| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
24.08.2016, 17:37
| #1 |
 |  Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? Hallo zusammen, hatte folgendes Problem http://www.trojaner-board.de/181339-...ml#post1606560 Windows ist jetzt von Version 8 auf 8.1 geupgradet & sämtliche Updates sind installiert. Würde nun aber gerne wissen, ob die zuvor von Malewarebytes & ESET erkannten Probleme weiterhin bestehen & falls ja, was zu tun ist. (die alten Logs (unter Win8) können über oben genannten Link eingesehen werden) Hier die aktuellen Logs (Win 8.1) Malewarebytes Scan Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 24.08.2016 Suchlaufzeit: 13:56 Protokolldatei: Malewarebytes Scan 8.1.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2016.08.24.06 Rootkit-Datenbank: v2016.08.15.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Cosmas Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 351181 Abgelaufene Zeit: 21 Min., 48 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=4d210bc868e8564da0fe3b3db060676e
# end=init
# utc_time=2016-08-24 11:56:41
# local_time=2016-08-24 01:56:41 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
Update Init
Update Download
Update Finalize
Updated modules version: 30524
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=4d210bc868e8564da0fe3b3db060676e
# end=updated
# utc_time=2016-08-24 11:59:00
# local_time=2016-08-24 01:59:00 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=4d210bc868e8564da0fe3b3db060676e
# engine=30524
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2016-08-24 04:11:55
# local_time=2016-08-24 06:11:55 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=794 16777213 83 82 207358 207522 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 19930 96936408 0 0
# scanned=368076
# found=1
# cleaned=0
# scan_time=15174
sh=928A536FBFF196495B90E4BD51B932485B84A099 ft=1 fh=748b6a41a833329e vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Cosmas\AppData\Local\Temp\DMR\dmr_72.exe"
Systeminformationen im Anhang. Gruß & Danke losprimeros |
|
24.08.2016, 20:30
| #2 |
| /// TB-Ausbilder   | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen. Bitte beachte folgende Hinweise:
Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Danke für deine Mitarbeit! Ich benötige die neusten Logdateien von FRST und TDSS-Killer unter Windows 8.1. Die von dir als Archiv mitgeschickten Logdateien sind noch von Windows 8, das interessiert mich nicht.  Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Schritt 2 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
Bitte poste mit deiner nächsten Antwort
|
|
25.08.2016, 05:39
| #3 |
| | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? In der Tat, das hilft wenig
__________________ Neue FRST Scans sind im Anhang, hier der TDSSK Scan:Code:
ATTFilter
06:29:28.0968 0x0f70 TDSS rootkit removing tool 3.1.0.11 Aug 5 2016 12:13:31
06:29:28.0968 0x0f70 UEFI system
06:29:32.0172 0x0f70 ============================================================
06:29:32.0172 0x0f70 Current date / time: 2016/08/25 06:29:32.0172
06:29:32.0172 0x0f70 SystemInfo:
06:29:32.0172 0x0f70
06:29:32.0172 0x0f70 OS Version: 6.3.9600 ServicePack: 0.0
06:29:32.0172 0x0f70 Product type: Workstation
06:29:32.0172 0x0f70 ComputerName: NIETZSCHE
06:29:32.0172 0x0f70 UserName: Cosmas
06:29:32.0172 0x0f70 Windows directory: C:\WINDOWS
06:29:32.0172 0x0f70 System windows directory: C:\WINDOWS
06:29:32.0172 0x0f70 Running under WOW64
06:29:32.0172 0x0f70 Processor architecture: Intel x64
06:29:32.0172 0x0f70 Number of processors: 4
06:29:32.0172 0x0f70 Page size: 0x1000
06:29:32.0172 0x0f70 Boot type: Normal boot
06:29:32.0172 0x0f70 CodeIntegrityOptions = 0x00000001
06:29:32.0172 0x0f70 ============================================================
06:29:32.0172 0x0f70 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 9600.18378, osProperties = 0x19
06:29:32.0469 0x0f70 System UUID: {24D7319B-8A65-9733-6DEB-08C528F42A13}
06:29:32.0750 0x0f70 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:29:32.0765 0x0f70 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1100000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
06:29:32.0765 0x0f70 ============================================================
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0:
06:29:32.0765 0x0f70 GPT partitions:
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {BF389BFF-E939-431E-B041-BC0ACCD396A3}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1FF800
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {868648B0-35A7-4667-8237-0653846307E3}, Name: EFI system partition, StartLBA 0x200000, BlocksNum 0xB4000
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {30169C30-BEDD-4EB4-B218-FA2B08CAA22C}, Name: Microsoft reserved partition, StartLBA 0x2B4000, BlocksNum 0x40000
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8C1EC2B4-51C0-430B-BD5F-EC71807AFB7D}, Name: Basic data partition, StartLBA 0x2F4000, BlocksNum 0x72B34000
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {DEDDDDAB-6A15-4565-8FD4-9AA9CFC60FBE}, Name: , StartLBA 0x72E28000, BlocksNum 0xE1800
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {85282B5C-DEC0-4524-A916-21F5DC5D6983}, Name: , StartLBA 0x72F09800, BlocksNum 0xE1800
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {84B65442-098F-402F-8130-0AC3FE8B7E85}, Name: , StartLBA 0x72FEB000, BlocksNum 0xAF000
06:29:32.0765 0x0f70 \Device\Harddisk0\DR0\Partition8: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D4745A7A-0FA6-44C5-8303-269E567B07EE}, Name: Basic data partition, StartLBA 0x7309A000, BlocksNum 0x166C800
06:29:32.0765 0x0f70 MBR partitions:
06:29:32.0765 0x0f70 \Device\Harddisk1\DR1:
06:29:32.0765 0x0f70 GPT partitions:
06:29:32.0765 0x0f70 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {924A7F88-D93C-433A-8ADE-339372350B28}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
06:29:32.0765 0x0f70 \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F8FD3F18-6981-4318-AC9D-EB9A0491D409}, Name: Basic data partition, StartLBA 0x40800, BlocksNum 0xE8DC7800
06:29:32.0765 0x0f70 MBR partitions:
06:29:32.0765 0x0f70 ============================================================
06:29:32.0781 0x0f70 C: <-> \Device\Harddisk0\DR0\Partition4
06:29:32.0828 0x0f70 D: <-> \Device\Harddisk0\DR0\Partition8
06:29:32.0828 0x0f70 G: <-> \Device\Harddisk1\DR1\Partition2
06:29:32.0828 0x0f70 ============================================================
06:29:32.0828 0x0f70 Initialize success
06:29:32.0828 0x0f70 ============================================================
06:29:39.0089 0x17a4 ============================================================
06:29:39.0089 0x17a4 Scan started
06:29:39.0089 0x17a4 Mode: Manual; SigCheck; TDLFS;
06:29:39.0089 0x17a4 ============================================================
06:29:39.0089 0x17a4 KSN ping started
06:29:39.0183 0x17a4 KSN ping finished: true
06:29:40.0715 0x17a4 ================ Scan system memory ========================
06:29:40.0715 0x17a4 System memory - ok
06:29:40.0715 0x17a4 ================ Scan services =============================
06:29:41.0966 0x17a4 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
06:29:42.0028 0x17a4 1394ohci - ok
06:29:42.0075 0x17a4 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
06:29:42.0137 0x17a4 3ware - ok
06:29:42.0200 0x17a4 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
06:29:42.0247 0x17a4 ACPI - ok
06:29:42.0294 0x17a4 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
06:29:42.0341 0x17a4 acpiex - ok
06:29:42.0372 0x17a4 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
06:29:42.0387 0x17a4 acpipagr - ok
06:29:42.0434 0x17a4 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
06:29:42.0481 0x17a4 AcpiPmi - ok
06:29:42.0512 0x17a4 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
06:29:42.0544 0x17a4 acpitime - ok
06:29:42.0700 0x17a4 [ 68E7DEA59FDEF410BAF29FDB5B7A6EEF, B808FCF0C30B465A1330E47947B84FC722A3B4C46260E261C54B1EED725A288F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
06:29:42.0716 0x17a4 AdobeARMservice - ok
06:29:42.0794 0x17a4 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
06:29:42.0856 0x17a4 ADP80XX - ok
06:29:42.0919 0x17a4 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
06:29:42.0950 0x17a4 AeLookupSvc - ok
06:29:43.0028 0x17a4 [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD C:\WINDOWS\system32\drivers\afd.sys
06:29:43.0091 0x17a4 AFD - ok
06:29:43.0106 0x17a4 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
06:29:43.0138 0x17a4 agp440 - ok
06:29:43.0184 0x17a4 [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
06:29:43.0278 0x17a4 ahcache - ok
06:29:43.0309 0x17a4 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
06:29:43.0325 0x17a4 ALG - ok
06:29:43.0403 0x17a4 [ E928E5009E2B1F4D956E57990D456054, 55F772E657F022E42FE4612166217EAA6EB829B47775A117D8630F04E7A22B2C ] ambakdrv C:\WINDOWS\system32\ambakdrv.sys
06:29:43.0434 0x17a4 ambakdrv - ok
06:29:43.0450 0x17a4 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
06:29:43.0466 0x17a4 AmdK8 - ok
06:29:43.0498 0x17a4 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
06:29:43.0545 0x17a4 AmdPPM - ok
06:29:43.0560 0x17a4 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
06:29:43.0607 0x17a4 amdsata - ok
06:29:43.0639 0x17a4 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
06:29:43.0670 0x17a4 amdsbs - ok
06:29:43.0685 0x17a4 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
06:29:43.0732 0x17a4 amdxata - ok
06:29:43.0732 0x17a4 [ 23AFD7AB2C2358CACFB8BBC6E4B7EF7C, F8D3B95A9401C78BB0BD925CDC11FB12F814DA347C995FAE5B16A498238A8DEC ] ammntdrv C:\WINDOWS\system32\ammntdrv.sys
06:29:43.0764 0x17a4 ammntdrv - ok
06:29:43.0779 0x17a4 [ 609C2E5B69EB5D4F7131F7DF1107396B, 2CCA80902EB10F40DA1C99B7135B4CB7F2831B901CD694863B6CCE6755ACFD81 ] amwrtdrv C:\WINDOWS\system32\amwrtdrv.sys
06:29:43.0795 0x17a4 amwrtdrv - ok
06:29:43.0857 0x17a4 [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
06:29:43.0889 0x17a4 AppHostSvc - ok
06:29:43.0920 0x17a4 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
06:29:43.0936 0x17a4 AppID - ok
06:29:43.0982 0x17a4 [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
06:29:43.0998 0x17a4 AppIDSvc - ok
06:29:44.0045 0x17a4 [ 734622FBA766DBD65B1803549B24A04A, 3B6872B87A60D4DA265D3B8AB0561A929CFE2C097419183E93D3843422363C89 ] Appinfo C:\WINDOWS\System32\appinfo.dll
06:29:44.0076 0x17a4 Appinfo - ok
06:29:44.0373 0x17a4 [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
06:29:44.0389 0x17a4 Apple Mobile Device Service - ok
06:29:44.0545 0x17a4 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
06:29:44.0561 0x17a4 AppReadiness - ok
