florian (S-1-5-21-1101365829-4141904682-1815683913-1001 - Administrator - Enabled) => C:\Users\Florian
Gast (S-1-5-21-1101365829-4141904682-1815683913-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1101365829-4141904682-1815683913-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

ACD/Labs Freeware in C:\ACD2015FREE\ (HKLM-x32\...\ACDLabs in C__ACD2015FREE_) (Version: v14.00, FREE - ACD/Labs)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Apple Application Support (32-Bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.17.273 - Avira Operations GmbH & Co. KG)
Avira Launcher (HKLM-x32\...\{761cd2c4-5249-4346-8318-a499d06d2681}) (Version: 1.1.63.21885 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.63.21885 - Avira Operations GmbH & Co. KG) Hidden
Benutzerhandbücher (x32 Version: 3.0.0.3 - Lenovo) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.1.0.7 - Lenovo)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dolby Digital Plus (HKLM\...\{D2CD7DCF-D129-4A54-8543-38BECC6CFDAE}) (Version: 7.6.7.1 - Dolby Laboratories Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.77 - Dropbox, Inc.) Hidden
Dual Accelerometer Driver (HKLM-x32\...\InstallShield_{1D647C7D-5064-4E91-AC0C-9924E7AF9505}) (Version: 1.00.0001 - Lenovo)
Dual Accelerometer Driver (x32 Version: 1.00.0001 - Lenovo) Hidden
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version:  - FileHippo.com)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Earth (HKLM-x32\...\{28E82311-8616-11E1-BEB0-B8AC6F97B88E}) (Version: 6.2.2.6613 - Google)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.10.0.2208 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 17.1.1434.2) (HKLM\...\{302600C1-6BDF-4FD1-1407-148929CC1385}) (Version: 17.1.1407.0480 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.13 - Intel(R) Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{e63d3cb3-0b4d-44ca-aba0-ba433f2f37fd}) (Version: 17.13.0 - Intel Corporation)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 92 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418092F0}) (Version: 8.0.920.14 - Oracle Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 6.3.9600.11103 - Realtek Semiconductor Corp.)
Lenovo FusionEngine  (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Motion Control (HKLM-x32\...\InstallShield_{D3F38500-4C99-4E4F-9786-B907224E13A1}) (Version: 2.6.0.0528 - PointGrab)
Lenovo Motion Control (x32 Version: 2.6.0.0528 - PointGrab) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.1.0.2619 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.1.0.2619 - CyberLink Corp.) Hidden
Lenovo Patch Utility (x32 Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo Patch Utility 64 bit (Version: 1.3.2.6 - Lenovo Group Limited) Hidden
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.65.2 - ELAN Microelectronic Corp.)
LenovoUtility (HKLM-x32\...\InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA}) (Version: 2.0.0.6 - Ihr Firmenname)
LenovoUtility (x32 Version: 2.0.0.6 - Ihr Firmenname) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 48.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 48.0 (x86 en-US)) (Version: 48.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.0.6001 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6925.1018 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6925.1018 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6925.1018 - Microsoft Corporation) Hidden
Opera Stable 38.0.2220.31 (HKLM-x32\...\Opera 38.0.2220.31) (Version: 38.0.2220.31 - Opera Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39061 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.35.716.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7525 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype for Business Basic 2016 - de-de (HKLM\...\SkypeforBusinessEntryRetail - de-de) (Version: 16.0.6965.2058 - Microsoft Corporation)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.3.6 - Lenovo)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Driver Package - Bitland Corporation (SpbAccelerometer) Sensor  (03/03/2015 12.0.0.3) (HKLM\...\EBF670AB54617E31F3C6D485E94882A83BF252F7) (Version: 03/03/2015 12.0.0.3 - Bitland Corporation)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (09/24/2013 19.29.2.34) (HKLM\...\EE9B1F2037C580F36D92FA431CC02BFF04C31F15) (Version: 09/24/2013 19.29.2.34 - Lenovo)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1101365829-4141904682-1815683913-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Florian\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1101365829-4141904682-1815683913-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {06CC6EDC-D708-482E-B269-EC7E9D8401EB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {09194ECC-F305-43AE-BA97-503FE51DA09F} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {2906556C-E296-47CF-9D5B-4B6A8E60F3C8} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {4CC7BD1D-3F7A-4CC0-802B-8DD26EA7D9DE} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {6D18BBFA-C0E4-42C0-9704-7178D1AD7B47} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-06-10] (Microsoft Corporation)
Task: {6E64565E-D8E5-41B7-AE03-E4FD067FEE33} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {6F88B9D1-D6C9-4E97-910A-FF8A4E921490} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {7C506A84-9D98-47A2-B2F9-E123ECCFBE0D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-26] (Google Inc.)
Task: {7D635F2D-3613-4376-8E48-4DDB21E015CB} - System32\Tasks\Lenovo App Services => C:\ProgramData\Lenovo App Services\Engine\LenovoAppServices.exe
Task: {7F1C9CF1-E301-4DE3-8FD3-61A3C06AE515} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {7F27F80F-C5F5-44EA-8A85-1B48AC3E24B5} - System32\Tasks\Opera scheduled Autoupdate 1451158826 => C:\Program Files (x86)\Opera\launcher.exe [2016-06-13] (Opera Software)
Task: {82661EB5-2E8A-41C6-A64B-D472D27B0B50} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-06-16] (Microsoft Corporation)
Task: {89BA855B-639A-4223-A001-98B2B25B05D0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-26] (Google Inc.)
Task: {9E3EEE4E-CA64-48C9-AA75-555A69C3A729} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {AC14D224-2549-4CE2-86D3-91674392B4F9} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-06-10] (Microsoft Corporation)
Task: {B2F29B9A-FA37-47D5-84B5-258CBEE951DE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-12-26] (Dropbox, Inc.)
Task: {DED3352D-3DED-41A9-B7F4-46E08274BE3B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {ED2CE783-11FE-441D-B131-CDABF5FBFDC0} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-12-26] (Dropbox, Inc.)
Task: {F86C0323-3BC2-4A13-ABC9-B660D527EBC8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-03-18 23:56 - 2016-03-18 23:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-07-14 16:13 - 2012-04-24 12:43 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-07-14 16:10 - 2015-01-15 10:06 - 00058624 _____ () C:\ProgramData\LenovoTransition\Server\x64\dptf.dll
2016-04-13 17:55 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 17:55 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-26 18:36 - 2015-12-26 18:36 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-05-17 03:49 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-06-16 09:38 - 2016-05-28 05:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-06-16 08:25 - 2016-05-28 05:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-06-16 09:39 - 2016-05-28 05:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-06-16 09:39 - 2016-05-28 05:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-14 16:06 - 2015-07-14 16:06 - 00791368 _____ () C:\Program Files\Lenovo\LenovoUtility\utility.exe
2015-07-14 16:06 - 2015-07-14 16:06 - 00097048 _____ () C:\Program Files\Lenovo\LenovoUtility\kbdhook.dll
2015-09-02 13:00 - 2015-09-02 13:00 - 10566352 _____ () C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe
2015-07-14 16:05 - 2014-10-22 10:15 - 00644080 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
2015-07-14 16:05 - 2014-10-22 10:15 - 00410096 _____ () C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
2014-05-28 13:16 - 2014-05-28 13:16 - 00013576 _____ () C:\Program Files (x86)\Lenovo\Motion Control\PointGrabDeviceAPI.dll
2016-04-22 01:08 - 2016-04-22 01:08 - 01047864 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-03-18 23:56 - 2016-03-18 23:56 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 00244024 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2015-12-26 20:15 - 2016-05-05 12:09 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-06-06 21:57 - 2016-05-05 12:10 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-06-06 21:57 - 2016-05-05 12:09 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-26 20:15 - 2016-05-05 12:09 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-26 20:15 - 2016-05-05 12:09 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-26 20:15 - 2016-05-31 20:34 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-06-06 21:57 - 2016-05-05 12:09 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-26 20:15 - 2016-05-31 20:34 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-26 20:15 - 2016-05-05 12:09 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-26 20:15 - 2016-05-05 12:10 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-26 20:15 - 2016-05-31 20:34 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-06-06 21:57 - 2016-05-05 12:11 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-02-19 15:04 - 2016-05-31 20:34 - 00021832 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2016-02-19 15:04 - 2016-05-31 20:34 - 00023872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32._winffi_kernel32.pyd
2016-06-06 21:57 - 2016-05-05 12:09 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-06-06 21:57 - 2016-05-31 20:33 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-26 20:15 - 2016-05-05 12:09 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2016-06-06 21:57 - 2016-05-05 12:10 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2016-02-19 15:04 - 2016-05-31 20:34 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-02-19 15:04 - 2016-05-31 20:34 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-02-19 15:04 - 2016-05-31 20:34 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-26 20:15 - 2016-05-31 20:34 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-02-19 15:04 - 2016-05-31 20:34 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-06-06 21:57 - 2016-05-05 12:12 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-06-06 21:57 - 2016-05-31 20:34 - 00031568 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd
2016-06-06 21:57 - 2016-03-12 02:46 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll
2016-06-06 21:57 - 2016-05-31 20:34 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-06-06 21:57 - 2016-05-31 20:34 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-26 20:15 - 2016-05-05 12:10 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 01971504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00132912 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00223544 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-04-17 15:13 - 2016-05-31 20:34 - 00025928 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd
2015-12-26 20:15 - 2016-05-05 12:11 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2015-12-26 20:15 - 2016-05-31 20:34 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-06-06 21:57 - 2016-05-31 20:34 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2015-12-29 02:02 - 2015-12-29 02:03 - 01754296 _____ () C:\Program Files (x86)\Microsoft Office\root\Office16\tmpod.dll
2015-11-11 03:42 - 2015-11-11 03:42 - 01045672 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Florian\Desktop\Kontaktdatenliste_Projekt_Recruiting_Einzelhandel_2014-08-19.xls:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Florian\Desktop\Zeitliche_Verfügbarkeit_Projekt_Recruiting_Einzelhandel_2014-09-13.xlsx:com.dropbox.attributes [168]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2015-12-26 23:55 - 00001467 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Florian\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1101365829-4141904682-1815683913-1001\...\StartupApproved\Run: => "OneDrive"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B85EE41F-6CB9-402C-B240-D995C5EE43F3}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe
FirewallRules: [{C225E24A-04C7-4379-80A1-7E80504D9946}] => (Allow) LPort=55100
FirewallRules: [{48EFF017-B395-4B68-9761-02B8B220E257}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{872D47E4-E068-4DB8-98EA-37A80B5D563D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{B5FC76FB-6FD2-42A4-B8F0-A5FBB73CCF3F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AD6516CD-53DA-4BBF-9CB9-034570DAC5D2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2266C653-A918-4C57-B669-EB5F80DAB28A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{270CE50D-8E46-4D67-A01B-48849FD78A35}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{794C5C9D-7A8D-4557-AB77-E0ACA385EB92}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9692330C-1969-409E-9C3B-6CC07A7C000C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{91D7D9AA-6C54-42FC-8611-A66C1C28CF47}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{45BE6C65-8661-4F4F-9868-73DB9CAEE1C1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{2CFCCA58-791A-4D74-AE2C-DA05DD5ADED1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{19C6988A-7D9A-484B-B0AD-94EEE0833830}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{65FFA3A1-F6A2-4D2E-9DD5-F21B25E81A57}C:\program files (x86)\microsoft office\root\office16\lync.exe] => (Allow) C:\program files (x86)\microsoft office\root\office16\lync.exe
FirewallRules: [UDP Query User{159D0BFF-F37D-4567-B97D-2640FFCF9858}C:\program files (x86)\microsoft office\root\office16\lync.exe] => (Allow) C:\program files (x86)\microsoft office\root\office16\lync.exe
FirewallRules: [{B3D2FAA6-F830-41C2-A3D1-C3EE9ABFC2CD}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{FA09DD6C-ABEF-466C-B702-C2F4C43C5A45}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{157723EE-0190-4045-9AFD-1243181ABEEE}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{4888EAA1-36B9-4662-A32B-5D941629A22D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================

13-06-2016 16:13:43 Windows Update
17-06-2016 11:49:13 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (06/22/2016 02:02:24 PM) (Source: DptfEvent) (EventID: 1) (User: )
Description: DptfPolicyLpmDll
DptfSetLpmMode:  DeviceIoControl() failed.

Error: (06/22/2016 02:02:24 PM) (Source: DptfEvent) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPDll
DptfSetConfigTdpLevel:  DeviceIoControl() failed.

Error: (06/22/2016 12:41:53 PM) (Source: DptfEvent) (EventID: 1) (User: )
Description: DptfPolicyLpmDll
DptfSetLpmMode:  DeviceIoControl() failed.

Error: (06/22/2016 12:41:53 PM) (Source: DptfEvent) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPDll
DptfSetConfigTdpLevel:  DeviceIoControl() failed.

Error: (06/22/2016 12:41:53 PM) (Source: DptfEvent) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPDll
DptfGetConfigTdpLevel:  DeviceIoControl() failed.

Error: (06/22/2016 11:48:52 AM) (Source: DptfEvent) (EventID: 1) (User: )
Description: DptfPolicyLpmDll
DptfSetLpmMode:  DeviceIoControl() failed.

Error: (06/22/2016 11:48:52 AM) (Source: DptfEvent) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPDll
DptfSetConfigTdpLevel:  DeviceIoControl() failed.

Error: (06/22/2016 11:48:51 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3287781

Error: (06/22/2016 11:48:51 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3287781

Error: (06/22/2016 11:48:51 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


Systemfehler:
=============
Error: (06/22/2016 01:09:18 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/22/2016 12:59:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT-AUTORITÄT)
Description: Bei der automatischen WLAN-Konfiguration wurde eine eingeschränkte Konnektivität erkannt, "Reset/Recover.adapter" wird ausgeführt.

 Code: 8 0x0 0x0

Error: (06/22/2016 12:59:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT-AUTORITÄT)
Description: Bei der automatischen WLAN-Konfiguration wurde eine eingeschränkte Konnektivität erkannt, "Reset/Recover.adapter" wird ausgeführt.

 Code: 2 0xdeaddeed 0xeeec

Error: (06/22/2016 12:59:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT-AUTORITÄT)
Description: Bei der automatischen WLAN-Konfiguration wurde eine eingeschränkte Konnektivität erkannt, "Reset/Recover.adapter" wird ausgeführt.

 Code: 1 0xc 0x4

Error: (06/22/2016 12:41:35 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000001a (0x0000000000041284, 0x000002beb5410000, 0x0000000000000000, 0xfffff58010804000)C:\WINDOWS\MEMORY.DMPdb48f9ac-aa5a-4afc-9c52-b5f6c0b9ffd7

Error: (06/22/2016 12:40:41 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎22.‎06.‎2016 um 11:48:51 unerwartet heruntergefahren.

Error: (06/22/2016 12:03:14 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/22/2016 10:54:02 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/22/2016 08:40:20 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/22/2016 12:11:09 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar


CodeIntegrity:
===================================
  Date: 2016-06-21 10:32:29.610
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-19 13:30:28.245
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-18 09:43:02.253
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-16 13:08:37.254
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-06-13 16:27:26.779
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-29 11:01:22.923
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-22 22:43:41.029
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-21 23:38:32.880
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-20 05:51:22.551
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-05-17 03:14:35.029
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Prozentuale Nutzung des RAM: 64%
Installierter physikalischer RAM: 3979.2 MB
Verfügbarer physikalischer RAM: 1406.21 MB
Summe virtueller Speicher: 7051.2 MB
Verfügbarer virtueller Speicher: 4076 MB

==================== Laufwerke ================================

Drive c: (Windows8_OS) (Fixed) (Total:426.53 GB) (Free:98.87 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.67 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 7A8D5021)

Partition: GPT.

==================== Ende von Addition.txt ============================
         

Alt 23.06.2016, 20:18   #2
burningice
/// Malwareteam
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt




Mein Name ist Rafael und ich werde dir bei der Bereinigung helfen.

Damit ich dir optimal helfen kann, halte dich bitte an folgende Regeln:
  • Bitte lies meine Posts komplett durch bevor du sie abarbeitest
  • Wenn ein Problem auftauchen sollte oder dir etwas unklar ist, unterbreche deine Arbeit und beschreibe es so genau wie möglich.
  • Bitte kein Crossposting
  • Installiere oder Deinstalliere keine Software ohne Aufforderung
  • Bitte verwende nur die Tools, welche hier im Thread erwähnt werden und führe sie nur gemäß Anweisung aus
  • Bitte antworte innerhalb von 24h um eine sinnvolle Bereinigung zu ermöglichen
  • Poste die Logs immer in CODE-Tags (#-Button), zur Not die Logs einfach aufteilen
  • Wichtig: Nur weil dein Problem mit einem Schritt plötzlich behoben ist, bedeutet das nicht, dass dein PC auch sauber ist. Mache solange weiter, bis ich dir sage, dass dein PC "clean" ist
  • Wenn ich dir nicht binnen 36h antworte, sende mir bitte eine persönliche Nachricht!
Los geht's

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________

__________________

Alt 24.06.2016, 00:24   #3
FCK191
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Hallo,

hier der Log von TDSSKiller:

Code:
ATTFilter
23:54:05.0752 0x28a4  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
23:54:05.0753 0x28a4  UEFI system
23:54:11.0950 0x28a4  ============================================================
23:54:11.0950 0x28a4  Current date / time: 2016/06/23 23:54:11.0950
23:54:11.0950 0x28a4  SystemInfo:
23:54:11.0987 0x28a4  
23:54:11.0987 0x28a4  OS Version: 10.0.10586 ServicePack: 0.0
23:54:11.0987 0x28a4  Product type: Workstation
23:54:11.0987 0x28a4  ComputerName: FLORIANS-YOGA
23:54:11.0988 0x28a4  UserName: Florian
23:54:11.0988 0x28a4  Windows directory: C:\WINDOWS
23:54:11.0988 0x28a4  System windows directory: C:\WINDOWS
23:54:11.0988 0x28a4  Running under WOW64
23:54:11.0988 0x28a4  Processor architecture: Intel x64
23:54:11.0988 0x28a4  Number of processors: 4
23:54:11.0988 0x28a4  Page size: 0x1000
23:54:11.0988 0x28a4  Boot type: Normal boot
23:54:11.0988 0x28a4  ============================================================
23:54:12.0302 0x28a4  KLMD registered as C:\WINDOWS\system32\drivers\52171047.sys
23:54:12.0722 0x28a4  System UUID: {D47C25CF-9A10-D4A5-396E-D9ABDAE7C480}
23:54:13.0516 0x28a4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:54:13.0533 0x28a4  ============================================================
23:54:13.0533 0x28a4  \Device\Harddisk0\DR0:
23:54:13.0533 0x28a4  GPT partitions:
23:54:13.0534 0x28a4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D2EC9200-2844-40F8-99B9-851883C3C21F}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1F4000
23:54:13.0534 0x28a4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {77AF8F7E-CE96-4FC4-A309-89BB4F657870}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
23:54:13.0534 0x28a4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {1AE739E9-6AB6-4360-B63E-D526BE302C06}, Name: Basic data partition, StartLBA 0x276800, BlocksNum 0x1F4000
23:54:13.0534 0x28a4  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {D8CA5B65-8561-41D6-8B46-DA91F1E64C33}, Name: Microsoft reserved partition, StartLBA 0x46A800, BlocksNum 0x40000
23:54:13.0534 0x28a4  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {29ADB13A-B448-4B23-9111-013886477D26}, Name: Basic data partition, StartLBA 0x4AA800, BlocksNum 0x3550F800
23:54:13.0534 0x28a4  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {2386AD1F-6408-4DB3-A8D1-17001CA27300}, Name: Basic data partition, StartLBA 0x359BA000, BlocksNum 0x3200000
23:54:13.0535 0x28a4  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {DC16D796-CC41-4D73-82E7-BCA858A16411}, Name: Basic data partition, StartLBA 0x38BBA000, BlocksNum 0x17CC000
23:54:13.0535 0x28a4  MBR partitions:
23:54:13.0535 0x28a4  ============================================================
23:54:13.0544 0x28a4  C: <-> \Device\Harddisk0\DR0\Partition5
23:54:13.0569 0x28a4  D: <-> \Device\Harddisk0\DR0\Partition6
23:54:13.0569 0x28a4  ============================================================
23:54:13.0569 0x28a4  Initialize success
23:54:13.0569 0x28a4  ============================================================
23:55:34.0817 0x0ee8  ============================================================
23:55:34.0817 0x0ee8  Scan started
23:55:34.0817 0x0ee8  Mode: Manual; SigCheck; TDLFS; 
23:55:34.0817 0x0ee8  ============================================================
23:55:34.0817 0x0ee8  KSN ping started
23:55:35.0063 0x0ee8  KSN ping finished: true
23:55:37.0260 0x0ee8  ================ Scan system memory ========================
23:55:37.0260 0x0ee8  System memory - ok
         
__________________

Alt 24.06.2016, 00:33   #4
FCK191
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Teil 2:

