Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.
ich hoffe dass du meine nachfragerei nicht als lästig empfindest denn ich möchte deine anweisungen auch sehr gerne verstehen....
zb.: kaspersky antivir soll ich entfernen obwohl das programm zumindest einmal täglich nach rootkit's gescannt hat und trotzdem jetzt den kaspersky tdss-killer verwenden.
das ist verwirrend für mich
hier die logfiles:
Code:
ATTFilter
13:35:22.0068 0x1cdc TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
13:35:29.0287 0x1cdc ============================================================
13:35:29.0287 0x1cdc Current date / time: 2018/06/12 13:35:29.0287
13:35:29.0287 0x1cdc SystemInfo:
13:35:29.0287 0x1cdc
13:35:29.0287 0x1cdc OS Version: 10.0.17134 ServicePack: 0.0
13:35:29.0287 0x1cdc Product type: Workstation
13:35:29.0287 0x1cdc ComputerName: DESKTOP-5S3R67R
13:35:29.0287 0x1cdc UserName: Peter
13:35:29.0287 0x1cdc Windows directory: C:\WINDOWS
13:35:29.0287 0x1cdc System windows directory: C:\WINDOWS
13:35:29.0287 0x1cdc Running under WOW64
13:35:29.0287 0x1cdc Processor architecture: Intel x64
13:35:29.0287 0x1cdc Number of processors: 4
13:35:29.0287 0x1cdc Page size: 0x1000
13:35:29.0287 0x1cdc Boot type: Normal boot
13:35:29.0287 0x1cdc CodeIntegrityOptions = 0x00000001
13:35:29.0287 0x1cdc ============================================================
13:35:29.0896 0x1cdc KLMD registered as C:\WINDOWS\system32\drivers\90153483.sys
13:35:29.0896 0x1cdc KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 17134.1, osProperties = 0x19
13:35:29.0990 0x1cdc System UUID: {10166016-2D0A-3919-571C-E1C7D5C30E17}
13:35:30.0412 0x1cdc Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:35:30.0428 0x1cdc ============================================================
13:35:30.0428 0x1cdc \Device\Harddisk0\DR0:
13:35:30.0428 0x1cdc MBR partitions:
13:35:30.0428 0x1cdc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2D0CAB1E
13:35:30.0459 0x1cdc \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2D292D68, BlocksNum 0xD0F1A9F
13:35:30.0459 0x1cdc ============================================================
13:35:30.0490 0x1cdc C: <-> \Device\Harddisk0\DR0\Partition1
13:35:30.0521 0x1cdc D: <-> \Device\Harddisk0\DR0\Partition2
13:35:30.0521 0x1cdc ============================================================
13:35:30.0521 0x1cdc Initialize success
13:35:30.0521 0x1cdc ============================================================
13:36:33.0226 0x15d0 ============================================================
13:36:33.0226 0x15d0 Scan started
13:36:33.0226 0x15d0 Mode: Manual; SigCheck; TDLFS;
13:36:33.0226 0x15d0 ============================================================
13:36:33.0226 0x15d0 KSN ping started
13:36:33.0304 0x15d0 KSN ping finished: true
13:36:36.0086 0x15d0 ================ Scan system memory ========================
13:36:36.0086 0x15d0 System memory - ok
13:36:36.0086 0x15d0 ================ Scan services =============================
13:36:36.0211 0x15d0 1394ohci - ok
13:36:36.0226 0x15d0 3ware - ok
13:36:36.0242 0x15d0 ACPI - ok
13:36:36.0242 0x15d0 AcpiDev - ok
13:36:36.0257 0x15d0 acpiex - ok
13:36:36.0257 0x15d0 acpipagr - ok
13:36:36.0289 0x15d0 [ 6AFFD57803BBB6FBCB483F983900A5C4, A3A87984E70C8B47F919D2633E6378F3AACCBF3E74DB3B35BB2E15D036DB36E2 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
13:36:36.0507 0x15d0 AcpiPmi - ok
13:36:36.0523 0x15d0 acpitime - ok
13:36:36.0554 0x15d0 ADP80XX - ok
13:36:36.0554 0x15d0 AFD - ok
13:36:36.0586 0x15d0 [ F267095A11A461BEF39FB180750BE801, CF90798C46892FF5225155D2C7BCC469A4A631E22919CBEDA2F4FEEF4F05E301 ] afunix C:\WINDOWS\system32\drivers\afunix.sys
13:36:36.0633 0x15d0 afunix - ok
13:36:36.0664 0x15d0 [ 0CD0F0C62414217DE9EA7EC8D425277E, FD211157B85B841D0C94B36776572FADC7425F1B0B49EACC910D3E175208A7EC ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
13:36:36.0711 0x15d0 ahcache - ok
13:36:36.0758 0x15d0 [ 2BF4DA8EC5F1A0D88D2DDE1E6821076B, B9F4D499DB4CB91576ACE4847B96F2FC770B9BCC223B5E2261B2DEC22D7651E7 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
13:36:36.0804 0x15d0 AJRouter - ok
13:36:36.0836 0x15d0 [ 9E9D78D1C179EB2E3E2282A1DC409D93, EA7486B4425A87FDDD60542AAF0812A8DB868F569886B894883702B362A05D2C ] ALG C:\WINDOWS\System32\alg.exe
13:36:36.0867 0x15d0 ALG - ok
13:36:36.0883 0x15d0 AmdK8 - ok
13:36:36.0898 0x15d0 AmdPPM - ok
13:36:36.0898 0x15d0 amdsata - ok
13:36:36.0898 0x15d0 amdsbs - ok
13:36:36.0898 0x15d0 amdxata - ok