06:29:44.0904 0x17a4 [ E0F846ADE7DED88981D0908DE56FF160, D8F536438091878724A5004849306ADFB96A2778A9D958ED3DCC0CD9E35160BB ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
06:29:44.0936 0x17a4 AppXSvc - ok
06:29:44.0998 0x17a4 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
06:29:45.0029 0x17a4 arcsas - ok
06:29:45.0546 0x17a4 [ AA2E8C6B8D7EA7BAF04C988801927F48, 4B82043F1B9C67CDCDC71102F7AEE05EEA8F9775A5CB33AE80F4DCDB42521C40 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
06:29:45.0593 0x17a4 aspnet_state - ok
06:29:45.0624 0x17a4 [ 9B480B472D6826E7257C90E2D0EE2954, C52C198602D180011A9345AE6F108EC4B1FD91234AF2E6296B2E39C1888B0D4D ] aswHwid C:\WINDOWS\system32\drivers\aswHwid.sys
06:29:45.0640 0x17a4 aswHwid - ok
06:29:45.0671 0x17a4 [ 1BB00571CC2C78463ABD7E9C32970758, BF523468754CB1628D66F28B06FAF7C545C5724801B04888517A2FB4BF9582BF ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
06:29:45.0718 0x17a4 aswMonFlt - ok
06:29:45.0749 0x17a4 [ 7010B57D708DA5C9686A5923EE621776, 5A554B8941C156EC341C602F34679A7475802B19EE6A99AA29AE2628A123ECB1 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr2.sys
06:29:45.0796 0x17a4 aswRdr - ok
06:29:45.0812 0x17a4 [ 937885085BFE5BD08EC1BC0245DD203B, 6DDD89245EEA3B8106C5F2EB6FA8CF525F3B42AA7032276DE78953E06FE7F4B4 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
06:29:45.0843 0x17a4 aswRvrt - ok
06:29:45.0890 0x17a4 [ 0589C00EB56A5BEEFE7F1496CD5184FE, 2728E481A610F1FA023D1BBA3E9CC48443213675E6C4A42E084B4851956B742C ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
06:29:45.0937 0x17a4 aswSnx - ok
06:29:45.0984 0x17a4 [ 89D228621266365F1D82D73BA48A9D0E, E61E0C61FACDA48801BF8CDF14523C0B1B21B2920B3CF2CCC4212B12548971C8 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
06:29:46.0015 0x17a4 aswSP - ok
06:29:46.0030 0x17a4 [ 9C58B6E9663D0A76D00D83E43C765BDF, 3F474932E77318CD450A3A9C89667D2B26A7E3FAB9AA95D97FF3B1979623A7F2 ] aswStm C:\WINDOWS\system32\drivers\aswStm.sys
06:29:46.0030 0x17a4 aswStm - ok
06:29:46.0077 0x17a4 [ 3267ED11A7EE6CA7F30505197B9FEC85, 474B10F03F991FEFC5FDE512F1EA73FE903D2F145393F1EB3E2D5CC9E44E6F3E ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
06:29:46.0093 0x17a4 aswVmm - ok
06:29:46.0155 0x17a4 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
06:29:46.0202 0x17a4 atapi - ok
06:29:46.0234 0x17a4 [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
06:29:46.0265 0x17a4 AudioEndpointBuilder - ok
06:29:46.0359 0x17a4 [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
06:29:46.0390 0x17a4 Audiosrv - ok
06:29:46.0562 0x17a4 [ F4E0580B5789474385E7ACB189C4AF2C, DB5BE2C852AC102AB8EB186362E582E250B843BA52B3B71AF08A5FDA8A6F91AF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
06:29:46.0577 0x17a4 avast! Antivirus - ok
06:29:46.0640 0x17a4 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
06:29:46.0655 0x17a4 AxInstSV - ok
06:29:46.0687 0x17a4 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
06:29:46.0718 0x17a4 b06bdrv - ok
06:29:46.0843 0x17a4 [ 45027D2E43D855C4AC4151E19DAE3163, B4AF2213EAB54C65B2C419D0B823F070A768000EAD6452609000D9AC62814E44 ] Backupper Service C:\Program Files (x86)\AOMEI Backupper\ABService.exe
06:29:46.0859 0x17a4 Backupper Service - ok
06:29:46.0921 0x17a4 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
06:29:46.0937 0x17a4 BasicDisplay - ok
06:29:46.0968 0x17a4 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
06:29:46.0984 0x17a4 BasicRender - ok
06:29:47.0015 0x17a4 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
06:29:47.0062 0x17a4 bcmfn2 - ok
06:29:47.0109 0x17a4 [ 4B6F61BD394DCEDA9B06D702836531C2, 83C739467BD9A00FE09BCE83BB9409EA2DA62FCDD2384F9EE98626226223E918 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
06:29:47.0140 0x17a4 BDESVC - ok
06:29:47.0156 0x17a4 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
06:29:47.0202 0x17a4 Beep - ok
06:29:47.0265 0x17a4 [ 5059D93764340D4EAEDF49C47133118F, 26C5779469E04BEAFD290B619CA355648F3911C66D41B22D2C3DCA909FCA0F6E ] BFE C:\WINDOWS\System32\bfe.dll
06:29:47.0296 0x17a4 BFE - ok
06:29:47.0515 0x17a4 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
06:29:47.0546 0x17a4 BITS - ok
06:29:47.0624 0x17a4 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
06:29:47.0656 0x17a4 Bonjour Service - ok
06:29:47.0671 0x17a4 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
06:29:47.0687 0x17a4 bowser - ok
06:29:47.0765 0x17a4 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
06:29:47.0781 0x17a4 BrokerInfrastructure - ok
06:29:47.0796 0x17a4 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
06:29:47.0812 0x17a4 Browser - ok
06:29:47.0843 0x17a4 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
06:29:47.0890 0x17a4 BthAvrcpTg - ok
06:29:47.0952 0x17a4 [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
06:29:47.0999 0x17a4 BthHFEnum - ok
06:29:47.0999 0x17a4 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
06:29:48.0031 0x17a4 bthhfhid - ok
06:29:48.0046 0x17a4 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
06:29:48.0062 0x17a4 BthHFSrv - ok
06:29:48.0093 0x17a4 [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
06:29:48.0109 0x17a4 BTHMODEM - ok
06:29:48.0156 0x17a4 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
06:29:48.0187 0x17a4 bthserv - ok
06:29:48.0202 0x17a4 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
06:29:48.0265 0x17a4 cdfs - ok
06:29:48.0312 0x17a4 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
06:29:48.0343 0x17a4 cdrom - ok
06:29:48.0421 0x17a4 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
06:29:48.0453 0x17a4 CertPropSvc - ok
06:29:48.0468 0x17a4 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
06:29:48.0484 0x17a4 circlass - ok
06:29:48.0624 0x17a4 [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
06:29:48.0734 0x17a4 CLFS - ok
06:29:48.0796 0x17a4 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
06:29:48.0999 0x17a4 CmBatt - ok
06:29:49.0031 0x17a4 [ 5CBF8B3E27D824D2AA2A34AFB406F1D0, 955AF1307C02D2B4DEEB150F37F77B8631C0F3C450037C233E9E27D6571B0265 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
06:29:49.0062 0x17a4 CNG - ok
06:29:49.0062 0x17a4 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
06:29:49.0093 0x17a4 CompositeBus - ok
06:29:49.0093 0x17a4 COMSysApp - ok
06:29:49.0124 0x17a4 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
06:29:49.0156 0x17a4 condrv - ok
06:29:49.0203 0x17a4 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
06:29:49.0234 0x17a4 CryptSvc - ok
06:29:49.0296 0x17a4 [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam C:\WINDOWS\system32\drivers\dam.sys
06:29:49.0343 0x17a4 dam - ok
06:29:49.0468 0x17a4 [ E4220FD9C7F1579D9C5F9DFB00427841, 77740122A01A08F18CC82A4BB3F00EC59F29EE10779092F872572C264F6728D0 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
06:29:49.0499 0x17a4 DcomLaunch - ok
06:29:49.0578 0x17a4 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
06:29:49.0593 0x17a4 defragsvc - ok
06:29:49.0734 0x17a4 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
06:29:49.0749 0x17a4 DeviceAssociationService - ok
06:29:49.0828 0x17a4 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
06:29:49.0859 0x17a4 DeviceInstall - ok
06:29:49.0874 0x17a4 [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
06:29:49.0906 0x17a4 Dfsc - ok
06:29:49.0937 0x17a4 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
06:29:49.0968 0x17a4 Dhcp - ok
06:29:50.0062 0x17a4 [ 21EDAD8188372C912B7BB9B1C6CB0D38, 4A102745DE8A2A82D2C069B30503BF9FF2312A035A82854F84EF9C27E3533CEE ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
06:29:50.0093 0x17a4 DiagTrack - ok
06:29:50.0546 0x17a4 [ 560F4C351FCD29E6796F6382EE5C803B, D2FF7F018674B5956152C2BDF6890585C8FEA3910DCA05D8008F1FBBAD0DD5CD ] DirMngr C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
06:29:50.0546 0x17a4 DirMngr - detected UnsignedFile.Multi.Generic ( 1 )
06:29:50.0671 0x17a4 Detect skipped due to KSN trusted
06:29:50.0671 0x17a4 DirMngr - ok
06:29:50.0781 0x17a4 [ 8B1E62881D5AC68E673CD94B136B34AC, A0C50F17041E43AC07B67A74F2C408820316201439F47CDEA37A4F5891CC0E6F ] disk C:\WINDOWS\system32\drivers\disk.sys
06:29:50.0875 0x17a4 disk - ok
06:29:50.0968 0x17a4 [ F204A1B043A561407206CAFC4CBE76E9, AE8CED824EFA4CAFF83072FD04E436A6EE5E4B44D530EAB4FAC9DDF3C730EE2A ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
06:29:51.0015 0x17a4 dmvsc - ok
06:29:51.0046 0x17a4 [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
06:29:51.0078 0x17a4 Dnscache - ok
06:29:51.0142 0x17a4 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
06:29:51.0158 0x17a4 dot3svc - ok
06:29:51.0236 0x17a4 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
06:29:51.0267 0x17a4 DPS - ok
06:29:51.0314 0x17a4 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
06:29:51.0361 0x17a4 drmkaud - ok
06:29:51.0392 0x17a4 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
06:29:51.0423 0x17a4 DsmSvc - ok
06:29:51.0584 0x17a4 [ F74B839FA0F4E6060CA1DA6B8DA17941, EF493E1F55FCD6A8C32B3D5D5809B7EFCCC9829E9A347522D1E6FE080D41BF37 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
06:29:51.0678 0x17a4 DXGKrnl - ok
06:29:51.0709 0x17a4 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
06:29:51.0740 0x17a4 Eaphost - ok
06:29:51.0944 0x17a4 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
06:29:52.0022 0x17a4 ebdrv - ok
06:29:52.0054 0x17a4 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
06:29:52.0069 0x17a4 EFS - ok
06:29:52.0116 0x17a4 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
06:29:52.0132 0x17a4 EhStorClass - ok
06:29:52.0147 0x17a4 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
06:29:52.0194 0x17a4 EhStorTcgDrv - ok
06:29:52.0210 0x17a4 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
06:29:52.0226 0x17a4 ErrDev - ok
06:29:52.0351 0x17a4 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
06:29:52.0382 0x17a4 EventSystem - ok
06:29:52.0429 0x17a4 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
06:29:52.0522 0x17a4 exfat - ok
06:29:52.0554 0x17a4 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
06:29:52.0585 0x17a4 fastfat - ok
06:29:52.0647 0x17a4 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
06:29:52.0679 0x17a4 Fax - ok
06:29:52.0726 0x17a4 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
06:29:52.0772 0x17a4 fdc - ok
06:29:52.0835 0x17a4 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
06:29:52.0851 0x17a4 fdPHost - ok
06:29:52.0882 0x17a4 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
06:29:52.0897 0x17a4 FDResPub - ok
06:29:52.0939 0x17a4 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
06:29:52.0960 0x17a4 fhsvc - ok
06:29:52.0981 0x17a4 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
06:29:52.0997 0x17a4 FileInfo - ok