Code:
ATTFilter
23:55:37.0264 0x0ee8  ================ Scan services =============================
23:55:37.0445 0x0ee8  [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
23:55:37.0623 0x0ee8  1394ohci - ok
23:55:37.0658 0x0ee8  [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
23:55:37.0726 0x0ee8  3ware - ok
23:55:37.0784 0x0ee8  [ 469441BAE3FF8A16826FC62C51EF5E18, E1204677B87F47222D05F670F8DF3DB65EA0881782A8DCFBE0103478ED71187C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
23:55:37.0841 0x0ee8  ACPI - ok
23:55:37.0861 0x0ee8  [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
23:55:37.0894 0x0ee8  acpiex - ok
23:55:37.0905 0x0ee8  [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
23:55:37.0957 0x0ee8  acpipagr - ok
23:55:37.0982 0x0ee8  [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
23:55:38.0065 0x0ee8  AcpiPmi - ok
23:55:38.0082 0x0ee8  [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
23:55:38.0134 0x0ee8  acpitime - ok
23:55:38.0155 0x0ee8  [ E5D1706CE2BFC9127655B194839BEDB5, 742AB5BF63314DF6156523039E442F6F174FF2A57C5FA31835E368D2C5485C63 ] ACPIVPC         C:\WINDOWS\System32\drivers\AcpiVpc.sys
23:55:38.0201 0x0ee8  ACPIVPC - ok
23:55:38.0243 0x0ee8  [ 36114214BF8D7C464D1E92E4EB6B2DD3, 8E7CB266D4ABCDF332A3D4D341753811D51B72985E36F24A7E757DCA11A65A2A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:55:38.0276 0x0ee8  AdobeARMservice - ok
23:55:38.0417 0x0ee8  [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
23:55:38.0678 0x0ee8  ADP80XX - ok
23:55:38.0763 0x0ee8  [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
23:55:38.0825 0x0ee8  AFD - ok
23:55:38.0873 0x0ee8  [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
23:55:38.0903 0x0ee8  agp440 - ok
23:55:38.0945 0x0ee8  [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
23:55:39.0024 0x0ee8  ahcache - ok
23:55:39.0064 0x0ee8  [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
23:55:39.0169 0x0ee8  AJRouter - ok
23:55:39.0207 0x0ee8  [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG             C:\WINDOWS\System32\alg.exe
23:55:39.0295 0x0ee8  ALG - ok
23:55:39.0323 0x0ee8  [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
23:55:39.0407 0x0ee8  AmdK8 - ok
23:55:39.0432 0x0ee8  [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
23:55:39.0488 0x0ee8  AmdPPM - ok
23:55:39.0521 0x0ee8  [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
23:55:39.0560 0x0ee8  amdsata - ok
23:55:39.0590 0x0ee8  [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
23:55:39.0665 0x0ee8  amdsbs - ok
23:55:39.0697 0x0ee8  [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
23:55:39.0731 0x0ee8  amdxata - ok
23:55:39.0811 0x0ee8  [ 157DA3885AA4F03C80C10DAEB0949CAA, 69EA1C9F904FBDFE904A3BC52CB0E188AF18A93EA87A119E5E6234C6F5D4742E ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
23:55:39.0901 0x0ee8  AntiVirMailService - ok
23:55:39.0929 0x0ee8  [ BD65021AB0EC790AECC503C394E61BA4, 51AD9C6F1192A3604902AE4F3B4B791DF1D58EA0B39B12AE4FA38F59E02F6D68 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
23:55:39.0967 0x0ee8  AntiVirSchedulerService - ok
23:55:39.0994 0x0ee8  [ BD65021AB0EC790AECC503C394E61BA4, 51AD9C6F1192A3604902AE4F3B4B791DF1D58EA0B39B12AE4FA38F59E02F6D68 ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
23:55:40.0033 0x0ee8  AntiVirService - ok
23:55:40.0119 0x0ee8  [ CF586007CB1F9189CDF07D0D5A02C448, 7BA6E27A835A0851C12A7A115C24665631CC77D857DAF32D24BF2D2AF676FE30 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
23:55:40.0231 0x0ee8  AntiVirWebService - ok
23:55:40.0297 0x0ee8  [ EDDB0D726DBECDFC1DBCC6DB464E5A13, 98D128D1E6FA270ED9ADBFE50078F68A794C00D4CBB86E28EC6161FFAD0CA8FF ] AppID           C:\WINDOWS\system32\drivers\appid.sys
23:55:40.0341 0x0ee8  AppID - ok
23:55:40.0350 0x0ee8  [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
23:55:40.0456 0x0ee8  AppIDSvc - ok
23:55:40.0468 0x0ee8  [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
23:55:40.0529 0x0ee8  Appinfo - ok
23:55:40.0577 0x0ee8  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:55:40.0608 0x0ee8  Apple Mobile Device Service - ok
23:55:40.0652 0x0ee8  [ 610499A73DF3599608EBB6B3F9929052, A9CA49C4A39A825916AB3791090BCFC7044FDB6B2C3538E01F0CFBC2A9931152 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
23:55:40.0768 0x0ee8  AppReadiness - ok
23:55:40.0905 0x0ee8  [ 1CF69EF4E2844F9D297F309CF80122CB, 577428E4A364212AA5E650059C99139B8F9F4952DF228D6150D6B93E7D06AF61 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
23:55:41.0102 0x0ee8  AppXSvc - ok
23:55:41.0143 0x0ee8  [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
23:55:41.0185 0x0ee8  arcsas - ok
23:55:41.0203 0x0ee8  [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
23:55:41.0279 0x0ee8  AsyncMac - ok
23:55:41.0300 0x0ee8  [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
23:55:41.0325 0x0ee8  atapi - ok
23:55:41.0363 0x0ee8  [ 42BF7FA295F453618104B5A50BEE105B, AB44BA2AD2FC5AF3B6BE4489C444C03FD1AB02C22109BF5F39BE459294C4CB18 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
23:55:41.0515 0x0ee8  AudioEndpointBuilder - ok
23:55:41.0577 0x0ee8  [ 2A2C0983B6FE62F02E7183335B1F5C20, 07845269FE72894D31D3FC927EECE26333AE9A2149A995DA4AE007276B05C647 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
23:55:41.0734 0x0ee8  Audiosrv - ok
23:55:41.0751 0x0ee8  [ 5CF5E80616F74B769AABCF76FEA791D1, CA56643D41DB4E139FE85098DCD67187AAC126CE2414276364A97334E15F9F53 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
23:55:41.0785 0x0ee8  avgntflt - ok
23:55:41.0800 0x0ee8  [ 8EF22CC03EFA1CB6810003C6A3B287D3, 352FE3194713D86BBD900A74AF033D5FE96A71389CC63DFC4821B43A55837206 ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
23:55:41.0836 0x0ee8  avipbb - ok
23:55:41.0882 0x0ee8  [ 6458B31DE5443B766DEEFFDF09CAC656, 73449444C38E8D78DE441C3A391B85E181D064FD3B595C3C27CD0DB13CA64645 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
23:55:41.0908 0x0ee8  Avira.ServiceHost - ok
23:55:41.0920 0x0ee8  [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
23:55:41.0950 0x0ee8  avkmgr - ok
23:55:41.0962 0x0ee8  [ 899D89FDF015BBAF628076987D74C295, 7534A10F652FBE559431B9B1C6BC13874E8BC7438D7AFD7553F96811FD3E59BD ] avnetflt        C:\WINDOWS\system32\DRIVERS\avnetflt.sys
23:55:41.0993 0x0ee8  avnetflt - ok
23:55:42.0023 0x0ee8  [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
23:55:42.0069 0x0ee8  AxInstSV - ok
23:55:42.0105 0x0ee8  [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
23:55:42.0174 0x0ee8  b06bdrv - ok
23:55:42.0203 0x0ee8  [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
23:55:42.0269 0x0ee8  BasicDisplay - ok
23:55:42.0285 0x0ee8  [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
23:55:42.0333 0x0ee8  BasicRender - ok
23:55:42.0367 0x0ee8  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\WINDOWS\System32\drivers\bcmfn.sys
23:55:42.0423 0x0ee8  bcmfn - ok
23:55:42.0432 0x0ee8  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
23:55:42.0484 0x0ee8  bcmfn2 - ok
23:55:42.0524 0x0ee8  [ F374C27099807E99A156953F8416D34A, D267B8CD837290F9FC6B4FFD2DB8F54867D808FB155698FC7713BCAB3AE475B5 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
23:55:42.0608 0x0ee8  BDESVC - ok
23:55:42.0632 0x0ee8  [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
23:55:42.0704 0x0ee8  Beep - ok
23:55:42.0756 0x0ee8  [ 37F5E2385CB4D10AB42186974B9C241A, D38FA2B8CE19AC32056060F04B04D031F1621C07528DEDCCD5A8C01AB0A35995 ] BFE             C:\WINDOWS\System32\bfe.dll
23:55:42.0874 0x0ee8  BFE - ok
23:55:42.0944 0x0ee8  [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS            C:\WINDOWS\System32\qmgr.dll
23:55:43.0153 0x0ee8  BITS - ok
23:55:43.0190 0x0ee8  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:55:43.0230 0x0ee8  Bonjour Service - ok
23:55:43.0244 0x0ee8  [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
23:55:43.0320 0x0ee8  bowser - ok
23:55:43.0400 0x0ee8  [ 4F2621E187382D22045D0BC65B23858E, E6AB3B1EB13446128BA69A4D0B00BCA36625BB656F0056D3D43F3A252F6F09AC ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
23:55:43.0500 0x0ee8  BrokerInfrastructure - ok
23:55:43.0515 0x0ee8  [ A617BE5E429A035A1CA8217C1B16F0BB, 197EE6C6EB22FF8A626540886F5A2163CC4CB177504C5423856F54BF01EB0FF1 ] Browser         C:\WINDOWS\System32\browser.dll
23:55:43.0597 0x0ee8  Browser - ok
23:55:43.0625 0x0ee8  [ FF4E89D75628B3780716CB6C87AC1CE2, 797713EA165810FADBB5CACA855B4A1E76601641C256C3A3D9C673460349C08A ] BthA2DP         C:\WINDOWS\system32\drivers\BthA2DP.sys
23:55:43.0688 0x0ee8  BthA2DP - ok
23:55:43.0699 0x0ee8  [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
23:55:43.0765 0x0ee8  BthAvrcpTg - ok
23:55:43.0779 0x0ee8  [ 3C7DE7B7CAD633CD2DA07710BC17361C, 50FFC48E02E132297AD6FF7FC1B7278EB39ABF0BCFAC65D58FD1A8BB01B016F3 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
23:55:43.0851 0x0ee8  BthEnum - ok
23:55:43.0861 0x0ee8  [ 0B10EFF40BBAF466D729B105CA51AAFC, 4FF1AECA2284622E8E1442CA6BF91AF4C10EAE89B111ADC4A7DD116517975BF8 ] BthHFAud        C:\WINDOWS\system32\DRIVERS\BthHfAud.sys
23:55:43.0892 0x0ee8  BthHFAud - ok
23:55:43.0905 0x0ee8  [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
23:55:43.0961 0x0ee8  BthHFEnum - ok
23:55:43.0971 0x0ee8  [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
23:55:44.0002 0x0ee8  bthhfhid - ok
23:55:44.0040 0x0ee8  [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
23:55:44.0091 0x0ee8  BthHFSrv - ok
23:55:44.0120 0x0ee8  [ 3B3BF88BB54CB9A18DE1EF07292B5A3D, 7B9C1E7E07435B976E4AE89425F10541E1DEB153172A375CBC2D03A4D7B7F3D2 ] BthLEEnum       C:\WINDOWS\System32\drivers\BthLEEnum.sys
23:55:44.0203 0x0ee8  BthLEEnum - ok
23:55:44.0231 0x0ee8  [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
23:55:44.0283 0x0ee8  BTHMODEM - ok
23:55:44.0311 0x0ee8  [ 09C3DB1B137B269A822F941D867A6BB6, CC99FBD76DA19D951864D4967EA9F3C048811E9BB7BBB67B724FC82A50B14516 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
23:55:44.0375 0x0ee8  BthPan - ok
23:55:44.0433 0x0ee8  [ FFB773E4AA55E4F5FBBB084B41D7A86F, 911ED632DC4A234410D4A87565F55D27BFF2A050669031C868A3F5C6220DCA5A ] BTHPORT         C:\WINDOWS\System32\drivers\BTHport.sys
23:55:44.0543 0x0ee8  BTHPORT - ok
23:55:44.0570 0x0ee8  [ 7A177E18AA6A6A6365E6351C2BF8EDAE, A35224A20014B1215A6824AE5E17B8869A775EA272EF7F25EAFFA18733F8D09D ] bthserv         C:\WINDOWS\system32\bthserv.dll
23:55:44.0624 0x0ee8  bthserv - ok
23:55:44.0636 0x0ee8  [ BE265ABFB467BBAC8C73A55AD94F4216, 21186F398D700089397EAE4AC1B1197C7EB592AE0CC5FF5972000957472393CC ] BTHUSB          C:\WINDOWS\System32\drivers\BTHUSB.sys
23:55:44.0680 0x0ee8  BTHUSB - ok
23:55:44.0712 0x0ee8  [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
23:55:44.0762 0x0ee8  buttonconverter - ok
23:55:44.0794 0x0ee8  [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
23:55:44.0962 0x0ee8  CapImg - ok
23:55:45.0083 0x0ee8  [ 01E4118E5850159F988EB4C54069B4CC, 980773022D70440FBEF5D8B747C5D40E6496F1CBCD886DE9F441E171507A48C5 ] CCSDK           C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
23:55:45.0156 0x0ee8  CCSDK - ok
23:55:45.0182 0x0ee8  [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
23:55:45.0253 0x0ee8  cdfs - ok
23:55:45.0291 0x0ee8  [ 0A92DC116CFC7F6BE8167DD25CB925CC, 50CAC7BE14FF69B10C029E049F7C441A5572540F027F95F940B185C76C689409 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
23:55:45.0360 0x0ee8  CDPSvc - ok
23:55:45.0376 0x0ee8  [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
23:55:45.0442 0x0ee8  cdrom - ok
23:55:45.0475 0x0ee8  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
23:55:45.0543 0x0ee8  CertPropSvc - ok
23:55:45.0570 0x0ee8  [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
23:55:45.0603 0x0ee8  circlass - ok
23:55:45.0634 0x0ee8  [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
23:55:45.0686 0x0ee8  CLFS - ok
23:55:45.0837 0x0ee8  [ 1475C7821E9E919D14817D46C830D28B, 4ACC419736027184278915345BF10CBAAFB93B6F50A789CBC675FA126DAFC1A6 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
23:55:45.0998 0x0ee8  ClickToRunSvc - ok
23:55:46.0056 0x0ee8  [ F7526C133AC265F283012E9CD751F873, 6AABDD92FD880F49F63C1CC478C3D8291AF670802CEC58B32730E7675D858D88 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
23:55:46.0114 0x0ee8  ClipSVC - ok
23:55:46.0142 0x0ee8  [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
23:55:46.0190 0x0ee8  CmBatt - ok
23:55:46.0251 0x0ee8  [ 3F7C80D9F16B94367646CBF8B8C052F4, 3F33980348E92876CD2A367C31E4B959C92BA6572266B1C75CB0C062095DFCB7 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
23:55:46.0311 0x0ee8  CNG - ok
23:55:46.0336 0x0ee8  [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
23:55:46.0363 0x0ee8  cnghwassist - ok
23:55:46.0425 0x0ee8  [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
23:55:46.0460 0x0ee8  CompositeBus - ok
23:55:46.0469 0x0ee8  COMSysApp - ok
23:55:46.0496 0x0ee8  [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
23:55:46.0523 0x0ee8  condrv - ok
23:55:46.0562 0x0ee8  [ 86BE19C6A177AEB93302EA5C4FBE2D11, 5404AB84D270549B1A46574EBDC857525F71B117BE3BA0098FA0A696E56D5C39 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
23:55:46.0634 0x0ee8  CoreMessagingRegistrar - ok
23:55:46.0719 0x0ee8  [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
23:55:46.0795 0x0ee8  cphs - ok
23:55:46.0814 0x0ee8  [ 9E79A2208A9ED205A7383CBC92C28053, 2E6599DF30DF19BD7BE6FEF1B21FED7F349A3F2306CC5CFDB767ABA7283E8A55 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
23:55:46.0879 0x0ee8  CryptSvc - ok
23:55:46.0899 0x0ee8  [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam             C:\WINDOWS\system32\drivers\dam.sys
23:55:46.0927 0x0ee8  dam - ok
23:55:46.0971 0x0ee8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:55:46.0993 0x0ee8  dbupdate - ok
23:55:47.0006 0x0ee8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
23:55:47.0026 0x0ee8  dbupdatem - ok
23:55:47.0092 0x0ee8  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
23:55:47.0213 0x0ee8  DcomLaunch - ok
23:55:47.0252 0x0ee8  [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
23:55:47.0401 0x0ee8  DcpSvc - ok
23:55:47.0443 0x0ee8  [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
23:55:47.0534 0x0ee8  defragsvc - ok
23:55:47.0562 0x0ee8  [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
23:55:47.0671 0x0ee8  DeviceAssociationService - ok
23:55:47.0731 0x0ee8  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
23:55:47.0781 0x0ee8  DeviceInstall - ok
23:55:47.0806 0x0ee8  [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
23:55:47.0869 0x0ee8  DevQueryBroker - ok
23:55:47.0899 0x0ee8  [ 935823F79CBEDB91637B63D37E3A5A36, BE9A46F1CA631B9252C71758901D55456DC3C143053003D9FA7D67811A1E5026 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
23:55:47.0951 0x0ee8  Dfsc - ok
23:55:47.0988 0x0ee8  [ D461D2BECEFA661291EB1B748A8D2CCB, 7275859FCDE58DE6C0C683AFDAD910EB4602336CC724EEE42495A8839213469D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
23:55:48.0093 0x0ee8  Dhcp - ok
23:55:48.0127 0x0ee8  [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
23:55:48.0222 0x0ee8  diagnosticshub.standardcollector.service - ok
23:55:48.0321 0x0ee8  [ 15D174719872A30F2FDD6B5B1B8BA5D9, B0E6FF6FC47B731C204F110D4B768231906B144B31F602ECE8EAC24D70BA880D ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
23:55:48.0433 0x0ee8  DiagTrack - ok
23:55:48.0460 0x0ee8  [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk            C:\WINDOWS\system32\drivers\disk.sys
23:55:48.0490 0x0ee8  disk - ok
23:55:48.0530 0x0ee8  [ E32F15E26724F3BB6423FB29FF3E2A8F, E8CF9829D2A74F4423424F8D169E726B88F50734F0B1ADC735691C37C9F32DAA ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
23:55:48.0616 0x0ee8  DmEnrollmentSvc - ok
23:55:48.0627 0x0ee8  [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
23:55:48.0691 0x0ee8  dmvsc - ok
23:55:48.0716 0x0ee8  [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
23:55:48.0814 0x0ee8  dmwappushservice - ok
23:55:48.0836 0x0ee8  [ 5839A317C25F70979433E0905DFABB1B, 7F1CD50C77A33A10259D8A208A355BE7ECAFEA69F810AD908EF8878A792741AF ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
23:55:48.0940 0x0ee8  Dnscache - ok
23:55:48.0987 0x0ee8  [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
23:55:49.0069 0x0ee8  dot3svc - ok
23:55:49.0085 0x0ee8  [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS             C:\WINDOWS\system32\dps.dll
23:55:49.0146 0x0ee8  DPS - ok
23:55:49.0183 0x0ee8  [ FDD3433E2D8F39B1E28FF8A227EA8CE7, 936461E01DC38B71D3E33A53ACC11FD318B2F509F7E5081630FC59AA8E4E0E15 ] DptfDevAcpiProc C:\WINDOWS\system32\DRIVERS\DptfDevAcpiProc.sys
23:55:49.0231 0x0ee8  DptfDevAcpiProc - ok
23:55:49.0269 0x0ee8  [ 7E0666280CD9E7602EEDBF705BA329A4, E26F3D21029F6C6804B1CF2A834696780CE7E79C3054922FEBD60B8B77C6271C ] DptfManager     C:\WINDOWS\system32\DRIVERS\DptfManager.sys
23:55:49.0331 0x0ee8  DptfManager - ok
23:55:49.0357 0x0ee8  [ 61604B1CD2D6C88A8478BEA5FBB3D6DA, 8DDA69B9C66EACF001259FC4159CF49239A21FD052683D026105A07C10D4FC12 ] DptfParticipantAcpiProcessorService C:\WINDOWS\system32\DptfParticipantProcessorService.exe
23:55:49.0394 0x0ee8  DptfParticipantAcpiProcessorService - ok
23:55:49.0409 0x0ee8  [ EBC0605EA4217F54AC20A21CC425DB49, C045760ABFD6A0A3416E253EA3454FA308B6D5CB50B85573269A255554680F15 ] DptfPolicyCriticalService C:\WINDOWS\system32\DptfPolicyCriticalService.exe
23:55:49.0434 0x0ee8  DptfPolicyCriticalService - ok
23:55:49.0481 0x0ee8  [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
23:55:49.0507 0x0ee8  drmkaud - ok
23:55:49.0530 0x0ee8  [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
23:55:49.0623 0x0ee8  DsmSvc - ok
23:55:49.0647 0x0ee8  [ FBC8C56814642A7CA88ACBCA8DD1121F, 108690704A359991C3D6577477E232F5F2F46B36DF6B4B0738A893EF05D7D4EB ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
23:55:49.0710 0x0ee8  DsSvc - ok
23:55:49.0811 0x0ee8  [ 8B83335B6A86F39785FC7C9DE5F5B29F, 2B9D6BB75E0AB6408C685EBB2CEC6291D7B1F41486E30CAB1EC132C83455CE3D ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
23:55:49.0943 0x0ee8  DXGKrnl - ok
23:55:49.0974 0x0ee8  [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
23:55:50.0035 0x0ee8  Eaphost - ok
23:55:50.0206 0x0ee8  [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
23:55:50.0479 0x0ee8  ebdrv - ok
23:55:50.0500 0x0ee8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS             C:\WINDOWS\System32\lsass.exe
23:55:50.0531 0x0ee8  EFS - ok
23:55:50.0557 0x0ee8  [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
23:55:50.0586 0x0ee8  EhStorClass - ok
23:55:50.0615 0x0ee8  [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
23:55:50.0646 0x0ee8  EhStorTcgDrv - ok
23:55:50.0667 0x0ee8  [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
23:55:50.0744 0x0ee8  embeddedmode - ok
23:55:50.0780 0x0ee8  [ 062152DD5B225518A991DFCD8536770C, 5C8EF4E0C7DE3B24387FF239A8D0CDA39C2376826F16EAFF09739A6C7EDA01E0 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
23:55:50.0866 0x0ee8  EntAppSvc - ok
23:55:50.0887 0x0ee8  [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
23:55:50.0935 0x0ee8  ErrDev - ok
23:55:50.0988 0x0ee8  [ 75F8FAABB43E84185E46D659DB5ED62D, 7CF6FAA84E040DFAC073874FD92E9750AD19F8359C462145C14732906ACAD3EF ] ETD             C:\WINDOWS\system32\DRIVERS\ETD.sys
23:55:51.0040 0x0ee8  ETD - ok
23:55:51.0071 0x0ee8  [ D76E3507ABA5E5E852EA183157345DBF, 6BB197226C3E8643940604CD2AF91F5AC78FC98BD9D26D9090047296568D95BC ] ETDService      C:\Program Files\Elantech\ETDService.exe
23:55:51.0107 0x0ee8  ETDService - ok
23:55:51.0146 0x0ee8  [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem     C:\WINDOWS\system32\es.dll
23:55:51.0231 0x0ee8  EventSystem - ok
23:55:51.0266 0x0ee8  [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
23:55:51.0348 0x0ee8  exfat - ok
23:55:51.0387 0x0ee8  [ C330883C06E2D4CE4F6982F048265D37, 26044DE176056B7F5BF2A50A659243CFD7F25CFEE035B3A3C3165B3699872926 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
23:55:51.0432 0x0ee8  fastfat - ok
23:55:51.0479 0x0ee8  [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax             C:\WINDOWS\system32\fxssvc.exe
23:55:51.0566 0x0ee8  Fax - ok
23:55:51.0578 0x0ee8  [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
23:55:51.0631 0x0ee8  fdc - ok
23:55:51.0640 0x0ee8  [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
23:55:51.0684 0x0ee8  fdPHost - ok
23:55:51.0694 0x0ee8  [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
23:55:51.0747 0x0ee8  FDResPub - ok
23:55:51.0776 0x0ee8  [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
23:55:51.0824 0x0ee8  fhsvc - ok
23:55:51.0861 0x0ee8  [ 8F2523C9D8F1448FF2156452AF60FA00, 1D39CA54F5F1E62385D9EC041F9445BDDCB63740859B9418AE904FDF3D8388ED ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
23:55:51.0906 0x0ee8  FileCrypt - ok
23:55:51.0927 0x0ee8  [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
23:55:51.0957 0x0ee8  FileInfo - ok
23:55:51.0967 0x0ee8  [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
23:55:52.0011 0x0ee8  Filetrace - ok
23:55:52.0020 0x0ee8  [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
23:55:52.0052 0x0ee8  flpydisk - ok
23:55:52.0084 0x0ee8  [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
23:55:52.0128 0x0ee8  FltMgr - ok
23:55:52.0213 0x0ee8  [ 4387DE200BF8DD0E2EE828E655434B9A, 9148D65E54663EEC139E754091F47ABF439A637BEA83F600D30736522DAA845D ] FontCache       C:\WINDOWS\system32\FntCache.dll
23:55:52.0402 0x0ee8  FontCache - ok
23:55:52.0474 0x0ee8  [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:55:52.0497 0x0ee8  FontCache3.0.0.0 - ok
23:55:52.0515 0x0ee8  [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
23:55:52.0542 0x0ee8  FsDepends - ok
23:55:52.0554 0x0ee8  [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:55:52.0580 0x0ee8  Fs_Rec - ok
23:55:52.0623 0x0ee8  [ 50DFE05C698E9B0A63D95E3D669A105C, 3A7D5AE4A01B90C2ECF22AD2783A84C2329EAB9BACFA5237A7DCC3DC5995A864 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
23:55:52.0683 0x0ee8  fvevol - ok
23:55:52.0709 0x0ee8  [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
23:55:52.0737 0x0ee8  gagp30kx - ok
23:55:52.0760 0x0ee8  [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
23:55:52.0800 0x0ee8  gencounter - ok
23:55:52.0831 0x0ee8  [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
23:55:52.0880 0x0ee8  genericusbfn - ok
23:55:52.0890 0x0ee8  [ 794F13178118C609BA4F59111EDB6758, 9B79A3E3ECA4493AE25231C7B158B41571A2960458E0F2DEBE3C8BF40F708188 ] GPIO            C:\WINDOWS\System32\drivers\iaiogpioe.sys
23:55:52.0954 0x0ee8  GPIO - ok
23:55:52.0977 0x0ee8  [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
23:55:53.0009 0x0ee8  GPIOClx0101 - ok
23:55:53.0099 0x0ee8  [ B89C353AFC8F56D961D07FF1FE7B4BCD, C4491A1E33E0151AF3D7589769D4DCFABC68518A22393A7584FB573B47643B2F ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
23:55:53.0297 0x0ee8  gpsvc - ok
23:55:53.0309 0x0ee8  [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
23:55:53.0360 0x0ee8  GpuEnergyDrv - ok
23:55:53.0398 0x0ee8  [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:55:53.0417 0x0ee8  gupdate - ok
23:55:53.0429 0x0ee8  [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:55:53.0448 0x0ee8  gupdatem - ok
23:55:53.0470 0x0ee8  [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
23:55:53.0505 0x0ee8  HDAudBus - ok
23:55:53.0515 0x0ee8  [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
23:55:53.0563 0x0ee8  HidBatt - ok
23:55:53.0593 0x0ee8  [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
23:55:53.0628 0x0ee8  HidBth - ok
23:55:53.0639 0x0ee8  [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
23:55:53.0692 0x0ee8  hidi2c - ok
23:55:53.0703 0x0ee8  [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
23:55:53.0729 0x0ee8  hidinterrupt - ok
23:55:53.0741 0x0ee8  [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
23:55:53.0778 0x0ee8  HidIr - ok
23:55:53.0788 0x0ee8  [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv         C:\WINDOWS\system32\hidserv.dll
23:55:53.0824 0x0ee8  hidserv - ok
23:55:53.0835 0x0ee8  [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
23:55:53.0904 0x0ee8  HidUsb - ok
23:55:53.0935 0x0ee8  [ 7CEC266216126BC9A0E1072E1A7E5702, 6B2C0768C8F2590E65B9520D266C07D1A9D89B9E185CC359B0453F399836759F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
23:55:54.0023 0x0ee8  HomeGroupListener - ok
23:55:54.0065 0x0ee8  [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
23:55:54.0131 0x0ee8  HomeGroupProvider - ok
23:55:54.0154 0x0ee8  [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
23:55:54.0192 0x0ee8  HpSAMD - ok
23:55:54.0245 0x0ee8  [ 63C3F74DC398A1C1A77E39DFB9C312CA, 283A13899838B4313BFBC406E832042696C549640A1AB11E23C0B9E499289836 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
23:55:54.0328 0x0ee8  HTTP - ok
23:55:54.0341 0x0ee8  [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
23:55:54.0366 0x0ee8  hwpolicy - ok
23:55:54.0387 0x0ee8  [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
23:55:54.0459 0x0ee8  hyperkbd - ok
23:55:54.0483 0x0ee8  [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
23:55:54.0535 0x0ee8  i8042prt - ok
23:55:54.0547 0x0ee8  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
23:55:54.0599 0x0ee8  iai2c - ok
23:55:54.0610 0x0ee8  [ F49D75806D962F85C44E32A1AFB9B8E0, DF033C79C478EB2EA82466F1A7CB58FE17E7C23FE0F24E7B18718750E9F98FF3 ] iaioi2c         C:\WINDOWS\System32\drivers\iaioi2ce.sys
23:55:54.0666 0x0ee8  iaioi2c - ok
23:55:54.0704 0x0ee8  [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C    C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
23:55:54.0769 0x0ee8  iaLPSS2i_I2C - ok
23:55:54.0790 0x0ee8  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
23:55:54.0819 0x0ee8  iaLPSSi_GPIO - ok
23:55:54.0832 0x0ee8  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
23:55:54.0891 0x0ee8  iaLPSSi_I2C - ok
23:55:54.0942 0x0ee8  [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
23:55:55.0018 0x0ee8  iaStorAV - ok
23:55:55.0056 0x0ee8  [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
23:55:55.0113 0x0ee8  iaStorV - ok
23:55:55.0138 0x0ee8  [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
23:55:55.0200 0x0ee8  ibbus - ok