13:36:36.0929 0x15d0 [ E4A18157BF5D8D714C05169A8A8D604C, 45D8CB25A9967D634F8331070BDFB3DF4ACB6295CF1520F9AAE8753D3BF4018A ] AppID C:\WINDOWS\system32\drivers\appid.sys
13:36:36.0945 0x15d0 AppID - ok
13:36:36.0992 0x15d0 [ F1A04835C7FA75C8215961C1095D5EBF, 45D153404E601C0CE247058B78F328DD9F7F4F6A9480132F7CE6D9A7092F63CF ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
13:36:37.0039 0x15d0 AppIDSvc - ok
13:36:37.0070 0x15d0 [ 48EA4B4CCC920D130529A1EF85388B6A, 31F69543682E70DF0A6B2A70FC7553ECEE643C554E7F8FF18A2DD09359360F8E ] Appinfo C:\WINDOWS\System32\appinfo.dll
13:36:37.0133 0x15d0 Appinfo - ok
13:36:37.0148 0x15d0 [ 769316CA5884FBBD02D45C28FE105922, 117168BFB2D8DBF1258EBA53DCE09E74000B35B7B7460251B4C46BDB9CEA709A ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
13:36:37.0179 0x15d0 applockerfltr - ok
13:36:37.0211 0x15d0 [ 78548DB096DA7BA26BAA318FE9B0CEC1, 7B8D29C457B8677E3D4FAF0C070C373CD937E852BE28C1A8313E3E9448621E8D ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
13:36:37.0336 0x15d0 AppMgmt - ok
13:36:37.0383 0x15d0 [ 922BBB78C86D1E3B34599E6513BAD2F3, 30904E54F0CE28273EC6EFE91B6237F656A158D7B976FB3322E3A25692528747 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
13:36:37.0554 0x15d0 AppReadiness - ok
13:36:37.0586 0x15d0 AppVClient - ok
13:36:37.0617 0x15d0 [ 5CD58F779237F533D5F30C294DA04C0E, 3CFEF499310AC6444369A06E604B6335D3329E1AB6E4EFBCD09BB7CA8440BB3E ] AppvStrm C:\WINDOWS\system32\drivers\AppvStrm.sys
13:36:37.0633 0x15d0 AppvStrm - ok
13:36:37.0679 0x15d0 [ A4354E3EF779E4CDC6C9D705FFBD3652, BBF11800EE6014E77C1BAA8FBFE8F551338420384E72C69579A0E8690B585D46 ] AppvVemgr C:\WINDOWS\system32\drivers\AppvVemgr.sys
13:36:37.0711 0x15d0 AppvVemgr - ok
13:36:37.0742 0x15d0 [ 467021D15ED33D9B8CD313C7631A89B6, 18703DBB3EF3192EDFEC4A64B2BA49CBD7197B1B181C991397A2626171E22331 ] AppvVfs C:\WINDOWS\system32\drivers\AppvVfs.sys
13:36:37.0758 0x15d0 AppvVfs - ok
13:36:37.0773 0x15d0 AppXSvc - ok
13:36:37.0789 0x15d0 arcsas - ok
13:36:37.0851 0x15d0 [ 44EDBC9E6F5823D2F529113C26368A9E, DD8739523C24078B90E9B00C994C1A7793539E4C945A1F728828F48ACE608005 ] AssignedAccessManagerSvc C:\WINDOWS\System32\assignedaccessmanagersvc.dll
13:36:37.0945 0x15d0 AssignedAccessManagerSvc - ok
13:36:37.0945 0x15d0 AsyncMac - ok
13:36:37.0945 0x15d0 atapi - ok
13:36:37.0976 0x15d0 AudioEndpointBuilder - ok
13:36:37.0976 0x15d0 Audiosrv - ok
13:36:37.0992 0x15d0 [ D7BFD86F7A9ABE39351199869D093110, 90BB2C0A8185D3982FEFAC7C1E18783AF949EBECA3B9E44DCF89E2FD5FD6AA0C ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
13:36:38.0023 0x15d0 AxInstSV - ok
13:36:38.0039 0x15d0 b06bdrv - ok
13:36:38.0070 0x15d0 [ 982FAA5686F67BFEF3E6094705C2621F, 02456312B0FD0ABE7B7EEC0FB385268AF34DDB5F13AF934F96FCA7C32EA51447 ] bam C:\WINDOWS\system32\drivers\bam.sys
13:36:38.0101 0x15d0 bam - ok
13:36:38.0101 0x15d0 BasicDisplay - ok
13:36:38.0101 0x15d0 BasicRender - ok
13:36:38.0179 0x15d0 [ 15971E9AE43AA92C6A527622F36C41A0, DD3F0B5F6231A0C32AE7135ECB5ACABD495801C0D5673D76821EA06112ED83F5 ] BcastDVRUserService C:\WINDOWS\System32\BcastDVRUserService.dll
13:36:38.0383 0x15d0 BcastDVRUserService - ok
13:36:38.0461 0x15d0 bcmfn2 - ok
13:36:38.0523 0x15d0 [ 255D1EA1F4EDA1B7B28A88581F12A1CE, 5B2D7F2EFA7BB539719890CF2E45568C544DD0EECEC44BBA56CCECB792E8BC44 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
13:36:38.0695 0x15d0 BDESVC - ok
13:36:38.0726 0x15d0 [ 9B068DF7B7B3DDF768D06DFD69B49FD0, DC2CD3A70506AEB1BCEB207A9B06657806E72C5432FA605FF9C6F11516F38132 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
13:36:38.0773 0x15d0 Beep - ok
13:36:38.0804 0x15d0 BFE - ok
13:36:38.0820 0x15d0 [ BC1E5F20251E0AFDB955E7D91093B619, 5642E6B6CA6DBC8585834790A70CFF54252A631A9EA06D28F28EF7430FA42BE5 ] bindflt C:\WINDOWS\system32\drivers\bindflt.sys
13:36:38.0836 0x15d0 bindflt - ok
13:36:38.0929 0x15d0 [ 97F4C0B9741E06BAC6AD2D93ABCEAED8, 25FD58F4BA2F8EC99241A580352D1EC49924829C61D89353B30CCEEE2CEBADE7 ] BITS C:\WINDOWS\System32\qmgr.dll
13:36:39.0039 0x15d0 BITS - ok
13:36:39.0086 0x15d0 [ 30D75769E23CCFBE13DB41FC54243BB1, 4ED018F1DB103D3F354D8EF7DFE797028DBDF22294D355F6D38DF9C6AF61B69E ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
13:36:39.0117 0x15d0 BluetoothUserService - ok
13:36:39.0132 0x15d0 bowser - ok
13:36:39.0211 0x15d0 [ 53C4AF4DA254AED8D3EEBA4A319960FA, 707D27136D96044C2C964F34731D43CF94C583059414CFD9033276F999D4BEC0 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
13:36:39.0257 0x15d0 BrokerInfrastructure - ok
13:36:39.0320 0x15d0 [ 85F5808D19879E1803E46405090F29C8, E22E73BCE3B76BFBAC712DF1E5D7D38E189B80D1CE6E9A9AB3C94733CF18F04B ] BTAGService C:\WINDOWS\System32\BTAGService.dll