06:29:53.0028 0x17a4 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
06:29:53.0075 0x17a4 Filetrace - ok
06:29:53.0091 0x17a4 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
06:29:53.0138 0x17a4 flpydisk - ok
06:29:53.0169 0x17a4 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
06:29:53.0263 0x17a4 FltMgr - ok
06:29:53.0497 0x17a4 [ 2F225BC85B84C04EA01BAB8D8DACFA83, 1F6E20C8F0FFD3FA60BDF556FB8392FE014E6519C3F314D1D22D394DB2A040CA ] FontCache C:\WINDOWS\system32\FntCache.dll
06:29:53.0537 0x17a4 FontCache - ok
06:29:53.0663 0x17a4 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
06:29:53.0677 0x17a4 FontCache3.0.0.0 - ok
06:29:53.0697 0x17a4 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
06:29:53.0760 0x17a4 FsDepends - ok
06:29:53.0791 0x17a4 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
06:29:53.0838 0x17a4 Fs_Rec - ok
06:29:53.0869 0x17a4 [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
06:29:53.0916 0x17a4 fvevol - ok
06:29:53.0941 0x17a4 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
06:29:53.0984 0x17a4 FxPPM - ok
06:29:54.0000 0x17a4 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
06:29:54.0047 0x17a4 gagp30kx - ok
06:29:54.0062 0x17a4 [ 1A0D1B15D3443393D5DADBA366F318A7, EF982A93D1976F43737EC2EA0D5CAEF9558F4CBEE3DAE9397E295E7A3F392460 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
06:29:54.0125 0x17a4 gencounter - ok
06:29:54.0359 0x17a4 [ F78BC07DCED5EDDD6D477E923620F8EA, ABE28155100A38A5E1B58FFC8099EF416145278B440A67B8DAFD7715FE412624 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
06:29:54.0375 0x17a4 GfExperienceService - ok
06:29:54.0437 0x17a4 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
06:29:54.0484 0x17a4 GPIOClx0101 - ok
06:29:54.0547 0x17a4 [ 9678FD4747A4F2E2318245EE6099482E, C76AE30E8BA77DC330F9CFE5ECEA58FAE0995396742923B564A2257DE24D7B32 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
06:29:54.0578 0x17a4 gpsvc - ok
06:29:54.0703 0x17a4 [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:29:54.0703 0x17a4 gupdate - ok
06:29:54.0734 0x17a4 [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:29:54.0750 0x17a4 gupdatem - ok
06:29:54.0766 0x17a4 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
06:29:54.0812 0x17a4 HDAudBus - ok
06:29:54.0828 0x17a4 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
06:29:54.0859 0x17a4 HidBatt - ok
06:29:54.0906 0x17a4 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
06:29:54.0937 0x17a4 HidBth - ok
06:29:54.0953 0x17a4 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
06:29:54.0969 0x17a4 hidi2c - ok
06:29:55.0031 0x17a4 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
06:29:55.0062 0x17a4 HidIr - ok
06:29:55.0125 0x17a4 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
06:29:55.0141 0x17a4 hidserv - ok
06:29:55.0156 0x17a4 [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
06:29:55.0172 0x17a4 HidUsb - ok
06:29:55.0250 0x17a4 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
06:29:55.0281 0x17a4 hkmsvc - ok
06:29:55.0406 0x17a4 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
06:29:55.0422 0x17a4 HomeGroupListener - ok
06:29:55.0484 0x17a4 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
06:29:55.0516 0x17a4 HomeGroupProvider - ok
06:29:55.0656 0x17a4 [ E1C037A7E05FD39E6C1AF93CEEFDC53A, D20B056BE5CEB5D471170D6627157D8848376FF319BFE12C7331B0F2C0EBB4A4 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
06:29:55.0672 0x17a4 HP Support Assistant Service - detected UnsignedFile.Multi.Generic ( 1 )
06:29:55.0857 0x17a4 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
06:29:56.0208 0x17a4 [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
06:29:56.0235 0x17a4 hpqwmiex - ok
06:29:56.0260 0x17a4 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
06:29:56.0296 0x17a4 HpSAMD - ok
06:29:56.0450 0x17a4 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
06:29:56.0518 0x17a4 HTTP - ok
06:29:56.0558 0x17a4 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
06:29:56.0570 0x17a4 hwpolicy - ok
06:29:56.0613 0x17a4 [ FEBCEE7A6F2F65251DB4799409544D24, 071AE9D474C94890D918AAED4D7ADDF4D9419B93C003FBEF6BFAE1276F38E33E ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
06:29:56.0637 0x17a4 hyperkbd - ok
06:29:56.0721 0x17a4 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
06:29:56.0804 0x17a4 HyperVideo - ok
06:29:56.0863 0x17a4 [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
06:29:56.0891 0x17a4 i8042prt - ok
06:29:56.0966 0x17a4 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
06:29:57.0079 0x17a4 iaLPSSi_GPIO - ok
06:29:57.0111 0x17a4 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
06:29:57.0140 0x17a4 iaLPSSi_I2C - ok
06:29:57.0253 0x17a4 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
06:29:57.0284 0x17a4 iaStorAV - ok
06:29:57.0341 0x17a4 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
06:29:57.0374 0x17a4 iaStorV - ok
06:29:57.0378 0x17a4 IEEtwCollectorService - ok
06:29:57.0595 0x17a4 [ 2530D33CE2F5F30D08A039EC33E91F17, DE1669A9F67C9CA3EEF6D0D0A56167318E4DB50965D87BF94A2795A21EBEE979 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
06:29:57.0623 0x17a4 IKEEXT - ok
06:29:57.0838 0x17a4 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
06:29:57.0875 0x17a4 Intel(R) Capability Licensing Service Interface - ok
06:29:58.0055 0x17a4 [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
06:29:58.0068 0x17a4 Intel(R) ME Service - ok
06:29:58.0124 0x17a4 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
06:29:58.0171 0x17a4 intelide - ok
06:29:58.0257 0x17a4 [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
06:29:58.0272 0x17a4 intelpep - ok
06:29:58.0312 0x17a4 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
06:29:58.0362 0x17a4 intelppm - ok
06:29:58.0406 0x17a4 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
06:29:58.0438 0x17a4 IpFilterDriver - ok
06:29:58.0647 0x17a4 [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
06:29:58.0682 0x17a4 iphlpsvc - ok
06:29:58.0765 0x17a4 [ C800DCD904016B2BF6AB541083770A3A, 95A8FB9AB2818A4F44AFCBF2715B0B3024DCE38E1406EA639F2A5ECA105D2290 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
06:29:58.0799 0x17a4 IPMIDRV - ok
06:29:58.0830 0x17a4 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
06:29:58.0856 0x17a4 IPNAT - ok
06:29:59.0148 0x17a4 [ EECB45F889E99174DA56FBDF37962D25, 12B407C45C9D0396FF3B5B118A863CBDEE0867034AE365F4CF5A8F66A4DB2003 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
06:29:59.0165 0x17a4 iPod Service - ok
06:29:59.0223 0x17a4 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
06:29:59.0253 0x17a4 IRENUM - ok
06:29:59.0295 0x17a4 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
06:29:59.0315 0x17a4 isapnp - ok
06:29:59.0389 0x17a4 [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
06:29:59.0467 0x17a4 iScsiPrt - ok
06:29:59.0558 0x17a4 [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
06:29:59.0573 0x17a4 jhi_service - ok
06:29:59.0639 0x17a4 [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
06:29:59.0680 0x17a4 kbdclass - ok
06:29:59.0699 0x17a4 [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
06:29:59.0746 0x17a4 kbdhid - ok
06:29:59.0773 0x17a4 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
06:29:59.0830 0x17a4 kdnic - ok
06:29:59.0843 0x17a4 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
06:29:59.0865 0x17a4 KeyIso - ok
06:29:59.0879 0x17a4 [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
06:29:59.0893 0x17a4 KSecDD - ok
06:29:59.0977 0x17a4 [ 3D4AE520CD6F6FFE549DD195C1F515BE, 2AD3E07F504CE50956C391FD4633D20B354A854C940B3563A67B79BB6E40218F ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
06:30:00.0022 0x17a4 KSecPkg - ok
06:30:00.0028 0x17a4 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
06:30:00.0046 0x17a4 ksthunk - ok
06:30:00.0179 0x17a4 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
06:30:00.0235 0x17a4 KtmRm - ok
06:30:00.0295 0x17a4 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
06:30:00.0324 0x17a4 LanmanServer - ok
06:30:00.0369 0x17a4 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
06:30:00.0394 0x17a4 LanmanWorkstation - ok
06:30:00.0541 0x17a4 [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
06:30:00.0558 0x17a4 lfsvc - ok
06:30:00.0601 0x17a4 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
06:30:00.0617 0x17a4 lltdio - ok
06:30:00.0661 0x17a4 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
06:30:00.0694 0x17a4 lltdsvc - ok
06:30:00.0758 0x17a4 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
06:30:00.0767 0x17a4 lmhosts - ok
06:30:00.0882 0x17a4 [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
06:30:00.0891 0x17a4 LMS - ok
06:30:00.0925 0x17a4 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
06:30:00.0978 0x17a4 LSI_SAS - ok
06:30:01.0002 0x17a4 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
06:30:01.0017 0x17a4 LSI_SAS2 - ok
06:30:01.0042 0x17a4 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
06:30:01.0057 0x17a4 LSI_SAS3 - ok
06:30:01.0132 0x17a4 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
06:30:01.0161 0x17a4 LSI_SSS - ok
06:30:01.0302 0x17a4 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
06:30:01.0332 0x17a4 LSM - ok
06:30:01.0401 0x17a4 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
06:30:01.0430 0x17a4 luafv - ok
06:30:01.0469 0x17a4 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
06:30:01.0509 0x17a4 megasas - ok
06:30:01.0534 0x17a4 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
06:30:01.0601 0x17a4 megasr - ok
06:30:01.0636 0x17a4 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
06:30:01.0650 0x17a4 MEIx64 - ok
06:30:01.0705 0x17a4 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
06:30:01.0738 0x17a4 MMCSS - ok
06:30:01.0742 0x17a4 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
06:30:01.0780 0x17a4 Modem - ok
06:30:01.0784 0x17a4 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
06:30:01.0800 0x17a4 monitor - ok
06:30:01.0864 0x17a4 [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
06:30:01.0879 0x17a4 mouclass - ok
06:30:01.0972 0x17a4 [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
06:30:02.0035 0x17a4 mouhid - ok
06:30:02.0064 0x17a4 [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
06:30:02.0102 0x17a4 mountmgr - ok
06:30:02.0145 0x17a4 [ 2FC5FE31986D05DA6188E688AE8D67C8, AF77D7970528E29A49AB35B076F099A7306487925EF9CC9A4D124DA774988C15 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
06:30:02.0154 0x17a4 MozillaMaintenance - ok
06:30:02.0212 0x17a4 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
06:30:02.0255 0x17a4 mpsdrv - ok
06:30:02.0374 0x17a4 [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
06:30:02.0397 0x17a4 MpsSvc - ok