23:55:55.0213 0x0ee8  [ F940AE47E43B4C74383268D5144C1129, C3D4BDDE08FEF2C56DA79D658549AE910528FFA809AAC5D1B6974B7CC5DD5EA2 ] iBtSiva         C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
23:55:55.0235 0x0ee8  iBtSiva - ok
23:55:55.0255 0x0ee8  [ 470A04D92087136F147A2C6F31399906, 21D6D440D72FB59165E4C9241740BF6B344BCFDDD379CAC34CEB5B183FCFCF86 ] ibtusb          C:\WINDOWS\system32\DRIVERS\ibtusb.sys
23:55:55.0301 0x0ee8  ibtusb - ok
23:55:55.0315 0x0ee8  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
23:55:55.0355 0x0ee8  ICCS - ok
23:55:55.0379 0x0ee8  [ 57C88C15CEC97318F580D7F4327AAA46, FD3AD83576804DA819F48E3E198FE470420E730F6118AD0E719A91E67C80D3FE ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
23:55:55.0451 0x0ee8  icssvc - ok
23:55:55.0459 0x0ee8  IEEtwCollectorService - ok
23:55:55.0672 0x0ee8  [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
23:55:55.0877 0x0ee8  igfx - ok
23:55:55.0934 0x0ee8  [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
23:55:55.0986 0x0ee8  igfxCUIService1.0.0.0 - ok
23:55:56.0050 0x0ee8  [ 95A03F67830FDCB950E70261128D540D, D052CB703500E2871CF51E015E444F2A99FA9A7579AC422104F0E411F6107BD0 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
23:55:56.0164 0x0ee8  IKEEXT - ok
23:55:56.0201 0x0ee8  [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
23:55:59.0697 0x0ee8  intaud_WaveExtensible - ok
23:55:59.0931 0x0ee8  [ 7EF2C326CFE5BD1E7F5A69F0B4ED67E9, C0B9748BC2B047F941FBB7F439C0CEA458A8C6E9BF017C01C365A8B4BCE8EF0B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
23:56:00.0225 0x0ee8  IntcAzAudAddService - ok
23:56:00.0291 0x0ee8  [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
23:56:00.0333 0x0ee8  IntcDAud - ok
23:56:00.0393 0x0ee8  [ 768DD5CB66952BC4A3BD474757AEE34F, 5A1F91FC8028D84FD83591D60CB7E3B24425C3B0FFF5A9BB0F7CE2E17AAB92D4 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
23:56:00.0534 0x0ee8  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
23:56:00.0589 0x0ee8  Detect skipped due to KSN trusted
23:56:00.0590 0x0ee8  Intel(R) Capability Licensing Service Interface - ok
23:56:00.0687 0x0ee8  [ 7C9ED65324CF268ACBA8024257F782D8, 1DC43DBA3612E26454D7786DEB0538B44A736B67EC99642B4CC574D8A03E0DC7 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
23:56:00.0776 0x0ee8  Intel(R) Capability Licensing Service TCP IP Interface - ok
23:56:00.0839 0x0ee8  [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
23:56:00.0887 0x0ee8  intelide - ok
23:56:00.0915 0x0ee8  [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
23:56:00.0943 0x0ee8  intelpep - ok
23:56:00.0958 0x0ee8  [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
23:56:01.0015 0x0ee8  intelppm - ok
23:56:01.0040 0x0ee8  [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
23:56:01.0103 0x0ee8  IoQos - ok
23:56:01.0113 0x0ee8  [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:56:01.0175 0x0ee8  IpFilterDriver - ok
23:56:01.0246 0x0ee8  [ 5AAB28A6AC2AAC9F66D4EAB6695D0474, BDAB1D04989788EA945C7FE0DE962F0FEC672D9703C271F8469822A91D7462B9 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
23:56:01.0435 0x0ee8  iphlpsvc - ok
23:56:01.0475 0x0ee8  [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
23:56:01.0544 0x0ee8  IPMIDRV - ok
23:56:01.0575 0x0ee8  [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
23:56:01.0650 0x0ee8  IPNAT - ok
23:56:01.0710 0x0ee8  [ 2BFF13AC46A5850161317D0F924B5B42, B8A09F66435EC6582F8772515988503CC13DC200A370EBB8C3FE661F2EA688DA ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
23:56:01.0777 0x0ee8  iPod Service - ok
23:56:01.0797 0x0ee8  [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
23:56:01.0853 0x0ee8  IRENUM - ok
23:56:01.0878 0x0ee8  [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
23:56:01.0906 0x0ee8  isapnp - ok
23:56:01.0942 0x0ee8  [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
23:56:01.0982 0x0ee8  iScsiPrt - ok
23:56:01.0995 0x0ee8  [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
23:56:02.0058 0x0ee8  iwdbus - ok
23:56:02.0098 0x0ee8  [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
23:56:02.0135 0x0ee8  kbdclass - ok
23:56:02.0155 0x0ee8  [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
23:56:02.0208 0x0ee8  kbdhid - ok
23:56:02.0217 0x0ee8  [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
23:56:02.0266 0x0ee8  kdnic - ok
23:56:02.0293 0x0ee8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] KeyIso          C:\WINDOWS\system32\lsass.exe
23:56:02.0325 0x0ee8  KeyIso - ok
23:56:02.0342 0x0ee8  [ ED6314D9982A96A73C95BD634C7FAE66, 034BD8BAE6CC854750DCCDDE59586E0914D87D20448915587CFD2B5537069CAC ] KMDFVirtualKbd  C:\WINDOWS\System32\drivers\KMDFVirtualKbd.sys
23:56:02.0371 0x0ee8  KMDFVirtualKbd - ok
23:56:02.0392 0x0ee8  [ 23E3E79A244E63F416A89640359C78B3, 721EBE47CF5617762DA16E0450B5B2DA857F9B04EA3D167770E2A8CA9D31C77C ] KMDFVirtualMouse C:\WINDOWS\System32\drivers\KMDFVirtualMouse.sys
23:56:02.0416 0x0ee8  KMDFVirtualMouse - ok
23:56:02.0439 0x0ee8  [ 982C795DE20CED7AEDD2E7899B5D9BC1, 9F4E7536DB253CD83AA2AB89E9F3311714CD70F13AFD16F9B4D4CD86A70FC164 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
23:56:02.0472 0x0ee8  KSecDD - ok
23:56:02.0488 0x0ee8  [ 425CFD45BDF5B9F8B790BEB20E0A8721, 0AB57F9C450A53308B41C8C884E92AACF643A74056F14E3D6C49BE2C61614879 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
23:56:02.0524 0x0ee8  KSecPkg - ok
23:56:02.0533 0x0ee8  [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
23:56:02.0564 0x0ee8  ksthunk - ok
23:56:02.0606 0x0ee8  [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
23:56:02.0685 0x0ee8  KtmRm - ok
23:56:02.0714 0x0ee8  [ 8BBB2B4429AF340481520C20C17FC5B6, 9E32815349195FC4B1BE213600FD407F2EAEEC8368289EB3E6B769125A739C08 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
23:56:02.0798 0x0ee8  LanmanServer - ok
23:56:02.0821 0x0ee8  [ 1F5D48B1DA1B812BD2411CA44D75DD32, D1BDB8142CB13E8C6DD6F42E07C9D19BBBF6410D5122A04C01B34B95B442DD95 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
23:56:02.0873 0x0ee8  LanmanWorkstation - ok
23:56:02.0910 0x0ee8  [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
23:56:02.0977 0x0ee8  lfsvc - ok
23:56:02.0992 0x0ee8  [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
23:56:03.0061 0x0ee8  LicenseManager - ok
23:56:03.0072 0x0ee8  [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
23:56:03.0131 0x0ee8  lltdio - ok
23:56:03.0172 0x0ee8  [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
23:56:03.0228 0x0ee8  lltdsvc - ok
23:56:03.0271 0x0ee8  [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
23:56:03.0318 0x0ee8  lmhosts - ok
23:56:03.0350 0x0ee8  [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
23:56:03.0391 0x0ee8  LSI_SAS - ok
23:56:03.0410 0x0ee8  [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
23:56:03.0452 0x0ee8  LSI_SAS2i - ok
23:56:03.0470 0x0ee8  [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
23:56:03.0511 0x0ee8  LSI_SAS3i - ok
23:56:03.0522 0x0ee8  [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
23:56:03.0564 0x0ee8  LSI_SSS - ok
23:56:03.0613 0x0ee8  [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM             C:\WINDOWS\System32\lsm.dll
23:56:03.0709 0x0ee8  LSM - ok
23:56:03.0730 0x0ee8  [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
23:56:03.0796 0x0ee8  luafv - ok
23:56:03.0820 0x0ee8  [ FA2CDF42B3E9F53B12E506BA48BE16AA, 2E3757F21C0F6B5EBBC2F86415C1E858673B94DC4830C675567F3DCC2CD35BE5 ] MapsBroker      C:\WINDOWS\System32\moshost.dll
23:56:03.0906 0x0ee8  MapsBroker - ok
23:56:03.0916 0x0ee8  [ 0D3CF8B876F55291B137B972891C1575, 2E7D0A54D5B2211D340EB56F3D5FCB8362E75415A3C75F553643BA55888DC690 ] MBI             C:\WINDOWS\system32\drivers\MBI.sys
23:56:03.0946 0x0ee8  MBI - ok
23:56:03.0983 0x0ee8  [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
23:56:04.0026 0x0ee8  megasas - ok
23:56:04.0067 0x0ee8  [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
23:56:04.0133 0x0ee8  megasr - ok
23:56:04.0151 0x0ee8  [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
23:56:04.0202 0x0ee8  MessagingService - ok
23:56:04.0440 0x0ee8  [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
23:56:04.0547 0x0ee8  mlx4_bus - ok
23:56:04.0560 0x0ee8  [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
23:56:04.0619 0x0ee8  MMCSS - ok
23:56:04.0642 0x0ee8  [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem           C:\WINDOWS\system32\drivers\modem.sys
23:56:04.0681 0x0ee8  Modem - ok
23:56:04.0691 0x0ee8  [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
23:56:04.0753 0x0ee8  monitor - ok
23:56:04.0773 0x0ee8  [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
23:56:04.0800 0x0ee8  mouclass - ok
23:56:04.0810 0x0ee8  [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
23:56:04.0867 0x0ee8  mouhid - ok
23:56:04.0892 0x0ee8  [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
23:56:04.0922 0x0ee8  mountmgr - ok
23:56:04.0961 0x0ee8  [ 668E653091428C7CDE230DAD5AC87954, 1A52B38D95267FCD4F3B0D59B263DAE4A7169820F725BD1774221C0073FD07AC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:56:05.0003 0x0ee8  MozillaMaintenance - ok
23:56:05.0014 0x0ee8  [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
23:56:05.0072 0x0ee8  mpsdrv - ok
23:56:05.0138 0x0ee8  [ 0B28F2ACE5103586D322AD98FAA01309, CE3053DEB6E452C6DCDFD371CF113EB0D740DED6C1C537CB749D1BE5E97FAB09 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
23:56:05.0273 0x0ee8  MpsSvc - ok
23:56:05.0302 0x0ee8  [ BF6CA7EA5ECD6CF72D3D76652A9B8280, 8EC031D0D8E75CB583B129CBA518701097697498621307108388FA05FBF604BB ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
23:56:05.0399 0x0ee8  MRxDAV - ok
23:56:05.0458 0x0ee8  [ 0B3B0C1D86050355676640488FA897D3, DBED9D6F7AAFB11F4C00C1F69DB7A887A3058E5FA66615A1640242439822B60C ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:56:05.0513 0x0ee8  mrxsmb - ok
23:56:05.0547 0x0ee8  [ 1A490555FD330CA2764D89191177C867, 1004AE2F80BEA9A6DBA3E6B5D2DDFA44FBA253F7137D60B000B094699DE1CB12 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
23:56:05.0667 0x0ee8  mrxsmb10 - ok
23:56:05.0687 0x0ee8  [ 0F47A6C09F0A7FB5513D322A2B9BE4EC, 00A17CB55D232E11F3D24D0B43FE4FA9E55F7EF5E5607B26ED84C13108AAC4FA ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
23:56:05.0727 0x0ee8  mrxsmb20 - ok
23:56:05.0753 0x0ee8  [ A4411C522D41707D5BCA817A5BB9E30B, EF7505BE475ECAB2B5E66A7419EDAF42A7E7A65BAD3BBE346A8CEE5DD69782CC ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
23:56:05.0841 0x0ee8  MsBridge - ok
23:56:05.0870 0x0ee8  [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
23:56:05.0928 0x0ee8  MSDTC - ok
23:56:05.0984 0x0ee8  [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
23:56:06.0022 0x0ee8  Msfs - ok
23:56:06.0049 0x0ee8  [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
23:56:06.0075 0x0ee8  msgpiowin32 - ok
23:56:06.0090 0x0ee8  [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
23:56:06.0155 0x0ee8  mshidkmdf - ok
23:56:06.0164 0x0ee8  [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
23:56:06.0206 0x0ee8  mshidumdf - ok
23:56:06.0216 0x0ee8  [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
23:56:06.0240 0x0ee8  msisadrv - ok
23:56:06.0273 0x0ee8  [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
23:56:06.0354 0x0ee8  MSiSCSI - ok
23:56:06.0364 0x0ee8  msiserver - ok
23:56:06.0408 0x0ee8  [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV         C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
23:56:06.0478 0x0ee8  MSKSSRV - ok
23:56:06.0493 0x0ee8  [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
23:56:06.0536 0x0ee8  MsLldp - ok
23:56:06.0559 0x0ee8  [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK        C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
23:56:06.0602 0x0ee8  MSPCLOCK - ok
23:56:06.0631 0x0ee8  [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM           C:\WINDOWS\system32\DRIVERS\MSPQM.sys
23:56:06.0662 0x0ee8  MSPQM - ok
23:56:06.0692 0x0ee8  [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
23:56:06.0735 0x0ee8  MsRPC - ok
23:56:06.0756 0x0ee8  [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
23:56:06.0783 0x0ee8  mssmbios - ok
23:56:06.0792 0x0ee8  [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE           C:\WINDOWS\system32\DRIVERS\MSTEE.sys
23:56:06.0823 0x0ee8  MSTEE - ok
23:56:06.0846 0x0ee8  [ 4FA0483896FC16583851EFB733FCB083, BB59243ABE32FBE92EC1B04D24239BE2DF7C2354A407C2EFF97623F07DCBDA35 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
23:56:06.0897 0x0ee8  MTConfig - ok
23:56:06.0922 0x0ee8  [ 60F88248608315E13391C2F1C3B4473F, 99E8B74118A01FC281A1C6B323EFD1A8EA1997B81A013442205066F55327D555 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
23:56:06.0954 0x0ee8  Mup - ok
23:56:06.0976 0x0ee8  [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
23:56:07.0044 0x0ee8  mvumis - ok
23:56:07.0100 0x0ee8  [ AA4CD20708B7E0412A5316D7E2875103, 4E60A0865B7656735F3AB34AF5FE48304138F47DE961D4D16661617D711DEBC0 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
23:56:07.0168 0x0ee8  NativeWifiP - ok
23:56:07.0201 0x0ee8  [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
23:56:07.0259 0x0ee8  NcaSvc - ok
23:56:07.0300 0x0ee8  [ 24146738C422814EEB2A98FF1FC5C6E1, 3C70C6768681CE63DED339822EFB36194037B987D92456B9E955061A3A3C63BC ] NcbService      C:\WINDOWS\System32\ncbservice.dll
23:56:07.0403 0x0ee8  NcbService - ok
23:56:07.0423 0x0ee8  [ 476466DC3AB2327E2DBFAEC11798E2EE, 9ACD74720664CF3F239601DF0BE80AC443AF0FBF666CBB8509169364FB22B95D ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
23:56:07.0537 0x0ee8  NcdAutoSetup - ok
23:56:07.0568 0x0ee8  [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
23:56:07.0607 0x0ee8  ndfltr - ok
23:56:07.0680 0x0ee8  [ E582DA849A58524E645545FB68B6625D, B74E2CF078F6C575EFC4A2E4293D03FE6BA933307D656E0E57FFA17EF324948D ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
23:56:07.0767 0x0ee8  NDIS - ok
23:56:07.0795 0x0ee8  [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
23:56:07.0848 0x0ee8  NdisCap - ok
23:56:07.0879 0x0ee8  [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
23:56:07.0938 0x0ee8  NdisImPlatform - ok
23:56:07.0948 0x0ee8  [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:56:07.0991 0x0ee8  NdisTapi - ok
23:56:08.0002 0x0ee8  [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
23:56:08.0034 0x0ee8  Ndisuio - ok
23:56:08.0068 0x0ee8  [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
23:56:08.0102 0x0ee8  NdisVirtualBus - ok
23:56:08.0130 0x0ee8  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
23:56:08.0194 0x0ee8  NdisWan - ok
23:56:08.0212 0x0ee8  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:56:08.0257 0x0ee8  ndiswanlegacy - ok
23:56:08.0302 0x0ee8  [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
23:56:08.0358 0x0ee8  ndproxy - ok
23:56:08.0390 0x0ee8  [ 883A36E2FF7FA3E1281CB575579FE3AF, F1BE02B13C090E2E36BD211055FC980E79BD14F72042773A3619A5143AAEE485 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
23:56:08.0445 0x0ee8  Ndu - ok
23:56:08.0464 0x0ee8  [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
23:56:08.0491 0x0ee8  NetBIOS - ok
23:56:08.0521 0x0ee8  [ C03E926B0E7D66D68994067231DC3246, 1895BE28921431AA78BEF9AFE01411FE8CDA570867E527E4D925E6FAA35D8BC0 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
23:56:08.0606 0x0ee8  NetBT - ok
23:56:08.0628 0x0ee8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] Netlogon        C:\WINDOWS\system32\lsass.exe
23:56:08.0656 0x0ee8  Netlogon - ok
23:56:08.0676 0x0ee8  [ 7FD4C3D32DAE890608F44074A3437CD8, 5B7D9E9AEE26896B818F3C5DBE4C96A33D43CE2CF7716B95AAB7203611C03BFE ] Netman          C:\WINDOWS\System32\netman.dll
23:56:08.0730 0x0ee8  Netman - ok
23:56:08.0801 0x0ee8  [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
23:56:08.0893 0x0ee8  netprofm - ok
23:56:08.0912 0x0ee8  [ A3AA03C0C5002F3D89397637B770A1BA, CB40F8FFE2850C11C9EA309BFDBB97C2C978202AF70D052573D8CF18A0677AEB ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
23:56:08.0978 0x0ee8  NetSetupSvc - ok
23:56:09.0033 0x0ee8  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:56:09.0072 0x0ee8  NetTcpPortSharing - ok
23:56:09.0240 0x0ee8  [ 1F91B1E5FD41BDC3DF8AFFB81C8AA277, B8CB13863C1F0C589C008E191A393DF241F3067DD7CADE02B3B7D36B28BBA2ED ] NETwNb64        C:\WINDOWS\System32\drivers\Netwbw02.sys
23:56:09.0529 0x0ee8  NETwNb64 - ok
23:56:09.0557 0x0ee8  [ 0FB83658FBB2C5A18AB98C5C94DB9FAF, 2D15A49F47D8185D7914D26916D1237FCBE2F8351A64877CDDDDE26E766C3D2F ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
23:56:09.0665 0x0ee8  NgcCtnrSvc - ok
23:56:09.0800 0x0ee8  [ 7AAA9916AA10F4B0E9743798A5BA6549, 2E38EEF3F487A7DD0B719A048FFA0EB36B2487A1068BB322553E9DD2FCE46711 ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
23:56:09.0898 0x0ee8  NgcSvc - ok
23:56:09.0942 0x0ee8  [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
23:56:10.0021 0x0ee8  NlaSvc - ok
23:56:10.0033 0x0ee8  [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
23:56:10.0079 0x0ee8  Npfs - ok
23:56:10.0089 0x0ee8  [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
23:56:10.0136 0x0ee8  npsvctrig - ok
23:56:10.0156 0x0ee8  [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi             C:\WINDOWS\system32\nsisvc.dll
23:56:10.0193 0x0ee8  nsi - ok
23:56:10.0212 0x0ee8  [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
23:56:10.0263 0x0ee8  nsiproxy - ok
23:56:10.0381 0x0ee8  [ 19BD8A88AAC580592668B070AC0727D9, 60DB84895C40E6412BEB2D0E4D7F05891446B9DE992D70579CC90BA3FB27FC01 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
23:56:10.0525 0x0ee8  NTFS - ok
23:56:10.0539 0x0ee8  [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null            C:\WINDOWS\system32\drivers\Null.sys
23:56:10.0570 0x0ee8  Null - ok
23:56:10.0608 0x0ee8  [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
23:56:10.0652 0x0ee8  nvraid - ok
23:56:10.0671 0x0ee8  [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
23:56:10.0715 0x0ee8  nvstor - ok
23:56:10.0743 0x0ee8  [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
23:56:10.0774 0x0ee8  nv_agp - ok
23:56:10.0791 0x0ee8  OKOControlSvc - ok
23:56:10.0827 0x0ee8  [ 7F3A0D052B8E00E730316210B1DD092F, 14BD026EA759F6C81ED6B4DBB04E0584B7F6456725503FC73CD4347B7743005F ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
23:56:10.0903 0x0ee8  OneSyncSvc - ok
23:56:11.0088 0x0ee8  [ 33840F7285A70D308882A23AF6D65D7E, 08506691E5F4AAB76811B1B2BCB9A68731B771F27A0571489E363D26A6EF0D0C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:56:11.0138 0x0ee8  ose - ok
23:56:11.0433 0x0ee8  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:56:11.0852 0x0ee8  osppsvc - ok
23:56:11.0912 0x0ee8  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
23:56:11.0999 0x0ee8  p2pimsvc - ok
23:56:12.0036 0x0ee8  [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
23:56:12.0120 0x0ee8  p2psvc - ok
23:56:12.0146 0x0ee8  [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
23:56:12.0198 0x0ee8  Parport - ok
23:56:12.0211 0x0ee8  [ D330D74B5F99309B5CCA30AE41C57CDE, AE5186CB4B639A5241BF0D17FE8A73D6DAFA505C31E250EA225CD498C8A4A07E ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
23:56:12.0243 0x0ee8  partmgr - ok
23:56:12.0296 0x0ee8  [ 0ECA2ADD5FBCE73183A68935C71B40B7, 08CC5F2F10D1DD1A1396CC29196314003491D3AF3DE59CADB281F252577F1860 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
23:56:12.0350 0x0ee8  PcaSvc - ok
23:56:12.0385 0x0ee8  [ CF78AF126B00C1B0A6FF45BD838E8EFE, AE01B107E1D9072F10F194AEE2AE4F9D75A4EC8FF3A46E45D27E7BF615CE0985 ] pci             C:\WINDOWS\system32\drivers\pci.sys
23:56:12.0429 0x0ee8  pci - ok
23:56:12.0447 0x0ee8  [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
23:56:12.0472 0x0ee8  pciide - ok
23:56:12.0498 0x0ee8  [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
23:56:12.0529 0x0ee8  pcmcia - ok
23:56:12.0549 0x0ee8  [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
23:56:12.0578 0x0ee8  pcw - ok
23:56:12.0600 0x0ee8  [ 67B9684B8272D5EBD1CCBB1DBD425EC8, 09BE2A2EB3A71E594D08B8D817820965DEEAD283029EBB0B74CCC658A2706233 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
23:56:12.0630 0x0ee8  pdc - ok
23:56:12.0679 0x0ee8  [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
23:56:12.0785 0x0ee8  PEAUTH - ok
23:56:12.0814 0x0ee8  [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
23:56:12.0853 0x0ee8  percsas2i - ok
23:56:12.0870 0x0ee8  [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
23:56:12.0908 0x0ee8  percsas3i - ok
23:56:12.0980 0x0ee8  [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
23:56:13.0075 0x0ee8  PerfHost - ok
23:56:13.0119 0x0ee8  [ 00D33CFD7F72083A69C91692D5C48E95, D38EA410FF00F60C73975B32AFC94A10550D2C1288B2999954658C42FBB2687D ] PGService       C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
23:56:13.0160 0x0ee8  PGService - ok
23:56:13.0204 0x0ee8  [ 114F33B738540F264BE80D447A98A262, 7B98155D4B377C32B617936348862DF7687EACB0AFD2C27E340B7F8EA470E209 ] PG_Service_Launcher C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
23:56:13.0242 0x0ee8  PG_Service_Launcher - ok
23:56:13.0298 0x0ee8  [ 57606281E23B0F53347527691E947B2B, 7030182E706CEBE6BD52BDC71CA8F2230AD445AE6554188E76F09A5E2612BD2E ] PhoneSvc        C:\WINDOWS\System32\PhoneService.dll
23:56:13.0436 0x0ee8  PhoneSvc - ok
23:56:13.0474 0x0ee8  [ 04F7878E7017105AB782353231561749, FB2811D98216720D4FDF0AC0EDF16C6CD33D7224B4CAFA752B4D2A839E6DD88A ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
23:56:13.0533 0x0ee8  PimIndexMaintenanceSvc - ok
23:56:13.0757 0x0ee8  [ A546F72EFFE5CBBC98003A0CA19DA0F8, 89AE396676A37D851F46427E421E8E8ED5B4BADC33023F1E215CC352A4110F44 ] pla             C:\WINDOWS\system32\pla.dll
23:56:13.0918 0x0ee8  pla - ok
23:56:13.0948 0x0ee8  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
23:56:13.0999 0x0ee8  PlugPlay - ok
23:56:14.0024 0x0ee8  [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
23:56:14.0072 0x0ee8  PNRPAutoReg - ok
23:56:14.0109 0x0ee8  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
23:56:14.0161 0x0ee8  PNRPsvc - ok
23:56:14.0202 0x0ee8  [ D67052BD0DA9C17BCBBF8AB5B6D354EE, 7FE9B414C74CF69E531B27C506216F7F5CBE00B67E90305A4A4A2ECADAA4F349 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
23:56:14.0303 0x0ee8  PolicyAgent - ok
23:56:14.0321 0x0ee8  [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power           C:\WINDOWS\system32\umpo.dll
23:56:14.0378 0x0ee8  Power - ok
23:56:14.0412 0x0ee8  [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
23:56:14.0465 0x0ee8  PptpMiniport - ok
23:56:14.0641 0x0ee8  [ 15709A9AB1411565754CEE33AAB36387, 77CBC04346F8F247B4614CE65FBD225F0A24827EDD1FDB34900D05673B682D84 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
23:56:15.0007 0x0ee8  PrintNotify - ok
23:56:15.0039 0x0ee8  [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor       C:\WINDOWS\System32\drivers\processr.sys
23:56:15.0089 0x0ee8  Processor - ok
23:56:15.0133 0x0ee8  [ 7E0078F1EFEB6F8F47CF85C1D73C7EBC, 831BC3CE72F29AD259DEE7121D6F785CE0A8462CFB69DD7FB1F3BDAF16CDBF3E ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
23:56:15.0199 0x0ee8  ProfSvc - ok
23:56:15.0228 0x0ee8  [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
23:56:15.0261 0x0ee8  Psched - ok
23:56:15.0295 0x0ee8  [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE           C:\WINDOWS\system32\qwave.dll
23:56:15.0383 0x0ee8  QWAVE - ok
23:56:15.0407 0x0ee8  [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
23:56:15.0438 0x0ee8  QWAVEdrv - ok
23:56:15.0457 0x0ee8  [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:56:15.0536 0x0ee8  RasAcd - ok
23:56:15.0559 0x0ee8  [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
23:56:15.0639 0x0ee8  RasAgileVpn - ok
23:56:15.0690 0x0ee8  [ D60BA4C76D194472D6602FF3D2D51ADE, 01272663897685C75FFBC3F1C0CFDB8D0E1A58182049E0B607D634536A8F6400 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
23:56:15.0739 0x0ee8  RasAuto - ok
23:56:15.0764 0x0ee8  [ E3C82823B22463BC38AA4F8ADA852624, FF601B117F4003E2CC65B6143C2A270331EB257EE82B3BC020247D1AB1CD625F ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
23:56:15.0813 0x0ee8  Rasl2tp - ok
23:56:15.0861 0x0ee8  [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan          C:\WINDOWS\System32\rasmans.dll
23:56:15.0979 0x0ee8  RasMan - ok
23:56:16.0013 0x0ee8  [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:56:16.0071 0x0ee8  RasPppoe - ok
23:56:16.0099 0x0ee8  [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
23:56:16.0137 0x0ee8  RasSstp - ok
23:56:16.0174 0x0ee8  [ 2B648363E4C5E34B469C58596F377DD9, 30F82770468BBA562CEA0E9E39B24ACEFBE022343D0180C82E2ACE8957B73E44 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:56:16.0220 0x0ee8  rdbss - ok
23:56:16.0235 0x0ee8  [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
23:56:16.0281 0x0ee8  rdpbus - ok
23:56:16.0306 0x0ee8  [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
23:56:16.0360 0x0ee8  RDPDR - ok
23:56:16.0399 0x0ee8  [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
23:56:16.0425 0x0ee8  RdpVideoMiniport - ok
23:56:16.0455 0x0ee8  [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
23:56:16.0494 0x0ee8  rdyboost - ok
23:56:16.0555 0x0ee8  [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
23:56:16.0639 0x0ee8  ReFSv1 - ok
23:56:16.0729 0x0ee8  [ 8355BCA85B0928382DFCDD02FCD1681A, F306F038DA09C8D2095C311818E2F991B55BCD96B40B95D2A53A60EA6AC37014 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
23:56:16.0809 0x0ee8  RemoteAccess - ok
23:56:16.0825 0x0ee8  [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
23:56:16.0889 0x0ee8  RemoteRegistry - ok
23:56:16.0995 0x0ee8  [ DF7A59E70F398EEB9FDCDD310987D8AE, 67817FC336B2046351BDEB84A57252D6708E17656CD84FF5BCA85FCA24F430E0 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
23:56:17.0151 0x0ee8  RetailDemo - ok
23:56:17.0170 0x0ee8  [ AEEF76F938188EBF27DF70C1806877F2, 08560C5DE13EBC46EE77F369E92B89350135D5E01A2AF61AA2EA46BEC41EEDD6 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
23:56:17.0224 0x0ee8  RFCOMM - ok
23:56:17.0248 0x0ee8  [ FBA61BB4C484A01A655AFB18FF86C417, D53B2110CB09D0A909C4E330C468351BFE076BB056CCDDCB8ADA2FB91E96352E ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
23:56:17.0295 0x0ee8  RichVideo64 - ok
23:56:17.0307 0x0ee8  [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
23:56:17.0358 0x0ee8  RpcEptMapper - ok