13:36:39.0367 0x15d0 BTAGService - ok
13:36:39.0429 0x15d0 [ 063E91CD2CB1C372459FD6FBC02509E7, 29319290F73D8D87323584D938FBC86400AB37455E7E058A543A77F9BBF4579D ] BthAvctpSvc C:\WINDOWS\System32\BthAvctpSvc.dll
13:36:39.0476 0x15d0 BthAvctpSvc - ok
13:36:39.0523 0x15d0 [ 02FEC31842DD153D966AC227B6DDF8BB, 90EEEA049212E5FE8EFA2ACED45DFB6ABAFEA6D40FB4E1E2681F65A417237163 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
13:36:39.0539 0x15d0 BthHFEnum - ok
13:36:39.0586 0x15d0 [ A0EC1D5C937995A2C5F1179538A8A6B4, CBFBDF2D8305BD72FFF64AAAB31EB5D5B8ADE537C35AC63DC3F6ADCBF96B3659 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
13:36:39.0632 0x15d0 BTHMODEM - ok
13:36:39.0742 0x15d0 [ 1EB49C9E2716D4924460B2FAA295E313, B96D39479BFD2ABCD3A3BB8897EAD7C5A03DFFD7266E82A1FBA0E7FEAF73E4B8 ] bthserv C:\WINDOWS\system32\bthserv.dll
13:36:39.0789 0x15d0 bthserv - ok
13:36:39.0820 0x15d0 bttflt - ok
13:36:39.0851 0x15d0 buttonconverter - ok
13:36:39.0898 0x15d0 [ 9983FF8D9834F2E67787F4BDC42A8E36, 85260F4A657D657ACD394339DFDDE814AD6BCA65712EAD943833BE7AB0937C8D ] CAD C:\WINDOWS\System32\drivers\CAD.sys
13:36:39.0929 0x15d0 CAD - ok
13:36:39.0976 0x15d0 [ 91EACB2FCD384C2D71EAF2BAB3FAA5C5, A3BB724570A9E882E8E6AF8CF29BC03DB77B3D31B87DDF6187C101E1B9C2617F ] camsvc C:\WINDOWS\system32\CapabilityAccessManager.dll
13:36:40.0023 0x15d0 camsvc - ok
13:36:40.0023 0x15d0 CapImg - ok
13:36:40.0070 0x15d0 [ 1200CA82E0D59510F69B6839540A76AA, A24E0098D279B04734558032A95EEBED0F20422AF8C62783E46FDEE0DA39F94E ] CaptureService C:\WINDOWS\System32\CaptureService.dll
13:36:40.0148 0x15d0 CaptureService - ok
13:36:40.0179 0x15d0 cdfs - ok
13:36:40.0242 0x15d0 [ 0942C87ED45B1E227032AD154105F79B, A0A40589B9C399061C1C46247609CA514DCD21DDF1E7FCEE19F0CE75D0FC7996 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
13:36:40.0289 0x15d0 CDPSvc - ok
13:36:40.0336 0x15d0 [ 9FBF5849A6F51E3B3F8AF2A4171648DA, 7422BC5C87075F5008E6364C8AFAA794AB17CA2DC238DC00F377B942B6FCDC11 ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
13:36:40.0367 0x15d0 CDPUserSvc - ok
13:36:40.0398 0x15d0 cdrom - ok
13:36:40.0445 0x15d0 [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
13:36:40.0492 0x15d0 CertPropSvc - ok
13:36:40.0507 0x15d0 cht4iscsi - ok
13:36:40.0507 0x15d0 cht4vbd - ok
13:36:40.0539 0x15d0 [ 3AA86DA04A561E8162C2DBBF92D12074, 9CB67299BEC25F2B357DDAA5A36B3464193B8BDAB4DCFAE0CD4315911027E409 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
13:36:40.0554 0x15d0 circlass - ok
13:36:40.0601 0x15d0 [ 5619FC2A3AE4F43D4B20D95472ED948E, A5D530FB6AC493FC01489A1D32C311F7D28F0D7B49C950E71F4ADF4FBA302689 ] CldFlt C:\WINDOWS\system32\drivers\cldflt.sys
13:36:40.0648 0x15d0 CldFlt - ok
13:36:40.0664 0x15d0 CLFS - ok
13:36:40.0711 0x15d0 [ 5BD85187D6A6A37D2A4563F33D7A76E4, 6FF434BE93259229E0EA64EC1B6E09B1B814C2A467FC2859B94C79549E2F114C ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
13:36:40.0867 0x15d0 ClipSVC - ok
13:36:40.0914 0x15d0 CmBatt - ok
13:36:40.0914 0x15d0 CNG - ok
13:36:40.0945 0x15d0 [ 037DCC7A71938729CB12E8174E03031C, 1BA2F74F639BF8D5BB38AA658A6D847BAE8D85CF72C4AD5F13BBA1D53145789F ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
13:36:40.0961 0x15d0 cnghwassist - ok
13:36:41.0039 0x15d0 [ E40C99A3E0FFF49687F2187BF3E3050D, 30723EC5767C3F6FAA3CF299440B71B5973F890FB54B9737B96FA0359E7D90FA ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys
13:36:41.0086 0x15d0 CompositeBus - ok
13:36:41.0101 0x15d0 COMSysApp - ok
13:36:41.0117 0x15d0 condrv - ok
13:36:41.0148 0x15d0 CoreMessagingRegistrar - ok
13:36:41.0179 0x15d0 CryptSvc - ok
13:36:41.0226 0x15d0 [ 87463F1AE447874675F1CBB55CBF7136, 83DB34BD3D9C335541B4A5552E51BB5388654C3B8EB06B28953859225BBF7B1D ] CSC C:\WINDOWS\system32\drivers\csc.sys
13:36:41.0289 0x15d0 CSC - ok
13:36:41.0336 0x15d0 [ E20EC7EA6EEF16B5780B459FBA86C521, 52CAAB13F1B1E99097E4996432943260417F519E6F4D232A0CFE0259C8BCAECF ] CscService C:\WINDOWS\System32\cscsvc.dll
13:36:41.0382 0x15d0 CscService - ok
13:36:41.0414 0x15d0 [ 8711386E9B04357F8F58166760759F3A, 8912CFD220645002C9D3F9E49717D8B0B98704380B45F53D45D5674537B496FF ] dam C:\WINDOWS\system32\drivers\dam.sys
13:36:41.0429 0x15d0 dam - ok
13:36:41.0445 0x15d0 DcomLaunch - ok
13:36:41.0461 0x15d0 defragsvc - ok
13:36:41.0507 0x15d0 [ 8DF502E8116C625387DD789936D7A0C2, D42661E068F401199FAEA012C200EEF02C1409A09DACD30E6B08E3FBE4149BFA ] DeviceAssociationService C:\WINDOWS\system32\das.dll
13:36:41.0554 0x15d0 DeviceAssociationService - ok
13:36:41.0570 0x15d0 DeviceInstall - ok