06:30:02.0505 0x17a4 [ D2AC8F07995CE6CD18848C129435B481, 839B04116B49A757950E049150F6AADE41335914CC699ED73BE886BECAC39D36 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
06:30:02.0533 0x17a4 MRxDAV - ok
06:30:02.0687 0x17a4 [ 5DCD41F62F71519D2A46D41F60C69B0C, A9C2F8B8F82BDBF48F34D5837ED27CE251C75232A07AF26F7B796D2A106795A0 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
06:30:02.0719 0x17a4 mrxsmb - ok
06:30:02.0749 0x17a4 [ D7C9BC4D37BF08C7DD436A0A5F321668, 30A5AF211BEC89E26134CDAE3E60D0D9F0AE2748F56E9D09B07431206AD381C6 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
06:30:02.0834 0x17a4 mrxsmb10 - ok
06:30:02.0869 0x17a4 [ 4065615E836BF8C61AF6278EB2A9D1D6, B9A0E40DEC36D1A228EC4EF48CCD9BE6C726E53D17F38280AA74C068E7887621 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
06:30:02.0897 0x17a4 mrxsmb20 - ok
06:30:02.0941 0x17a4 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
06:30:03.0066 0x17a4 MsBridge - ok
06:30:03.0126 0x17a4 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
06:30:03.0138 0x17a4 MSDTC - ok
06:30:03.0183 0x17a4 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
06:30:03.0238 0x17a4 Msfs - ok
06:30:03.0258 0x17a4 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
06:30:03.0272 0x17a4 msgpiowin32 - ok
06:30:03.0298 0x17a4 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
06:30:03.0314 0x17a4 mshidkmdf - ok
06:30:03.0324 0x17a4 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
06:30:03.0339 0x17a4 mshidumdf - ok
06:30:03.0349 0x17a4 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
06:30:03.0384 0x17a4 msisadrv - ok
06:30:03.0458 0x17a4 [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
06:30:03.0470 0x17a4 MSiSCSI - ok
06:30:03.0473 0x17a4 msiserver - ok
06:30:03.0509 0x17a4 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
06:30:03.0545 0x17a4 MSKSSRV - ok
06:30:03.0558 0x17a4 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
06:30:03.0593 0x17a4 MsLldp - ok
06:30:03.0605 0x17a4 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
06:30:03.0641 0x17a4 MSPCLOCK - ok
06:30:03.0661 0x17a4 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
06:30:03.0703 0x17a4 MSPQM - ok
06:30:03.0734 0x17a4 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
06:30:03.0758 0x17a4 MsRPC - ok
06:30:03.0773 0x17a4 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
06:30:03.0787 0x17a4 mssmbios - ok
06:30:03.0838 0x17a4 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
06:30:03.0869 0x17a4 MSTEE - ok
06:30:03.0914 0x17a4 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
06:30:03.0951 0x17a4 MTConfig - ok
06:30:03.0978 0x17a4 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys
06:30:04.0084 0x17a4 Mup - ok
06:30:04.0138 0x17a4 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
06:30:04.0159 0x17a4 mvumis - ok
06:30:04.0255 0x17a4 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
06:30:04.0273 0x17a4 napagent - ok
06:30:04.0397 0x17a4 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
06:30:04.0423 0x17a4 NativeWifiP - ok
06:30:04.0479 0x17a4 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
06:30:04.0501 0x17a4 NcaSvc - ok
06:30:04.0555 0x17a4 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
06:30:04.0566 0x17a4 NcbService - ok
06:30:04.0611 0x17a4 [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
06:30:04.0627 0x17a4 NcdAutoSetup - ok
06:30:04.0712 0x17a4 [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
06:30:04.0772 0x17a4 NDIS - ok
06:30:04.0858 0x17a4 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
06:30:04.0879 0x17a4 NdisCap - ok
06:30:04.0934 0x17a4 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
06:30:04.0992 0x17a4 NdisImPlatform - ok
06:30:05.0052 0x17a4 [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
06:30:05.0120 0x17a4 NdisTapi - ok
06:30:05.0157 0x17a4 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
06:30:05.0172 0x17a4 Ndisuio - ok
06:30:05.0197 0x17a4 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
06:30:05.0217 0x17a4 NdisVirtualBus - ok
06:30:05.0245 0x17a4 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
06:30:05.0275 0x17a4 NdisWan - ok
06:30:05.0308 0x17a4 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
06:30:05.0329 0x17a4 NdisWanLegacy - ok
06:30:05.0362 0x17a4 [ 0BBE2FA30BAD58C9ADC01E4F84A3D2A1, 913AEC8A5F735C2EFDCB417E4077AB5A15457C601E6E88A1F4FA52C91E6E0BBF ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
06:30:05.0407 0x17a4 NDProxy - ok
06:30:05.0426 0x17a4 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
06:30:05.0443 0x17a4 Ndu - ok
06:30:05.0477 0x17a4 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
06:30:05.0519 0x17a4 NetBIOS - ok
06:30:05.0564 0x17a4 [ 9DC17B7D9D84C37C102D379FCC7D4942, D522022ED4395686837E96F57EE29F8065FB749D1195B60D2A406FB33F696C09 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
06:30:05.0622 0x17a4 NetBT - ok
06:30:05.0643 0x17a4 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
06:30:05.0663 0x17a4 Netlogon - ok
06:30:05.0723 0x17a4 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
06:30:05.0739 0x17a4 Netman - ok
06:30:05.0812 0x17a4 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
06:30:05.0832 0x17a4 netprofm - ok
06:30:05.0893 0x17a4 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
06:30:05.0947 0x17a4 NetTcpPortSharing - ok
06:30:05.0971 0x17a4 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
06:30:06.0002 0x17a4 netvsc - ok
06:30:06.0073 0x17a4 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
06:30:06.0089 0x17a4 NlaSvc - ok
06:30:06.0134 0x17a4 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
06:30:06.0197 0x17a4 Npfs - ok
06:30:06.0231 0x17a4 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
06:30:06.0260 0x17a4 npsvctrig - ok
06:30:06.0296 0x17a4 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
06:30:06.0341 0x17a4 nsi - ok
06:30:06.0391 0x17a4 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
06:30:06.0462 0x17a4 nsiproxy - ok
06:30:06.0785 0x17a4 [ 9980B262DBE439AE6BDC91AA985F19EE, E998E4CAE9CD103ADA9CA3C737C4DAD017D056828BFA42A41C7B4E4E108FB13C ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
06:30:07.0022 0x17a4 Ntfs - ok
06:30:07.0041 0x17a4 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
06:30:07.0081 0x17a4 Null - ok
06:30:07.0184 0x17a4 [ 67B51A97733B10D716B366C2ED126763, C34B889D39A4443A82BCDF6B9A0BF637D2ECC37BBB1AAE21143EC9E3DC495D90 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
06:30:07.0197 0x17a4 NVHDA - ok
06:30:08.0576 0x17a4 [ 417660347EF07FF511284E668C9E2CB6, AEC86C4360D5BF7D8521D8AC1C4DC1144CFB5EA7D8CF858F64C2689FB8E51C1C ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
06:30:08.0819 0x17a4 nvlddmkm - ok
06:30:09.0276 0x17a4 [ 020F45E362D3B57CCC5735582BB1A6EC, E2D953CEF208528382153D06FED8394BEB52657C547E4D2D2954E537C9A382DC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
06:30:09.0314 0x17a4 NvNetworkService - ok
06:30:09.0355 0x17a4 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
06:30:09.0373 0x17a4 nvraid - ok
06:30:09.0428 0x17a4 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
06:30:09.0447 0x17a4 nvstor - ok
06:30:09.0512 0x17a4 [ F82BCEB9F57B2959F6AAE2A3DDA892A8, 5B02C74BAF0E12B84F239B1449DAA955B28BD5BA7D35D315DB57F45E042E0DB3 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
06:30:09.0554 0x17a4 NvStreamKms - ok
06:30:09.0785 0x17a4 [ 9209D57C1AA24841EF8D5DE6A5B2AAEB, C1A53621F5361DCE9C962A9B9B586D1904901C9EC20EFCA76C40ADCD98BEDF3C ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
06:30:09.0851 0x17a4 NvStreamNetworkSvc - ok
06:30:10.0077 0x17a4 [ 0EDF9504CA5174075BA5902AFC1F57C8, 8E210E71BA91813D3BB6B59E5F6AD0889711336AD12B1B1C67CCC882A6ED3E53 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
06:30:10.0151 0x17a4 NvStreamSvc - ok
06:30:10.0400 0x17a4 [ 8EEAE80C211BF93A9645048FAD39DC72, D09186436FEB12387152E3E8EC1C1142EB92B2C5B49781AC88B61EC33EF0A896 ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
06:30:10.0440 0x17a4 nvsvc - ok
06:30:10.0509 0x17a4 [ F37FE6B15A987AEEC08EEF531F2FAED7, CC768E7DE80C7A8CB2392F9BC528212B8A3A35A30A222ED0B0B959051E6F8065 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
06:30:10.0552 0x17a4 nvvad_WaveExtensible - ok
06:30:10.0598 0x17a4 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
06:30:10.0656 0x17a4 nv_agp - ok
06:30:10.0724 0x17a4 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
06:30:10.0740 0x17a4 p2pimsvc - ok
06:30:10.0791 0x17a4 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
06:30:10.0808 0x17a4 p2psvc - ok
06:30:10.0843 0x17a4 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys
06:30:10.0859 0x17a4 Parport - ok
06:30:10.0882 0x17a4 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
06:30:10.0898 0x17a4 partmgr - ok
06:30:10.0973 0x17a4 [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
06:30:10.0990 0x17a4 PcaSvc - ok
06:30:11.0066 0x17a4 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
06:30:11.0087 0x17a4 pci - ok
06:30:11.0134 0x17a4 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
06:30:11.0192 0x17a4 pciide - ok
06:30:11.0236 0x17a4 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
06:30:11.0271 0x17a4 pcmcia - ok
06:30:11.0334 0x17a4 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
06:30:11.0369 0x17a4 pcw - ok
06:30:11.0411 0x17a4 [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
06:30:11.0438 0x17a4 pdc - ok
06:30:11.0580 0x17a4 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
06:30:11.0603 0x17a4 PEAUTH - ok
06:30:12.0207 0x17a4 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
06:30:12.0216 0x17a4 PerfHost - ok
06:30:12.0361 0x17a4 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
06:30:12.0396 0x17a4 pla - ok
06:30:12.0432 0x17a4 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
06:30:12.0445 0x17a4 PlugPlay - ok
06:30:12.0480 0x17a4 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
06:30:12.0492 0x17a4 PNRPAutoReg - ok
06:30:12.0549 0x17a4 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
06:30:12.0566 0x17a4 PNRPsvc - ok
06:30:12.0683 0x17a4 [ 0FF8507A8B901B904E98EB36B9E347EE, FE4A9A6159A8490F3155D166656748722EFDEDCDC447C09155A5AD6D9F5D294D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
06:30:12.0698 0x17a4 PolicyAgent - ok
06:30:12.0737 0x17a4 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
06:30:12.0748 0x17a4 Power - ok
06:30:14.0248 0x17a4 [ 346F352E17EA5793C726D3F6582BA855, 5CD830CDCC73335EDC58D26D1BC8B8830DA885CA6D1E21BB7EE763354B5C35EA ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
06:30:14.0355 0x17a4 PrintNotify - ok
06:30:14.0400 0x17a4 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
06:30:14.0439 0x17a4 Processor - ok