23:56:17.0404 0x0ee8  [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator      C:\WINDOWS\system32\locator.exe
23:56:17.0450 0x0ee8  RpcLocator - ok
23:56:17.0514 0x0ee8  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
23:56:17.0604 0x0ee8  RpcSs - ok
23:56:17.0650 0x0ee8  [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
23:56:17.0711 0x0ee8  rspndr - ok
23:56:17.0783 0x0ee8  [ CF0F908B50CD8FB12B7B69DA56A44681, F35FFF3F6BFBC3B2452C5E0A63D94575236EEB49665BE0FBBB26ADAF189F777E ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
23:56:17.0856 0x0ee8  rt640x64 - ok
23:56:17.0887 0x0ee8  [ BD842BC15BD79F761CBF51B04F27FB1A, 810BA202C09D83615F2BFE6E91538781A0F6238962244E7E2CF82720CC4F1061 ] RTSUER          C:\WINDOWS\system32\Drivers\RtsUer.sys
23:56:17.0947 0x0ee8  RTSUER - ok
23:56:18.0100 0x0ee8  [ 44FD469A4F12C2092CAFE37ED1D44F60, B9001FACDADB2010206EC6DDF75B57BFC88A1C56F0E52DDC3CEC2D2F356A4835 ] rtsuvc          C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
23:56:18.0280 0x0ee8  rtsuvc - ok
23:56:18.0311 0x0ee8  [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
23:56:18.0356 0x0ee8  s3cap - ok
23:56:18.0380 0x0ee8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] SamSs           C:\WINDOWS\system32\lsass.exe
23:56:18.0410 0x0ee8  SamSs - ok
23:56:18.0438 0x0ee8  [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
23:56:18.0469 0x0ee8  sbp2port - ok
23:56:18.0487 0x0ee8  [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
23:56:18.0542 0x0ee8  SCardSvr - ok
23:56:18.0559 0x0ee8  [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
23:56:18.0623 0x0ee8  ScDeviceEnum - ok
23:56:18.0645 0x0ee8  [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
23:56:18.0702 0x0ee8  scfilter - ok
23:56:18.0764 0x0ee8  [ EA195B8BC11C1CDB313CFD456EFFA0E9, EEDF349C59ED0645B04040707906BB4496527243858C2A6BE46BE7029B4A7F37 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
23:56:18.0957 0x0ee8  Schedule - ok
23:56:18.0982 0x0ee8  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
23:56:19.0033 0x0ee8  SCPolicySvc - ok
23:56:19.0063 0x0ee8  [ B24408471C1BCB17FC44F5B47EA8DEA3, 1CFE07C793F2A3D883E9071B8703C01A7619C8C0A02AAEBAA1130F36654AFD4F ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
23:56:19.0120 0x0ee8  sdbus - ok
23:56:19.0136 0x0ee8  [ 811EC0B1221402FCED0BA37E112BF627, 366EB8AF04C603BED6CF53652CC937099B247D5DD8C58D699D0D8DA22F8FDD51 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
23:56:19.0212 0x0ee8  SDRSVC - ok
23:56:19.0231 0x0ee8  [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
23:56:19.0261 0x0ee8  sdstor - ok
23:56:19.0278 0x0ee8  [ EBD07BD20B5E0E92A398566EF8720F79, 8A88C861D4113B9938C32CBD28FD3D7F1C3133E700E23E17F5DFD7B26CCDA04A ] seclogon        C:\WINDOWS\system32\seclogon.dll
23:56:19.0343 0x0ee8  seclogon - ok
23:56:19.0378 0x0ee8  [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS            C:\WINDOWS\System32\sens.dll
23:56:19.0425 0x0ee8  SENS - ok
23:56:19.0512 0x0ee8  [ D14DD7D766664F880FECF44CE6017966, ECF966E3ACF4EBD5A3259468A076619A539E35F1B97AB6A98FBD7882F1FBBBAB ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
23:56:19.0739 0x0ee8  SensorDataService - ok
23:56:19.0789 0x0ee8  [ 45D26646E3AD737E5DE3DB91CCCE7DBA, B05AB32700998C8347BC5797B18EB97F303FCB2302BED852348F2703DEDE72F9 ] SensorService   C:\WINDOWS\system32\SensorService.dll
23:56:19.0855 0x0ee8  SensorService - ok
23:56:19.0874 0x0ee8  [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
23:56:19.0935 0x0ee8  SensrSvc - ok
23:56:19.0960 0x0ee8  [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
23:56:19.0989 0x0ee8  SerCx - ok
23:56:20.0012 0x0ee8  [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
23:56:20.0046 0x0ee8  SerCx2 - ok
23:56:20.0055 0x0ee8  [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
23:56:20.0103 0x0ee8  Serenum - ok
23:56:20.0131 0x0ee8  [ 249A563C48DFD9E42A37587653E003BB, D022FAE2B7AC9D99B9F230A4DF0B045891588162587E1F468B5E05C8DA98AA9A ] Serial          C:\WINDOWS\System32\drivers\serial.sys
23:56:20.0183 0x0ee8  Serial - ok
23:56:20.0193 0x0ee8  [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
23:56:20.0223 0x0ee8  sermouse - ok
23:56:20.0274 0x0ee8  [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
23:56:20.0345 0x0ee8  SessionEnv - ok
23:56:20.0374 0x0ee8  [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
23:56:20.0405 0x0ee8  sfloppy - ok
23:56:20.0439 0x0ee8  [ F8083C536BEDE61AFB4069D8A8C16DA7, 13AADAD7B5582911B8ABBE0CF7132CC517F7413A361CCF8ED502F803D061FFA3 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
23:56:20.0530 0x0ee8  SharedAccess - ok
23:56:20.0575 0x0ee8  [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:56:20.0665 0x0ee8  ShellHWDetection - ok
23:56:20.0677 0x0ee8  [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
23:56:20.0713 0x0ee8  SiSRaid2 - ok
23:56:20.0731 0x0ee8  [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
23:56:20.0770 0x0ee8  SiSRaid4 - ok
23:56:20.0791 0x0ee8  [ 9A66A87BBC0EC4463042959B7C0D4AC1, 2E61DC50AD4A4D4782F3271BAD010137DA9A6AFC46C7568C709F68C7621DCD40 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:56:20.0851 0x0ee8  SkypeUpdate - ok
23:56:20.0877 0x0ee8  [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost         C:\WINDOWS\System32\smphost.dll
23:56:20.0939 0x0ee8  smphost - ok
23:56:20.0983 0x0ee8  [ F07301C282AA222C33F8C28B4F545275, 2938943A3A62B33C8296DF3B57897D32293F5395A5E2A01C76B0160A98C12520 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
23:56:21.0074 0x0ee8  SmsRouter - ok
23:56:21.0096 0x0ee8  [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
23:56:21.0136 0x0ee8  SNMPTRAP - ok
23:56:21.0177 0x0ee8  [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
23:56:21.0231 0x0ee8  spaceport - ok
23:56:21.0249 0x0ee8  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] SpbAccelerometer C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:56:21.0314 0x0ee8  SpbAccelerometer - ok
23:56:21.0338 0x0ee8  [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
23:56:21.0367 0x0ee8  SpbCx - ok
23:56:21.0405 0x0ee8  [ D1241DFC397FA8CCFB4BB4B63AAD31AC, F8C57C2F7CA8B6D8FEE1505A143A3FECF502C8DCFFC375F9C8848A87D9714C9E ] Spooler         C:\WINDOWS\System32\spoolsv.exe
23:56:21.0506 0x0ee8  Spooler - ok
23:56:21.0807 0x0ee8  [ 7C58AFEC26E9F7730A8AA7FD40225937, 546EAD8889F2A1BB6DCCB7781976B975F34DA1C9047F95FEAA52CF38EC60C6DD ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
23:56:22.0224 0x0ee8  sppsvc - ok
23:56:22.0284 0x0ee8  [ BE88248427A6AA548A904FD867667F70, 37E7BB76881F4E896311721B1FCB7B1908524591D36F7D63B233CA0115FECC2C ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
23:56:22.0343 0x0ee8  srv - ok
23:56:22.0381 0x0ee8  [ 2568B86F6A50D254324CB89022CA9EFC, 001B7A0061227E8E78A35FDC095C71A6974F18B1289FA392FA0B864A88C20672 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
23:56:22.0498 0x0ee8  srv2 - ok
23:56:22.0517 0x0ee8  [ 6E520D6B16EA8AE23D1F81C1194F00C8, 42CAB0772D351023DBF1DAD4BDB1FC214827CEA660284838B41062B8DF89DF10 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
23:56:22.0574 0x0ee8  srvnet - ok
23:56:22.0655 0x0ee8  [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
23:56:22.0708 0x0ee8  SSDPSRV - ok
23:56:22.0739 0x0ee8  [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
23:56:22.0805 0x0ee8  SstpSvc - ok
23:56:22.0964 0x0ee8  [ 58863C57E4598C4F9DA967C5C36CFA5D, BB34FBC324E84E05128258CE3755241ECB63F7F2AE7F96716AC373931FAF92A8 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
23:56:23.0226 0x0ee8  StateRepository - ok
23:56:23.0252 0x0ee8  [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
23:56:23.0314 0x0ee8  stexstor - ok
23:56:23.0377 0x0ee8  [ 75476CAA8FA0A4E573948CDE8C7F0304, 68C4405CACA77AEED71761875A9AF60BCFBDD39E356BEA1BA8226E099BAA5FA4 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
23:56:23.0497 0x0ee8  stisvc - ok
23:56:23.0512 0x0ee8  [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
23:56:23.0543 0x0ee8  storahci - ok
23:56:23.0571 0x0ee8  [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
23:56:23.0599 0x0ee8  storflt - ok
23:56:23.0631 0x0ee8  [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
23:56:23.0661 0x0ee8  stornvme - ok
23:56:23.0680 0x0ee8  [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
23:56:23.0749 0x0ee8  storqosflt - ok
23:56:23.0791 0x0ee8  [ FE42F8A07885E518ED1E846C93E4B78C, 264B21A5E07654F159A3E324F3B38A8C11AF619F61B5779A46367DD99EBD00A6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
23:56:23.0928 0x0ee8  StorSvc - ok
23:56:23.0960 0x0ee8  [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
23:56:23.0985 0x0ee8  storufs - ok
23:56:24.0002 0x0ee8  [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
23:56:24.0028 0x0ee8  storvsc - ok
23:56:24.0053 0x0ee8  [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc           C:\WINDOWS\system32\svsvc.dll
23:56:24.0115 0x0ee8  svsvc - ok
23:56:24.0126 0x0ee8  [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
23:56:24.0151 0x0ee8  swenum - ok
23:56:24.0212 0x0ee8  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
23:56:24.0346 0x0ee8  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
23:56:24.0715 0x0ee8  Detect skipped due to KSN trusted
23:56:24.0715 0x0ee8  SwitchBoard - ok
23:56:24.0769 0x0ee8  [ 22E539A9B96C66A713583EC017562616, 210DA61DFC7AA9AD23277D9CC0239B781F4EABD322D0803AEC9434D68B81FABD ] swprv           C:\WINDOWS\System32\swprv.dll
23:56:24.0865 0x0ee8  swprv - ok
23:56:24.0878 0x0ee8  [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
23:56:24.0937 0x0ee8  Synth3dVsc - ok
23:56:25.0026 0x0ee8  [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
23:56:25.0179 0x0ee8  SysMain - ok
23:56:25.0218 0x0ee8  [ FA8E0A9C648035CA1B47C9DA77EDB7EA, 4097AB89D2DB4741B138F3939AED4C5DB00BA124BF66E5DC2218ACF3A37513A3 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
23:56:25.0316 0x0ee8  SystemEventsBroker - ok
23:56:25.0342 0x0ee8  [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
23:56:25.0407 0x0ee8  TabletInputService - ok
23:56:25.0443 0x0ee8  [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
23:56:25.0499 0x0ee8  TapiSrv - ok
23:56:25.0621 0x0ee8  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
23:56:25.0788 0x0ee8  Tcpip - ok
23:56:25.0918 0x0ee8  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
23:56:26.0071 0x0ee8  Tcpip6 - ok
23:56:26.0102 0x0ee8  [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
23:56:26.0153 0x0ee8  tcpipreg - ok
23:56:26.0187 0x0ee8  [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
23:56:26.0218 0x0ee8  tdx - ok
23:56:26.0236 0x0ee8  [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
23:56:26.0263 0x0ee8  terminpt - ok
23:56:26.0333 0x0ee8  [ 14307D4801C8CEF0A615907C09E886B3, C7F34C294D70DE689F673E0B5E9253B27EFEBBE6FA38B68B3B0B0374A896407E ] TermService     C:\WINDOWS\System32\termsrv.dll
23:56:26.0452 0x0ee8  TermService - ok
23:56:26.0482 0x0ee8  [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes          C:\WINDOWS\system32\themeservice.dll
23:56:26.0552 0x0ee8  Themes - ok
23:56:26.0592 0x0ee8  [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
23:56:26.0675 0x0ee8  TieringEngineService - ok
23:56:26.0724 0x0ee8  [ 7ECACE6D0B4C2D323408EB00FD93C682, EE7F5E5185EA8C8098046FA573659443014ED7C9DA9E710D9EF3FCACBBFFA100 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
23:56:26.0879 0x0ee8  tiledatamodelsvc - ok
23:56:26.0894 0x0ee8  [ 7E81E3E0D7F83BFE3C3975020B6C7F12, 316F9415646CC7A4E9A5F1E07310D433457E623B3E589543E4A6C73C4F77712C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
23:56:26.0950 0x0ee8  TimeBroker - ok
23:56:26.0994 0x0ee8  [ 87B9ABB965F7AF987D52791F0DD1663D, 6E42F764D47ACAD644E5F547E503B7AEA8D700C335674D1B0EB5493914F747E7 ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
23:56:27.0042 0x0ee8  TPM - ok
23:56:27.0080 0x0ee8  [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks          C:\WINDOWS\System32\trkwks.dll
23:56:27.0122 0x0ee8  TrkWks - ok
23:56:27.0134 0x0ee8  [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
23:56:27.0185 0x0ee8  TrustedInstaller - ok
23:56:27.0214 0x0ee8  [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
23:56:27.0249 0x0ee8  tsusbflt - ok
23:56:27.0259 0x0ee8  [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
23:56:27.0309 0x0ee8  TsUsbGD - ok
23:56:27.0347 0x0ee8  [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
23:56:27.0411 0x0ee8  tunnel - ok
23:56:27.0424 0x0ee8  [ E624283C1A2F9BB4688A002914CC00A7, B6908C1FFDD6BCFFC5C2FC0C429FC3E237E340F891F80CFD737BE41E5EF7E328 ] TXEIx64         C:\WINDOWS\System32\drivers\TXEIx64.sys
23:56:27.0444 0x0ee8  TXEIx64 - ok
23:56:27.0456 0x0ee8  [ 56C238ACFE4CB020D3E38508249039EA, 172868080F07D98175229A02410FE751B5958ED5A3D567D4AE5736F4025DF432 ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
23:56:27.0525 0x0ee8  tzautoupdate - ok
23:56:27.0560 0x0ee8  [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
23:56:27.0588 0x0ee8  uagp35 - ok
23:56:27.0603 0x0ee8  [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
23:56:27.0632 0x0ee8  UASPStor - ok
23:56:27.0662 0x0ee8  [ 82D3B1F4D80057826AA649D78147DE36, 344A738F6866BFD3095BB802206DDB2F9E9AD89DC39CAA7DE96455F410683829 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
23:56:27.0708 0x0ee8  UcmCx0101 - ok
23:56:27.0724 0x0ee8  [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
23:56:27.0772 0x0ee8  UcmUcsi - ok
23:56:27.0809 0x0ee8  [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
23:56:27.0844 0x0ee8  Ucx01000 - ok
23:56:27.0868 0x0ee8  [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
23:56:27.0929 0x0ee8  UdeCx - ok
23:56:27.0958 0x0ee8  [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
23:56:28.0037 0x0ee8  udfs - ok
23:56:28.0049 0x0ee8  [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
23:56:28.0075 0x0ee8  UEFI - ok
23:56:28.0115 0x0ee8  [ 05DD22294A4F3F89E52351C7721E6D2C, 300A7D4BD5F26814CF73400E01DEB810CA3F91BD190B3D37B74ADF080F582829 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
23:56:28.0166 0x0ee8  Ufx01000 - ok
23:56:28.0259 0x0ee8  [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
23:56:28.0288 0x0ee8  UfxChipidea - ok
23:56:28.0312 0x0ee8  [ 2A87EA182EA333D79AA0B03833EA67F2, 227792A8B4E63CF60A3DEECF829448C8FD59A40DEF3F42414E432820F8D34F64 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
23:56:28.0344 0x0ee8  ufxsynopsys - ok
23:56:28.0379 0x0ee8  [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
23:56:28.0433 0x0ee8  UI0Detect - ok
23:56:28.0463 0x0ee8  [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
23:56:28.0492 0x0ee8  uliagpkx - ok
23:56:28.0518 0x0ee8  [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
23:56:28.0572 0x0ee8  umbus - ok
23:56:28.0601 0x0ee8  [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
23:56:28.0650 0x0ee8  UmPass - ok
23:56:28.0670 0x0ee8  [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
23:56:28.0720 0x0ee8  UmRdpService - ok
23:56:28.0789 0x0ee8  [ CB902A15DD21B363FECA5DCCF34F5C57, 6A0836A12A410EBD5C667982852B58CA9E9EDB11EA666C413CC0F811E01A549D ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
23:56:28.0906 0x0ee8  UnistoreSvc - ok
23:56:29.0078 0x0ee8  [ B85A8CF2BE74DFF1E80097AC94584112, B1DBACC33A4143FEE2CF54E567590A69580312AD7A053BCC85B487C4D451FBDA ] upnphost        C:\WINDOWS\System32\upnphost.dll
23:56:29.0144 0x0ee8  upnphost - ok
23:56:29.0170 0x0ee8  [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
23:56:29.0197 0x0ee8  UrsChipidea - ok
23:56:29.0210 0x0ee8  [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
23:56:29.0237 0x0ee8  UrsCx01000 - ok
23:56:29.0247 0x0ee8  [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
23:56:29.0272 0x0ee8  UrsSynopsys - ok
23:56:29.0292 0x0ee8  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
23:56:29.0411 0x0ee8  USBAAPL64 - ok
23:56:29.0447 0x0ee8  [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
23:56:29.0481 0x0ee8  usbccgp - ok
23:56:29.0509 0x0ee8  [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
23:56:29.0557 0x0ee8  usbcir - ok
23:56:29.0590 0x0ee8  [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
23:56:29.0620 0x0ee8  usbehci - ok
23:56:29.0667 0x0ee8  [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
23:56:29.0718 0x0ee8  usbhub - ok
23:56:29.0750 0x0ee8  [ E7463CE8579A0418A98BE9BE42C647D7, 923CD51C82FCF9DC4E9EEA99E53634EE07EBF62FB5DFC337F01309D7D5C7622C ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
23:56:29.0809 0x0ee8  USBHUB3 - ok
23:56:29.0820 0x0ee8  [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
23:56:29.0856 0x0ee8  usbohci - ok
23:56:29.0866 0x0ee8  [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
23:56:29.0922 0x0ee8  usbprint - ok
23:56:29.0957 0x0ee8  [ 4AAD6547953D373A1EB5B2DF583D868B, 4E3DCEC9644550996C314FCC39F885DDE4AA7AD821B8596D96C5BEA5D60795F7 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
23:56:30.0028 0x0ee8  usbser - ok
23:56:30.0050 0x0ee8  [ 8949F77132A4F8F3BA17C6727099F002, 86AD4A2263B34983335180FDAE775D1744E042D2A11300D27DF546F15F285A25 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
23:56:30.0082 0x0ee8  USBSTOR - ok
23:56:30.0103 0x0ee8  [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
23:56:30.0134 0x0ee8  usbuhci - ok
23:56:30.0171 0x0ee8  [ 9E9D58F5E1702955B2F4D62996F80E8E, 6C21C250B9D98346D0D5CB7D6C11AB120A1D195C28313BDB0CE532663F0114E2 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
23:56:30.0216 0x0ee8  USBXHCI - ok
23:56:30.0306 0x0ee8  [ 2771EBB565F5C121E66060B173991D4D, 1EB34A6262A18E47ADCA392FDB2D58E8428A1CA43EB4196D76A897F74A03CA7F ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
23:56:30.0444 0x0ee8  UserDataSvc - ok
23:56:30.0646 0x0ee8  [ 36EC82F0E399F36BD25F593D63DC144A, 2A9E916A098ACD5A5074A5FD053ECAB027A0932A348C728F20CD63EF16289533 ] UserManager     C:\WINDOWS\System32\usermgr.dll
23:56:30.0814 0x0ee8  UserManager - ok
23:56:30.0863 0x0ee8  [ 0D33D06EF42E3BC6A7BBC4F7F7517C25, 1B19739341F5D76C0C491D20BD676877D7D59C73AFC3108567C81E6963E6384A ] UsoSvc          C:\WINDOWS\system32\usocore.dll
23:56:30.0940 0x0ee8  UsoSvc - ok
23:56:30.0962 0x0ee8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
23:56:30.0991 0x0ee8  VaultSvc - ok
23:56:31.0016 0x0ee8  [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
23:56:31.0043 0x0ee8  vdrvroot - ok
23:56:31.0088 0x0ee8  [ 67A6E949395A09914AD8B38FE14B8D15, 593F2FAA880B2E0468F98BD58B5214A170E5890907B25294D7A47C66505A3D45 ] vds             C:\WINDOWS\System32\vds.exe
23:56:31.0192 0x0ee8  vds - ok
23:56:31.0226 0x0ee8  [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
23:56:31.0260 0x0ee8  VerifierExt - ok
23:56:31.0303 0x0ee8  [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
23:56:31.0366 0x0ee8  vhdmp - ok
23:56:31.0389 0x0ee8  [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
23:56:31.0436 0x0ee8  vhf - ok
23:56:31.0465 0x0ee8  [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
23:56:31.0495 0x0ee8  vmbus - ok
23:56:31.0504 0x0ee8  [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
23:56:31.0550 0x0ee8  VMBusHID - ok
23:56:31.0601 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
23:56:31.0683 0x0ee8  vmicguestinterface - ok
23:56:31.0711 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
23:56:31.0771 0x0ee8  vmicheartbeat - ok
23:56:31.0798 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
23:56:31.0860 0x0ee8  vmickvpexchange - ok
23:56:31.0887 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
23:56:31.0951 0x0ee8  vmicrdv - ok
23:56:31.0978 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
23:56:32.0040 0x0ee8  vmicshutdown - ok
23:56:32.0067 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
23:56:32.0130 0x0ee8  vmictimesync - ok
23:56:32.0157 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
23:56:32.0219 0x0ee8  vmicvmsession - ok
23:56:32.0246 0x0ee8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
23:56:32.0307 0x0ee8  vmicvss - ok
23:56:32.0337 0x0ee8  [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
23:56:32.0366 0x0ee8  volmgr - ok
23:56:32.0404 0x0ee8  [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
23:56:32.0456 0x0ee8  volmgrx - ok
23:56:32.0498 0x0ee8  [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
23:56:32.0545 0x0ee8  volsnap - ok
23:56:32.0574 0x0ee8  [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
23:56:32.0602 0x0ee8  vpci - ok
23:56:32.0625 0x0ee8  [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
23:56:32.0670 0x0ee8  vsmraid - ok
23:56:32.0766 0x0ee8  [ 4CF5A1E0C4FCA956ACD6C654E2A8610E, 57F3C7200C25E8717AF92AF2ED7615C6605179D3514B432220FA6EA94CAB4F2E ] VSS             C:\WINDOWS\system32\vssvc.exe
23:56:32.0923 0x0ee8  VSS - ok
23:56:32.0969 0x0ee8  [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
23:56:33.0025 0x0ee8  VSTXRAID - ok
23:56:33.0035 0x0ee8  [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
23:56:33.0082 0x0ee8  vwifibus - ok
23:56:33.0111 0x0ee8  [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
23:56:33.0163 0x0ee8  vwififlt - ok
23:56:33.0173 0x0ee8  [ 3BE5AAC930447FD18D4A8255A2FEC95C, A517357188FE4A5BD98A3CDB2165ACCE96CCE4BE2B90DDBEAF70B6DDF393F506 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
23:56:33.0222 0x0ee8  vwifimp - ok
23:56:33.0267 0x0ee8  [ 48C1A256591297C43ECFC4E30D144EAA, 8E66833ED2CEB6D7E499EB2E4282B4F9DFA28B6D21757BB88EC52FD069D7FACE ] W32Time         C:\WINDOWS\system32\w32time.dll
23:56:33.0344 0x0ee8  W32Time - ok
23:56:33.0375 0x0ee8  [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
23:56:33.0422 0x0ee8  WacomPen - ok
23:56:33.0489 0x0ee8  [ D76D1AC4F2C642D09A68227D129A4726, D14D6C4D94E9660848C74B220359683D91A4A3D70750E781A20B6D86D46794CE ] WalletService   C:\WINDOWS\system32\WalletService.dll
23:56:33.0566 0x0ee8  WalletService - ok
23:56:33.0584 0x0ee8  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:56:33.0638 0x0ee8  wanarp - ok
23:56:33.0648 0x0ee8  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:56:33.0685 0x0ee8  wanarpv6 - ok
23:56:33.0772 0x0ee8  [ 2598BBF11C9E7D0885DCA52E7FD5BCBD, 46B1FB080A2CD88C89A0EB8BA2594A1FA2C341ED77A6C6835CBFFE42907FAC55 ] wbengine        C:\WINDOWS\system32\wbengine.exe
23:56:33.0977 0x0ee8  wbengine - ok
23:56:34.0036 0x0ee8  [ 642EFABF900374FA85639D83B5533AFD, 292692D6AAC2A785D237ADFBC7CA3D379E8FC79FA366A8CE7D06F5CA5CE6866B ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
23:56:34.0131 0x0ee8  WbioSrvc - ok
23:56:34.0175 0x0ee8  [ 0BF8D8C7EC9FB15D6480A12101E88B71, E7BC6A4E53D8C9D73BF83097DFE43ED8038B7BED0AE56E5AF7983F74562F15A3 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
23:56:34.0270 0x0ee8  Wcmsvc - ok
23:56:34.0315 0x0ee8  [ 53A036CED1270F2459E708A05922FD49, 2F281A72E4B0408DE6C8153F5988C9AA38591FB1E72558767D389637D0666A85 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
23:56:34.0387 0x0ee8  wcncsvc - ok
23:56:34.0412 0x0ee8  [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
23:56:34.0485 0x0ee8  WcsPlugInService - ok
23:56:34.0503 0x0ee8  [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
23:56:34.0531 0x0ee8  WdBoot - ok
23:56:34.0571 0x0ee8  [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
23:56:34.0632 0x0ee8  Wdf01000 - ok
23:56:34.0681 0x0ee8  [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
23:56:34.0723 0x0ee8  WdFilter - ok
23:56:34.0745 0x0ee8  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
23:56:34.0815 0x0ee8  WdiServiceHost - ok
23:56:34.0825 0x0ee8  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
23:56:34.0872 0x0ee8  WdiSystemHost - ok
23:56:34.0931 0x0ee8  [ 2BC2E99623119521EEF7910A11D0FDE0, 3F3E48A79534F0F65F961D9B170D534562E04901B630127B16DF02E6D42F2BBF ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
23:56:35.0007 0x0ee8  wdiwifi - ok
23:56:35.0042 0x0ee8  [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
23:56:35.0073 0x0ee8  WdNisDrv - ok
23:56:35.0080 0x0ee8  WdNisSvc - ok
23:56:35.0115 0x0ee8  [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient       C:\WINDOWS\System32\webclnt.dll
23:56:35.0176 0x0ee8  WebClient - ok
23:56:35.0201 0x0ee8  [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
23:56:35.0270 0x0ee8  Wecsvc - ok
23:56:35.0300 0x0ee8  [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
23:56:35.0353 0x0ee8  WEPHOSTSVC - ok
23:56:35.0376 0x0ee8  [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
23:56:35.0428 0x0ee8  wercplsupport - ok
23:56:35.0443 0x0ee8  [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
23:56:35.0497 0x0ee8  WerSvc - ok
23:56:35.0528 0x0ee8  [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
23:56:35.0560 0x0ee8  WFPLWFS - ok
23:56:35.0579 0x0ee8  [ 205A1FAE910F5C493D236245850BB62A, DBA4D1D734BAA3CDEB8A7F9C81A8DAA88CEA55AF5C4C5908E76FB8E522C5EC8A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
23:56:35.0619 0x0ee8  WiaRpc - ok
23:56:35.0629 0x0ee8  [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
23:56:35.0655 0x0ee8  WIMMount - ok
23:56:35.0662 0x0ee8  WinDefend - ok
23:56:35.0705 0x0ee8  [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
23:56:35.0737 0x0ee8  WindowsTrustedRT - ok
23:56:35.0746 0x0ee8  [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
23:56:35.0781 0x0ee8  WindowsTrustedRTProxy - ok
23:56:35.0829 0x0ee8  [ D4B30E23A3B373648F61290DAF432CB2, 7084E24A2E813BDD11C880F2B2D2626CD3600D9BABAA8AA8F068748E90BC8D58 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
23:56:35.0967 0x0ee8  WinHttpAutoProxySvc - ok
23:56:36.0001 0x0ee8  [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
23:56:36.0036 0x0ee8  WinMad - ok
23:56:36.0087 0x0ee8  [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
23:56:36.0149 0x0ee8  Winmgmt - ok
23:56:36.0286 0x0ee8  [ 703D0F62C5AA4D08EE8756516C0D125D, 02015A5E62490C11EC968160C528C2AFD1D7194AACA27F407B06EB462657511F ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
23:56:36.0525 0x0ee8  WinRM - ok
23:56:36.0553 0x0ee8  [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
23:56:36.0616 0x0ee8  WINUSB - ok
23:56:36.0628 0x0ee8  [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
23:56:36.0665 0x0ee8  WinVerbs - ok
23:56:36.0777 0x0ee8  [ 453740989239803FE363FF8B40EA2E08, 25499705627C38D3431B3C336E0CF3BF55ABB0C461B88DA6D3767CAAE1E2B893 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
         