13:36:41.0617 0x15d0 [ 38D6ED38A46F815C24C5656E8A5AB083, 730DD6D85771A60E5C089BF5D810E3AEA335BF7DD14FD72924A1A4FCF021A59D ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
13:36:41.0679 0x15d0 DevicePickerUserSvc - ok
13:36:41.0742 0x15d0 [ 372BD821867225F32DE87A6B3FEC8A2E, 20389A1861B5A451EE3383F68FC59B3C9A75D3123B2DF1669CBB5CC37A0128B0 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
13:36:41.0820 0x15d0 DevicesFlowUserSvc - ok
13:36:41.0961 0x15d0 [ C48C4D6B8D9C53F0399DEDA402A6FAE5, 25FBE2A51DCF7DB95AD2707502F8A9661B94FC61DFC405DA5BF23BED1BA123D2 ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
13:36:42.0023 0x15d0 DevQueryBroker - ok
13:36:42.0039 0x15d0 Dfsc - ok
13:36:42.0054 0x15d0 Dhcp - ok
13:36:42.0101 0x15d0 diagnosticshub.standardcollector.service - ok
13:36:42.0148 0x15d0 [ 6EC6BB6EF31C85FD72D14BE4A1BD1B03, E027124AD492ED22F0D604030CB0E2C3778331879FC73A614644FA8C8606ADD3 ] diagsvc C:\WINDOWS\system32\DiagSvc.dll
13:36:42.0211 0x15d0 diagsvc - ok
13:36:42.0226 0x15d0 DiagTrack - ok
13:36:42.0242 0x15d0 Disk - ok
13:36:42.0304 0x15d0 [ 89FC056F9CEFB85FC7159AA063904AFF, 6B6F86F87C48EE92F616D4EEE624C9711D0606FD651F3B1D4DD5EF3767B76750 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
13:36:42.0351 0x15d0 DmEnrollmentSvc - ok
13:36:42.0367 0x15d0 dmvsc - ok
13:36:42.0398 0x15d0 [ 8B3601E34BD1D693598F968D70361C37, 897C5AEB5ED6AC9DAB2E8E638A42FF588AF3A94EE4C731E97DFAB89BD3B658BC ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
13:36:42.0461 0x15d0 dmwappushservice - ok
13:36:42.0476 0x15d0 Dnscache - ok
13:36:42.0492 0x15d0 [ C79E79CD4DE45EC0EC0ECB5C76D6CB11, C1AFCA79A104EDF5C59C3E6A113467C7F73E84AACEDE97A22BCBA5B25563E163 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
13:36:42.0539 0x15d0 dot3svc - ok
13:36:42.0586 0x15d0 [ 5B1EF28DE7302A6BD5DF8459E2C598EF, F2292B8ED8FBFFA681942D5566BF1932D1E9B4F44C2D13329B60E5A8B9386CC9 ] DPS C:\WINDOWS\system32\dps.dll
13:36:42.0617 0x15d0 DPS - ok
13:36:42.0617 0x15d0 drmkaud - ok
13:36:42.0664 0x15d0 [ 5242DC5849014BCFBB3147B76A899783, 759542B42D9DCC224D9CBD19A0C6B8939417F2F08B547BE07FFA3356918C1ED7 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
13:36:42.0711 0x15d0 DsmSvc - ok
13:36:42.0742 0x15d0 [ A8923D6A577D176A90A36A9EC0BD4BCB, 5EC87DA3DF7F1869D9542416651606C7731F4D1BDEC42C8A0D5285292EC7EF7C ] DsSvc C:\WINDOWS\System32\DsSvc.dll
13:36:42.0789 0x15d0 DsSvc - ok
13:36:42.0820 0x15d0 [ 974BC06C0EC847EA4DC8D9002D394FEB, 4952FEADD7A3EF541FD537EBBCD56ED573D712755798C42428E78267E50BAB34 ] DusmSvc C:\WINDOWS\System32\dusmsvc.dll
13:36:42.0851 0x15d0 DusmSvc - ok
13:36:42.0867 0x15d0 DXGKrnl - ok
13:36:42.0914 0x15d0 Eaphost - ok
13:36:42.0914 0x15d0 ebdrv - ok
13:36:42.0929 0x15d0 EFS - ok
13:36:42.0945 0x15d0 EhStorClass - ok
13:36:42.0945 0x15d0 EhStorTcgDrv - ok
13:36:42.0976 0x15d0 [ 80D5BD4804C587B21A121566549A63FB, 9BDC1DEB8805E06851F2E2A8B8762265FDC6B12B873D391BFCB8300BDF425B36 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
13:36:43.0007 0x15d0 embeddedmode - ok
13:36:43.0054 0x15d0 [ 8BDB4EB138A93B9C4242D5ADC068899A, 528C0D16CE5D9A69EA75C43DC53D14F7BD2D8BB0B0B0F32BB1F36AC6659C6A27 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
13:36:43.0117 0x15d0 EntAppSvc - ok
13:36:43.0117 0x15d0 ErrDev - ok
13:36:43.0195 0x15d0 [ 9B538A1E44E1D61FA80E80EA75A085FA, 6431BBC533895BD466879C407B9BE7EB50345D666FEE69CAB0813283F07DBE82 ] EventSystem C:\WINDOWS\system32\es.dll
13:36:43.0257 0x15d0 EventSystem - ok
13:36:43.0273 0x15d0 exfat - ok
13:36:43.0273 0x15d0 fastfat - ok
13:36:43.0304 0x15d0 [ BBD6407DA3DA4FC718710587E253C7BF, 8C9995A86EF9FC1FB47ADA1367A67A9829E0E3CE191D11E0AFB0F85E325D48DC ] Fax C:\WINDOWS\system32\fxssvc.exe
13:36:43.0429 0x15d0 Fax - ok
13:36:43.0445 0x15d0 fdc - ok
13:36:43.0476 0x15d0 [ A2037943CCC079307A383C5543607CEF, 2FAC5F76526A8E4D7D7FAE80F9A0AF31D37DD12FF597769C87912B973C339BF4 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
13:36:43.0507 0x15d0 fdPHost - ok
13:36:43.0554 0x15d0 [ C11A1A9CF331B7AA2F04974EE262EC07, AA1C79FCCDEC3C7236B7BE73E6888D7DD5642EB16E13B4633C98EE34CB72A644 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
13:36:43.0601 0x15d0 FDResPub - ok
13:36:43.0632 0x15d0 [ 71CECDA2DCF81E0AD8C30440C77966E2, E26313CD895579A9F3380A648E6FC271EFED0E82C0FCFB287049C5C2D0CC35A9 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
13:36:43.0679 0x15d0 fhsvc - ok
13:36:43.0711 0x15d0 [ 9BC7FE262AF52B341048234809AA7D91, DF95BBEB59821357C69797AC659380C9F27C11B8A60A599C9A2C5623B7CBB6DB ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