06:30:14.0523 0x17a4 [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc C:\WINDOWS\system32\profsvc.dll
06:30:14.0536 0x17a4 ProfSvc - ok
06:30:14.0562 0x17a4 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
06:30:14.0581 0x17a4 Psched - ok
06:30:14.0682 0x17a4 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
06:30:14.0707 0x17a4 QWAVE - ok
06:30:14.0769 0x17a4 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
06:30:14.0826 0x17a4 QWAVEdrv - ok
06:30:14.0866 0x17a4 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
06:30:14.0886 0x17a4 RasAcd - ok
06:30:14.0939 0x17a4 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
06:30:14.0950 0x17a4 RasAuto - ok
06:30:15.0011 0x17a4 [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan C:\WINDOWS\System32\rasmans.dll
06:30:15.0036 0x17a4 RasMan - ok
06:30:15.0089 0x17a4 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
06:30:15.0109 0x17a4 RasPppoe - ok
06:30:15.0400 0x17a4 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
06:30:15.0438 0x17a4 rdbss - ok
06:30:15.0469 0x17a4 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
06:30:15.0488 0x17a4 rdpbus - ok
06:30:15.0547 0x17a4 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
06:30:15.0571 0x17a4 RDPDR - ok
06:30:15.0602 0x17a4 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
06:30:15.0662 0x17a4 RdpVideoMiniport - ok
06:30:15.0670 0x17a4 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
06:30:15.0696 0x17a4 rdyboost - ok
06:30:15.0780 0x17a4 [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
06:30:15.0832 0x17a4 ReFS - ok
06:30:15.0882 0x17a4 [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
06:30:15.0896 0x17a4 RemoteAccess - ok
06:30:15.0979 0x17a4 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
06:30:15.0994 0x17a4 RemoteRegistry - ok
06:30:16.0044 0x17a4 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
06:30:16.0054 0x17a4 RpcEptMapper - ok
06:30:16.0065 0x17a4 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
06:30:16.0073 0x17a4 RpcLocator - ok
06:30:16.0233 0x17a4 [ E4220FD9C7F1579D9C5F9DFB00427841, 77740122A01A08F18CC82A4BB3F00EC59F29EE10779092F872572C264F6728D0 ] RpcSs C:\WINDOWS\system32\rpcss.dll
06:30:16.0256 0x17a4 RpcSs - ok
06:30:16.0336 0x17a4 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
06:30:16.0387 0x17a4 rspndr - ok
06:30:16.0436 0x17a4 [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
06:30:16.0488 0x17a4 RTL8168 - ok
06:30:16.0526 0x17a4 [ 57E908ED01D8DF05B9CC6A0C9869C7A2, 2EF74F1AC8AF796D1E92190A583960E10CB498B2AC7C34BC52B69D88E5688150 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
06:30:16.0539 0x17a4 s3cap - ok
06:30:16.0574 0x17a4 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
06:30:16.0584 0x17a4 SamSs - ok
06:30:16.0632 0x17a4 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
06:30:16.0674 0x17a4 sbp2port - ok
06:30:16.0721 0x17a4 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
06:30:16.0740 0x17a4 SCardSvr - ok
06:30:16.0811 0x17a4 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
06:30:16.0827 0x17a4 ScDeviceEnum - ok
06:30:16.0847 0x17a4 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
06:30:16.0866 0x17a4 scfilter - ok
06:30:17.0044 0x17a4 [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
06:30:17.0082 0x17a4 Schedule - ok
06:30:17.0134 0x17a4 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
06:30:17.0145 0x17a4 SCPolicySvc - ok
06:30:17.0228 0x17a4 [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
06:30:17.0266 0x17a4 sdbus - ok
06:30:17.0463 0x17a4 [ D9CEBA132B17622C4349AF510348EE3E, 52C02367374467F10EE620924B1E47DD50159DA8EA61683F9742EA6704A501CB ] SDHookDriver C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHookDrv64.sys
06:30:17.0504 0x17a4 SDHookDriver - ok
06:30:17.0619 0x17a4 [ 2ED9CD42F4E46EF13073847F8924B60C, 01AD75364DED7596C131FF73300BB910555C6901C826A669ABDA4A01D0DD2178 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
06:30:17.0653 0x17a4 SDScannerService - ok
06:30:17.0701 0x17a4 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
06:30:17.0757 0x17a4 sdstor - ok
06:30:18.0001 0x17a4 [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
06:30:18.0041 0x17a4 SDUpdateService - ok
06:30:18.0099 0x17a4 [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
06:30:18.0120 0x17a4 SDWSCService - ok
06:30:18.0145 0x17a4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
06:30:18.0163 0x17a4 secdrv - ok
06:30:18.0204 0x17a4 [ 6627154693B6C2B8A59727F5B38728E8, F08251EE3436400295F120D48F3763E6F11BBF4132D674AD3E8112B6B3538455 ] seclogon C:\WINDOWS\system32\seclogon.dll
06:30:18.0215 0x17a4 seclogon - ok
06:30:18.0297 0x17a4 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
06:30:18.0309 0x17a4 SENS - ok
06:30:18.0370 0x17a4 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
06:30:18.0386 0x17a4 SensrSvc - ok
06:30:18.0391 0x17a4 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
06:30:18.0429 0x17a4 SerCx - ok
06:30:18.0461 0x17a4 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
06:30:18.0501 0x17a4 SerCx2 - ok
06:30:18.0530 0x17a4 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
06:30:18.0567 0x17a4 Serenum - ok
06:30:18.0582 0x17a4 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys
06:30:18.0619 0x17a4 Serial - ok
06:30:18.0639 0x17a4 [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
06:30:18.0655 0x17a4 sermouse - ok
06:30:18.0668 0x17a4 [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv C:\WINDOWS\system32\sessenv.dll
06:30:18.0684 0x17a4 SessionEnv - ok
06:30:18.0688 0x17a4 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
06:30:18.0704 0x17a4 sfloppy - ok
06:30:18.0749 0x17a4 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
06:30:18.0767 0x17a4 SharedAccess - ok
06:30:19.0060 0x17a4 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
06:30:19.0116 0x17a4 ShellHWDetection - ok
06:30:19.0143 0x17a4 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
06:30:19.0184 0x17a4 SiSRaid2 - ok
06:30:19.0205 0x17a4 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
06:30:19.0223 0x17a4 SiSRaid4 - ok
06:30:19.0362 0x17a4 [ 6749AD471D1D44CBD1F30257C861F77B, D5A554F35E380948F13BFE0673B49F8FD8AE5A438BF3645857522E2560A58685 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
06:30:19.0383 0x17a4 SkypeUpdate - ok
06:30:19.0459 0x17a4 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
06:30:19.0471 0x17a4 smphost - ok
06:30:19.0510 0x17a4 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
06:30:19.0521 0x17a4 SNMPTRAP - ok
06:30:19.0605 0x17a4 [ B45AE0970B2D66CCE756DE6989E23EEC, 8393CF2DC4F65CD48D4D7B3C8C2D29E26728593B652D6CEAB65B50AEDA0884B7 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
06:30:19.0630 0x17a4 spaceport - ok
06:30:19.0656 0x17a4 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
06:30:19.0672 0x17a4 SpbCx - ok
06:30:19.0857 0x17a4 [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler C:\WINDOWS\System32\spoolsv.exe
06:30:19.0883 0x17a4 Spooler - ok
06:30:20.0249 0x17a4 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe
06:30:20.0394 0x17a4 sppsvc - ok
06:30:20.0470 0x17a4 [ 69DC128CF54009A686E0F0C57E2BA0DC, 961B1F1F4CD07D85660E63DEC0AACDE1BF0DA30C0E39C497AE31BD37C5591B72 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
06:30:20.0494 0x17a4 srv - ok
06:30:20.0591 0x17a4 [ CED8576CD925E83ABEB14F65EA205C29, 37803AB047B5717EDBB7009F504C87B8DE110FBC5D67DFE6A9C8F04B30DD9629 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
06:30:20.0625 0x17a4 srv2 - ok
06:30:20.0679 0x17a4 [ 4396587119D8F4B72561ED24666E7567, 11754EA2668B2088363EFD2BCE4FDABC8836A6C9D78873F2A4F3517A48932ABF ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
06:30:20.0700 0x17a4 srvnet - ok
06:30:20.0772 0x17a4 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
06:30:20.0787 0x17a4 SSDPSRV - ok
06:30:20.0856 0x17a4 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
06:30:20.0868 0x17a4 SstpSvc - ok
06:30:21.0203 0x17a4 [ 6955A1EE65ED72A263C7F4EDBB8D80ED, 2ACCAA04197D8ABD965DA1937568DD8E775656C6A9970AE5869AA3CF6D76928A ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
06:30:21.0215 0x17a4 STacSV - detected UnsignedFile.Multi.Generic ( 1 )
06:30:21.0326 0x17a4 Detect skipped due to KSN trusted
06:30:21.0326 0x17a4 STacSV - ok
06:30:21.0419 0x17a4 [ 2F79BE4AE3DF007CF31E58FC7D8492CF, B1F71DE1A0EE1C96370D7E2D56D1902D73A2F4CE24961566D25760628E6CA98C ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
06:30:21.0432 0x17a4 Stereo Service - ok
06:30:21.0503 0x17a4 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
06:30:21.0552 0x17a4 stexstor - ok
06:30:21.0639 0x17a4 [ 1F509093A44E75A4649A541613531D94, 922A378D3AE98400A646D74106C44E12E14B6D74F690284991D2A7068B916FB7 ] STHDA C:\WINDOWS\system32\DRIVERS\stwrt64.sys
06:30:21.0746 0x17a4 STHDA - ok
06:30:21.0868 0x17a4 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
06:30:21.0890 0x17a4 stisvc - ok
06:30:21.0914 0x17a4 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
06:30:21.0930 0x17a4 storahci - ok
06:30:21.0971 0x17a4 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
06:30:22.0018 0x17a4 storflt - ok
06:30:22.0046 0x17a4 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
06:30:22.0076 0x17a4 stornvme - ok
06:30:22.0120 0x17a4 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
06:30:22.0133 0x17a4 StorSvc - ok
06:30:22.0204 0x17a4 [ 26F9B63705BFA9640D53FBD141041865, BBADADE6EAB71CC0B96D327E0C94BE696249003CF66E8E264BAF6716F54C545F ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
06:30:22.0243 0x17a4 storvsc - ok
06:30:22.0295 0x17a4 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
06:30:22.0308 0x17a4 svsvc - ok
06:30:22.0402 0x17a4 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
06:30:22.0446 0x17a4 swenum - ok
06:30:22.0473 0x17a4 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
06:30:22.0497 0x17a4 swprv - ok
06:30:22.0556 0x17a4 [ A2BA4E39BD5794202EDB5B071B9AFD43, EE24B7DFB1CBF50E26F399F85760D80F6675DDE30CEC85789BCB56F3DC9D54D1 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
06:30:22.0595 0x17a4 Synth3dVsc - ok
06:30:22.0757 0x17a4 [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain C:\WINDOWS\system32\sysmain.dll
06:30:22.0794 0x17a4 SysMain - ok
06:30:22.0871 0x17a4 [ 23BECB70654B192A7E378DEE3DBD8D42, 7596174AE7508B62C40A429645198F6A420D0CD5B62A10AB78516113584E7EDB ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
06:30:22.0885 0x17a4 SystemEventsBroker - ok
06:30:22.0939 0x17a4 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
06:30:22.0953 0x17a4 TabletInputService - ok
06:30:23.0026 0x17a4 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
06:30:23.0041 0x17a4 TapiSrv - ok
06:30:23.0381 0x17a4 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