Alt 24.06.2016, 00:36   #5
FCK191
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Teil 3:

Code:
ATTFilter
23:56:37.0034 0x0ee8  WlanSvc - ok
23:56:37.0156 0x0ee8  [ E48BBF1363F843E030757EC190DD33E6, B37199495115ED423BA99B7317377CE865BB482D4E847861E871480AC49D4A84 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
23:56:37.0444 0x0ee8  wlidsvc - ok
23:56:37.0463 0x0ee8  [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
23:56:37.0509 0x0ee8  WmiAcpi - ok
23:56:37.0531 0x0ee8  [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
23:56:37.0579 0x0ee8  wmiApSrv - ok
23:56:37.0604 0x0ee8  WMPNetworkSvc - ok
23:56:37.0625 0x0ee8  [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
23:56:37.0660 0x0ee8  Wof - ok
23:56:37.0788 0x0ee8  [ 4090C6738AA92B428220857B4D44F638, 4A3EE47494051E5BA8393F2AC8226EF434DA3AA1895CF4BADC9BC1BC378647C6 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
23:56:37.0957 0x0ee8  workfolderssvc - ok
23:56:37.0985 0x0ee8  [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
23:56:38.0012 0x0ee8  wpcfltr - ok
23:56:38.0041 0x0ee8  [ 45FA01F8B7971ACB65202038E34D04A3, 9B2C2ABC7DB716295B0BD0AF04DA08E6B4200D7CF1C7DB59DD8FD8FEBD56D94C ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
23:56:38.0110 0x0ee8  WPDBusEnum - ok
23:56:38.0136 0x0ee8  [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
23:56:38.0162 0x0ee8  WpdUpFltr - ok
23:56:38.0173 0x0ee8  [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService      C:\WINDOWS\system32\WpnService.dll
23:56:38.0240 0x0ee8  WpnService - ok
23:56:38.0256 0x0ee8  [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
23:56:38.0291 0x0ee8  ws2ifsl - ok
23:56:38.0308 0x0ee8  [ 5B813FADEA5BE9195F01C83287F823F7, B186175B12AF444F987FE9F0F9D329A0F9186C06E3D228824E0929BB0084853F ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
23:56:38.0369 0x0ee8  wscsvc - ok
23:56:38.0377 0x0ee8  WSearch - ok
23:56:38.0546 0x0ee8  [ 6E04BBE242E2889B37300C4DF5CE1126, FBDAEAC62C48A4FC5EF412AE47FF10590AE83E8871412F76F6F9BAE910542DFA ] WSService       C:\WINDOWS\System32\WSService.dll
23:56:38.0839 0x0ee8  WSService - ok
23:56:38.0891 0x0ee8  [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd            C:\WINDOWS\system32\DRIVERS\wsvd.sys
23:56:38.0923 0x0ee8  wsvd - ok
23:56:39.0038 0x0ee8  [ 8D3AC00C88BC2A63D1D3CC320E0EAA19, 0E46765269B6FAD8ED8F032C42B38FA5998610CD9E85EB91A414135C595B3E75 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
23:56:39.0250 0x0ee8  wuauserv - ok
23:56:39.0267 0x0ee8  [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
23:56:39.0320 0x0ee8  WudfPf - ok
23:56:39.0337 0x0ee8  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
23:56:39.0381 0x0ee8  WUDFRd - ok
23:56:39.0413 0x0ee8  [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
23:56:39.0454 0x0ee8  wudfsvc - ok
23:56:39.0470 0x0ee8  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
23:56:39.0513 0x0ee8  WUDFWpdFs - ok
23:56:39.0605 0x0ee8  [ 5DA95027DF2317174E8C39B4A8D1FCD8, 99B356411CB08B8BCCF2348DBF1FD5D4F417EA509D9C7CE23E5877C333F4D304 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
23:56:39.0744 0x0ee8  WwanSvc - ok
23:56:39.0812 0x0ee8  [ 5DFAF8BE5A3CABAABF6795BC09EB7876, 1AFD0BC50EA5C2CCB2874E97FE5205175C80849BD6C9BDAF9FBC49174D478997 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
23:56:39.0936 0x0ee8  XblAuthManager - ok
23:56:40.0016 0x0ee8  [ 7118498F6E48758A2EF5A7D1982E2B62, 1FF75AE64CB6DB263E8B35515E092B325AA71A6B2210F8F2B0AD087B3BA33345 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
23:56:40.0219 0x0ee8  XblGameSave - ok
23:56:40.0274 0x0ee8  [ F279536122B83FD0D8E158AA753E1B7C, 6A542F28E24B30DBDC2EEE24DA33C2F4ADB3596AEDDD71DC1495DD40577CE4BB ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
23:56:40.0338 0x0ee8  xboxgip - ok
23:56:40.0396 0x0ee8  [ 69E727F94BEA64E66C284F3C482F33E6, B3E0F287E7A251E0FC17C41089C45737027E54F0213BDE847356AC882B4D3700 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
23:56:40.0615 0x0ee8  XboxNetApiSvc - ok
23:56:40.0641 0x0ee8  [ DA0807D87A62D076C29C4E30F1E84F46, CA3079350038091AEE04D4DA7C06865E9DB3095120AE61AAB575AA77E86A6223 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
23:56:40.0693 0x0ee8  xinputhid - ok
23:56:40.0710 0x0ee8  [ EECC6FB48D5137A331D02AAC1D99DF8C, 95D1069F9064EC88E4E1F478E26254F6C79EC7C3A73AEAC2403E313E30401E99 ] ymc             C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
23:56:40.0725 0x0ee8  ymc - ok
23:56:40.0727 0x0ee8  ================ Scan global ===============================
23:56:40.0795 0x0ee8  [ 82E25186617BA6C15010F0D47C705705, 5BF9E38918E6EAE86448137E2D120B80318AA1143CDDF539A2BFBEE227646816 ] C:\WINDOWS\system32\basesrv.dll
23:56:40.0812 0x0ee8  [ E2899695BD30B5F93EC626EBBEF2CB69, B190D2903A109D2C146D881F90769060A0E971942F4AA61AEAD81861032D89C3 ] C:\WINDOWS\system32\winsrv.dll
23:56:40.0830 0x0ee8  [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\WINDOWS\system32\sxssrv.dll
23:56:40.0901 0x0ee8  [ 6FF8248F3A9D69A095C7F3F42BC29CB2, 9077B1AA0AFB8DB329FDED0E51085DE1C51B22A986162F29037FCA404A80D512 ] C:\WINDOWS\system32\services.exe
23:56:40.0920 0x0ee8  [ Global ] - ok
23:56:40.0922 0x0ee8  ================ Scan MBR ==================================
23:56:40.0935 0x0ee8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
23:56:41.0030 0x0ee8  \Device\Harddisk0\DR0 - ok
23:56:41.0031 0x0ee8  ================ Scan VBR ==================================
23:56:41.0037 0x0ee8  [ 7405D59BCE6705310C8707F5AC566C2A ] \Device\Harddisk0\DR0\Partition1
23:56:41.0055 0x0ee8  \Device\Harddisk0\DR0\Partition1 - ok
23:56:41.0074 0x0ee8  [ 316DBD53BC27070D123F014675587D8A ] \Device\Harddisk0\DR0\Partition2
23:56:41.0086 0x0ee8  \Device\Harddisk0\DR0\Partition2 - ok
23:56:41.0104 0x0ee8  [ 56BB13E41B3CCBB9721C3A6177FB4045 ] \Device\Harddisk0\DR0\Partition3
23:56:41.0122 0x0ee8  \Device\Harddisk0\DR0\Partition3 - ok
23:56:41.0144 0x0ee8  [ B0DEAFBDDA1AE80818C7A913FBE45FCB ] \Device\Harddisk0\DR0\Partition4
23:56:41.0144 0x0ee8  \Device\Harddisk0\DR0\Partition4 - ok
23:56:41.0152 0x0ee8  [ 402C230EAC7AD9B771A43B2F114D380F ] \Device\Harddisk0\DR0\Partition5
23:56:41.0165 0x0ee8  \Device\Harddisk0\DR0\Partition5 - ok
23:56:41.0172 0x0ee8  [ BDD23E0FFE7C08AC19B5BBD5A2638479 ] \Device\Harddisk0\DR0\Partition6
23:56:41.0207 0x0ee8  \Device\Harddisk0\DR0\Partition6 - ok
23:56:41.0237 0x0ee8  [ 8EB9D0EE3AE1E140E71BAB07DDCD07A1 ] \Device\Harddisk0\DR0\Partition7
23:56:41.0241 0x0ee8  \Device\Harddisk0\DR0\Partition7 - ok
23:56:41.0243 0x0ee8  ================ Scan generic autorun ======================
23:56:41.0243 0x0ee8  ETDCtrl - ok
23:56:41.0886 0x0ee8  [ BA6D2D72E4B3B5E6E092012F548F5182, D7DE4C0FF0683694F5A06BF36C1E772DAD232B7FCA2CE5F476C64925395D3EA4 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:56:42.0583 0x0ee8  RtHDVCpl - ok
23:56:42.0667 0x0ee8  [ 37BFB349262E269DD07A3D8323BCCEAF, 1AA11990194258B5C8FCD16B88ED32098C406477F541A8BA31C8C7AAACA6463B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:56:42.0756 0x0ee8  RtHDVBg_Dolby - ok
23:56:42.0820 0x0ee8  [ 37BFB349262E269DD07A3D8323BCCEAF, 1AA11990194258B5C8FCD16B88ED32098C406477F541A8BA31C8C7AAACA6463B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:56:42.0889 0x0ee8  RtHDVBg_LENOVO_DOLBYDRAGON - ok
23:56:42.0952 0x0ee8  [ 37BFB349262E269DD07A3D8323BCCEAF, 1AA11990194258B5C8FCD16B88ED32098C406477F541A8BA31C8C7AAACA6463B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
23:56:43.0025 0x0ee8  RtHDVBg_LENOVO_MICPKEY - ok
23:56:43.0073 0x0ee8  [ 079511E999ACAB4B8CC08432F0363368, 05A2707AE075206E8913FE6249C0474FE350DCF61F4E8569904D7A8247F012BF ] C:\Program Files\Dolby\DDP_F3\ddpf3.exe
23:56:43.0226 0x0ee8  DDPF3 - detected UnsignedFile.Multi.Generic ( 1 )
23:56:43.0279 0x0ee8  Detect skipped due to KSN trusted
23:56:43.0279 0x0ee8  DDPF3 - ok
23:56:43.0355 0x0ee8  [ AD77FD29FC511AA939B32B536BB0DD56, FFAB6DFFCB8B1F25BCACCF403F9F23D604C5F640F1F6569EE1C151E16DD45786 ] C:\Program Files\Lenovo\LenovoUtility\utility.exe
23:56:43.0403 0x0ee8  LenovoUtility - ok
23:56:43.0463 0x0ee8  [ 1315C5C5C54CE2AA37A155F97027DB59, 70CDA6AE7FF4FD08FAD931477C524957952EDC89985696FD988B9786A349C565 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
23:56:43.0523 0x0ee8  AdobeAAMUpdater-1.0 - ok
23:56:43.0580 0x0ee8  [ 747CEF68DA0B3BABD64B74C0E06C050E, C640AF94F66025E8B9937A37A361547580DB3F0B5F62F21E8B30A087BE018015 ] C:\Program Files\iTunes\iTunesHelper.exe
23:56:43.0624 0x0ee8  iTunesHelper - ok
23:56:43.0633 0x0ee8  [ 0F23636F5CC526F1B7CD1A749F173610, 75CC836AF8E6E2D505A696A9BEAF30AF0513695DB743B2920B66C2B0D11C5BAA ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
23:56:43.0671 0x0ee8  Avira SystrayStartTrigger - ok
23:56:43.0721 0x0ee8  [ F316A9C0C8BBA9D2A98BE70EE0D8CA96, 20C83B6D1706DED7B645008CD29346A5FD14A4F67FCF17FED28E7A17F021E15B ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
23:56:43.0775 0x0ee8  avgnt - ok
23:56:43.0816 0x0ee8  Dropbox - ok
23:56:43.0861 0x0ee8  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
23:56:43.0912 0x0ee8  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
23:56:43.0912 0x0ee8  Detect skipped due to KSN trusted
23:56:43.0912 0x0ee8  SwitchBoard - ok
23:56:43.0971 0x0ee8  [ 8FE651ACBA3344E645CFEB6286FFF6B8, ECE4DFFEB7EB0B19B6790FD0F619A5C4B23CA0BA9CC3F25924925F8EA07264B6 ] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
23:56:44.0054 0x0ee8  AdobeCS6ServiceManager - ok
23:56:44.0095 0x0ee8  [ 4852BB1EDCC0C6F143F40B680E5774DD, D71D1FBC7EDE311593831AB13DF329BF3FE1066EB0ABBAA8D3E2515684D06038 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:56:44.0166 0x0ee8  SunJavaUpdateSched - ok
23:56:44.0578 0x0ee8  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:56:44.0983 0x0ee8  OneDriveSetup - ok
23:56:45.0333 0x0ee8  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
23:56:45.0665 0x0ee8  OneDriveSetup - ok
23:56:45.0803 0x0ee8  [ 2010CA459E5EC8F9D5FC8B000D130294, 058FF215A3AAD04F2A4CF23B2CC62A5EA28F5A705EFA689DCE9126720CF33229 ] C:\Users\Florian\AppData\Local\Microsoft\OneDrive\OneDrive.exe
23:56:45.0873 0x0ee8  OneDrive - ok
23:56:46.0369 0x0ee8  [ 6798339CF7C87F5F567A8F050614D6B8, 679180427BD3423EA2C3D81869CAE77B2E6FF149FE374FFDD40C5D8AC0FCD81B ] C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe
23:56:46.0958 0x0ee8  FileHippo.com - ok
23:56:47.0068 0x0ee8  [ 06F6DB72ADABC5E858F38EF69014CE52, B4AEABF3EA6FCABBED879D642BA070DF9C244E28DB5BDC3211205C7B8DB97BFB ] C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
23:56:47.0122 0x0ee8  OfficeSyncProcess - ok
23:56:47.0158 0x0ee8  [ F7BF95877017F53DDAEBC4E87A309168, F7849DBC61E5E7C42B97D011364ADC7C20257994FECBFA988C8CB2E779392F80 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
23:56:47.0176 0x0ee8  iCloudServices - ok
23:56:47.0178 0x0ee8  Waiting for KSN requests completion. In queue: 68
23:56:48.0220 0x0ee8  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.17.264 ), 0x41000 ( enabled : updated )
23:56:48.0263 0x0ee8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x60100 ( disabled : updated )
23:56:48.0270 0x0ee8  Win FW state via NFP2: enabled ( trusted )
23:56:48.0369 0x0ee8  
============================================================
23:56:48.0369 0x0ee8  Scan finished
23:56:48.0369 0x0ee8  ============================================================
23:56:48.0392 0x2b3c  Detected object count: 0
23:56:48.0392 0x2b3c  Actual detected object count: 0
00:15:05.0125 0x24d8  ============================================================
00:15:05.0125 0x24d8  Scan started
00:15:05.0125 0x24d8  Mode: Manual; SigCheck; TDLFS; 
00:15:05.0125 0x24d8  ============================================================
00:15:05.0125 0x24d8  KSN ping started
00:15:05.0174 0x24d8  KSN ping finished: true
00:15:05.0773 0x24d8  ================ Scan system memory ========================
00:15:05.0774 0x24d8  System memory - ok
00:15:05.0775 0x24d8  ================ Scan services =============================
00:15:05.0907 0x24d8  [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
00:15:05.0962 0x24d8  1394ohci - ok
00:15:05.0979 0x24d8  [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
00:15:06.0008 0x24d8  3ware - ok
00:15:06.0040 0x24d8  [ 469441BAE3FF8A16826FC62C51EF5E18, E1204677B87F47222D05F670F8DF3DB65EA0881782A8DCFBE0103478ED71187C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
00:15:06.0096 0x24d8  ACPI - ok
00:15:06.0111 0x24d8  [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
00:15:06.0143 0x24d8  acpiex - ok
00:15:06.0154 0x24d8  [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
00:15:06.0183 0x24d8  acpipagr - ok
00:15:06.0193 0x24d8  [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
00:15:06.0223 0x24d8  AcpiPmi - ok
00:15:06.0232 0x24d8  [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
00:15:06.0262 0x24d8  acpitime - ok
00:15:06.0273 0x24d8  [ E5D1706CE2BFC9127655B194839BEDB5, 742AB5BF63314DF6156523039E442F6F174FF2A57C5FA31835E368D2C5485C63 ] ACPIVPC         C:\WINDOWS\System32\drivers\AcpiVpc.sys
00:15:06.0297 0x24d8  ACPIVPC - ok
00:15:06.0313 0x24d8  [ 36114214BF8D7C464D1E92E4EB6B2DD3, 8E7CB266D4ABCDF332A3D4D341753811D51B72985E36F24A7E757DCA11A65A2A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:15:06.0331 0x24d8  AdobeARMservice - ok
00:15:06.0390 0x24d8  [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
00:15:06.0472 0x24d8  ADP80XX - ok
00:15:06.0510 0x24d8  [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
00:15:06.0566 0x24d8  AFD - ok
00:15:06.0579 0x24d8  [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
00:15:06.0608 0x24d8  agp440 - ok
00:15:06.0625 0x24d8  [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
00:15:06.0669 0x24d8  ahcache - ok
00:15:06.0680 0x24d8  [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
00:15:06.0709 0x24d8  AJRouter - ok
00:15:06.0721 0x24d8  [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG             C:\WINDOWS\System32\alg.exe
00:15:06.0757 0x24d8  ALG - ok
00:15:06.0771 0x24d8  [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
00:15:06.0806 0x24d8  AmdK8 - ok
00:15:06.0819 0x24d8  [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
00:15:06.0854 0x24d8  AmdPPM - ok
00:15:06.0866 0x24d8  [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
00:15:06.0894 0x24d8  amdsata - ok
00:15:06.0916 0x24d8  [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
00:15:06.0951 0x24d8  amdsbs - ok
00:15:06.0963 0x24d8  [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
00:15:06.0988 0x24d8  amdxata - ok
00:15:07.0052 0x24d8  [ 157DA3885AA4F03C80C10DAEB0949CAA, 69EA1C9F904FBDFE904A3BC52CB0E188AF18A93EA87A119E5E6234C6F5D4742E ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
00:15:07.0111 0x24d8  AntiVirMailService - ok
00:15:07.0141 0x24d8  [ BD65021AB0EC790AECC503C394E61BA4, 51AD9C6F1192A3604902AE4F3B4B791DF1D58EA0B39B12AE4FA38F59E02F6D68 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
00:15:07.0178 0x24d8  AntiVirSchedulerService - ok
00:15:07.0206 0x24d8  [ BD65021AB0EC790AECC503C394E61BA4, 51AD9C6F1192A3604902AE4F3B4B791DF1D58EA0B39B12AE4FA38F59E02F6D68 ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
00:15:07.0243 0x24d8  AntiVirService - ok
00:15:07.0310 0x24d8  [ CF586007CB1F9189CDF07D0D5A02C448, 7BA6E27A835A0851C12A7A115C24665631CC77D857DAF32D24BF2D2AF676FE30 ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
00:15:07.0386 0x24d8  AntiVirWebService - ok
00:15:07.0408 0x24d8  [ EDDB0D726DBECDFC1DBCC6DB464E5A13, 98D128D1E6FA270ED9ADBFE50078F68A794C00D4CBB86E28EC6161FFAD0CA8FF ] AppID           C:\WINDOWS\system32\drivers\appid.sys
00:15:07.0441 0x24d8  AppID - ok
00:15:07.0452 0x24d8  [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
00:15:07.0492 0x24d8  AppIDSvc - ok
00:15:07.0505 0x24d8  [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
00:15:07.0546 0x24d8  Appinfo - ok
00:15:07.0566 0x24d8  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:15:07.0586 0x24d8  Apple Mobile Device Service - ok
00:15:07.0615 0x24d8  [ 610499A73DF3599608EBB6B3F9929052, A9CA49C4A39A825916AB3791090BCFC7044FDB6B2C3538E01F0CFBC2A9931152 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
00:15:07.0680 0x24d8  AppReadiness - ok
00:15:07.0776 0x24d8  [ 1CF69EF4E2844F9D297F309CF80122CB, 577428E4A364212AA5E650059C99139B8F9F4952DF228D6150D6B93E7D06AF61 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
00:15:07.0942 0x24d8  AppXSvc - ok
00:15:07.0962 0x24d8  [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
00:15:07.0993 0x24d8  arcsas - ok
00:15:08.0004 0x24d8  [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
00:15:08.0037 0x24d8  AsyncMac - ok
00:15:08.0047 0x24d8  [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
00:15:08.0072 0x24d8  atapi - ok
00:15:08.0093 0x24d8  [ 42BF7FA295F453618104B5A50BEE105B, AB44BA2AD2FC5AF3B6BE4489C444C03FD1AB02C22109BF5F39BE459294C4CB18 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
00:15:08.0139 0x24d8  AudioEndpointBuilder - ok
00:15:08.0193 0x24d8  [ 2A2C0983B6FE62F02E7183335B1F5C20, 07845269FE72894D31D3FC927EECE26333AE9A2149A995DA4AE007276B05C647 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
00:15:08.0290 0x24d8  Audiosrv - ok
00:15:08.0307 0x24d8  [ 5CF5E80616F74B769AABCF76FEA791D1, CA56643D41DB4E139FE85098DCD67187AAC126CE2414276364A97334E15F9F53 ] avgntflt        C:\WINDOWS\system32\DRIVERS\avgntflt.sys
00:15:08.0327 0x24d8  avgntflt - ok
00:15:08.0342 0x24d8  [ 8EF22CC03EFA1CB6810003C6A3B287D3, 352FE3194713D86BBD900A74AF033D5FE96A71389CC63DFC4821B43A55837206 ] avipbb          C:\WINDOWS\system32\DRIVERS\avipbb.sys
00:15:08.0364 0x24d8  avipbb - ok
00:15:08.0386 0x24d8  [ 6458B31DE5443B766DEEFFDF09CAC656, 73449444C38E8D78DE441C3A391B85E181D064FD3B595C3C27CD0DB13CA64645 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
00:15:08.0414 0x24d8  Avira.ServiceHost - ok
00:15:08.0425 0x24d8  [ 79F7741A773FF194EEC64A8161AE26D5, 3DDEA5FBDCB74A2BACC895A44C8C2A947F09E2649ED61D781E99DD61DBFACA5D ] avkmgr          C:\WINDOWS\system32\DRIVERS\avkmgr.sys
00:15:08.0445 0x24d8  avkmgr - ok
00:15:08.0458 0x24d8  [ 899D89FDF015BBAF628076987D74C295, 7534A10F652FBE559431B9B1C6BC13874E8BC7438D7AFD7553F96811FD3E59BD ] avnetflt        C:\WINDOWS\system32\DRIVERS\avnetflt.sys
00:15:08.0477 0x24d8  avnetflt - ok
00:15:08.0490 0x24d8  [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
00:15:08.0534 0x24d8  AxInstSV - ok
00:15:08.0564 0x24d8  [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
00:15:08.0614 0x24d8  b06bdrv - ok
00:15:08.0627 0x24d8  [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
00:15:08.0661 0x24d8  BasicDisplay - ok
00:15:08.0671 0x24d8  [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
00:15:08.0702 0x24d8  BasicRender - ok
00:15:08.0716 0x24d8  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\WINDOWS\System32\drivers\bcmfn.sys
00:15:08.0746 0x24d8  bcmfn - ok
00:15:08.0755 0x24d8  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
00:15:08.0784 0x24d8  bcmfn2 - ok
00:15:08.0808 0x24d8  [ F374C27099807E99A156953F8416D34A, D267B8CD837290F9FC6B4FFD2DB8F54867D808FB155698FC7713BCAB3AE475B5 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
00:15:08.0864 0x24d8  BDESVC - ok
00:15:08.0874 0x24d8  [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
00:15:08.0907 0x24d8  Beep - ok
00:15:08.0948 0x24d8  [ 37F5E2385CB4D10AB42186974B9C241A, D38FA2B8CE19AC32056060F04B04D031F1621C07528DEDCCD5A8C01AB0A35995 ] BFE             C:\WINDOWS\System32\bfe.dll
00:15:09.0032 0x24d8  BFE - ok
00:15:09.0087 0x24d8  [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS            C:\WINDOWS\System32\qmgr.dll
00:15:09.0190 0x24d8  BITS - ok
00:15:09.0220 0x24d8  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:15:09.0252 0x24d8  Bonjour Service - ok
00:15:09.0266 0x24d8  [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
00:15:09.0301 0x24d8  bowser - ok
00:15:09.0352 0x24d8  [ 4F2621E187382D22045D0BC65B23858E, E6AB3B1EB13446128BA69A4D0B00BCA36625BB656F0056D3D43F3A252F6F09AC ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
00:15:09.0422 0x24d8  BrokerInfrastructure - ok
00:15:09.0446 0x24d8  [ A617BE5E429A035A1CA8217C1B16F0BB, 197EE6C6EB22FF8A626540886F5A2163CC4CB177504C5423856F54BF01EB0FF1 ] Browser         C:\WINDOWS\System32\browser.dll
00:15:09.0484 0x24d8  Browser - ok
00:15:09.0500 0x24d8  [ FF4E89D75628B3780716CB6C87AC1CE2, 797713EA165810FADBB5CACA855B4A1E76601641C256C3A3D9C673460349C08A ] BthA2DP         C:\WINDOWS\system32\drivers\BthA2DP.sys
00:15:09.0539 0x24d8  BthA2DP - ok
00:15:09.0557 0x24d8  [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
00:15:09.0588 0x24d8  BthAvrcpTg - ok
00:15:09.0602 0x24d8  [ 3C7DE7B7CAD633CD2DA07710BC17361C, 50FFC48E02E132297AD6FF7FC1B7278EB39ABF0BCFAC65D58FD1A8BB01B016F3 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
00:15:09.0636 0x24d8  BthEnum - ok
00:15:09.0653 0x24d8  [ 0B10EFF40BBAF466D729B105CA51AAFC, 4FF1AECA2284622E8E1442CA6BF91AF4C10EAE89B111ADC4A7DD116517975BF8 ] BthHFAud        C:\WINDOWS\system32\DRIVERS\BthHfAud.sys
00:15:09.0684 0x24d8  BthHFAud - ok
00:15:09.0694 0x24d8  [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
00:15:09.0727 0x24d8  BthHFEnum - ok
00:15:09.0737 0x24d8  [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
00:15:09.0768 0x24d8  bthhfhid - ok
00:15:09.0790 0x24d8  [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
00:15:09.0841 0x24d8  BthHFSrv - ok
00:15:09.0863 0x24d8  [ 3B3BF88BB54CB9A18DE1EF07292B5A3D, 7B9C1E7E07435B976E4AE89425F10541E1DEB153172A375CBC2D03A4D7B7F3D2 ] BthLEEnum       C:\WINDOWS\System32\drivers\BthLEEnum.sys
00:15:09.0906 0x24d8  BthLEEnum - ok
00:15:09.0922 0x24d8  [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
00:15:09.0955 0x24d8  BTHMODEM - ok
00:15:09.0969 0x24d8  [ 09C3DB1B137B269A822F941D867A6BB6, CC99FBD76DA19D951864D4967EA9F3C048811E9BB7BBB67B724FC82A50B14516 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
00:15:10.0005 0x24d8  BthPan - ok
00:15:10.0050 0x24d8  [ FFB773E4AA55E4F5FBBB084B41D7A86F, 911ED632DC4A234410D4A87565F55D27BFF2A050669031C868A3F5C6220DCA5A ] BTHPORT         C:\WINDOWS\System32\drivers\BTHport.sys
00:15:10.0141 0x24d8  BTHPORT - ok
00:15:10.0168 0x24d8  [ 7A177E18AA6A6A6365E6351C2BF8EDAE, A35224A20014B1215A6824AE5E17B8869A775EA272EF7F25EAFFA18733F8D09D ] bthserv         C:\WINDOWS\system32\bthserv.dll
00:15:10.0202 0x24d8  bthserv - ok
00:15:10.0213 0x24d8  [ BE265ABFB467BBAC8C73A55AD94F4216, 21186F398D700089397EAE4AC1B1197C7EB592AE0CC5FF5972000957472393CC ] BTHUSB          C:\WINDOWS\System32\drivers\BTHUSB.sys
00:15:10.0245 0x24d8  BTHUSB - ok
00:15:10.0257 0x24d8  [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
00:15:10.0287 0x24d8  buttonconverter - ok
00:15:10.0301 0x24d8  [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
00:15:10.0338 0x24d8  CapImg - ok
00:15:10.0374 0x24d8  [ 01E4118E5850159F988EB4C54069B4CC, 980773022D70440FBEF5D8B747C5D40E6496F1CBCD886DE9F441E171507A48C5 ] CCSDK           C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
00:15:10.0414 0x24d8  CCSDK - ok
00:15:10.0427 0x24d8  [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
00:15:10.0463 0x24d8  cdfs - ok
00:15:10.0483 0x24d8  [ 0A92DC116CFC7F6BE8167DD25CB925CC, 50CAC7BE14FF69B10C029E049F7C441A5572540F027F95F940B185C76C689409 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
00:15:10.0533 0x24d8  CDPSvc - ok
00:15:10.0551 0x24d8  [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
00:15:10.0590 0x24d8  cdrom - ok
00:15:10.0608 0x24d8  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
00:15:10.0659 0x24d8  CertPropSvc - ok
00:15:10.0672 0x24d8  [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
00:15:10.0704 0x24d8  circlass - ok
00:15:10.0729 0x24d8  [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
00:15:10.0774 0x24d8  CLFS - ok
00:15:10.0924 0x24d8  [ 1475C7821E9E919D14817D46C830D28B, 4ACC419736027184278915345BF10CBAAFB93B6F50A789CBC675FA126DAFC1A6 ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
00:15:11.0086 0x24d8  ClickToRunSvc - ok
00:15:11.0129 0x24d8  [ F7526C133AC265F283012E9CD751F873, 6AABDD92FD880F49F63C1CC478C3D8291AF670802CEC58B32730E7675D858D88 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
00:15:11.0187 0x24d8  ClipSVC - ok
00:15:11.0224 0x24d8  [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
00:15:11.0254 0x24d8  CmBatt - ok
00:15:11.0286 0x24d8  [ 3F7C80D9F16B94367646CBF8B8C052F4, 3F33980348E92876CD2A367C31E4B959C92BA6572266B1C75CB0C062095DFCB7 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
00:15:11.0347 0x24d8  CNG - ok
00:15:11.0369 0x24d8  [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
00:15:11.0394 0x24d8  cnghwassist - ok
00:15:11.0444 0x24d8  [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
00:15:11.0475 0x24d8  CompositeBus - ok
00:15:11.0484 0x24d8  COMSysApp - ok
00:15:11.0497 0x24d8  [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
00:15:11.0523 0x24d8  condrv - ok
00:15:11.0562 0x24d8  [ 86BE19C6A177AEB93302EA5C4FBE2D11, 5404AB84D270549B1A46574EBDC857525F71B117BE3BA0098FA0A696E56D5C39 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
00:15:11.0629 0x24d8  CoreMessagingRegistrar - ok
00:15:11.0701 0x24d8  [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
00:15:11.0737 0x24d8  cphs - ok
00:15:11.0758 0x24d8  [ 9E79A2208A9ED205A7383CBC92C28053, 2E6599DF30DF19BD7BE6FEF1B21FED7F349A3F2306CC5CFDB767ABA7283E8A55 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
00:15:11.0791 0x24d8  CryptSvc - ok
00:15:11.0803 0x24d8  [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam             C:\WINDOWS\system32\drivers\dam.sys
00:15:11.0831 0x24d8  dam - ok
00:15:11.0856 0x24d8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
00:15:11.0879 0x24d8  dbupdate - ok
00:15:11.0891 0x24d8  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
00:15:11.0912 0x24d8  dbupdatem - ok
00:15:11.0966 0x24d8  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
00:15:12.0055 0x24d8  DcomLaunch - ok
00:15:12.0085 0x24d8  [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
00:15:12.0136 0x24d8  DcpSvc - ok
00:15:12.0170 0x24d8  [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
00:15:12.0244 0x24d8  defragsvc - ok
00:15:12.0273 0x24d8  [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
00:15:12.0330 0x24d8  DeviceAssociationService - ok
00:15:12.0344 0x24d8  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
00:15:12.0393 0x24d8  DeviceInstall - ok
00:15:12.0406 0x24d8  [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
00:15:12.0435 0x24d8  DevQueryBroker - ok
00:15:12.0451 0x24d8  [ 935823F79CBEDB91637B63D37E3A5A36, BE9A46F1CA631B9252C71758901D55456DC3C143053003D9FA7D67811A1E5026 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
00:15:12.0490 0x24d8  Dfsc - ok
00:15:12.0513 0x24d8  [ D461D2BECEFA661291EB1B748A8D2CCB, 7275859FCDE58DE6C0C683AFDAD910EB4602336CC724EEE42495A8839213469D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
00:15:12.0564 0x24d8  Dhcp - ok
00:15:12.0577 0x24d8  [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
00:15:12.0608 0x24d8  diagnosticshub.standardcollector.service - ok
00:15:12.0681 0x24d8  [ 15D174719872A30F2FDD6B5B1B8BA5D9, B0E6FF6FC47B731C204F110D4B768231906B144B31F602ECE8EAC24D70BA880D ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
00:15:12.0792 0x24d8  DiagTrack - ok
00:15:12.0809 0x24d8  [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk            C:\WINDOWS\system32\drivers\disk.sys
00:15:12.0838 0x24d8  disk - ok
00:15:12.0859 0x24d8  [ E32F15E26724F3BB6423FB29FF3E2A8F, E8CF9829D2A74F4423424F8D169E726B88F50734F0B1ADC735691C37C9F32DAA ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
00:15:12.0910 0x24d8  DmEnrollmentSvc - ok
00:15:12.0921 0x24d8  [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
00:15:12.0952 0x24d8  dmvsc - ok
00:15:12.0963 0x24d8  [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
00:15:13.0001 0x24d8  dmwappushservice - ok
00:15:13.0022 0x24d8  [ 5839A317C25F70979433E0905DFABB1B, 7F1CD50C77A33A10259D8A208A355BE7ECAFEA69F810AD908EF8878A792741AF ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
00:15:13.0069 0x24d8  Dnscache - ok
00:15:13.0094 0x24d8  [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
00:15:13.0146 0x24d8  dot3svc - ok
00:15:13.0163 0x24d8  [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS             C:\WINDOWS\system32\dps.dll
00:15:13.0205 0x24d8  DPS - ok
00:15:13.0221 0x24d8  [ FDD3433E2D8F39B1E28FF8A227EA8CE7, 936461E01DC38B71D3E33A53ACC11FD318B2F509F7E5081630FC59AA8E4E0E15 ] DptfDevAcpiProc C:\WINDOWS\system32\DRIVERS\DptfDevAcpiProc.sys
00:15:13.0249 0x24d8  DptfDevAcpiProc - ok
00:15:13.0279 0x24d8  [ 7E0666280CD9E7602EEDBF705BA329A4, E26F3D21029F6C6804B1CF2A834696780CE7E79C3054922FEBD60B8B77C6271C ] DptfManager     C:\WINDOWS\system32\DRIVERS\DptfManager.sys
00:15:13.0319 0x24d8  DptfManager - ok
00:15:13.0334 0x24d8  [ 61604B1CD2D6C88A8478BEA5FBB3D6DA, 8DDA69B9C66EACF001259FC4159CF49239A21FD052683D026105A07C10D4FC12 ] DptfParticipantAcpiProcessorService C:\WINDOWS\system32\DptfParticipantProcessorService.exe
00:15:13.0357 0x24d8  DptfParticipantAcpiProcessorService - ok
00:15:13.0374 0x24d8  [ EBC0605EA4217F54AC20A21CC425DB49, C045760ABFD6A0A3416E253EA3454FA308B6D5CB50B85573269A255554680F15 ] DptfPolicyCriticalService C:\WINDOWS\system32\DptfPolicyCriticalService.exe
00:15:13.0399 0x24d8  DptfPolicyCriticalService - ok
00:15:13.0409 0x24d8  [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
00:15:13.0434 0x24d8  drmkaud - ok
00:15:13.0451 0x24d8  [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
00:15:13.0493 0x24d8  DsmSvc - ok
00:15:13.0509 0x24d8  [ FBC8C56814642A7CA88ACBCA8DD1121F, 108690704A359991C3D6577477E232F5F2F46B36DF6B4B0738A893EF05D7D4EB ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
00:15:13.0546 0x24d8  DsSvc - ok
00:15:13.0633 0x24d8  [ 8B83335B6A86F39785FC7C9DE5F5B29F, 2B9D6BB75E0AB6408C685EBB2CEC6291D7B1F41486E30CAB1EC132C83455CE3D ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
00:15:13.0763 0x24d8  DXGKrnl - ok
00:15:13.0781 0x24d8  [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
00:15:13.0822 0x24d8  Eaphost - ok
00:15:13.0984 0x24d8  [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
00:15:14.0176 0x24d8  ebdrv - ok
00:15:14.0197 0x24d8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS             C:\WINDOWS\System32\lsass.exe
00:15:14.0230 0x24d8  EFS - ok
00:15:14.0242 0x24d8  [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
00:15:14.0271 0x24d8  EhStorClass - ok
00:15:14.0284 0x24d8  [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
00:15:14.0314 0x24d8  EhStorTcgDrv - ok
00:15:14.0327 0x24d8  [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
00:15:14.0363 0x24d8  embeddedmode - ok
00:15:14.0386 0x24d8  [ 062152DD5B225518A991DFCD8536770C, 5C8EF4E0C7DE3B24387FF239A8D0CDA39C2376826F16EAFF09739A6C7EDA01E0 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
00:15:14.0436 0x24d8  EntAppSvc - ok
00:15:14.0448 0x24d8  [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
00:15:14.0476 0x24d8  ErrDev - ok
00:15:14.0512 0x24d8  [ 75F8FAABB43E84185E46D659DB5ED62D, 7CF6FAA84E040DFAC073874FD92E9750AD19F8359C462145C14732906ACAD3EF ] ETD             C:\WINDOWS\system32\DRIVERS\ETD.sys
00:15:14.0546 0x24d8  ETD - ok
00:15:14.0566 0x24d8  [ D76E3507ABA5E5E852EA183157345DBF, 6BB197226C3E8643940604CD2AF91F5AC78FC98BD9D26D9090047296568D95BC ] ETDService      C:\Program Files\Elantech\ETDService.exe
00:15:14.0588 0x24d8  ETDService - ok
00:15:14.0621 0x24d8  [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem     C:\WINDOWS\system32\es.dll
00:15:14.0681 0x24d8  EventSystem - ok
00:15:14.0707 0x24d8  [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
00:15:14.0756 0x24d8  exfat - ok
00:15:14.0779 0x24d8  [ C330883C06E2D4CE4F6982F048265D37, 26044DE176056B7F5BF2A50A659243CFD7F25CFEE035B3A3C3165B3699872926 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
00:15:14.0820 0x24d8  fastfat - ok
00:15:14.0856 0x24d8  [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax             C:\WINDOWS\system32\fxssvc.exe
00:15:14.0936 0x24d8  Fax - ok
00:15:14.0950 0x24d8  [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
00:15:14.0980 0x24d8  fdc - ok
00:15:14.0990 0x24d8  [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
00:15:15.0032 0x24d8  fdPHost - ok
00:15:15.0042 0x24d8  [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
00:15:15.0083 0x24d8  FDResPub - ok
00:15:15.0095 0x24d8  [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
00:15:15.0142 0x24d8  fhsvc - ok
00:15:15.0161 0x24d8  [ 8F2523C9D8F1448FF2156452AF60FA00, 1D39CA54F5F1E62385D9EC041F9445BDDCB63740859B9418AE904FDF3D8388ED ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
00:15:15.0196 0x24d8  FileCrypt - ok
00:15:15.0208 0x24d8  [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
00:15:15.0236 0x24d8  FileInfo - ok
00:15:15.0247 0x24d8  [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
00:15:15.0287 0x24d8  Filetrace - ok
00:15:15.0296 0x24d8  [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
00:15:15.0327 0x24d8  flpydisk - ok
00:15:15.0350 0x24d8  [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
00:15:15.0393 0x24d8  FltMgr - ok
00:15:15.0468 0x24d8  [ 4387DE200BF8DD0E2EE828E655434B9A, 9148D65E54663EEC139E754091F47ABF439A637BEA83F600D30736522DAA845D ] FontCache       C:\WINDOWS\system32\FntCache.dll
00:15:15.0610 0x24d8  FontCache - ok
00:15:15.0625 0x24d8  [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:15:15.0647 0x24d8  FontCache3.0.0.0 - ok
00:15:15.0659 0x24d8  [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
00:15:15.0686 0x24d8  FsDepends - ok
00:15:15.0697 0x24d8  [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:15:15.0721 0x24d8  Fs_Rec - ok
00:15:15.0755 0x24d8  [ 50DFE05C698E9B0A63D95E3D669A105C, 3A7D5AE4A01B90C2ECF22AD2783A84C2329EAB9BACFA5237A7DCC3DC5995A864 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
00:15:15.0812 0x24d8  fvevol - ok
00:15:15.0825 0x24d8  [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
00:15:15.0854 0x24d8  gagp30kx - ok
00:15:15.0863 0x24d8  [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
00:15:15.0892 0x24d8  gencounter - ok
00:15:15.0904 0x24d8  [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
00:15:15.0933 0x24d8  genericusbfn - ok
00:15:15.0944 0x24d8  [ 794F13178118C609BA4F59111EDB6758, 9B79A3E3ECA4493AE25231C7B158B41571A2960458E0F2DEBE3C8BF40F708188 ] GPIO            C:\WINDOWS\System32\drivers\iaiogpioe.sys
00:15:15.0976 0x24d8  GPIO - ok
00:15:15.0992 0x24d8  [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
00:15:16.0024 0x24d8  GPIOClx0101 - ok
00:15:16.0090 0x24d8  [ B89C353AFC8F56D961D07FF1FE7B4BCD, C4491A1E33E0151AF3D7589769D4DCFABC68518A22393A7584FB573B47643B2F ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
00:15:16.0211 0x24d8  gpsvc - ok
00:15:16.0224 0x24d8  [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
00:15:16.0262 0x24d8  GpuEnergyDrv - ok
00:15:16.0276 0x24d8  [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:15:16.0296 0x24d8  gupdate - ok
00:15:16.0309 0x24d8  [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:15:16.0327 0x24d8  gupdatem - ok
00:15:16.0339 0x24d8  [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
00:15:16.0373 0x24d8  HDAudBus - ok
00:15:16.0383 0x24d8  [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
00:15:16.0414 0x24d8  HidBatt - ok
00:15:16.0428 0x24d8  [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
00:15:16.0463 0x24d8  HidBth - ok
00:15:16.0474 0x24d8  [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
00:15:16.0505 0x24d8  hidi2c - ok
00:15:16.0516 0x24d8  [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
00:15:16.0542 0x24d8  hidinterrupt - ok
00:15:16.0552 0x24d8  [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
00:15:16.0583 0x24d8  HidIr - ok
00:15:16.0595 0x24d8  [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv         C:\WINDOWS\system32\hidserv.dll
00:15:16.0628 0x24d8  hidserv - ok
00:15:16.0639 0x24d8  [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
00:15:16.0668 0x24d8  HidUsb - ok
00:15:16.0691 0x24d8  [ 7CEC266216126BC9A0E1072E1A7E5702, 6B2C0768C8F2590E65B9520D266C07D1A9D89B9E185CC359B0453F399836759F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
00:15:16.0740 0x24d8  HomeGroupListener - ok
00:15:16.0770 0x24d8  [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
00:15:16.0830 0x24d8  HomeGroupProvider - ok
00:15:16.0843 0x24d8  [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
00:15:16.0871 0x24d8  HpSAMD - ok
00:15:16.0923 0x24d8  [ 63C3F74DC398A1C1A77E39DFB9C312CA, 283A13899838B4313BFBC406E832042696C549640A1AB11E23C0B9E499289836 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
00:15:17.0004 0x24d8  HTTP - ok