13:36:43.0742 0x15d0 FileCrypt - ok
13:36:43.0757 0x15d0 FileInfo - ok
13:36:43.0773 0x15d0 Filetrace - ok
13:36:43.0773 0x15d0 flpydisk - ok
13:36:43.0789 0x15d0 FltMgr - ok
13:36:43.0789 0x15d0 FontCache - ok
13:36:43.0882 0x15d0 FontCache3.0.0.0 - ok
13:36:43.0945 0x15d0 [ 4B5B18BF7E060A7FC7B80D79D542529C, 483E4D96D2E44A135FAD3B9D1AFA05B571418B3BA9864BE751DDA1DAE9D02D77 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
13:36:44.0007 0x15d0 FrameServer - ok
13:36:44.0023 0x15d0 FsDepends - ok
13:36:44.0023 0x15d0 Fs_Rec - ok
13:36:44.0023 0x15d0 fvevol - ok
13:36:44.0054 0x15d0 [ 71DBED7FB264DB60341BC796EC2E8135, DBD29794A45AEFB16A5765D03962B311CB061D1EB8A281C5F34DABF39C66A3B2 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
13:36:44.0132 0x15d0 gencounter - ok
13:36:44.0132 0x15d0 genericusbfn - ok
13:36:44.0148 0x15d0 GPIOClx0101 - ok
13:36:44.0164 0x15d0 gpsvc - ok
13:36:44.0179 0x15d0 [ 508614CAC7BF8AEE4FB9002A413919B1, F60DE0236B0453FC99473A09A7FAC1140831E581C08F3F5C440F5EFCD30943AB ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
13:36:44.0211 0x15d0 GpuEnergyDrv - ok
13:36:44.0242 0x15d0 [ 248739BB0F3A1156A2C0AF51F39A9EA2, A94C43658BCCC88C2D229F40F5C03CA5839A2EAFD57CA088E3E85EB9264CCA3E ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
13:36:44.0273 0x15d0 GraphicsPerfSvc - ok
13:36:44.0289 0x15d0 HdAudAddService - ok
13:36:44.0304 0x15d0 HDAudBus - ok
13:36:44.0336 0x15d0 [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
13:36:44.0367 0x15d0 HECIx64 - ok
13:36:44.0382 0x15d0 HidBatt - ok
13:36:44.0414 0x15d0 [ 33346BD26BB0AE4361DF1ED00D2876CF, 1777169606573646F7E7D54E01E421F62479DF57FAE86005B1EEFDC06F4898B7 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
13:36:44.0445 0x15d0 HidBth - ok
13:36:44.0461 0x15d0 hidi2c - ok
13:36:44.0461 0x15d0 hidinterrupt - ok
13:36:44.0492 0x15d0 [ 1553DF41F4EE4F60B4BEEEC62264BE71, 46AE8357E8038D35ADB82A51ED421293D7AB18C926C713F19149B97400D4C65E ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
13:36:44.0507 0x15d0 HidIr - ok
13:36:44.0539 0x15d0 hidserv - ok
13:36:44.0539 0x15d0 HidUsb - ok
13:36:44.0554 0x15d0 HpSAMD - ok
13:36:44.0554 0x15d0 HTTP - ok
13:36:44.0586 0x15d0 [ 9E1F3BA540DB9F4942A3F50A92E5754F, 3FF53B60DC52886D6F2EC7F9D8C12009A4BECE5A046D827BC8C941E7401ED000 ] hvcrash C:\WINDOWS\System32\drivers\hvcrash.sys
13:36:44.0586 0x15d0 hvcrash - ok
13:36:44.0632 0x15d0 [ 64A94654E5703D2E8830AA2500D8F0A4, A1E3C910DFF1485E412F01076A11B9441161224C0F08A9067082A9FD8A5D8E5B ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
13:36:44.0648 0x15d0 HvHost - ok
13:36:44.0695 0x15d0 [ 621042C19113527CF8FA89F3454576BF, AB072C44B9BA8CD3AFE0DA33E42A69210AE87F4314FA3A0DF984DDF12516F063 ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
13:36:44.0726 0x15d0 hvservice - ok
13:36:44.0742 0x15d0 [ B149905CD7451160B6BFA2191A3F6182, A706E4F12963A20F9767D8730973282B5830D97A087ADA8CA9B7D219513C127F ] HwNClx0101 C:\WINDOWS\system32\Drivers\mshwnclx.sys
13:36:44.0789 0x15d0 HwNClx0101 - ok
13:36:44.0804 0x15d0 hwpolicy - ok
13:36:44.0820 0x15d0 hyperkbd - ok
13:36:44.0820 0x15d0 HyperVideo - ok
13:36:44.0820 0x15d0 i8042prt - ok
13:36:44.0835 0x15d0 iagpio - ok
13:36:44.0835 0x15d0 iai2c - ok
13:36:44.0835 0x15d0 iaLPSS2i_GPIO2 - ok
13:36:44.0867 0x15d0 iaLPSS2i_GPIO2_BXT_P - ok
13:36:44.0867 0x15d0 iaLPSS2i_I2C - ok
13:36:44.0867 0x15d0 iaLPSS2i_I2C_BXT_P - ok
13:36:44.0867 0x15d0 iaLPSSi_GPIO - ok
13:36:44.0882 0x15d0 iaLPSSi_I2C - ok
13:36:44.0882 0x15d0 iaStorAVC - ok
13:36:44.0882 0x15d0 iaStorV - ok
13:36:44.0882 0x15d0 ibbus - ok
13:36:44.0961 0x15d0 [ F8CFDD8FED56E1261367A81A731BC1C0, 408187B2E7B403B47AF0D4BF089439D9BA3B3090A430983F77A55DEF2AB381DB ] icssvc C:\WINDOWS\System32\tetheringservice.dll
13:36:44.0992 0x15d0 icssvc - ok
13:36:45.0336 0x15d0 [ E6D200304A8D739597678807820ABB43, 05194D2625F48C5065318C28B242A03A1C3BDC441087DAFF777203506CE4CF6E ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
13:36:45.0929 0x15d0 igfx - ok
13:36:46.0039 0x15d0 [ C5E4602D85029C666A42890A3B2DFA45, 0D462704C507A83CB447AA0DF8A9FFAE2A16DD2D6882798E26C03F8B2C8A2C62 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
13:36:46.0054 0x15d0 IJPLMSVC - ok
13:36:46.0070 0x15d0 IKEEXT - ok
13:36:46.0101 0x15d0 [ AA38C19A3D65E8228D822EB18037E19D, 54943929E398C67A5A9C72EA65F0FD7A06BB43F03A2291CAEA29443CD10C5169 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
13:36:46.0132 0x15d0 IndirectKmd - ok
13:36:46.0226 0x15d0 [ CC03A8D6443D1BB148A499366612683E, 1EF1A69B60CAB33F63C9A58B2DA0B0FCD8F21AA122F4CE8D953682C20A4BA585 ] InstallService C:\WINDOWS\system32\InstallService.dll