06:30:23.0464 0x17a4 Tcpip - ok
06:30:23.0627 0x17a4 [ 1C8560E3A37A9D4F25B7769C3E3D4163, 3246F3CD6C9EA2BD874822D594A0FAC68A9DE0612C0893B50B8A3D5F1E9B0B33 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
06:30:23.0711 0x17a4 TCPIP6 - ok
06:30:23.0791 0x17a4 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
06:30:23.0822 0x17a4 tcpipreg - ok
06:30:23.0873 0x17a4 [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
06:30:23.0899 0x17a4 tdx - ok
06:30:23.0923 0x17a4 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
06:30:23.0937 0x17a4 terminpt - ok
06:30:24.0119 0x17a4 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
06:30:24.0149 0x17a4 TermService - ok
06:30:24.0166 0x17a4 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
06:30:24.0180 0x17a4 Themes - ok
06:30:24.0260 0x17a4 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
06:30:24.0271 0x17a4 THREADORDER - ok
06:30:24.0349 0x17a4 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
06:30:24.0378 0x17a4 TimeBroker - ok
06:30:24.0449 0x17a4 [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
06:30:24.0484 0x17a4 TPM - ok
06:30:24.0531 0x17a4 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
06:30:24.0552 0x17a4 TrkWks - ok
06:30:24.0817 0x17a4 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
06:30:24.0836 0x17a4 TrustedInstaller - ok
06:30:24.0842 0x17a4 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
06:30:24.0858 0x17a4 TsUsbFlt - ok
06:30:24.0862 0x17a4 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
06:30:24.0888 0x17a4 TsUsbGD - ok
06:30:24.0925 0x17a4 [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
06:30:24.0980 0x17a4 tunnel - ok
06:30:25.0006 0x17a4 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
06:30:25.0027 0x17a4 uagp35 - ok
06:30:25.0051 0x17a4 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
06:30:25.0098 0x17a4 UASPStor - ok
06:30:25.0119 0x17a4 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
06:30:25.0173 0x17a4 UCX01000 - ok
06:30:25.0225 0x17a4 [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
06:30:25.0256 0x17a4 udfs - ok
06:30:25.0277 0x17a4 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
06:30:25.0313 0x17a4 UEFI - ok
06:30:25.0346 0x17a4 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
06:30:25.0356 0x17a4 UI0Detect - ok
06:30:25.0378 0x17a4 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
06:30:25.0393 0x17a4 uliagpkx - ok
06:30:25.0433 0x17a4 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
06:30:25.0448 0x17a4 umbus - ok
06:30:25.0464 0x17a4 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
06:30:25.0493 0x17a4 UmPass - ok
06:30:25.0577 0x17a4 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
06:30:25.0591 0x17a4 UmRdpService - ok
06:30:25.0711 0x17a4 [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
06:30:25.0722 0x17a4 UNS - ok
06:30:25.0808 0x17a4 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
06:30:25.0826 0x17a4 upnphost - ok
06:30:25.0883 0x17a4 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
06:30:25.0930 0x17a4 usbccgp - ok
06:30:25.0962 0x17a4 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
06:30:25.0979 0x17a4 usbcir - ok
06:30:26.0039 0x17a4 [ C996CBEF922B5653A01E3F50DDCE2F86, 231EB5A36E7EE242197E796D3B4AB12F945D2C8570587BC8D57D45530A0C59B4 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
06:30:26.0054 0x17a4 usbehci - ok
06:30:26.0094 0x17a4 [ CD81683F4553677B9BF5163A922153EB, 6B304B0D68B9BFF0245EC755CDAAF9DF59DF3A081727E32CB66672929F0DBC50 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
06:30:26.0130 0x17a4 usbhub - ok
06:30:26.0205 0x17a4 [ 5C90D5379B53590FBB24BBAD4FA682EE, DC036340510C1C0999AB1CB845F8E6EB8B7696BAC9BBE6E936454C0000D1E9D4 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
06:30:26.0231 0x17a4 USBHUB3 - ok
06:30:26.0292 0x17a4 [ A0F0484C97D6441ED6A75D7426ECCC9E, FF928ADE1C5464E581BF929F7383D5762D110EA6C7E31A6F0887EA7357ADBEFE ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
06:30:26.0309 0x17a4 usbohci - ok
06:30:26.0343 0x17a4 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
06:30:26.0389 0x17a4 usbprint - ok
06:30:26.0420 0x17a4 [ 9D168BFA334D47BE404367EB58D4E130, 23279CBE6ACBD074E7B268BA2EDA14E2255C41F8117173B2BBE653D8259ECFA2 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
06:30:26.0446 0x17a4 USBSTOR - ok
06:30:26.0479 0x17a4 [ FC974B03C8B87455F44F734C8F31A3C8, D69F6EE8030F7DF96FF151D9EAA6AE65417ACAC5A267C7DB96E9611D5BC42D2C ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
06:30:26.0511 0x17a4 usbuhci - ok
06:30:26.0578 0x17a4 [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
06:30:26.0619 0x17a4 USBXHCI - ok
06:30:26.0641 0x17a4 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
06:30:26.0652 0x17a4 VaultSvc - ok
06:30:26.0669 0x17a4 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
06:30:26.0720 0x17a4 vdrvroot - ok
06:30:26.0916 0x17a4 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
06:30:26.0948 0x17a4 vds - ok
06:30:27.0001 0x17a4 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
06:30:27.0026 0x17a4 VerifierExt - ok
06:30:27.0171 0x17a4 [ 34CAF69BF4166AB40BFF0ED068FF6F91, BF5DA4F85A2C537DD76A3271956EC5BDB9ABC495FAA9371037F608152BE2725D ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
06:30:27.0221 0x17a4 vhdmp - ok
06:30:27.0248 0x17a4 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
06:30:27.0254 0x17a4 viaide - ok
06:30:27.0307 0x17a4 [ 0312DCB72628E57C6F0FA087295F25B8, 7DF309934FB9A4342E073E52EE136F1953BDBA0E1255E0208E7AF249A08A1D51 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
06:30:27.0324 0x17a4 vmbus - ok
06:30:27.0371 0x17a4 [ 4A2F3A12A67BF9D4BCF2EFBADD801BA9, 130DD728DDD264E136833E250471201AACAD3C6E567AC6D8AAB7868720E01115 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
06:30:27.0417 0x17a4 VMBusHID - ok
06:30:27.0433 0x17a4 [ 73E50D3FEBA752FD9D3CBDEFF765C9CD, DB30DB8BA18582E4DC0DE560E51943B51E74294EA6C52E564641F1C734E38482 ] vmbusr C:\WINDOWS\System32\drivers\vmbusr.sys
06:30:27.0464 0x17a4 vmbusr - ok
06:30:27.0589 0x17a4 [ F40F49AF154CCD772112F808FF59B365, 09999190CA17AF202FAE7466F60D35B2AF2A0E8603319171BE200B93A1314DA2 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
06:30:27.0636 0x17a4 vmicguestinterface - ok
06:30:27.0700 0x17a4 [ F40F49AF154CCD772112F808FF59B365, 09999190CA17AF202FAE7466F60D35B2AF2A0E8603319171BE200B93A1314DA2 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
06:30:27.0731 0x17a4 vmicheartbeat - ok
06:30:27.0747 0x17a4 [ F40F49AF154CCD772112F808FF59B365, 09999190CA17AF202FAE7466F60D35B2AF2A0E8603319171BE200B93A1314DA2 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
06:30:27.0762 0x17a4 vmickvpexchange - ok
06:30:27.0825 0x17a4 [ F40F49AF154CCD772112F808FF59B365, 09999190CA17AF202FAE7466F60D35B2AF2A0E8603319171BE200B93A1314DA2 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
06:30:27.0840 0x17a4 vmicrdv - ok
06:30:27.0872 0x17a4 [ F40F49AF154CCD772112F808FF59B365, 09999190CA17AF202FAE7466F60D35B2AF2A0E8603319171BE200B93A1314DA2 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
06:30:27.0887 0x17a4 vmicshutdown - ok
06:30:27.0950 0x17a4 [ F40F49AF154CCD772112F808FF59B365, 09999190CA17AF202FAE7466F60D35B2AF2A0E8603319171BE200B93A1314DA2 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
06:30:27.0997 0x17a4 vmictimesync - ok
06:30:28.0044 0x17a4 [ F40F49AF154CCD772112F808FF59B365, 09999190CA17AF202FAE7466F60D35B2AF2A0E8603319171BE200B93A1314DA2 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
06:30:28.0059 0x17a4 vmicvss - ok
06:30:28.0122 0x17a4 [ 436E1A724E7E683F6B612D3D58F04241, 939B5EF0090DF3759295F88402FD0EA33F499DDA9F89E5D0E90D1F9AED65D491 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
06:30:28.0153 0x17a4 volmgr - ok
06:30:28.0231 0x17a4 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
06:30:28.0262 0x17a4 volmgrx - ok
06:30:28.0403 0x17a4 [ 17F7B0F2298D97F4B6C7A69511033D3D, 5BDFC225F31553786726808FB7952940FC05CA72B3977D684056F42AFAA59565 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
06:30:28.0434 0x17a4 volsnap - ok
06:30:28.0481 0x17a4 [ DAC438FB5FF85A9E72806E2341D5D732, B1D1EFCA8C588A6BF53CEC941CC59702C366F15C7D5943431736EC857E57C0A2 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
06:30:28.0528 0x17a4 vpci - ok
06:30:28.0559 0x17a4 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
06:30:28.0591 0x17a4 vsmraid - ok
06:30:28.0716 0x17a4 [ D0CBA7B3531CCF2ADB985856D5F92434, 7FCBBCAF1AA85DCE8D75FB38DC4848AE12E8DD913CEBBC37BCD3D0123F0A3CAB ] VSS C:\WINDOWS\system32\vssvc.exe
06:30:28.0747 0x17a4 VSS - ok
06:30:28.0809 0x17a4 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
06:30:28.0841 0x17a4 VSTXRAID - ok
06:30:28.0903 0x17a4 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
06:30:28.0966 0x17a4 vwifibus - ok
06:30:29.0044 0x17a4 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
06:30:29.0075 0x17a4 W32Time - ok
06:30:29.0153 0x17a4 [ A22546B0093EBBDE03C52E56C3391373, 0C28D5C6A4E4EF12ABF0195409CAED17E07DEA22FB330D99FEEF847CBBC04A4E ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll
06:30:29.0169 0x17a4 w3logsvc - ok
06:30:29.0200 0x17a4 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
06:30:29.0262 0x17a4 WacomPen - ok
06:30:29.0309 0x17a4 [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
06:30:29.0341 0x17a4 WAS - ok
06:30:29.0531 0x17a4 [ 139D842E5FB75A1E2F0212FBD7B0E457, F29F73B56865C5EBBE89B8F92AEFE2DB19E5C29A94D2E006A23243C23A41AE79 ] wbengine C:\WINDOWS\system32\wbengine.exe
06:30:29.0562 0x17a4 wbengine - ok
06:30:29.0750 0x17a4 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
06:30:29.0781 0x17a4 WbioSrvc - ok
06:30:29.0797 0x17a4 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
06:30:29.0812 0x17a4 Wcmsvc - ok
06:30:29.0828 0x17a4 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
06:30:29.0844 0x17a4 wcncsvc - ok
06:30:29.0891 0x17a4 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
06:30:29.0906 0x17a4 WcsPlugInService - ok
06:30:29.0953 0x17a4 [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
06:30:30.0016 0x17a4 WdBoot - ok
06:30:30.0156 0x17a4 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
06:30:30.0203 0x17a4 Wdf01000 - ok
06:30:30.0250 0x17a4 [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
06:30:30.0281 0x17a4 WdFilter - ok
06:30:30.0312 0x17a4 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
06:30:30.0328 0x17a4 WdiServiceHost - ok
06:30:30.0344 0x17a4 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
06:30:30.0359 0x17a4 WdiSystemHost - ok
06:30:30.0391 0x17a4 [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
06:30:30.0406 0x17a4 WdNisDrv - ok
06:30:30.0437 0x17a4 WdNisSvc - ok