00:15:17.0017 0x24d8  [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
00:15:17.0043 0x24d8  hwpolicy - ok
00:15:17.0052 0x24d8  [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
00:15:17.0080 0x24d8  hyperkbd - ok
00:15:17.0094 0x24d8  [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
00:15:17.0129 0x24d8  i8042prt - ok
00:15:17.0141 0x24d8  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
00:15:17.0175 0x24d8  iai2c - ok
00:15:17.0187 0x24d8  [ F49D75806D962F85C44E32A1AFB9B8E0, DF033C79C478EB2EA82466F1A7CB58FE17E7C23FE0F24E7B18718750E9F98FF3 ] iaioi2c         C:\WINDOWS\System32\drivers\iaioi2ce.sys
00:15:17.0223 0x24d8  iaioi2c - ok
00:15:17.0243 0x24d8  [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C    C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
00:15:17.0282 0x24d8  iaLPSS2i_I2C - ok
00:15:17.0292 0x24d8  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
00:15:17.0312 0x24d8  iaLPSSi_GPIO - ok
00:15:17.0326 0x24d8  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
00:15:17.0362 0x24d8  iaLPSSi_I2C - ok
00:15:17.0396 0x24d8  [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
00:15:17.0453 0x24d8  iaStorAV - ok
00:15:17.0481 0x24d8  [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
00:15:17.0524 0x24d8  iaStorV - ok
00:15:17.0564 0x24d8  [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
00:15:17.0608 0x24d8  ibbus - ok
00:15:17.0622 0x24d8  [ F940AE47E43B4C74383268D5144C1129, C3D4BDDE08FEF2C56DA79D658549AE910528FFA809AAC5D1B6974B7CC5DD5EA2 ] iBtSiva         C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe
00:15:17.0643 0x24d8  iBtSiva - ok
00:15:17.0665 0x24d8  [ 470A04D92087136F147A2C6F31399906, 21D6D440D72FB59165E4C9241740BF6B344BCFDDD379CAC34CEB5B183FCFCF86 ] ibtusb          C:\WINDOWS\system32\DRIVERS\ibtusb.sys
00:15:17.0693 0x24d8  ibtusb - ok
00:15:17.0709 0x24d8  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
00:15:17.0732 0x24d8  ICCS - ok
00:15:17.0748 0x24d8  [ 57C88C15CEC97318F580D7F4327AAA46, FD3AD83576804DA819F48E3E198FE470420E730F6118AD0E719A91E67C80D3FE ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
00:15:17.0792 0x24d8  icssvc - ok
00:15:17.0800 0x24d8  IEEtwCollectorService - ok
00:15:17.0981 0x24d8  [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
00:15:18.0204 0x24d8  igfx - ok
00:15:18.0238 0x24d8  [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
00:15:18.0272 0x24d8  igfxCUIService1.0.0.0 - ok
00:15:18.0319 0x24d8  [ 95A03F67830FDCB950E70261128D540D, D052CB703500E2871CF51E015E444F2A99FA9A7579AC422104F0E411F6107BD0 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
00:15:18.0415 0x24d8  IKEEXT - ok
00:15:18.0432 0x24d8  [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
00:15:18.0459 0x24d8  intaud_WaveExtensible - ok
00:15:18.0659 0x24d8  [ 7EF2C326CFE5BD1E7F5A69F0B4ED67E9, C0B9748BC2B047F941FBB7F439C0CEA458A8C6E9BF017C01C365A8B4BCE8EF0B ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
00:15:18.0898 0x24d8  IntcAzAudAddService - ok
00:15:18.0935 0x24d8  [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
00:15:18.0973 0x24d8  IntcDAud - ok
00:15:19.0012 0x24d8  [ 768DD5CB66952BC4A3BD474757AEE34F, 5A1F91FC8028D84FD83591D60CB7E3B24425C3B0FFF5A9BB0F7CE2E17AAB92D4 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
00:15:19.0070 0x24d8  Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
00:15:19.0070 0x24d8  Detect skipped due to KSN trusted
00:15:19.0071 0x24d8  Intel(R) Capability Licensing Service Interface - ok
00:15:19.0112 0x24d8  [ 7C9ED65324CF268ACBA8024257F782D8, 1DC43DBA3612E26454D7786DEB0538B44A736B67EC99642B4CC574D8A03E0DC7 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
00:15:19.0160 0x24d8  Intel(R) Capability Licensing Service TCP IP Interface - ok
00:15:19.0172 0x24d8  [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
00:15:19.0197 0x24d8  intelide - ok
00:15:19.0208 0x24d8  [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
00:15:19.0234 0x24d8  intelpep - ok
00:15:19.0249 0x24d8  [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
00:15:19.0286 0x24d8  intelppm - ok
00:15:19.0296 0x24d8  [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
00:15:19.0325 0x24d8  IoQos - ok
00:15:19.0337 0x24d8  [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:15:19.0376 0x24d8  IpFilterDriver - ok
00:15:19.0423 0x24d8  [ 5AAB28A6AC2AAC9F66D4EAB6695D0474, BDAB1D04989788EA945C7FE0DE962F0FEC672D9703C271F8469822A91D7462B9 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
00:15:19.0519 0x24d8  iphlpsvc - ok
00:15:19.0533 0x24d8  [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
00:15:19.0566 0x24d8  IPMIDRV - ok
00:15:19.0580 0x24d8  [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
00:15:19.0617 0x24d8  IPNAT - ok
00:15:19.0651 0x24d8  [ 2BFF13AC46A5850161317D0F924B5B42, B8A09F66435EC6582F8772515988503CC13DC200A370EBB8C3FE661F2EA688DA ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
00:15:19.0692 0x24d8  iPod Service - ok
00:15:19.0703 0x24d8  [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
00:15:19.0741 0x24d8  IRENUM - ok
00:15:19.0750 0x24d8  [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
00:15:19.0776 0x24d8  isapnp - ok
00:15:19.0795 0x24d8  [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
00:15:19.0833 0x24d8  iScsiPrt - ok
00:15:19.0845 0x24d8  [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
00:15:19.0866 0x24d8  iwdbus - ok
00:15:19.0878 0x24d8  [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
00:15:19.0904 0x24d8  kbdclass - ok
00:15:19.0914 0x24d8  [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
00:15:19.0945 0x24d8  kbdhid - ok
00:15:19.0954 0x24d8  [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
00:15:19.0985 0x24d8  kdnic - ok
00:15:19.0996 0x24d8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] KeyIso          C:\WINDOWS\system32\lsass.exe
00:15:20.0024 0x24d8  KeyIso - ok
00:15:20.0033 0x24d8  [ ED6314D9982A96A73C95BD634C7FAE66, 034BD8BAE6CC854750DCCDDE59586E0914D87D20448915587CFD2B5537069CAC ] KMDFVirtualKbd  C:\WINDOWS\System32\drivers\KMDFVirtualKbd.sys
00:15:20.0048 0x24d8  KMDFVirtualKbd - ok
00:15:20.0058 0x24d8  [ 23E3E79A244E63F416A89640359C78B3, 721EBE47CF5617762DA16E0450B5B2DA857F9B04EA3D167770E2A8CA9D31C77C ] KMDFVirtualMouse C:\WINDOWS\System32\drivers\KMDFVirtualMouse.sys
00:15:20.0075 0x24d8  KMDFVirtualMouse - ok
00:15:20.0088 0x24d8  [ 982C795DE20CED7AEDD2E7899B5D9BC1, 9F4E7536DB253CD83AA2AB89E9F3311714CD70F13AFD16F9B4D4CD86A70FC164 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
00:15:20.0118 0x24d8  KSecDD - ok
00:15:20.0134 0x24d8  [ 425CFD45BDF5B9F8B790BEB20E0A8721, 0AB57F9C450A53308B41C8C884E92AACF643A74056F14E3D6C49BE2C61614879 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
00:15:20.0166 0x24d8  KSecPkg - ok
00:15:20.0175 0x24d8  [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
00:15:20.0206 0x24d8  ksthunk - ok
00:15:20.0231 0x24d8  [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
00:15:20.0287 0x24d8  KtmRm - ok
00:15:20.0309 0x24d8  [ 8BBB2B4429AF340481520C20C17FC5B6, 9E32815349195FC4B1BE213600FD407F2EAEEC8368289EB3E6B769125A739C08 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
00:15:20.0360 0x24d8  LanmanServer - ok
00:15:20.0381 0x24d8  [ 1F5D48B1DA1B812BD2411CA44D75DD32, D1BDB8142CB13E8C6DD6F42E07C9D19BBBF6410D5122A04C01B34B95B442DD95 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
00:15:20.0433 0x24d8  LanmanWorkstation - ok
00:15:20.0455 0x24d8  [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
00:15:20.0486 0x24d8  lfsvc - ok
00:15:20.0498 0x24d8  [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
00:15:20.0528 0x24d8  LicenseManager - ok
00:15:20.0540 0x24d8  [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
00:15:20.0577 0x24d8  lltdio - ok
00:15:20.0597 0x24d8  [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
00:15:20.0651 0x24d8  lltdsvc - ok
00:15:20.0668 0x24d8  [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
00:15:20.0699 0x24d8  lmhosts - ok
00:15:20.0716 0x24d8  [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
00:15:20.0746 0x24d8  LSI_SAS - ok
00:15:20.0759 0x24d8  [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
00:15:20.0788 0x24d8  LSI_SAS2i - ok
00:15:20.0803 0x24d8  [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
00:15:20.0833 0x24d8  LSI_SAS3i - ok
00:15:20.0855 0x24d8  [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
00:15:20.0884 0x24d8  LSI_SSS - ok
00:15:20.0921 0x24d8  [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM             C:\WINDOWS\System32\lsm.dll
00:15:21.0001 0x24d8  LSM - ok
00:15:21.0016 0x24d8  [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
00:15:21.0062 0x24d8  luafv - ok
00:15:21.0073 0x24d8  [ FA2CDF42B3E9F53B12E506BA48BE16AA, 2E3757F21C0F6B5EBBC2F86415C1E858673B94DC4830C675567F3DCC2CD35BE5 ] MapsBroker      C:\WINDOWS\System32\moshost.dll
00:15:21.0107 0x24d8  MapsBroker - ok
00:15:21.0117 0x24d8  [ 0D3CF8B876F55291B137B972891C1575, 2E7D0A54D5B2211D340EB56F3D5FCB8362E75415A3C75F553643BA55888DC690 ] MBI             C:\WINDOWS\system32\drivers\MBI.sys
00:15:21.0134 0x24d8  MBI - ok
00:15:21.0145 0x24d8  [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
00:15:21.0172 0x24d8  megasas - ok
00:15:21.0203 0x24d8  [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
00:15:21.0256 0x24d8  megasr - ok
00:15:21.0268 0x24d8  [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
00:15:21.0306 0x24d8  MessagingService - ok
00:15:21.0494 0x24d8  [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
00:15:21.0553 0x24d8  mlx4_bus - ok
00:15:21.0566 0x24d8  [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
00:15:21.0598 0x24d8  MMCSS - ok
00:15:21.0608 0x24d8  [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem           C:\WINDOWS\system32\drivers\modem.sys
00:15:21.0643 0x24d8  Modem - ok
00:15:21.0655 0x24d8  [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
00:15:21.0686 0x24d8  monitor - ok
00:15:21.0697 0x24d8  [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
00:15:21.0724 0x24d8  mouclass - ok
00:15:21.0733 0x24d8  [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
00:15:21.0764 0x24d8  mouhid - ok
00:15:21.0777 0x24d8  [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
00:15:21.0806 0x24d8  mountmgr - ok
00:15:21.0819 0x24d8  [ 668E653091428C7CDE230DAD5AC87954, 1A52B38D95267FCD4F3B0D59B263DAE4A7169820F725BD1774221C0073FD07AC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:15:21.0844 0x24d8  MozillaMaintenance - ok
00:15:21.0856 0x24d8  [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
00:15:21.0889 0x24d8  mpsdrv - ok
00:15:21.0933 0x24d8  [ 0B28F2ACE5103586D322AD98FAA01309, CE3053DEB6E452C6DCDFD371CF113EB0D740DED6C1C537CB749D1BE5E97FAB09 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
00:15:22.0022 0x24d8  MpsSvc - ok
00:15:22.0039 0x24d8  [ BF6CA7EA5ECD6CF72D3D76652A9B8280, 8EC031D0D8E75CB583B129CBA518701097697498621307108388FA05FBF604BB ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
00:15:22.0076 0x24d8  MRxDAV - ok
00:15:22.0103 0x24d8  [ 0B3B0C1D86050355676640488FA897D3, DBED9D6F7AAFB11F4C00C1F69DB7A887A3058E5FA66615A1640242439822B60C ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:15:22.0149 0x24d8  mrxsmb - ok
00:15:22.0171 0x24d8  [ 1A490555FD330CA2764D89191177C867, 1004AE2F80BEA9A6DBA3E6B5D2DDFA44FBA253F7137D60B000B094699DE1CB12 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
00:15:22.0217 0x24d8  mrxsmb10 - ok
00:15:22.0235 0x24d8  [ 0F47A6C09F0A7FB5513D322A2B9BE4EC, 00A17CB55D232E11F3D24D0B43FE4FA9E55F7EF5E5607B26ED84C13108AAC4FA ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
00:15:22.0270 0x24d8  mrxsmb20 - ok
00:15:22.0283 0x24d8  [ A4411C522D41707D5BCA817A5BB9E30B, EF7505BE475ECAB2B5E66A7419EDAF42A7E7A65BAD3BBE346A8CEE5DD69782CC ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
00:15:22.0319 0x24d8  MsBridge - ok
00:15:22.0334 0x24d8  [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
00:15:22.0372 0x24d8  MSDTC - ok
00:15:22.0391 0x24d8  [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
00:15:22.0422 0x24d8  Msfs - ok
00:15:22.0433 0x24d8  [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
00:15:22.0459 0x24d8  msgpiowin32 - ok
00:15:22.0468 0x24d8  [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
00:15:22.0498 0x24d8  mshidkmdf - ok
00:15:22.0508 0x24d8  [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
00:15:22.0536 0x24d8  mshidumdf - ok
00:15:22.0547 0x24d8  [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
00:15:22.0571 0x24d8  msisadrv - ok
00:15:22.0587 0x24d8  [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
00:15:22.0627 0x24d8  MSiSCSI - ok
00:15:22.0635 0x24d8  msiserver - ok
00:15:22.0647 0x24d8  [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV         C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
00:15:22.0676 0x24d8  MSKSSRV - ok
00:15:22.0689 0x24d8  [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
00:15:22.0727 0x24d8  MsLldp - ok
00:15:22.0736 0x24d8  [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK        C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
00:15:22.0766 0x24d8  MSPCLOCK - ok
00:15:22.0776 0x24d8  [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM           C:\WINDOWS\system32\DRIVERS\MSPQM.sys
00:15:22.0808 0x24d8  MSPQM - ok
00:15:22.0830 0x24d8  [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
00:15:22.0872 0x24d8  MsRPC - ok
00:15:22.0889 0x24d8  [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
00:15:22.0915 0x24d8  mssmbios - ok
00:15:22.0923 0x24d8  [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE           C:\WINDOWS\system32\DRIVERS\MSTEE.sys
00:15:22.0954 0x24d8  MSTEE - ok
00:15:22.0964 0x24d8  [ 4FA0483896FC16583851EFB733FCB083, BB59243ABE32FBE92EC1B04D24239BE2DF7C2354A407C2EFF97623F07DCBDA35 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
00:15:22.0995 0x24d8  MTConfig - ok
00:15:23.0009 0x24d8  [ 60F88248608315E13391C2F1C3B4473F, 99E8B74118A01FC281A1C6B323EFD1A8EA1997B81A013442205066F55327D555 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
00:15:23.0040 0x24d8  Mup - ok
00:15:23.0051 0x24d8  [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
00:15:23.0079 0x24d8  mvumis - ok
00:15:23.0113 0x24d8  [ AA4CD20708B7E0412A5316D7E2875103, 4E60A0865B7656735F3AB34AF5FE48304138F47DE961D4D16661617D711DEBC0 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
00:15:23.0177 0x24d8  NativeWifiP - ok
00:15:23.0194 0x24d8  [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
00:15:23.0234 0x24d8  NcaSvc - ok
00:15:23.0257 0x24d8  [ 24146738C422814EEB2A98FF1FC5C6E1, 3C70C6768681CE63DED339822EFB36194037B987D92456B9E955061A3A3C63BC ] NcbService      C:\WINDOWS\System32\ncbservice.dll
00:15:23.0310 0x24d8  NcbService - ok
00:15:23.0322 0x24d8  [ 476466DC3AB2327E2DBFAEC11798E2EE, 9ACD74720664CF3F239601DF0BE80AC443AF0FBF666CBB8509169364FB22B95D ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
00:15:23.0376 0x24d8  NcdAutoSetup - ok
00:15:23.0389 0x24d8  [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
00:15:23.0418 0x24d8  ndfltr - ok
00:15:23.0471 0x24d8  [ E582DA849A58524E645545FB68B6625D, B74E2CF078F6C575EFC4A2E4293D03FE6BA933307D656E0E57FFA17EF324948D ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
00:15:23.0559 0x24d8  NDIS - ok
00:15:23.0572 0x24d8  [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
00:15:23.0607 0x24d8  NdisCap - ok
00:15:23.0620 0x24d8  [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
00:15:23.0665 0x24d8  NdisImPlatform - ok
00:15:23.0674 0x24d8  [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:15:23.0710 0x24d8  NdisTapi - ok
00:15:23.0722 0x24d8  [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
00:15:23.0756 0x24d8  Ndisuio - ok
00:15:23.0765 0x24d8  [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
00:15:23.0802 0x24d8  NdisVirtualBus - ok
00:15:23.0818 0x24d8  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
00:15:23.0866 0x24d8  NdisWan - ok
00:15:23.0881 0x24d8  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:15:23.0925 0x24d8  ndiswanlegacy - ok
00:15:23.0938 0x24d8  [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
00:15:23.0975 0x24d8  ndproxy - ok
00:15:23.0988 0x24d8  [ 883A36E2FF7FA3E1281CB575579FE3AF, F1BE02B13C090E2E36BD211055FC980E79BD14F72042773A3619A5143AAEE485 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
00:15:24.0025 0x24d8  Ndu - ok
00:15:24.0036 0x24d8  [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
00:15:24.0063 0x24d8  NetBIOS - ok
00:15:24.0087 0x24d8  [ C03E926B0E7D66D68994067231DC3246, 1895BE28921431AA78BEF9AFE01411FE8CDA570867E527E4D925E6FAA35D8BC0 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
00:15:24.0133 0x24d8  NetBT - ok
00:15:24.0143 0x24d8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] Netlogon        C:\WINDOWS\system32\lsass.exe
00:15:24.0172 0x24d8  Netlogon - ok
00:15:24.0192 0x24d8  [ 7FD4C3D32DAE890608F44074A3437CD8, 5B7D9E9AEE26896B818F3C5DBE4C96A33D43CE2CF7716B95AAB7203611C03BFE ] Netman          C:\WINDOWS\System32\netman.dll
00:15:24.0245 0x24d8  Netman - ok
00:15:24.0277 0x24d8  [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
00:15:24.0350 0x24d8  netprofm - ok
00:15:24.0369 0x24d8  [ A3AA03C0C5002F3D89397637B770A1BA, CB40F8FFE2850C11C9EA309BFDBB97C2C978202AF70D052573D8CF18A0677AEB ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
00:15:24.0413 0x24d8  NetSetupSvc - ok
00:15:24.0436 0x24d8  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:15:24.0464 0x24d8  NetTcpPortSharing - ok
00:15:24.0620 0x24d8  [ 1F91B1E5FD41BDC3DF8AFFB81C8AA277, B8CB13863C1F0C589C008E191A393DF241F3067DD7CADE02B3B7D36B28BBA2ED ] NETwNb64        C:\WINDOWS\System32\drivers\Netwbw02.sys
00:15:24.0889 0x24d8  NETwNb64 - ok
00:15:24.0918 0x24d8  [ 0FB83658FBB2C5A18AB98C5C94DB9FAF, 2D15A49F47D8185D7914D26916D1237FCBE2F8351A64877CDDDDE26E766C3D2F ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
00:15:24.0968 0x24d8  NgcCtnrSvc - ok
00:15:25.0004 0x24d8  [ 7AAA9916AA10F4B0E9743798A5BA6549, 2E38EEF3F487A7DD0B719A048FFA0EB36B2487A1068BB322553E9DD2FCE46711 ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
00:15:25.0078 0x24d8  NgcSvc - ok
00:15:25.0104 0x24d8  [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
00:15:25.0166 0x24d8  NlaSvc - ok
00:15:25.0177 0x24d8  [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
00:15:25.0212 0x24d8  Npfs - ok
00:15:25.0222 0x24d8  [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
00:15:25.0252 0x24d8  npsvctrig - ok
00:15:25.0262 0x24d8  [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi             C:\WINDOWS\system32\nsisvc.dll
00:15:25.0295 0x24d8  nsi - ok
00:15:25.0306 0x24d8  [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
00:15:25.0337 0x24d8  nsiproxy - ok
00:15:25.0450 0x24d8  [ 19BD8A88AAC580592668B070AC0727D9, 60DB84895C40E6412BEB2D0E4D7F05891446B9DE992D70579CC90BA3FB27FC01 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
00:15:25.0604 0x24d8  NTFS - ok
00:15:25.0619 0x24d8  [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null            C:\WINDOWS\system32\drivers\Null.sys
00:15:25.0650 0x24d8  Null - ok
00:15:25.0664 0x24d8  [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
00:15:25.0696 0x24d8  nvraid - ok
00:15:25.0712 0x24d8  [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
00:15:25.0745 0x24d8  nvstor - ok
00:15:25.0758 0x24d8  [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
00:15:25.0789 0x24d8  nv_agp - ok
00:15:25.0797 0x24d8  OKOControlSvc - ok
00:15:25.0822 0x24d8  [ 7F3A0D052B8E00E730316210B1DD092F, 14BD026EA759F6C81ED6B4DBB04E0584B7F6456725503FC73CD4347B7743005F ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
00:15:25.0882 0x24d8  OneSyncSvc - ok
00:15:26.0039 0x24d8  [ 33840F7285A70D308882A23AF6D65D7E, 08506691E5F4AAB76811B1B2BCB9A68731B771F27A0571489E363D26A6EF0D0C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:15:26.0072 0x24d8  ose - ok
00:15:26.0311 0x24d8  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:15:26.0530 0x24d8  osppsvc - ok
00:15:26.0571 0x24d8  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
00:15:26.0625 0x24d8  p2pimsvc - ok
00:15:26.0651 0x24d8  [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
00:15:26.0711 0x24d8  p2psvc - ok
00:15:26.0724 0x24d8  [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
00:15:26.0758 0x24d8  Parport - ok
00:15:26.0771 0x24d8  [ D330D74B5F99309B5CCA30AE41C57CDE, AE5186CB4B639A5241BF0D17FE8A73D6DAFA505C31E250EA225CD498C8A4A07E ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
00:15:26.0804 0x24d8  partmgr - ok
00:15:26.0834 0x24d8  [ 0ECA2ADD5FBCE73183A68935C71B40B7, 08CC5F2F10D1DD1A1396CC29196314003491D3AF3DE59CADB281F252577F1860 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
00:15:26.0888 0x24d8  PcaSvc - ok
00:15:26.0912 0x24d8  [ CF78AF126B00C1B0A6FF45BD838E8EFE, AE01B107E1D9072F10F194AEE2AE4F9D75A4EC8FF3A46E45D27E7BF615CE0985 ] pci             C:\WINDOWS\system32\drivers\pci.sys
00:15:26.0955 0x24d8  pci - ok
00:15:26.0966 0x24d8  [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
00:15:26.0990 0x24d8  pciide - ok
00:15:27.0005 0x24d8  [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
00:15:27.0036 0x24d8  pcmcia - ok
00:15:27.0046 0x24d8  [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
00:15:27.0073 0x24d8  pcw - ok
00:15:27.0086 0x24d8  [ 67B9684B8272D5EBD1CCBB1DBD425EC8, 09BE2A2EB3A71E594D08B8D817820965DEEAD283029EBB0B74CCC658A2706233 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
00:15:27.0115 0x24d8  pdc - ok
00:15:27.0152 0x24d8  [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
00:15:27.0236 0x24d8  PEAUTH - ok
00:15:27.0250 0x24d8  [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
00:15:27.0276 0x24d8  percsas2i - ok
00:15:27.0289 0x24d8  [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
00:15:27.0316 0x24d8  percsas3i - ok
00:15:27.0368 0x24d8  [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
00:15:27.0399 0x24d8  PerfHost - ok
00:15:27.0429 0x24d8  [ 00D33CFD7F72083A69C91692D5C48E95, D38EA410FF00F60C73975B32AFC94A10550D2C1288B2999954658C42FBB2687D ] PGService       C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
00:15:27.0451 0x24d8  PGService - ok
00:15:27.0479 0x24d8  [ 114F33B738540F264BE80D447A98A262, 7B98155D4B377C32B617936348862DF7687EACB0AFD2C27E340B7F8EA470E209 ] PG_Service_Launcher C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
00:15:27.0516 0x24d8  PG_Service_Launcher - ok
00:15:27.0557 0x24d8  [ 57606281E23B0F53347527691E947B2B, 7030182E706CEBE6BD52BDC71CA8F2230AD445AE6554188E76F09A5E2612BD2E ] PhoneSvc        C:\WINDOWS\System32\PhoneService.dll
00:15:27.0638 0x24d8  PhoneSvc - ok
00:15:27.0659 0x24d8  [ 04F7878E7017105AB782353231561749, FB2811D98216720D4FDF0AC0EDF16C6CD33D7224B4CAFA752B4D2A839E6DD88A ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
00:15:27.0707 0x24d8  PimIndexMaintenanceSvc - ok
00:15:27.0903 0x24d8  [ A546F72EFFE5CBBC98003A0CA19DA0F8, 89AE396676A37D851F46427E421E8E8ED5B4BADC33023F1E215CC352A4110F44 ] pla             C:\WINDOWS\system32\pla.dll
00:15:28.0043 0x24d8  pla - ok
00:15:28.0060 0x24d8  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
00:15:28.0108 0x24d8  PlugPlay - ok
00:15:28.0117 0x24d8  [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
00:15:28.0150 0x24d8  PNRPAutoReg - ok
00:15:28.0172 0x24d8  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
00:15:28.0223 0x24d8  PNRPsvc - ok
00:15:28.0248 0x24d8  [ D67052BD0DA9C17BCBBF8AB5B6D354EE, 7FE9B414C74CF69E531B27C506216F7F5CBE00B67E90305A4A4A2ECADAA4F349 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
00:15:28.0303 0x24d8  PolicyAgent - ok
00:15:28.0321 0x24d8  [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power           C:\WINDOWS\system32\umpo.dll
00:15:28.0359 0x24d8  Power - ok
00:15:28.0372 0x24d8  [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
00:15:28.0412 0x24d8  PptpMiniport - ok
00:15:28.0568 0x24d8  [ 15709A9AB1411565754CEE33AAB36387, 77CBC04346F8F247B4614CE65FBD225F0A24827EDD1FDB34900D05673B682D84 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
00:15:28.0814 0x24d8  PrintNotify - ok
00:15:28.0835 0x24d8  [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor       C:\WINDOWS\System32\drivers\processr.sys
00:15:28.0872 0x24d8  Processor - ok
00:15:28.0894 0x24d8  [ 7E0078F1EFEB6F8F47CF85C1D73C7EBC, 831BC3CE72F29AD259DEE7121D6F785CE0A8462CFB69DD7FB1F3BDAF16CDBF3E ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
00:15:28.0946 0x24d8  ProfSvc - ok
00:15:28.0966 0x24d8  [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
00:15:28.0998 0x24d8  Psched - ok
00:15:29.0018 0x24d8  [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE           C:\WINDOWS\system32\qwave.dll
00:15:29.0068 0x24d8  QWAVE - ok
00:15:29.0080 0x24d8  [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
00:15:29.0111 0x24d8  QWAVEdrv - ok
00:15:29.0121 0x24d8  [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:15:29.0151 0x24d8  RasAcd - ok
00:15:29.0164 0x24d8  [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
00:15:29.0199 0x24d8  RasAgileVpn - ok
00:15:29.0212 0x24d8  [ D60BA4C76D194472D6602FF3D2D51ADE, 01272663897685C75FFBC3F1C0CFDB8D0E1A58182049E0B607D634536A8F6400 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
00:15:29.0250 0x24d8  RasAuto - ok
00:15:29.0262 0x24d8  [ E3C82823B22463BC38AA4F8ADA852624, FF601B117F4003E2CC65B6143C2A270331EB257EE82B3BC020247D1AB1CD625F ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
00:15:29.0298 0x24d8  Rasl2tp - ok
00:15:29.0335 0x24d8  [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan          C:\WINDOWS\System32\rasmans.dll
00:15:29.0418 0x24d8  RasMan - ok
00:15:29.0431 0x24d8  [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:15:29.0471 0x24d8  RasPppoe - ok
00:15:29.0482 0x24d8  [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
00:15:29.0520 0x24d8  RasSstp - ok
00:15:29.0546 0x24d8  [ 2B648363E4C5E34B469C58596F377DD9, 30F82770468BBA562CEA0E9E39B24ACEFBE022343D0180C82E2ACE8957B73E44 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:15:29.0592 0x24d8  rdbss - ok
00:15:29.0608 0x24d8  [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
00:15:29.0638 0x24d8  rdpbus - ok
00:15:29.0654 0x24d8  [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
00:15:29.0693 0x24d8  RDPDR - ok
00:15:29.0713 0x24d8  [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
00:15:29.0739 0x24d8  RdpVideoMiniport - ok
00:15:29.0756 0x24d8  [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
00:15:29.0792 0x24d8  rdyboost - ok
00:15:29.0841 0x24d8  [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
00:15:29.0914 0x24d8  ReFSv1 - ok
00:15:29.0951 0x24d8  [ 8355BCA85B0928382DFCDD02FCD1681A, F306F038DA09C8D2095C311818E2F991B55BCD96B40B95D2A53A60EA6AC37014 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
00:15:30.0021 0x24d8  RemoteAccess - ok
00:15:30.0037 0x24d8  [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
00:15:30.0089 0x24d8  RemoteRegistry - ok
00:15:30.0140 0x24d8  [ DF7A59E70F398EEB9FDCDD310987D8AE, 67817FC336B2046351BDEB84A57252D6708E17656CD84FF5BCA85FCA24F430E0 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
00:15:30.0240 0x24d8  RetailDemo - ok
00:15:30.0260 0x24d8  [ AEEF76F938188EBF27DF70C1806877F2, 08560C5DE13EBC46EE77F369E92B89350135D5E01A2AF61AA2EA46BEC41EEDD6 ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
00:15:30.0299 0x24d8  RFCOMM - ok
00:15:30.0329 0x24d8  [ FBA61BB4C484A01A655AFB18FF86C417, D53B2110CB09D0A909C4E330C468351BFE076BB056CCDDCB8ADA2FB91E96352E ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
00:15:30.0360 0x24d8  RichVideo64 - ok
00:15:30.0373 0x24d8  [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
00:15:30.0409 0x24d8  RpcEptMapper - ok
00:15:30.0418 0x24d8  [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator      C:\WINDOWS\system32\locator.exe
00:15:30.0450 0x24d8  RpcLocator - ok
00:15:30.0495 0x24d8  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
00:15:30.0583 0x24d8  RpcSs - ok
00:15:30.0597 0x24d8  [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
00:15:30.0635 0x24d8  rspndr - ok
00:15:30.0684 0x24d8  [ CF0F908B50CD8FB12B7B69DA56A44681, F35FFF3F6BFBC3B2452C5E0A63D94575236EEB49665BE0FBBB26ADAF189F777E ] rt640x64        C:\WINDOWS\System32\drivers\rt640x64.sys
00:15:30.0734 0x24d8  rt640x64 - ok
00:15:30.0767 0x24d8  [ BD842BC15BD79F761CBF51B04F27FB1A, 810BA202C09D83615F2BFE6E91538781A0F6238962244E7E2CF82720CC4F1061 ] RTSUER          C:\WINDOWS\system32\Drivers\RtsUer.sys
00:15:30.0812 0x24d8  RTSUER - ok
00:15:30.0963 0x24d8  [ 44FD469A4F12C2092CAFE37ED1D44F60, B9001FACDADB2010206EC6DDF75B57BFC88A1C56F0E52DDC3CEC2D2F356A4835 ] rtsuvc          C:\WINDOWS\system32\DRIVERS\rtsuvc.sys
00:15:31.0102 0x24d8  rtsuvc - ok
00:15:31.0118 0x24d8  [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
00:15:31.0147 0x24d8  s3cap - ok
00:15:31.0157 0x24d8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] SamSs           C:\WINDOWS\system32\lsass.exe
00:15:31.0185 0x24d8  SamSs - ok
00:15:31.0198 0x24d8  [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
00:15:31.0228 0x24d8  sbp2port - ok
00:15:31.0246 0x24d8  [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
00:15:31.0301 0x24d8  SCardSvr - ok
00:15:31.0319 0x24d8  [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
00:15:31.0369 0x24d8  ScDeviceEnum - ok
00:15:31.0380 0x24d8  [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
00:15:31.0418 0x24d8  scfilter - ok
00:15:31.0466 0x24d8  [ EA195B8BC11C1CDB313CFD456EFFA0E9, EEDF349C59ED0645B04040707906BB4496527243858C2A6BE46BE7029B4A7F37 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
00:15:31.0564 0x24d8  Schedule - ok
00:15:31.0583 0x24d8  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
00:15:31.0634 0x24d8  SCPolicySvc - ok
00:15:31.0655 0x24d8  [ B24408471C1BCB17FC44F5B47EA8DEA3, 1CFE07C793F2A3D883E9071B8703C01A7619C8C0A02AAEBAA1130F36654AFD4F ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
00:15:31.0694 0x24d8  sdbus - ok
00:15:31.0710 0x24d8  [ 811EC0B1221402FCED0BA37E112BF627, 366EB8AF04C603BED6CF53652CC937099B247D5DD8C58D699D0D8DA22F8FDD51 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
00:15:31.0751 0x24d8  SDRSVC - ok
00:15:31.0763 0x24d8  [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
00:15:31.0792 0x24d8  sdstor - ok
00:15:31.0802 0x24d8  [ EBD07BD20B5E0E92A398566EF8720F79, 8A88C861D4113B9938C32CBD28FD3D7F1C3133E700E23E17F5DFD7B26CCDA04A ] seclogon        C:\WINDOWS\system32\seclogon.dll
00:15:31.0834 0x24d8  seclogon - ok
00:15:31.0845 0x24d8  [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS            C:\WINDOWS\System32\sens.dll
00:15:31.0890 0x24d8  SENS - ok
00:15:31.0950 0x24d8  [ D14DD7D766664F880FECF44CE6017966, ECF966E3ACF4EBD5A3259468A076619A539E35F1B97AB6A98FBD7882F1FBBBAB ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
00:15:32.0082 0x24d8  SensorDataService - ok
00:15:32.0106 0x24d8  [ 45D26646E3AD737E5DE3DB91CCCE7DBA, B05AB32700998C8347BC5797B18EB97F303FCB2302BED852348F2703DEDE72F9 ] SensorService   C:\WINDOWS\system32\SensorService.dll
00:15:32.0159 0x24d8  SensorService - ok
00:15:32.0176 0x24d8  [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
00:15:32.0219 0x24d8  SensrSvc - ok
00:15:32.0230 0x24d8  [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
00:15:32.0259 0x24d8  SerCx - ok
00:15:32.0274 0x24d8  [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
00:15:32.0306 0x24d8  SerCx2 - ok
00:15:32.0315 0x24d8  [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
00:15:32.0345 0x24d8  Serenum - ok
00:15:32.0357 0x24d8  [ 249A563C48DFD9E42A37587653E003BB, D022FAE2B7AC9D99B9F230A4DF0B045891588162587E1F468B5E05C8DA98AA9A ] Serial          C:\WINDOWS\System32\drivers\serial.sys
00:15:32.0390 0x24d8  Serial - ok
00:15:32.0400 0x24d8  [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
00:15:32.0429 0x24d8  sermouse - ok
00:15:32.0467 0x24d8  [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
00:15:32.0523 0x24d8  SessionEnv - ok
00:15:32.0534 0x24d8  [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
00:15:32.0565 0x24d8  sfloppy - ok
00:15:32.0596 0x24d8  [ F8083C536BEDE61AFB4069D8A8C16DA7, 13AADAD7B5582911B8ABBE0CF7132CC517F7413A361CCF8ED502F803D061FFA3 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
00:15:32.0656 0x24d8  SharedAccess - ok
00:15:32.0691 0x24d8  [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
00:15:32.0781 0x24d8  ShellHWDetection - ok
00:15:32.0793 0x24d8  [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
00:15:32.0819 0x24d8  SiSRaid2 - ok
00:15:32.0831 0x24d8  [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
00:15:32.0859 0x24d8  SiSRaid4 - ok
00:15:32.0880 0x24d8  [ 9A66A87BBC0EC4463042959B7C0D4AC1, 2E61DC50AD4A4D4782F3271BAD010137DA9A6AFC46C7568C709F68C7621DCD40 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
00:15:32.0918 0x24d8  SkypeUpdate - ok
00:15:32.0929 0x24d8  [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost         C:\WINDOWS\System32\smphost.dll
00:15:32.0971 0x24d8  smphost - ok
00:15:33.0005 0x24d8  [ F07301C282AA222C33F8C28B4F545275, 2938943A3A62B33C8296DF3B57897D32293F5395A5E2A01C76B0160A98C12520 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
00:15:33.0078 0x24d8  SmsRouter - ok
00:15:33.0098 0x24d8  [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
00:15:33.0134 0x24d8  SNMPTRAP - ok
00:15:33.0164 0x24d8  [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
00:15:33.0216 0x24d8  spaceport - ok
00:15:33.0236 0x24d8  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] SpbAccelerometer C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
00:15:33.0280 0x24d8  SpbAccelerometer - ok
00:15:33.0292 0x24d8  [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
00:15:33.0319 0x24d8  SpbCx - ok
00:15:33.0362 0x24d8  [ D1241DFC397FA8CCFB4BB4B63AAD31AC, F8C57C2F7CA8B6D8FEE1505A143A3FECF502C8DCFFC375F9C8848A87D9714C9E ] Spooler         C:\WINDOWS\System32\spoolsv.exe
00:15:33.0445 0x24d8  Spooler - ok
00:15:33.0749 0x24d8  [ 7C58AFEC26E9F7730A8AA7FD40225937, 546EAD8889F2A1BB6DCCB7781976B975F34DA1C9047F95FEAA52CF38EC60C6DD ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
00:15:34.0143 0x24d8  sppsvc - ok
00:15:34.0184 0x24d8  [ BE88248427A6AA548A904FD867667F70, 37E7BB76881F4E896311721B1FCB7B1908524591D36F7D63B233CA0115FECC2C ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
00:15:34.0238 0x24d8  srv - ok
00:15:34.0276 0x24d8  [ 2568B86F6A50D254324CB89022CA9EFC, 001B7A0061227E8E78A35FDC095C71A6974F18B1289FA392FA0B864A88C20672 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
00:15:34.0351 0x24d8  srv2 - ok
00:15:34.0371 0x24d8  [ 6E520D6B16EA8AE23D1F81C1194F00C8, 42CAB0772D351023DBF1DAD4BDB1FC214827CEA660284838B41062B8DF89DF10 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
00:15:34.0416 0x24d8  srvnet - ok
00:15:34.0434 0x24d8  [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
00:15:34.0486 0x24d8  SSDPSRV - ok
00:15:34.0504 0x24d8  [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
00:15:34.0555 0x24d8  SstpSvc - ok
00:15:34.0682 0x24d8  [ 58863C57E4598C4F9DA967C5C36CFA5D, BB34FBC324E84E05128258CE3755241ECB63F7F2AE7F96716AC373931FAF92A8 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
00:15:34.0907 0x24d8  StateRepository - ok
00:15:34.0928 0x24d8  [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
00:15:34.0954 0x24d8  stexstor - ok
00:15:34.0988 0x24d8  [ 75476CAA8FA0A4E573948CDE8C7F0304, 68C4405CACA77AEED71761875A9AF60BCFBDD39E356BEA1BA8226E099BAA5FA4 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
00:15:35.0065 0x24d8  stisvc - ok
00:15:35.0082 0x24d8  [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
00:15:35.0112 0x24d8  storahci - ok
00:15:35.0123 0x24d8  [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
00:15:35.0150 0x24d8  storflt - ok
00:15:35.0162 0x24d8  [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
00:15:35.0189 0x24d8  stornvme - ok
00:15:35.0204 0x24d8  [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
00:15:35.0238 0x24d8  storqosflt - ok
00:15:35.0273 0x24d8  [ FE42F8A07885E518ED1E846C93E4B78C, 264B21A5E07654F159A3E324F3B38A8C11AF619F61B5779A46367DD99EBD00A6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
00:15:35.0347 0x24d8  StorSvc - ok
00:15:35.0361 0x24d8  [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
00:15:35.0386 0x24d8  storufs - ok
00:15:35.0396 0x24d8  [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
00:15:35.0421 0x24d8  storvsc - ok
00:15:35.0432 0x24d8  [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc           C:\WINDOWS\system32\svsvc.dll
00:15:35.0476 0x24d8  svsvc - ok
00:15:35.0486 0x24d8  [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
         