13:36:46.0304 0x15d0 InstallService - ok
13:36:46.0304 0x15d0 intelide - ok
13:36:46.0351 0x15d0 [ E6CC7C1E7CEDC81D6B15BF2CF4C99109, 1B181F55CD2E500468FE07C9BA6F20B207FA4B601C4971D1551B80A480D42EBD ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
13:36:46.0382 0x15d0 intelpep - ok
13:36:46.0398 0x15d0 intelppm - ok
13:36:46.0429 0x15d0 [ 917931A6116F03DB3CA56CFCE8634667, 27B661B6143F4AE94BF28DE1133001F95A451C18804F6DFED1D7D1F36B5E5350 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
13:36:46.0445 0x15d0 iorate - ok
13:36:46.0476 0x15d0 [ FB72A49FAD5C343C8C38948F92D87BBF, 3947D9393D6F4F104D2D07D5FBA61041A8D6006BE2497F2A6337462F8B04A124 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:36:46.0554 0x15d0 IpFilterDriver - ok
13:36:46.0617 0x15d0 [ 9064A49C03F1CED42EAC2B4636C87192, CF388E05EA782BC0645FD0B42A41C9334C074BE6D7C193FA4F9819905CBCEA9C ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
13:36:46.0679 0x15d0 iphlpsvc - ok
13:36:46.0679 0x15d0 IPMIDRV - ok
13:36:46.0726 0x15d0 [ 7408B83959A4B8271EF67FD06A6B366B, C22DDB76AC3351A50B889AD7D2756EF8612450AC8EE72C88A1044691A0071BE5 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
13:36:46.0742 0x15d0 IPNAT - ok
13:36:46.0789 0x15d0 [ 7BEA2228C81FB6E1EADDD54D615B4C7E, 8640865C98F951B1B8D99E841D9A3FDC6E0251AFAC6B02F815DC409627A50112 ] IPT C:\WINDOWS\System32\drivers\ipt.sys
13:36:46.0820 0x15d0 IPT - ok
13:36:46.0851 0x15d0 [ AD0574F12AA812340BD39071FD30AD1E, 765F1EDFEDEA1F2728108D7A1187A468F529A883886006F74DB9EAD0BFE7B1B6 ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
13:36:46.0898 0x15d0 IpxlatCfgSvc - ok
13:36:46.0929 0x15d0 [ 030AE3773151CFA728C67E38416FAD8D, 167E698035F2F07E822B430B31F02FABF3997BAC93039786747053344CE6E6D3 ] irda C:\WINDOWS\system32\drivers\irda.sys
13:36:46.0976 0x15d0 irda - ok
13:36:47.0007 0x15d0 [ 79D02DC54AB4F85D2C13A728A0E36193, 3B6BA678ED269195D506D29EBD9E070603F02AC0FAA92364E7C553B8856C3EDB ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
13:36:47.0039 0x15d0 IRENUM - ok
13:36:47.0070 0x15d0 [ 6ADE9DCAF71DCD888320CA47DB8B05EF, 6FA1EBB3D025546AAD14D968DF7CABD3002598F2F561CCC1D4F07A9B0322DE02 ] irmon C:\WINDOWS\System32\irmon.dll
13:36:47.0101 0x15d0 irmon - ok
13:36:47.0132 0x15d0 isapnp - ok
13:36:47.0132 0x15d0 iScsiPrt - ok
13:36:47.0132 0x15d0 ItSas35i - ok
13:36:47.0148 0x15d0 k57nd60a - ok
13:36:47.0164 0x15d0 kbdclass - ok
13:36:47.0164 0x15d0 kbdhid - ok
13:36:47.0164 0x15d0 kdnic - ok
13:36:47.0179 0x15d0 KeyIso - ok
13:36:47.0179 0x15d0 KSecDD - ok
13:36:47.0195 0x15d0 KSecPkg - ok
13:36:47.0210 0x15d0 ksthunk - ok
13:36:47.0273 0x15d0 [ C4151271434A490707B4FD4E6AAE9EED, DDB809D002039645CDED08322B9CDCA04C483A119380098FF9EBA998A1A3811D ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
13:36:47.0336 0x15d0 KtmRm - ok
13:36:47.0367 0x15d0 LanmanServer - ok
13:36:47.0367 0x15d0 LanmanWorkstation - ok
13:36:47.0414 0x15d0 [ C2A49E8EEE7C3D06ECA80847A42F65D5, E1559EF96E6F2146E4AC0BE46CBFF5FA29829812A64A6F09803C00E3E0AAB1F0 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
13:36:47.0461 0x15d0 lfsvc - ok
13:36:47.0507 0x15d0 [ DB8F10ED986BFE0A5B663A1D067F2CCC, 88EE540F545C8838E9F855094A2A4AAC096BD24F77103E06464CCD77C3FCFFFD ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
13:36:47.0539 0x15d0 LicenseManager - ok
13:36:47.0570 0x15d0 [ 3CF979AFF0196DF3DF5E54DFC049EB1F, FEA82EF2AA4222171E80548EB00A4F0FBD27363B84AA9E6B8F82147C568BADEE ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
13:36:47.0601 0x15d0 lltdio - ok
13:36:47.0664 0x15d0 [ D6DD748EAC3BC540CFE65C73FE20C099, 8A79E1F1834D949D027B4D3471297ADFB539B9282DE5DF5FDBE60AE171F3CFFC ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
13:36:47.0711 0x15d0 lltdsvc - ok
13:36:47.0742 0x15d0 lmhosts - ok
13:36:47.0742 0x15d0 LSI_SAS - ok
13:36:47.0757 0x15d0 LSI_SAS2i - ok
13:36:47.0757 0x15d0 LSI_SAS3i - ok
13:36:47.0757 0x15d0 LSI_SSS - ok
13:36:47.0757 0x15d0 LSM - ok
13:36:47.0789 0x15d0 [ E86400D7B6E095E89CF63667D94D3F50, 4E30374B82FB1D8904B9803109C4557C565023FA94C7AE61BB2ADAAACAE0E179 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
13:36:47.0820 0x15d0 luafv - ok
13:36:47.0851 0x15d0 [ 07514F5635999D7DDB5F3A62B5C5AEB3, D3717437D14C36873E2D0C1AA65F29EB9A5DB1DE60A7EE86A093FD126B7EBC05 ] LxpSvc C:\WINDOWS\System32\LanguageOverlayServer.dll
13:36:47.0882 0x15d0 LxpSvc - ok
13:36:47.0914 0x15d0 [ 1C1FF36E51F73989FB4DD2DBAFAE11EC, B5C0B169BFEF5FD769745F924B3F30C960A555F8B0C0C7315B273435D9F246D5 ] MapsBroker C:\WINDOWS\System32\moshost.dll