06:30:30.0531 0x17a4 [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient C:\WINDOWS\System32\webclnt.dll
06:30:30.0547 0x17a4 WebClient - ok
06:30:30.0641 0x17a4 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
06:30:30.0656 0x17a4 Wecsvc - ok
06:30:30.0719 0x17a4 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
06:30:30.0734 0x17a4 WEPHOSTSVC - ok
06:30:30.0734 0x17a4 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
06:30:30.0766 0x17a4 wercplsupport - ok
06:30:30.0781 0x17a4 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
06:30:30.0781 0x17a4 WerSvc - ok
06:30:30.0875 0x17a4 [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
06:30:30.0906 0x17a4 WFPLWFS - ok
06:30:30.0938 0x17a4 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
06:30:30.0938 0x17a4 WiaRpc - ok
06:30:31.0016 0x17a4 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
06:30:31.0047 0x17a4 WIMMount - ok
06:30:31.0047 0x17a4 WinDefend - ok
06:30:31.0234 0x17a4 [ 310388D06C11C507226CD7C2D21D5ACE, E8158111566D553B8F0E86C33B5F75AF3A4A3405503927822B80DF64D8DEFB05 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
06:30:31.0250 0x17a4 WinHttpAutoProxySvc - ok
06:30:31.0578 0x17a4 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
06:30:31.0625 0x17a4 Winmgmt - ok
06:30:31.0969 0x17a4 [ 427873F889F2F508BE8BE982219CE578, CA8DCFB774BF0F747295A7A0CB46A6177DE12AD6BD58266182206C41A3C9001E ] WinRM C:\WINDOWS\system32\WsmSvc.dll
06:30:32.0031 0x17a4 WinRM - ok
06:30:32.0344 0x17a4 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
06:30:32.0375 0x17a4 WlanSvc - ok
06:30:32.0672 0x17a4 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
06:30:32.0703 0x17a4 wlidsvc - ok
06:30:32.0953 0x17a4 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
06:30:33.0016 0x17a4 WmiAcpi - ok
06:30:33.0078 0x17a4 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
06:30:33.0094 0x17a4 wmiApSrv - ok
06:30:33.0125 0x17a4 WMPNetworkSvc - ok
06:30:33.0172 0x17a4 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
06:30:33.0188 0x17a4 Wof - ok
06:30:33.0594 0x17a4 [ EDFA5CEDBE174FAAA4A09A6B297AEA42, 5998FE15462E4AD9C7B1444E5E2C17BD470DA3A5D474A0A118E02E47DADC678A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
06:30:33.0641 0x17a4 workfolderssvc - ok
06:30:33.0719 0x17a4 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
06:30:33.0797 0x17a4 wpcfltr - ok
06:30:34.0469 0x17a4 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
06:30:34.0485 0x17a4 WPCSvc - ok
06:30:34.0516 0x17a4 [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
06:30:34.0532 0x17a4 WPDBusEnum - ok
06:30:34.0579 0x17a4 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
06:30:34.0610 0x17a4 WpdUpFltr - ok
06:30:34.0626 0x17a4 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
06:30:34.0641 0x17a4 ws2ifsl - ok
06:30:34.0704 0x17a4 [ 501D5EFAB9711039479AE48401386D2B, C8C1184DE93E9D2C4E8A60E4E9980745C4E5470E5DA9B59165D18705330ADEFE ] wscsvc C:\WINDOWS\System32\wscsvc.dll
06:30:34.0704 0x17a4 wscsvc - ok
06:30:34.0719 0x17a4 WSearch - ok
06:30:35.0141 0x17a4 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
06:30:35.0219 0x17a4 WSService - ok
06:30:35.0751 0x17a4 [ 020F47C655ED1F63BBA834AA53575D5C, 7E36BB83B937CEA8B5D1EAF1DF63D32D64CA8045DA377DF5237D2F4DC16574CC ] wuauserv C:\WINDOWS\system32\wuaueng.dll
06:30:35.0813 0x17a4 wuauserv - ok
06:30:35.0891 0x17a4 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
06:30:35.0938 0x17a4 WudfPf - ok
06:30:36.0032 0x17a4 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
06:30:36.0063 0x17a4 WUDFRd - ok
06:30:36.0157 0x17a4 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
06:30:36.0188 0x17a4 wudfsvc - ok
06:30:36.0188 0x17a4 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
06:30:36.0219 0x17a4 WUDFWpdFs - ok
06:30:36.0376 0x17a4 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
06:30:36.0407 0x17a4 WwanSvc - ok
06:30:36.0407 0x17a4 ================ Scan global ===============================
06:30:36.0782 0x17a4 [ 3500AF0BA2EF095BF313EEB75D2366C6, C755E57B02BFA82151A182DF964349859575570EA5C3FBA81F747B8D2134A4D0 ] C:\WINDOWS\system32\basesrv.dll
06:30:36.0891 0x17a4 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
06:30:36.0985 0x17a4 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
06:30:37.0063 0x17a4 [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
06:30:37.0079 0x17a4 [ Global ] - ok
06:30:37.0079 0x17a4 ================ Scan MBR ==================================
06:30:37.0095 0x17a4 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
06:30:37.0610 0x17a4 \Device\Harddisk0\DR0 - ok
06:30:37.0610 0x17a4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
06:30:38.0345 0x17a4 \Device\Harddisk1\DR1 - ok
06:30:38.0345 0x17a4 ================ Scan VBR ==================================
06:30:38.0376 0x17a4 [ 37C87BC280236B27091635D90A6772A0 ] \Device\Harddisk0\DR0\Partition1
06:30:38.0485 0x17a4 \Device\Harddisk0\DR0\Partition1 - ok
06:30:38.0532 0x17a4 [ 41505B0EC3BC026EDB7AE0D38D96574E ] \Device\Harddisk0\DR0\Partition2
06:30:38.0532 0x17a4 \Device\Harddisk0\DR0\Partition2 - ok
06:30:38.0579 0x17a4 [ 5CDBA792E0163CB6A362BEFCBE5D51D6 ] \Device\Harddisk0\DR0\Partition3
06:30:38.0579 0x17a4 \Device\Harddisk0\DR0\Partition3 - ok
06:30:38.0626 0x17a4 [ 6F3F823CED0F8ED072586366F8870A71 ] \Device\Harddisk0\DR0\Partition4
06:30:38.0673 0x17a4 \Device\Harddisk0\DR0\Partition4 - ok
06:30:38.0735 0x17a4 [ A06386658E66CDE561BDC45A007812FE ] \Device\Harddisk0\DR0\Partition5
06:30:38.0782 0x17a4 \Device\Harddisk0\DR0\Partition5 - ok
06:30:38.0845 0x17a4 [ 8AA168722AF8FF2AB3D8302D23A19A91 ] \Device\Harddisk0\DR0\Partition6
06:30:38.0892 0x17a4 \Device\Harddisk0\DR0\Partition6 - ok
06:30:38.0954 0x17a4 [ AD5A01131C05DAC5865418D13DD0F520 ] \Device\Harddisk0\DR0\Partition7
06:30:38.0954 0x17a4 \Device\Harddisk0\DR0\Partition7 - ok
06:30:39.0001 0x17a4 [ 82408ACB2A96A5B564FB1BBA7476A8EC ] \Device\Harddisk0\DR0\Partition8
06:30:39.0017 0x17a4 \Device\Harddisk0\DR0\Partition8 - ok
06:30:39.0017 0x17a4 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
06:30:39.0017 0x17a4 \Device\Harddisk1\DR1\Partition1 - ok
06:30:39.0017 0x17a4 [ C847ABE5C176DB21CADD8D5E75A56BB5 ] \Device\Harddisk1\DR1\Partition2
06:30:39.0017 0x17a4 \Device\Harddisk1\DR1\Partition2 - ok
06:30:39.0017 0x17a4 ================ Scan generic autorun ======================
06:30:39.0063 0x17a4 [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\Windows\system32\rundll32.exe
06:30:39.0157 0x17a4 Logitech Download Assistant - ok
06:30:39.0204 0x17a4 [ 49BD5663071AA799AC0B1E6B48EB9257, 39364B7E08C87545B4E48264509D73800FE5B0A76E34E0B169DA489895820B22 ] C:\Program Files\IDT\WDM\beats64.exe
06:30:39.0220 0x17a4 BeatsOSDApp - detected UnsignedFile.Multi.Generic ( 1 )
06:30:39.0329 0x17a4 Detect skipped due to KSN trusted
06:30:39.0329 0x17a4 BeatsOSDApp - ok
06:30:39.0470 0x17a4 [ 5677C8C60F4659E8626AC9036EEF38DF, 1C7D3EC3BCB3E34900DD9556A3EBAF449C68585DC8E07682E680790497105B8B ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
06:30:39.0485 0x17a4 Classic Start Menu - ok
06:30:39.0923 0x17a4 [ 94A8196066774252DF015EEDF02CCA44, AD2DFDA427E3CCB5C8404F0AFAFE71C64B862D2E26A67E1BFC2B40738FD0B873 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
06:30:39.0970 0x17a4 NvBackend - ok
06:30:39.0985 0x17a4 [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\WINDOWS\system32\rundll32.exe
06:30:40.0001 0x17a4 ShadowPlay - ok
06:30:40.0204 0x17a4 [ ADEA393B2B49EB25578702F4F5525E93, 8F0AB94BEA3751C566CBFF2F9A29495CCAC029DE3721107BBA892A418FD70581 ] C:\Program Files (x86)\Itunes\iTunesHelper.exe
06:30:40.0220 0x17a4 iTunesHelper - ok
06:30:40.0660 0x17a4 [ 24A1C2C585F21D4FB11684930B464640, 5BB2E053DA5F9E9D5B1142B450719D28896A731ED7E7033CA7496CA3974FC70A ] C:\Program Files\IDT\WDM\sttray64.exe
06:30:40.0707 0x17a4 SysTrayApp - detected UnsignedFile.Multi.Generic ( 1 )
06:30:40.0816 0x17a4 Detect skipped due to KSN trusted
06:30:40.0816 0x17a4 SysTrayApp - ok
06:30:41.0773 0x17a4 [ 02355D2979DC8B15FFC606236A438177, 55E0C74D8E01AA09FA96140814C37AF32B66CA9DA53A8C597AFD6860521C890B ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
06:30:42.0038 0x17a4 AvastUI.exe - ok
06:30:42.0492 0x17a4 [ 7EE68A122ED08E4AAD8DA551E34D2515, B3C9AB270AF595D3DBAFBF4A312B96CBF00C16F0A03CCC86BE56825CD1EB7143 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
06:30:42.0554 0x17a4 SDTray - ok
06:30:42.0679 0x17a4 [ FD45AC4CECA3AB0B8392E8018439B546, DCB268952F2BE2D2CE610D24FEE41DB6E1690924AC0BCEE0BD2A1A7E67459FA2 ] C:\Program Files (x86)\AOMEI Backupper\ABNotify.exe
06:30:42.0695 0x17a4 ABNotify - ok
06:30:42.0835 0x17a4 [ F51BB12D8977D26C1A4CDA348770D9F1, DDA35CD8F8A6591B83821B5180D457740E0B820CCE000BC7FB1B78FB4AEAD3BA ] C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
06:30:42.0851 0x17a4 SpybotPostWindows10UpgradeReInstall - detected UnsignedFile.Multi.Generic ( 1 )
06:30:42.0976 0x17a4 Detect skipped due to KSN trusted
06:30:42.0976 0x17a4 SpybotPostWindows10UpgradeReInstall - ok
06:30:43.0076 0x17a4 [ 369993D4B8C009393A2F9BCBB7BD2587, DD9FBF8C32BB3A29F7062BABA23B84FB9F7395A4AB3FB7001071154CDE92F7D5 ] C:\Program Files (x86)\Windows Mail\wab.exe
06:30:43.0120 0x17a4 WAB Migrate - ok
06:30:43.0121 0x17a4 Waiting for KSN requests completion. In queue: 129
06:30:44.0159 0x17a4 AV detected via SS2: Spybot - Search and Destroy, C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe ( 2.3.39.0 ), 0x61000 ( enabled : updated )
06:30:44.0160 0x17a4 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
06:30:44.0161 0x17a4 AV detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 12.3.3154.0 ), 0x41000 ( enabled : updated )
06:30:44.0208 0x17a4 Win FW state via NFP2: enabled ( trusted )
06:30:44.0343 0x17a4 ============================================================
06:30:44.0343 0x17a4 Scan finished
06:30:44.0343 0x17a4 ============================================================
06:30:44.0350 0x0d5c Detected object count: 1
06:30:44.0350 0x0d5c Actual detected object count: 1
06:31:57.0175 0x0d5c HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user
06:31:57.0175 0x0d5c HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
edit: Windows hat jetzt doch auf einmal 37 neue Updates gefunden & installiert. Neue Scans machen oder ist das erstmal nicht relevant ? Geändert von losprimeros (25.08.2016 um 06:33 Uhr) |
|
25.08.2016, 10:33
| #4 |
| | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? neue FRST Scans nach den angesprochenen Updates. TDSSK bringt das gleiche Ergebnis wie davor. |
|
25.08.2016, 11:34
| #5 |
| /// TB-Ausbilder | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? Servus, sehr gut gemacht.  Google Chrome ist noch infiziert. Wir starten so: Schritt 1 Downloade Dir bitte AdwCleaner auf deinen Desktop.