Alt 24.06.2016, 00:37   #6
FCK191
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Teil 4:

Code:
ATTFilter
00:15:35.0511 0x24d8  swenum - ok
00:15:35.0539 0x24d8  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
00:15:35.0596 0x24d8  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
00:15:35.0596 0x24d8  Detect skipped due to KSN trusted
00:15:35.0596 0x24d8  SwitchBoard - ok
00:15:35.0625 0x24d8  [ 22E539A9B96C66A713583EC017562616, 210DA61DFC7AA9AD23277D9CC0239B781F4EABD322D0803AEC9434D68B81FABD ] swprv           C:\WINDOWS\System32\swprv.dll
00:15:35.0698 0x24d8  swprv - ok
00:15:35.0711 0x24d8  [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
00:15:35.0742 0x24d8  Synth3dVsc - ok
00:15:35.0796 0x24d8  [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
00:15:35.0906 0x24d8  SysMain - ok
00:15:35.0934 0x24d8  [ FA8E0A9C648035CA1B47C9DA77EDB7EA, 4097AB89D2DB4741B138F3939AED4C5DB00BA124BF66E5DC2218ACF3A37513A3 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
00:15:35.0989 0x24d8  SystemEventsBroker - ok
00:15:36.0006 0x24d8  [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
00:15:36.0048 0x24d8  TabletInputService - ok
00:15:36.0070 0x24d8  [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
00:15:36.0123 0x24d8  TapiSrv - ok
00:15:36.0225 0x24d8  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
00:15:36.0380 0x24d8  Tcpip - ok
00:15:36.0486 0x24d8  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
00:15:36.0628 0x24d8  Tcpip6 - ok
00:15:36.0652 0x24d8  [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
00:15:36.0688 0x24d8  tcpipreg - ok
00:15:36.0708 0x24d8  [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
00:15:36.0737 0x24d8  tdx - ok
00:15:36.0748 0x24d8  [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
00:15:36.0774 0x24d8  terminpt - ok
00:15:36.0823 0x24d8  [ 14307D4801C8CEF0A615907C09E886B3, C7F34C294D70DE689F673E0B5E9253B27EFEBBE6FA38B68B3B0B0374A896407E ] TermService     C:\WINDOWS\System32\termsrv.dll
00:15:36.0924 0x24d8  TermService - ok
00:15:36.0939 0x24d8  [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes          C:\WINDOWS\system32\themeservice.dll
00:15:36.0991 0x24d8  Themes - ok
00:15:37.0015 0x24d8  [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
00:15:37.0076 0x24d8  TieringEngineService - ok
00:15:37.0105 0x24d8  [ 7ECACE6D0B4C2D323408EB00FD93C682, EE7F5E5185EA8C8098046FA573659443014ED7C9DA9E710D9EF3FCACBBFFA100 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
00:15:37.0171 0x24d8  tiledatamodelsvc - ok
00:15:37.0188 0x24d8  [ 7E81E3E0D7F83BFE3C3975020B6C7F12, 316F9415646CC7A4E9A5F1E07310D433457E623B3E589543E4A6C73C4F77712C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
00:15:37.0230 0x24d8  TimeBroker - ok
00:15:37.0247 0x24d8  [ 87B9ABB965F7AF987D52791F0DD1663D, 6E42F764D47ACAD644E5F547E503B7AEA8D700C335674D1B0EB5493914F747E7 ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
00:15:37.0281 0x24d8  TPM - ok
00:15:37.0294 0x24d8  [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks          C:\WINDOWS\System32\trkwks.dll
00:15:37.0335 0x24d8  TrkWks - ok
00:15:37.0348 0x24d8  [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
00:15:37.0383 0x24d8  TrustedInstaller - ok
00:15:37.0399 0x24d8  [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
00:15:37.0430 0x24d8  tsusbflt - ok
00:15:37.0457 0x24d8  [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
00:15:37.0486 0x24d8  TsUsbGD - ok
00:15:37.0501 0x24d8  [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
00:15:37.0544 0x24d8  tunnel - ok
00:15:37.0557 0x24d8  [ E624283C1A2F9BB4688A002914CC00A7, B6908C1FFDD6BCFFC5C2FC0C429FC3E237E340F891F80CFD737BE41E5EF7E328 ] TXEIx64         C:\WINDOWS\System32\drivers\TXEIx64.sys
00:15:37.0576 0x24d8  TXEIx64 - ok
00:15:37.0589 0x24d8  [ 56C238ACFE4CB020D3E38508249039EA, 172868080F07D98175229A02410FE751B5958ED5A3D567D4AE5736F4025DF432 ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
00:15:37.0625 0x24d8  tzautoupdate - ok
00:15:37.0637 0x24d8  [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
00:15:37.0665 0x24d8  uagp35 - ok
00:15:37.0676 0x24d8  [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
00:15:37.0704 0x24d8  UASPStor - ok
00:15:37.0715 0x24d8  [ 82D3B1F4D80057826AA649D78147DE36, 344A738F6866BFD3095BB802206DDB2F9E9AD89DC39CAA7DE96455F410683829 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
00:15:37.0749 0x24d8  UcmCx0101 - ok
00:15:37.0759 0x24d8  [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
00:15:37.0791 0x24d8  UcmUcsi - ok
00:15:37.0808 0x24d8  [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
00:15:37.0842 0x24d8  Ucx01000 - ok
00:15:37.0854 0x24d8  [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
00:15:37.0885 0x24d8  UdeCx - ok
00:15:37.0905 0x24d8  [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
00:15:37.0964 0x24d8  udfs - ok
00:15:37.0976 0x24d8  [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
00:15:38.0001 0x24d8  UEFI - ok
00:15:38.0019 0x24d8  [ 05DD22294A4F3F89E52351C7721E6D2C, 300A7D4BD5F26814CF73400E01DEB810CA3F91BD190B3D37B74ADF080F582829 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
00:15:38.0057 0x24d8  Ufx01000 - ok
00:15:38.0070 0x24d8  [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
00:15:38.0099 0x24d8  UfxChipidea - ok
00:15:38.0114 0x24d8  [ 2A87EA182EA333D79AA0B03833EA67F2, 227792A8B4E63CF60A3DEECF829448C8FD59A40DEF3F42414E432820F8D34F64 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
00:15:38.0145 0x24d8  ufxsynopsys - ok
00:15:38.0169 0x24d8  [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
00:15:38.0212 0x24d8  UI0Detect - ok
00:15:38.0223 0x24d8  [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
00:15:38.0251 0x24d8  uliagpkx - ok
00:15:38.0262 0x24d8  [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
00:15:38.0295 0x24d8  umbus - ok
00:15:38.0304 0x24d8  [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
00:15:38.0334 0x24d8  UmPass - ok
00:15:38.0354 0x24d8  [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
00:15:38.0404 0x24d8  UmRdpService - ok
00:15:38.0461 0x24d8  [ CB902A15DD21B363FECA5DCCF34F5C57, 6A0836A12A410EBD5C667982852B58CA9E9EDB11EA666C413CC0F811E01A549D ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
00:15:38.0575 0x24d8  UnistoreSvc - ok
00:15:38.0733 0x24d8  [ B85A8CF2BE74DFF1E80097AC94584112, B1DBACC33A4143FEE2CF54E567590A69580312AD7A053BCC85B487C4D451FBDA ] upnphost        C:\WINDOWS\System32\upnphost.dll
00:15:38.0800 0x24d8  upnphost - ok
00:15:38.0810 0x24d8  [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
00:15:38.0835 0x24d8  UrsChipidea - ok
00:15:38.0846 0x24d8  [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
00:15:38.0873 0x24d8  UrsCx01000 - ok
00:15:38.0883 0x24d8  [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
00:15:38.0908 0x24d8  UrsSynopsys - ok
00:15:38.0921 0x24d8  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
00:15:38.0954 0x24d8  USBAAPL64 - ok
00:15:38.0969 0x24d8  [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
00:15:39.0001 0x24d8  usbccgp - ok
00:15:39.0013 0x24d8  [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
00:15:39.0049 0x24d8  usbcir - ok
00:15:39.0062 0x24d8  [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
00:15:39.0091 0x24d8  usbehci - ok
00:15:39.0120 0x24d8  [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
00:15:39.0170 0x24d8  usbhub - ok
00:15:39.0202 0x24d8  [ E7463CE8579A0418A98BE9BE42C647D7, 923CD51C82FCF9DC4E9EEA99E53634EE07EBF62FB5DFC337F01309D7D5C7622C ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
00:15:39.0255 0x24d8  USBHUB3 - ok
00:15:39.0266 0x24d8  [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
00:15:39.0298 0x24d8  usbohci - ok
00:15:39.0308 0x24d8  [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
00:15:39.0339 0x24d8  usbprint - ok
00:15:39.0351 0x24d8  [ 4AAD6547953D373A1EB5B2DF583D868B, 4E3DCEC9644550996C314FCC39F885DDE4AA7AD821B8596D96C5BEA5D60795F7 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
00:15:39.0384 0x24d8  usbser - ok
00:15:39.0397 0x24d8  [ 8949F77132A4F8F3BA17C6727099F002, 86AD4A2263B34983335180FDAE775D1744E042D2A11300D27DF546F15F285A25 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
00:15:39.0432 0x24d8  USBSTOR - ok
00:15:39.0442 0x24d8  [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
00:15:39.0473 0x24d8  usbuhci - ok
00:15:39.0496 0x24d8  [ 9E9D58F5E1702955B2F4D62996F80E8E, 6C21C250B9D98346D0D5CB7D6C11AB120A1D195C28313BDB0CE532663F0114E2 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
00:15:39.0538 0x24d8  USBXHCI - ok
00:15:39.0606 0x24d8  [ 2771EBB565F5C121E66060B173991D4D, 1EB34A6262A18E47ADCA392FDB2D58E8428A1CA43EB4196D76A897F74A03CA7F ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
00:15:39.0738 0x24d8  UserDataSvc - ok
00:15:39.0916 0x24d8  [ 36EC82F0E399F36BD25F593D63DC144A, 2A9E916A098ACD5A5074A5FD053ECAB027A0932A348C728F20CD63EF16289533 ] UserManager     C:\WINDOWS\System32\usermgr.dll
00:15:40.0010 0x24d8  UserManager - ok
00:15:40.0035 0x24d8  [ 0D33D06EF42E3BC6A7BBC4F7F7517C25, 1B19739341F5D76C0C491D20BD676877D7D59C73AFC3108567C81E6963E6384A ] UsoSvc          C:\WINDOWS\system32\usocore.dll
00:15:40.0090 0x24d8  UsoSvc - ok
00:15:40.0102 0x24d8  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
00:15:40.0130 0x24d8  VaultSvc - ok
00:15:40.0141 0x24d8  [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
00:15:40.0168 0x24d8  vdrvroot - ok
00:15:40.0203 0x24d8  [ 67A6E949395A09914AD8B38FE14B8D15, 593F2FAA880B2E0468F98BD58B5214A170E5890907B25294D7A47C66505A3D45 ] vds             C:\WINDOWS\System32\vds.exe
00:15:40.0288 0x24d8  vds - ok
00:15:40.0307 0x24d8  [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
00:15:40.0342 0x24d8  VerifierExt - ok
00:15:40.0380 0x24d8  [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
00:15:40.0441 0x24d8  vhdmp - ok
00:15:40.0454 0x24d8  [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
00:15:40.0483 0x24d8  vhf - ok
00:15:40.0496 0x24d8  [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
00:15:40.0525 0x24d8  vmbus - ok
00:15:40.0535 0x24d8  [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
00:15:40.0564 0x24d8  VMBusHID - ok
00:15:40.0593 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
00:15:40.0657 0x24d8  vmicguestinterface - ok
00:15:40.0684 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
00:15:40.0745 0x24d8  vmicheartbeat - ok
00:15:40.0771 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
00:15:40.0834 0x24d8  vmickvpexchange - ok
00:15:40.0861 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
00:15:40.0922 0x24d8  vmicrdv - ok
00:15:40.0949 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
00:15:41.0010 0x24d8  vmicshutdown - ok
00:15:41.0038 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
00:15:41.0099 0x24d8  vmictimesync - ok
00:15:41.0126 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
00:15:41.0187 0x24d8  vmicvmsession - ok
00:15:41.0222 0x24d8  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
00:15:41.0283 0x24d8  vmicvss - ok
00:15:41.0296 0x24d8  [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
00:15:41.0324 0x24d8  volmgr - ok
00:15:41.0347 0x24d8  [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
00:15:41.0390 0x24d8  volmgrx - ok
00:15:41.0417 0x24d8  [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
00:15:41.0461 0x24d8  volsnap - ok
00:15:41.0474 0x24d8  [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
00:15:41.0503 0x24d8  vpci - ok
00:15:41.0518 0x24d8  [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
00:15:41.0550 0x24d8  vsmraid - ok
00:15:41.0617 0x24d8  [ 4CF5A1E0C4FCA956ACD6C654E2A8610E, 57F3C7200C25E8717AF92AF2ED7615C6605179D3514B432220FA6EA94CAB4F2E ] VSS             C:\WINDOWS\system32\vssvc.exe
00:15:41.0754 0x24d8  VSS - ok
00:15:41.0778 0x24d8  [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
00:15:41.0817 0x24d8  VSTXRAID - ok
00:15:41.0828 0x24d8  [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
00:15:41.0863 0x24d8  vwifibus - ok
00:15:41.0876 0x24d8  [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
00:15:41.0915 0x24d8  vwififlt - ok
00:15:41.0925 0x24d8  [ 3BE5AAC930447FD18D4A8255A2FEC95C, A517357188FE4A5BD98A3CDB2165ACCE96CCE4BE2B90DDBEAF70B6DDF393F506 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
00:15:41.0961 0x24d8  vwifimp - ok
00:15:41.0991 0x24d8  [ 48C1A256591297C43ECFC4E30D144EAA, 8E66833ED2CEB6D7E499EB2E4282B4F9DFA28B6D21757BB88EC52FD069D7FACE ] W32Time         C:\WINDOWS\system32\w32time.dll
00:15:42.0066 0x24d8  W32Time - ok
00:15:42.0077 0x24d8  [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
00:15:42.0109 0x24d8  WacomPen - ok
00:15:42.0137 0x24d8  [ D76D1AC4F2C642D09A68227D129A4726, D14D6C4D94E9660848C74B220359683D91A4A3D70750E781A20B6D86D46794CE ] WalletService   C:\WINDOWS\system32\WalletService.dll
00:15:42.0202 0x24d8  WalletService - ok
00:15:42.0215 0x24d8  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:15:42.0254 0x24d8  wanarp - ok
00:15:42.0264 0x24d8  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:15:42.0301 0x24d8  wanarpv6 - ok
00:15:42.0371 0x24d8  [ 2598BBF11C9E7D0885DCA52E7FD5BCBD, 46B1FB080A2CD88C89A0EB8BA2594A1FA2C341ED77A6C6835CBFFE42907FAC55 ] wbengine        C:\WINDOWS\system32\wbengine.exe
00:15:42.0508 0x24d8  wbengine - ok
00:15:42.0545 0x24d8  [ 642EFABF900374FA85639D83B5533AFD, 292692D6AAC2A785D237ADFBC7CA3D379E8FC79FA366A8CE7D06F5CA5CE6866B ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
00:15:42.0619 0x24d8  WbioSrvc - ok
00:15:42.0653 0x24d8  [ 0BF8D8C7EC9FB15D6480A12101E88B71, E7BC6A4E53D8C9D73BF83097DFE43ED8038B7BED0AE56E5AF7983F74562F15A3 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
00:15:42.0725 0x24d8  Wcmsvc - ok
00:15:42.0754 0x24d8  [ 53A036CED1270F2459E708A05922FD49, 2F281A72E4B0408DE6C8153F5988C9AA38591FB1E72558767D389637D0666A85 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
00:15:42.0823 0x24d8  wcncsvc - ok
00:15:42.0835 0x24d8  [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
00:15:42.0868 0x24d8  WcsPlugInService - ok
00:15:42.0879 0x24d8  [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
00:15:42.0907 0x24d8  WdBoot - ok
00:15:42.0947 0x24d8  [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
00:15:43.0005 0x24d8  Wdf01000 - ok
00:15:43.0027 0x24d8  [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
00:15:43.0066 0x24d8  WdFilter - ok
00:15:43.0079 0x24d8  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
00:15:43.0128 0x24d8  WdiServiceHost - ok
00:15:43.0138 0x24d8  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
00:15:43.0186 0x24d8  WdiSystemHost - ok
00:15:43.0222 0x24d8  [ 2BC2E99623119521EEF7910A11D0FDE0, 3F3E48A79534F0F65F961D9B170D534562E04901B630127B16DF02E6D42F2BBF ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
00:15:43.0298 0x24d8  wdiwifi - ok
00:15:43.0313 0x24d8  [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
00:15:43.0344 0x24d8  WdNisDrv - ok
00:15:43.0351 0x24d8  WdNisSvc - ok
00:15:43.0372 0x24d8  [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient       C:\WINDOWS\System32\webclnt.dll
00:15:43.0429 0x24d8  WebClient - ok
00:15:43.0446 0x24d8  [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
00:15:43.0496 0x24d8  Wecsvc - ok
00:15:43.0506 0x24d8  [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
00:15:43.0546 0x24d8  WEPHOSTSVC - ok
00:15:43.0560 0x24d8  [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
00:15:43.0610 0x24d8  wercplsupport - ok
00:15:43.0624 0x24d8  [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
00:15:43.0679 0x24d8  WerSvc - ok
00:15:43.0694 0x24d8  [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
00:15:43.0725 0x24d8  WFPLWFS - ok
00:15:43.0737 0x24d8  [ 205A1FAE910F5C493D236245850BB62A, DBA4D1D734BAA3CDEB8A7F9C81A8DAA88CEA55AF5C4C5908E76FB8E522C5EC8A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
00:15:43.0774 0x24d8  WiaRpc - ok
00:15:43.0784 0x24d8  [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
00:15:43.0810 0x24d8  WIMMount - ok
00:15:43.0816 0x24d8  WinDefend - ok
00:15:43.0843 0x24d8  [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
00:15:43.0875 0x24d8  WindowsTrustedRT - ok
00:15:43.0884 0x24d8  [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
00:15:43.0909 0x24d8  WindowsTrustedRTProxy - ok
00:15:43.0949 0x24d8  [ D4B30E23A3B373648F61290DAF432CB2, 7084E24A2E813BDD11C880F2B2D2626CD3600D9BABAA8AA8F068748E90BC8D58 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
00:15:44.0035 0x24d8  WinHttpAutoProxySvc - ok
00:15:44.0047 0x24d8  [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
00:15:44.0072 0x24d8  WinMad - ok
00:15:44.0113 0x24d8  [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
00:15:44.0158 0x24d8  Winmgmt - ok
00:15:44.0300 0x24d8  [ 703D0F62C5AA4D08EE8756516C0D125D, 02015A5E62490C11EC968160C528C2AFD1D7194AACA27F407B06EB462657511F ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
00:15:44.0539 0x24d8  WinRM - ok
00:15:44.0567 0x24d8  [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
00:15:44.0601 0x24d8  WINUSB - ok
00:15:44.0611 0x24d8  [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
00:15:44.0638 0x24d8  WinVerbs - ok
00:15:44.0739 0x24d8  [ 453740989239803FE363FF8B40EA2E08, 25499705627C38D3431B3C336E0CF3BF55ABB0C461B88DA6D3767CAAE1E2B893 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
00:15:44.0919 0x24d8  WlanSvc - ok
00:15:45.0014 0x24d8  [ E48BBF1363F843E030757EC190DD33E6, B37199495115ED423BA99B7317377CE865BB482D4E847861E871480AC49D4A84 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
00:15:45.0186 0x24d8  wlidsvc - ok
00:15:45.0200 0x24d8  [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
00:15:45.0228 0x24d8  WmiAcpi - ok
00:15:45.0250 0x24d8  [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
00:15:45.0293 0x24d8  wmiApSrv - ok
00:15:45.0300 0x24d8  WMPNetworkSvc - ok
00:15:45.0321 0x24d8  [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
00:15:45.0355 0x24d8  Wof - ok
00:15:45.0444 0x24d8  [ 4090C6738AA92B428220857B4D44F638, 4A3EE47494051E5BA8393F2AC8226EF434DA3AA1895CF4BADC9BC1BC378647C6 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
00:15:45.0602 0x24d8  workfolderssvc - ok
00:15:45.0617 0x24d8  [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
00:15:45.0644 0x24d8  wpcfltr - ok
00:15:45.0657 0x24d8  [ 45FA01F8B7971ACB65202038E34D04A3, 9B2C2ABC7DB716295B0BD0AF04DA08E6B4200D7CF1C7DB59DD8FD8FEBD56D94C ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
00:15:45.0695 0x24d8  WPDBusEnum - ok
00:15:45.0704 0x24d8  [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
00:15:45.0730 0x24d8  WpdUpFltr - ok
00:15:45.0757 0x24d8  [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService      C:\WINDOWS\system32\WpnService.dll
00:15:45.0792 0x24d8  WpnService - ok
00:15:45.0803 0x24d8  [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
00:15:45.0836 0x24d8  ws2ifsl - ok
00:15:45.0853 0x24d8  [ 5B813FADEA5BE9195F01C83287F823F7, B186175B12AF444F987FE9F0F9D329A0F9186C06E3D228824E0929BB0084853F ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
00:15:45.0899 0x24d8  wscsvc - ok
00:15:45.0907 0x24d8  WSearch - ok
00:15:46.0081 0x24d8  [ 6E04BBE242E2889B37300C4DF5CE1126, FBDAEAC62C48A4FC5EF412AE47FF10590AE83E8871412F76F6F9BAE910542DFA ] WSService       C:\WINDOWS\System32\WSService.dll
00:15:46.0324 0x24d8  WSService - ok
00:15:46.0345 0x24d8  [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd            C:\WINDOWS\system32\DRIVERS\wsvd.sys
00:15:46.0364 0x24d8  wsvd - ok
00:15:46.0486 0x24d8  [ 8D3AC00C88BC2A63D1D3CC320E0EAA19, 0E46765269B6FAD8ED8F032C42B38FA5998610CD9E85EB91A414135C595B3E75 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
00:15:46.0679 0x24d8  wuauserv - ok
00:15:46.0696 0x24d8  [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
00:15:46.0732 0x24d8  WudfPf - ok
00:15:46.0749 0x24d8  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
00:15:46.0792 0x24d8  WUDFRd - ok
00:15:46.0805 0x24d8  [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
00:15:46.0845 0x24d8  wudfsvc - ok
00:15:46.0861 0x24d8  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
00:15:46.0905 0x24d8  WUDFWpdFs - ok
00:15:46.0963 0x24d8  [ 5DA95027DF2317174E8C39B4A8D1FCD8, 99B356411CB08B8BCCF2348DBF1FD5D4F417EA509D9C7CE23E5877C333F4D304 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
00:15:47.0078 0x24d8  WwanSvc - ok
00:15:47.0127 0x24d8  [ 5DFAF8BE5A3CABAABF6795BC09EB7876, 1AFD0BC50EA5C2CCB2874E97FE5205175C80849BD6C9BDAF9FBC49174D478997 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
00:15:47.0223 0x24d8  XblAuthManager - ok
00:15:47.0279 0x24d8  [ 7118498F6E48758A2EF5A7D1982E2B62, 1FF75AE64CB6DB263E8B35515E092B325AA71A6B2210F8F2B0AD087B3BA33345 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
00:15:47.0384 0x24d8  XblGameSave - ok
00:15:47.0406 0x24d8  [ F279536122B83FD0D8E158AA753E1B7C, 6A542F28E24B30DBDC2EEE24DA33C2F4ADB3596AEDDD71DC1495DD40577CE4BB ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
00:15:47.0451 0x24d8  xboxgip - ok
00:15:47.0502 0x24d8  [ 69E727F94BEA64E66C284F3C482F33E6, B3E0F287E7A251E0FC17C41089C45737027E54F0213BDE847356AC882B4D3700 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
00:15:47.0600 0x24d8  XboxNetApiSvc - ok
00:15:47.0612 0x24d8  [ DA0807D87A62D076C29C4E30F1E84F46, CA3079350038091AEE04D4DA7C06865E9DB3095120AE61AAB575AA77E86A6223 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
00:15:47.0641 0x24d8  xinputhid - ok
00:15:47.0657 0x24d8  [ EECC6FB48D5137A331D02AAC1D99DF8C, 95D1069F9064EC88E4E1F478E26254F6C79EC7C3A73AEAC2403E313E30401E99 ] ymc             C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
00:15:47.0673 0x24d8  ymc - ok
00:15:47.0678 0x24d8  ================ Scan global ===============================
00:15:47.0705 0x24d8  [ 82E25186617BA6C15010F0D47C705705, 5BF9E38918E6EAE86448137E2D120B80318AA1143CDDF539A2BFBEE227646816 ] C:\WINDOWS\system32\basesrv.dll
00:15:47.0722 0x24d8  [ E2899695BD30B5F93EC626EBBEF2CB69, B190D2903A109D2C146D881F90769060A0E971942F4AA61AEAD81861032D89C3 ] C:\WINDOWS\system32\winsrv.dll
00:15:47.0740 0x24d8  [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\WINDOWS\system32\sxssrv.dll
00:15:47.0767 0x24d8  [ 6FF8248F3A9D69A095C7F3F42BC29CB2, 9077B1AA0AFB8DB329FDED0E51085DE1C51B22A986162F29037FCA404A80D512 ] C:\WINDOWS\system32\services.exe
00:15:47.0785 0x24d8  [ Global ] - ok
00:15:47.0786 0x24d8  ================ Scan MBR ==================================
00:15:47.0792 0x24d8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
00:15:47.0914 0x24d8  \Device\Harddisk0\DR0 - ok
00:15:47.0915 0x24d8  ================ Scan VBR ==================================
00:15:47.0921 0x24d8  [ 7405D59BCE6705310C8707F5AC566C2A ] \Device\Harddisk0\DR0\Partition1
00:15:47.0924 0x24d8  \Device\Harddisk0\DR0\Partition1 - ok
00:15:47.0934 0x24d8  [ 316DBD53BC27070D123F014675587D8A ] \Device\Harddisk0\DR0\Partition2
00:15:47.0936 0x24d8  \Device\Harddisk0\DR0\Partition2 - ok
00:15:47.0943 0x24d8  [ 56BB13E41B3CCBB9721C3A6177FB4045 ] \Device\Harddisk0\DR0\Partition3
00:15:47.0945 0x24d8  \Device\Harddisk0\DR0\Partition3 - ok
00:15:47.0954 0x24d8  [ B0DEAFBDDA1AE80818C7A913FBE45FCB ] \Device\Harddisk0\DR0\Partition4
00:15:47.0954 0x24d8  \Device\Harddisk0\DR0\Partition4 - ok
00:15:47.0963 0x24d8  [ 402C230EAC7AD9B771A43B2F114D380F ] \Device\Harddisk0\DR0\Partition5
00:15:47.0967 0x24d8  \Device\Harddisk0\DR0\Partition5 - ok
00:15:47.0974 0x24d8  [ BDD23E0FFE7C08AC19B5BBD5A2638479 ] \Device\Harddisk0\DR0\Partition6
00:15:47.0977 0x24d8  \Device\Harddisk0\DR0\Partition6 - ok
00:15:47.0985 0x24d8  [ 8EB9D0EE3AE1E140E71BAB07DDCD07A1 ] \Device\Harddisk0\DR0\Partition7
00:15:47.0988 0x24d8  \Device\Harddisk0\DR0\Partition7 - ok
00:15:47.0989 0x24d8  ================ Scan generic autorun ======================
00:15:47.0989 0x24d8  ETDCtrl - ok
00:15:48.0627 0x24d8  [ BA6D2D72E4B3B5E6E092012F548F5182, D7DE4C0FF0683694F5A06BF36C1E772DAD232B7FCA2CE5F476C64925395D3EA4 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
00:15:49.0265 0x24d8  RtHDVCpl - ok
00:15:49.0351 0x24d8  [ 37BFB349262E269DD07A3D8323BCCEAF, 1AA11990194258B5C8FCD16B88ED32098C406477F541A8BA31C8C7AAACA6463B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
00:15:49.0436 0x24d8  RtHDVBg_Dolby - ok
00:15:49.0502 0x24d8  [ 37BFB349262E269DD07A3D8323BCCEAF, 1AA11990194258B5C8FCD16B88ED32098C406477F541A8BA31C8C7AAACA6463B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
00:15:49.0571 0x24d8  RtHDVBg_LENOVO_DOLBYDRAGON - ok
00:15:49.0632 0x24d8  [ 37BFB349262E269DD07A3D8323BCCEAF, 1AA11990194258B5C8FCD16B88ED32098C406477F541A8BA31C8C7AAACA6463B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
00:15:49.0702 0x24d8  RtHDVBg_LENOVO_MICPKEY - ok
00:15:49.0740 0x24d8  [ 079511E999ACAB4B8CC08432F0363368, 05A2707AE075206E8913FE6249C0474FE350DCF61F4E8569904D7A8247F012BF ] C:\Program Files\Dolby\DDP_F3\ddpf3.exe
00:15:49.0799 0x24d8  DDPF3 - detected UnsignedFile.Multi.Generic ( 1 )
00:15:49.0799 0x24d8  Detect skipped due to KSN trusted
00:15:49.0800 0x24d8  DDPF3 - ok
00:15:49.0838 0x24d8  [ AD77FD29FC511AA939B32B536BB0DD56, FFAB6DFFCB8B1F25BCACCF403F9F23D604C5F640F1F6569EE1C151E16DD45786 ] C:\Program Files\Lenovo\LenovoUtility\utility.exe
00:15:49.0884 0x24d8  LenovoUtility - ok
00:15:49.0910 0x24d8  [ 1315C5C5C54CE2AA37A155F97027DB59, 70CDA6AE7FF4FD08FAD931477C524957952EDC89985696FD988B9786A349C565 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
00:15:49.0944 0x24d8  AdobeAAMUpdater-1.0 - ok
00:15:49.0960 0x24d8  [ 747CEF68DA0B3BABD64B74C0E06C050E, C640AF94F66025E8B9937A37A361547580DB3F0B5F62F21E8B30A087BE018015 ] C:\Program Files\iTunes\iTunesHelper.exe
00:15:49.0983 0x24d8  iTunesHelper - ok
00:15:49.0994 0x24d8  [ 0F23636F5CC526F1B7CD1A749F173610, 75CC836AF8E6E2D505A696A9BEAF30AF0513695DB743B2920B66C2B0D11C5BAA ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
00:15:50.0019 0x24d8  Avira SystrayStartTrigger - ok
00:15:50.0085 0x24d8  [ F316A9C0C8BBA9D2A98BE70EE0D8CA96, 20C83B6D1706DED7B645008CD29346A5FD14A4F67FCF17FED28E7A17F021E15B ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
00:15:50.0135 0x24d8  avgnt - ok
00:15:50.0148 0x24d8  Dropbox - ok
00:15:50.0179 0x24d8  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
00:15:50.0235 0x24d8  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
00:15:50.0235 0x24d8  Detect skipped due to KSN trusted
00:15:50.0235 0x24d8  SwitchBoard - ok
00:15:50.0284 0x24d8  [ 8FE651ACBA3344E645CFEB6286FFF6B8, ECE4DFFEB7EB0B19B6790FD0F619A5C4B23CA0BA9CC3F25924925F8EA07264B6 ] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
00:15:50.0338 0x24d8  AdobeCS6ServiceManager - ok
00:15:50.0372 0x24d8  [ 4852BB1EDCC0C6F143F40B680E5774DD, D71D1FBC7EDE311593831AB13DF329BF3FE1066EB0ABBAA8D3E2515684D06038 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
00:15:50.0411 0x24d8  SunJavaUpdateSched - ok
00:15:50.0794 0x24d8  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
00:15:51.0159 0x24d8  OneDriveSetup - ok
00:15:51.0476 0x24d8  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
00:15:51.0805 0x24d8  OneDriveSetup - ok
00:15:51.0869 0x24d8  [ 2010CA459E5EC8F9D5FC8B000D130294, 058FF215A3AAD04F2A4CF23B2CC62A5EA28F5A705EFA689DCE9126720CF33229 ] C:\Users\Florian\AppData\Local\Microsoft\OneDrive\OneDrive.exe
00:15:51.0913 0x24d8  OneDrive - ok
00:15:52.0385 0x24d8  [ 6798339CF7C87F5F567A8F050614D6B8, 679180427BD3423EA2C3D81869CAE77B2E6FF149FE374FFDD40C5D8AC0FCD81B ] C:\Program Files (x86)\FileHippo.com\FileHippo.AppManager.exe
00:15:52.0815 0x24d8  FileHippo.com - ok
00:15:52.0880 0x24d8  [ 06F6DB72ADABC5E858F38EF69014CE52, B4AEABF3EA6FCABBED879D642BA070DF9C244E28DB5BDC3211205C7B8DB97BFB ] C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
00:15:52.0933 0x24d8  OfficeSyncProcess - ok
00:15:52.0947 0x24d8  [ F7BF95877017F53DDAEBC4E87A309168, F7849DBC61E5E7C42B97D011364ADC7C20257994FECBFA988C8CB2E779392F80 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
00:15:52.0966 0x24d8  iCloudServices - ok
00:15:52.0984 0x24d8  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.17.264 ), 0x41000 ( enabled : updated )
00:15:52.0985 0x24d8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x60100 ( disabled : updated )
00:15:52.0991 0x24d8  Win FW state via NFP2: enabled ( trusted )
00:15:53.0156 0x24d8  ============================================================
00:15:53.0156 0x24d8  Scan finished
00:15:53.0156 0x24d8  ============================================================
00:15:53.0186 0x10b8  Detected object count: 0
00:15:53.0186 0x10b8  Actual detected object count: 0
         