13:36:47.0945 0x15d0 MapsBroker - ok
13:36:47.0960 0x15d0 mausbhost - ok
13:36:47.0960 0x15d0 mausbip - ok
13:36:47.0960 0x15d0 megasas - ok
13:36:47.0976 0x15d0 megasas2i - ok
13:36:47.0976 0x15d0 megasas35i - ok
13:36:47.0976 0x15d0 megasr - ok
13:36:48.0007 0x15d0 [ 69259AFDF347B5F4AF06E900C4A1F62E, 167FF155F3E1B362A5D5FDB010A5F539F5E13CAD7E64E6F105CC770DA3639EEB ] MessagingService C:\WINDOWS\System32\MessagingService.dll
13:36:48.0039 0x15d0 MessagingService - ok
13:36:48.0054 0x15d0 mlx4_bus - ok
13:36:48.0054 0x15d0 MMCSS - ok
13:36:48.0101 0x15d0 [ CA25F2D78FDD0D36E3F3071B4B317BD4, 21B5902EF802FAFA7DC6FD737CE9888C74526983FDCE31CDFAB11630E1476FD1 ] Modem C:\WINDOWS\system32\drivers\modem.sys
13:36:48.0148 0x15d0 Modem - ok
13:36:48.0179 0x15d0 [ 13142B3B30F633F407D5256B2FFCCEF0, 0A8DD229FD752E8B7E1D11E1A066BCF8B3E2023068AD731FF23ACBF4D182D23D ] monitor C:\WINDOWS\System32\drivers\monitor.sys
13:36:48.0226 0x15d0 monitor - ok
13:36:48.0257 0x15d0 mouclass - ok
13:36:48.0257 0x15d0 mouhid - ok
13:36:48.0273 0x15d0 mountmgr - ok
13:36:48.0320 0x15d0 [ 84F6B333A2AD8B81955F4F846BA89A39, 0457F2110D584BBEE926189126F7BDC54BD2663A7B0BA2EC89DEEC0CCDA9F2DC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:36:48.0335 0x15d0 MozillaMaintenance - ok
13:36:48.0351 0x15d0 mpsdrv - ok
13:36:48.0351 0x15d0 mpssvc - ok
13:36:48.0382 0x15d0 [ 1E49E45D68E4E7779B9E36F39407C5D9, 08E422BE41A69EE3D9AC482DED2A35D0EF1F366CCC7E6675720479D28E23B6A8 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
13:36:48.0414 0x15d0 MRxDAV - ok
13:36:48.0414 0x15d0 mrxsmb - ok
13:36:48.0414 0x15d0 mrxsmb20 - ok
13:36:48.0445 0x15d0 [ F14DE177087F9E990EDE95ACE1F94662, E0B8C7DAF8C13CAD08B974D681981038E33ED8871717C550477EDCFD05A3B96D ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
13:36:48.0476 0x15d0 MsBridge - ok
13:36:48.0507 0x15d0 [ 9A94F32C1DC90A7E5A35D0F820A8FB1D, 4CAFCE804D9135BE9CBF80307D570F24E4A102890DAB504E3DEFF3B335C9B80E ] MSDTC C:\WINDOWS\System32\msdtc.exe
13:36:48.0539 0x15d0 MSDTC - ok
13:36:48.0554 0x15d0 Msfs - ok
13:36:48.0585 0x15d0 [ 5A5ABA987943317300A4E55A5C5EB8C4, 9AC863F537BBB2D776C3F240B510DEE94BD84A7675C695D1270770609E77F65B ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
13:36:48.0617 0x15d0 msgpiowin32 - ok
13:36:48.0632 0x15d0 mshidkmdf - ok
13:36:48.0664 0x15d0 [ E12A703CE10B068727499276340D5296, 67F513A83D896DBF014D7446D66F1A1F9F0D03ADB23B57FD1A3CCC880ED50299 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
13:36:48.0695 0x15d0 mshidumdf - ok
13:36:48.0710 0x15d0 msisadrv - ok
13:36:48.0710 0x15d0 MSiSCSI - ok
13:36:48.0710 0x15d0 msiserver - ok
13:36:48.0710 0x15d0 MSKSSRV - ok
13:36:48.0742 0x15d0 [ AECFFBE104D428E8A74BCABF5B3B9912, EA94A7FA1F9BE357311E411293F4D3CC8F80ED1523BFE362DA56A3C2AC65DF58 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
13:36:48.0820 0x15d0 MsLldp - ok
13:36:48.0820 0x15d0 MSPCLOCK - ok
13:36:48.0851 0x15d0 MSPQM - ok
13:36:48.0851 0x15d0 MsRPC - ok
13:36:48.0882 0x15d0 [ 234715501CF129ECD718D70FDA074C57, C2FB3ACE1CA3EB6BAB907B2452422C9C79C0BDDD6F4AF093E9F5144AE639AB83 ] MsSecFlt C:\WINDOWS\system32\drivers\mssecflt.sys
13:36:48.0914 0x15d0 MsSecFlt - ok
13:36:48.0914 0x15d0 mssmbios - ok
13:36:48.0914 0x15d0 MSTEE - ok
13:36:48.0914 0x15d0 MTConfig - ok
13:36:48.0929 0x15d0 Mup - ok
13:36:48.0929 0x15d0 mvumis - ok
13:36:48.0929 0x15d0 NativeWifiP - ok
13:36:49.0007 0x15d0 [ B281FAC1C60FE21ED3F635ECF673A981, 6641CCBD38AEF3FA5D9EDD24F01AAB6509AD6D3927371CD7938C04B3BBC92FD1 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
13:36:49.0070 0x15d0 NaturalAuthentication - ok
13:36:49.0132 0x15d0 [ 6FEC83EDC4A3D1E99039CA1D96AD720D, F6DB011FBED10EAF8CCDC9EDDCB47F728B6B17A6A3CA5D6DB5DE50EEFE7DDD4D ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
13:36:49.0242 0x15d0 NcaSvc - ok
13:36:49.0304 0x15d0 [ C3D3E2DFBD52C48EA787604F49060A5C, 0F5E3C9E63F6421398154EF942182FE67CCCCE6DE25B1EE2A30A8E6E3C17145A ] NcbService C:\WINDOWS\System32\ncbservice.dll
13:36:49.0351 0x15d0 NcbService - ok
13:36:49.0382 0x15d0 [ 9AB04C4C14B32D127DB6E7D3DF79FF26, DAC84CBDF605C43657CDA1B95A86DC0D55E236A75BFDA3041472C5D6222EB025 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
13:36:49.0398 0x15d0 NcdAutoSetup - ok
13:36:49.0429 0x15d0 ndfltr - ok
13:36:49.0429 0x15d0 NDIS - ok
13:36:49.0460 0x15d0 [ AF73B18F3096B165A6F4417C5ED36B01, B0FA9E52D7208F756103E2E853F1D17F594C9FDD2E76304743C581613E612449 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
13:36:49.0492 0x15d0 NdisCap - ok