Schritt 2 Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 3
Bitte poste mit deiner nächsten Antwort
|
|
25.08.2016, 12:09
| #6 |
| | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? AdwCleaner Code:
ATTFilter # AdwCleaner v6.010 - Bericht erstellt am 25/08/2016 um 12:50:12
# Aktualisiert am 12/08/2016 von ToolsLib
# Datenbank : 2016-08-24.2 [Server]
# Betriebssystem : Windows 8.1 (X64)
# Benutzername : Cosmas - NIETZSCHE
# Gestartet von : C:\Users\Cosmas\Desktop\AdwCleaner_6.010.exe
# Modus: Löschen
# Unterstützung : https://toolslib.net/forum
***** [ Dienste ] *****
***** [ Ordner ] *****
***** [ Dateien ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel gelöscht: HKU\S-1-5-21-757556425-620845279-3855867090-1001\Software\OCS
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\OCS
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
***** [ Browser ] *****
[-] [C:\Users\Cosmas\AppData\Local\Google\Chrome\User Data\Default] [startup_urls] Gelöscht: hxxp://www.mystartsearch.com/?type=hp&ts=1429435474&from=cor&uid=ST31000524AS_9VPFPKH3
*************************
:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
:: Chrome Einstellungen zurückgesetzt: C:\Users\Cosmas\AppData\Local\Google\Chrome\User Data\Default
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1574 Bytes] - [25/08/2016 12:50:12]
C:\AdwCleaner\AdwCleaner[S0].txt - [1693 Bytes] - [25/08/2016 12:48:59]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1720 Bytes] ##########
MBAM Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 25.08.2016 Suchlaufzeit: 12:57 Protokolldatei: MBAM 25.08.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2016.08.25.04 Rootkit-Datenbank: v2016.08.15.01 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Cosmas Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 351868 Abgelaufene Zeit: 7 Min., 51 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 0 (keine bösartigen Elemente erkannt) Registrierungswerte: 0 (keine bösartigen Elemente erkannt) Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 0 (keine bösartigen Elemente erkannt) Dateien: 0 (keine bösartigen Elemente erkannt) Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) FRST im Anhang Nun hat AdwCleaner ja Chrome zurückgesetzt. Kann ich mein Profil gefahrlos wieder anmelden & nutzen oder besteht die Möglichlichkeit, dass dadurch irgendwas Ungewolltes wieder importiert wird ? Geändert von losprimeros (25.08.2016 um 13:08 Uhr) |
|
25.08.2016, 13:15
| #7 | |
| /// TB-Ausbilder | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? Servus, Zitat:
dann noch folgendes bitte: wir entfernen die letzten Reste und kontrollieren nochmal alles.  Hinweis: Der Suchlauf mit ESET kann länger dauern. Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter start
CloseProcesses:
Task: {229E967C-0C4F-4C5C-8ECA-8222DA5CC537} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Downloade dir die passende Version von HitmanPro auf deinen Desktop: HitmanPro - 32 Bit | HitmanPro - 64 Bit.
Schritt 3
Gibt es jetzt noch Probleme mit dem PC? Wenn ja, welche?Bitte poste mit deiner nächsten Antwort
|
|
25.08.2016, 13:39
| #8 | |
| | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ?Zitat:
Fixlog FRST Code:
ATTFilter
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version: 21-08-2016 01
durchgeführt von Cosmas (25-08-2016 14:18:11) Run:1
Gestartet von C:\Users\Cosmas\Desktop
Geladene Profile: Cosmas (Verfügbare Profile: Cosmas & Administrator)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
start
CloseProcesses:
Task: {229E967C-0C4F-4C5C-8ECA-8222DA5CC537} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
*****************
Prozess erfolgreich geschlossen.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{229E967C-0C4F-4C5C-8ECA-8222DA5CC537}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{229E967C-0C4F-4C5C-8ECA-8222DA5CC537}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOSNotify" => Schlüssel erfolgreich entfernt
========= RemoveProxy: =========
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-757556425-620845279-3855867090-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-757556425-620845279-3855867090-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
========= Ende von RemoveProxy: =========
========= ipconfig /flushdns =========
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.
========= Ende von CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9126249 B
Java, Flash, Steam htmlcache => 676 B
Windows/system/drivers => 4336738 B
Edge => 0 B
Chrome => 706212511 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 21417450 B
NetworkService => 0 B
Cosmas => 7691245 B
Administrator => 6242 B
RecycleBin => 0 B
EmptyTemp: => 722.1 MB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 14:18:24 ====
HitmanPro Code:
ATTFilter HitmanPro 3.7.14.265
www.hitmanpro.com
Computer name . . . . : NIETZSCHE
Windows . . . . . . . : 6.3.0.9600.X64/4
User name . . . . . . : NIETZSCHE\Cosmas
UAC . . . . . . . . . : Enabled
License . . . . . . . : Free
Scan date . . . . . . : 2016-08-25 14:23:22
Scan mode . . . . . . : Normal
Scan duration . . . . : 8m 2s
Disk access mode . . : Direct disk access (SRB)
Cloud . . . . . . . . : Internet
Reboot . . . . . . . : No
Threats . . . . . . . : 0
Traces . . . . . . . : 1
Objects scanned . . . : 1.747.752
Files scanned . . . . : 39.185
Remnants scanned . . : 634.054 files / 1.074.513 keys
Suspicious files ____________________________________________________________
C:\Users\Cosmas\Desktop\FRST64.exe
Size . . . . . . . : 2.396.672 bytes
Age . . . . . . . : 0.1 days (2016-08-25 11:24:54)
Entropy . . . . . : 7.6
SHA-256 . . . . . : B013E81A02D8CD690103C7900F14CCFAACC063D1945767361BA4715778CF0790
Needs elevation . : Yes
Fuzzy . . . . . . : 24.0
Program has no publisher information but prompts the user for permission elevation.
Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
Authors name is missing in version info. This is not common to most programs.
Version control is missing. This file is probably created by an individual. This is not typical for most programs.
Time indicates that the file appeared recently on this computer.
Wenn damit soweit alles okay sein sollte hab ich nichts mehr zu beklagen. Bedanke mich recht herzlich für die schnelle Hilfe ! Grüße losprimeros |
|
25.08.2016, 20:41
| #9 | |||||||||||
| /// TB-Ausbilder | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? Servus, ja, hab mich vertippt, tut mir Leid. du hast dich wieder mit dem CHR-Konto verbunden und schon ist Chrome wieder infiziert: Zitat:
 Evtl. mal Google Chrome zurücksetzen während du mit dem Konto verbunden bist. Oder evtl. kannst du auch ein neues Konto anlegen oder dieses hier zurücksetzen, denn so holst du dir immer wieder Adware drauf. Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber. Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.  Cleanup: Alle Logs gepostet? Dann lade Dir bitte  DelFix herunter.
DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst. Starte Deinen Rechner anschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.  Absicherung: Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen: Browser Java Flash-Player PDF-Reader Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren. Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen. Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig. Sofern du noch unentschieden bist, verwende ein einziges der folgenden Antivirusprogramme mit Echtzeitscanner und stets aktueller Signaturendatenbank:
Microsoft Security Essentials (MSE) ist ab Windows 8 fest eingebaut, wenn du also Windows 8, 8.1 oder 10 und dich für MSE entschieden hast, brauchst du nicht extra MSE zu installieren. Bei Windows 7 muss es aber manuell installiert oder über die Windows Updates als optionales Update bezogen werden. Selbstverständlich ist ein legales/aktiviertes Windows Voraussetzung dafür. Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen. Optional:  Adblock Plus Kann Banner, Pop-ups, Videowerbung, Tracking und Malware-Seiten blockieren. NoScript Verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.Lade Software von einem sauberen Portal wie  .Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen. Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner . Abschließend noch ein paar grundsätzliche Bemerkungen:
Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...  und/oder das Forum mit einer kleinen Spende  unterstützen.  Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
27.08.2016, 08:49
| #10 |
| | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? Alles klar, dann werd ich Chrome wahrscheinlich erstmal vom System kicken & Firefox verwenden & falls es doch wieder zum Einsatz kommen sollte, dann mit neuem Profil. Vielen Dank nochmal, schnelle, klar verständliche Hilfe, alles wunderbar ! |
|
27.08.2016, 11:03
| #11 |
| /// TB-Ausbilder | Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? Ich bin froh, dass wir helfen konnten  In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest: Lob, Kritik und Wünsche Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank! Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM. Jeder andere bitte hier klicken und einen eigenen Thread erstellen. |
|
| Themen zu Nach Upgrade von 8 auf 8.1: potentielle Schadsoftware vorhanden ? |
| aktuelle, antivirus, anwendung, appdata, avast, code, downloader, escan, eset, folge, folgendes, found, hallo zusammen, kostenlose, link, onlinescan, problem, probleme, sommerzeit, temp, updates, upgrade, variante, version, websites |
und 
und speichere die Logdatei auf Deinem Desktop.
Linear-Darstellung