Alt 24.06.2016, 14:30   #7
burningice
/// Malwareteam
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Hinweis: Dieser Scan kann schon einmal mehrere Stunden dauern...
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Alt 25.06.2016, 11:29   #8
FCK191
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Log von ESET:

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=08531d008943fb43a03a682f7104519d
# end=init
# utc_time=2016-06-24 12:57:12
# local_time=2016-06-24 02:57:12 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 29903
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=08531d008943fb43a03a682f7104519d
# end=updated
# utc_time=2016-06-24 01:06:38
# local_time=2016-06-24 03:06:38 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=08531d008943fb43a03a682f7104519d
# engine=29903
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-06-25 07:53:48
# local_time=2016-06-25 09:53:48 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='Avira Antivirus'
# compatibility_mode=1815 16777213 100 99 84422 17692163 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 15693758 20655371 0 0
# scanned=385714
# found=0
# cleaned=0
# scan_time=67630
         

Alt 26.06.2016, 15:37   #9
burningice
/// Malwareteam
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Also laut den Logs ist hier echt nix auf deinem Rechner.


Die Logs von deinem Rechner sehen jetzt für mich sauber aus: Herzlichen Glückwunsch - du bist Clean



Zum Schluss müssen wir noch etwas aufräumen und ich gebe dir ein paar Hinweise mit auf den Weg:

Wichtig: Entfernen der verwendeten Tools
Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Malwarebytes Anti-Malware und ESET kannst du als Ergänzung zu deiner bestehenden Antivirus-Lösung auf dem Computer belassen und deinen Computer damit regelmäßig scannen.


Persönliche Empfehlungen
Das wichtigste zu erst:
  • Aktiviere unbedingt die automatischen Updates von Windows und stelle auch sicher, dass diese regelmäßig installiert werden.
  • Aktiviere immer eine Firewall - die in Windows integrierte reicht dazu vollkommen aus.
  • Verwende immer ein Antivirenprogramm und stelle sicher, dass es sich regelmäßig aktualisiert.

    Wenn du kein Geld ausgeben möchtest, empfehle ich dir auf Windows 8.1 bzw. Windows 10 einfach den Defender zu benutzen. Solltest du noch Windows 7 verwenden, verwende als kostenlose Lösung die Microsoft Security Essentials.

    Wenn dir etwas besserer Schutz mit Verhaltenserkennung etwas wert ist, um so auch optimalerweise ganz neue Schadsoftware zu erkennen, empfehle ich dir eine der beiden folgenden Lösungen:


Schutz vor unerwünschter Software
Adware ist zu einer Art permanenten Bedrohung geworden, weil immer mehr Programme versuchen, einem beim Installieren noch was anderes unterzujubeln - und wie schnell hat man da ein Häkchen übersehen?

Darum: pass auf, wenn du dir Software aus dem Internet herunterlädst! Viele Portale im Internet wie Chip, Softonic und Sourceforge versuchen häufig, dir Adware oder sonstige Downloader mit unerwünschten Programmen unterzujubeln. Downloade nach Möglichkeit immer direkt von der Herstellerseite oder alternativ von einem sauberen Download-Portal, wie von FilePony.de.
Lese dir dazu auch folgenden Artikel durch: CHIP-Installer - was ist das? - Anleitungen

Selbst wenn du ein Programm von einer seriösen Quelle heruntergeladen hast, ist das keine Garantie, dass dein Programm nicht doch versucht, unerwünschte Änderungen an deinem Computer vorzunehmen. So versuchen immer mehr Programme, durch modifizierte Installationsroutinen unerwünschte Programme mit auf deinen PC zu schleusen. Das klappt leider auch häufig, weil viele Anwender nicht lesen, was auf dem Bildschirm steht und stattdessen schnell durchklicken.
Deshalb: Wenn du ein Programm installierst, wähle immer die benutzerdefinierte Installation und schaue, was du da gerade eigentlich alles mit einem Klick auf "Ok" oder "Weiter" abnickst - entferne entsprechend die Haken bei Dingen, die du nicht möchtest. Wer lesen kann, ist klar im Vorteil!

Benutze keine Optimizer, Cleaner oder sonstige SpeedUp Wunder, da diese Tools fast nie einen auch nur messbaren Performancegewinn bringen.
Du kannst jedoch regelmäßig auf deinem PC die Datenträgerbereinigung ausführen, so gewinnst du belegten Speicherplatz zurück.

Aktiviere in deiner Virenschutzlösungen den "Schutz vor potentiell unerwünschter Software", um dich bestmöglich zu schützen.

Guter Trick: Wenn du den kostenlosen Windows Defender benutzt (ab Windows 8), kannst du einen vergleichbaren Schutz durch einen kleinen Trick auch nutzen! Lese dazu folgenden Artikel um dich mehr zu informieren: Windows mit verstecktem Adware-Killer
Zum aktivieren dieses "Tricks" lade einfach nur diese Datei und führe sie aus: MpEnablePlus.reg

Tipps, um dein System sicherer zu machen
Halte immer deine Plug-ins und Software, insbesondere deinen Browser aktuell. Deinstalliere wenn möglich Java und den Adobe Flashplayer von deinem Computer. Neuerdings benötigt man sie fast nie mehr und stellen darum nur mehr eine unnötige Sicherheitslücke auf deinem Computer dar. Wenn du sie doch unbedingt benötigst, halte sie aber unbedingt aktuell.

Weiters kannst du dir Malwarebytes Anti-Exploit installieren. Es schützt gegen viele aktuelle Sicherheitslücken und erhöht so deine Sicherheit.

Passwörter
Ändere regelmäßig deine Passwörter! Zudem musst du sichere Passwörter benutzen, das bedeutet: mindestens 8 Zeichen, Groß- und Kleinbuchstaben und Sonderzeichen.
Ganz wichtig: benutze pro Account ein anderes Passwort!
Tipp: Benutze einen Spruch, den du dir leicht merken kannst, als Hilfe für ein Passwort! Zum Beispiel: Der Himmel ist blau und wenn es regnet?-grau ==> DHibuwer?-grau


Unterstütze uns und empfiehl uns weiter

Du kennst Freunde und Bekannte, die Probleme mit ihrem Computer haben? Schick sie doch zu uns auf das Trojaner Board, wir helfen gerne

Wenn du uns mit einer Spende unterstützen möchtest, freuen wir uns sehr und dies kannst du hier tun: http://www.trojaner-board.de/79994-s...ndenkonto.html Herzlichen Dank dafür

Wir machen diese Tätigkeit hier freiwillig, darum freue ich mich besonders über ein kurzes Danke, wenn du mit mir zufrieden warest oder sonst über Verbesserungsvorschläge - das kannst du gerne hier machen

Besuche und like unsere Facebook-Seite!


Danke für deine Mitarbeit und alles Gute!

Bitte gib mir Bescheid, wenn du das alles gelesen hast und du keine weiteren Fragen mehr hast.
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Alt 27.06.2016, 21:08   #10
FCK191
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Habe Alles gelesen. Vielen Dank für deine Hilfe!

Alt 28.06.2016, 01:21   #11
burningice
/// Malwareteam
 
Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Standard

Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt



Bitte gerne

Es freut mich, dass wir helfen konnten
__________________
Mfg,
Rafael

~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~

Unterstütze uns mit einer Spende
......... Lob, Kritik oder Wünsche .........
.......... Folge uns auf Facebook ..........

Antwort

Themen zu Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt
.dll, adobe, antivirus, avira, bonjour, defender, device driver, dnsapi.dll, explorer, firefox, firewall, flash player, home, homepage, monitor, mozilla, proxy, prozesse, realtek, registry, scan, svchost.exe, system, udp, usb, windows, winlogon.exe



Ähnliche Themen: Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt


  1. Zwei-Faktor-Authentifizierung: Smartphone als zweiter Schlüssel fürs Google-Konto
    Nachrichten - 21.06.2016 (0)
  2. Spam-E-Mail-Versand von E-Mail-Konto des Vaters
    Plagegeister aller Art und deren Bekämpfung - 16.05.2016 (11)
  3. lenovo Laptop startet nur bis lenovo Logo
    Alles rund um Windows - 08.02.2016 (21)
  4. Typosquatting yyoutube - Malware-Befall? (Lenovo Yoga 2-Tablet, Win10, Firefox)
    Plagegeister aller Art und deren Bekämpfung - 03.02.2016 (9)
  5. Lenovo Thinkpad Yoga 15 Scroll nach unten/ Maus Problem
    Log-Analyse und Auswertung - 01.05.2015 (4)
  6. DVDVideoSoft:Free Studio 6.4.0.1111 öffnet 15-30 hintereinander seinen Installer - Windows 7
    Log-Analyse und Auswertung - 11.02.2015 (10)
  7. Mailaccount gehakt
    Lob, Kritik und Wünsche - 19.11.2014 (0)
  8. Bluescreen - Polizeiwarnung - Lenovo Ultrabook startet nur bis Lenovo-Symbol!
    Mülltonne - 08.10.2014 (1)
  9. Mail Delivery System Mails... Mail-Konto gehackt?
    Plagegeister aller Art und deren Bekämpfung - 06.03.2014 (7)
  10. E-Mail Konto wurde anscheinend gehackt
    Plagegeister aller Art und deren Bekämpfung - 04.03.2014 (6)
  11. E-Mail Konto gehackt
    Plagegeister aller Art und deren Bekämpfung - 02.02.2014 (11)
  12. E-mail Konto gehackt
    Plagegeister aller Art und deren Bekämpfung - 27.01.2014 (17)
  13. E-Mail Account gehakt? mail delivery-Nachrichten
    Antiviren-, Firewall- und andere Schutzprogramme - 14.06.2013 (17)
  14. Gmx Konto Mail Flut MAILER-DAEMON@mail.gmx.com
    Log-Analyse und Auswertung - 19.03.2013 (2)
  15. GMX Mail Konto versendet Spam-Emails
    Plagegeister aller Art und deren Bekämpfung - 26.09.2012 (2)
  16. 2 Rechner kurz hintereinander mit gleichem Fehlerbild ausgefallen - Virus oder Hardwarefehler?
    Plagegeister aller Art und deren Bekämpfung - 05.01.2012 (1)
  17. Schädling im E-Mail Konto ?
    Plagegeister aller Art und deren Bekämpfung - 30.10.2009 (1)

Zum Thema Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt - Hallo, wie in diesem Thread beschrieben ( http://www.trojaner-board.de/179741-...-gefunden.html ) kam es in den letzten zwei Monaten zweimal dazu, dass ein Google-E-Mail-Passwort von mir geknackt wurde, welches ich in meiner dropbox - Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt...
Archiv
Du betrachtest: Windows 10 Lenovo Yoga: E-Mail-Konto zwei Mal kurz hintereinander gehakt auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.