13:36:49.0539 0x15d0 [ 1A9B1F5B8B131CE461A01C9424E149D7, 66E3F49308DF111B5D5DBF57F11A05E0B9492530587E37C6729C46AED17647D3 ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
13:36:49.0570 0x15d0 NdisImPlatform - ok
13:36:49.0570 0x15d0 NdisTapi - ok
13:36:49.0570 0x15d0 Ndisuio - ok
13:36:49.0585 0x15d0 NdisVirtualBus - ok
13:36:49.0585 0x15d0 NdisWan - ok
13:36:49.0585 0x15d0 ndiswanlegacy - ok
13:36:49.0585 0x15d0 ndproxy - ok
13:36:49.0601 0x15d0 [ 0E3B0F3645D1BAE79397C66FE8AF6402, 6568FD9646FE7C7D61D280C26097583EFA2FB9F59D43340A7283BEAD3A5CC206 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
13:36:49.0632 0x15d0 Ndu - ok
13:36:49.0648 0x15d0 NetAdapterCx - ok
13:36:49.0648 0x15d0 NetBIOS - ok
13:36:49.0648 0x15d0 NetBT - ok
13:36:49.0664 0x15d0 Netlogon - ok
13:36:49.0679 0x15d0 Netman - ok
13:36:49.0710 0x15d0 [ E9931F57F05696CBF53A086449D97BF6, 986C99033AA10A258F0CC42727B14C5812BC76AB535CDF54FCA1B038C4BF9546 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
13:36:49.0773 0x15d0 netprofm - ok
13:36:49.0789 0x15d0 NetSetupSvc - ok
13:36:49.0851 0x15d0 [ 7EC8B56348F9298BCCA7A745C7F70E2C, F677CBD94ABE25AECF08ECFBBDA063A9C032C678327A0D105CB6B3E587C44C19 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:36:49.0914 0x15d0 NetTcpPortSharing - ok
13:36:49.0929 0x15d0 netvsc - ok
13:36:49.0960 0x15d0 [ 162A571ABAF9546339EE0BB482FF6AE7, E6E590B628AA65D161D7A87C9CF360D905FCC858E73EE1C4723FE217E8A91EA2 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
13:36:50.0023 0x15d0 NgcCtnrSvc - ok
13:36:50.0085 0x15d0 [ DB3589FF79F06EC1967EBA56C7249E3C, C3F1B4687F2AAE869C8566B38DCFE507F8E7201A2241BD5342AAC22A2370D5E4 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
13:36:50.0148 0x15d0 NgcSvc - ok
13:36:50.0164 0x15d0 NlaSvc - ok
13:36:50.0179 0x15d0 Npfs - ok
13:36:50.0179 0x15d0 npsvctrig - ok
13:36:50.0195 0x15d0 nsi - ok
13:36:50.0195 0x15d0 nsiproxy - ok
13:36:50.0210 0x15d0 Ntfs - ok
13:36:50.0210 0x15d0 Null - ok
13:36:50.0226 0x15d0 nvdimm - ok
13:36:50.0226 0x15d0 nvraid - ok
13:36:50.0226 0x15d0 nvstor - ok
13:36:50.0257 0x15d0 [ 9DBC464AB85AA48C9760C6C2E591E2D3, C9D718F8BE838E13F7488F1E8DAA79809340235A5BA5BF206C1C3DBF0A5DDB48 ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
13:36:50.0320 0x15d0 OneSyncSvc - ok
13:36:50.0382 0x15d0 [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
13:36:50.0460 0x15d0 p2pimsvc - ok
13:36:50.0523 0x15d0 [ CCD10679BA0D9EF549F80C458C2AD1C4, 7B433FEE4BEA69C28A98F4BFBE5FA603DB2CE1DFCF229EBB4D9B7A0FD159FF04 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
13:36:50.0554 0x15d0 p2psvc - ok
13:36:50.0585 0x15d0 Parport - ok
13:36:50.0585 0x15d0 partmgr - ok
13:36:50.0617 0x15d0 [ 0CF87FC2DA60940031D553F8FDF5066B, 95F8A15210D6F431B84C6E18643F93C9D16F53D3FF4873F9A327A77924B4B9F8 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
13:36:50.0648 0x15d0 PcaSvc - ok
13:36:50.0648 0x15d0 pci - ok
13:36:50.0648 0x15d0 pciide - ok
13:36:50.0664 0x15d0 pcmcia - ok
13:36:50.0664 0x15d0 pcw - ok
13:36:50.0664 0x15d0 pdc - ok
13:36:50.0726 0x15d0 [ 42B12A76D3C98AE69C97727E3BEC7D8A, C878A05A9817F62514432685FAA795737F628EF7258EC5C7846045E1CAB2DF6E ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
13:36:50.0773 0x15d0 PEAUTH - ok
13:36:50.0882 0x15d0 [ 05A0A1AC00A8653B49F94381872D47E7, 75B7E616D08D6D8BD964953B5CC342E72E35D8C660E2F97BD36ADA59130169F6 ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
13:36:51.0054 0x15d0 PeerDistSvc - ok
13:36:51.0085 0x15d0 percsas2i - ok
13:36:51.0085 0x15d0 percsas3i - ok
13:36:51.0148 0x15d0 [ 185100798FBD23C849DC1C00ED43D99D, 10895ADE339744BBABDFB50BE6025217C02C76B1911C2C8740A57912385B38DE ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
13:36:51.0210 0x15d0 PerfHost - ok
13:36:51.0257 0x15d0 [ 630C3D645133B759CFC0E354E2A55D11, 094465C2DB324A784EA505C9C2CF06A12326F105EF767126BBDFBFE3D081E6E0 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
13:36:51.0320 0x15d0 PhoneSvc - ok
13:36:51.0367 0x15d0 [ 807ED476A62E79935315342BD3FAA046, FF56FC79C6B6043A10C123CF85A8DDA0B8564E03D49AD5811DDCBB99823C4836 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
13:36:51.0414 0x15d0 PimIndexMaintenanceSvc - ok
13:36:51.0476 0x15d0 [ 4E614DBE28B5857F70DEBCC804629E67, B93C42FB96BBA0577CB892274905352AE4A6DE257F676D6A23CE0297F945D7E7 ] pla C:\WINDOWS\system32\pla.dll
13:36:51.0601 0x15d0 pla - ok
13:36:51.0617 0x15d0 PlugPlay - ok
13:36:51.0632 0x15d0 pmem - ok
13:36:51.0664 0x15d0 [ 99ECEDA6B2E1FDB6892FBD5AED1E5D99, C970DDDBDB4AF8C6A1AA92D780B82920B4922304649509075CF14A2AB86C3CCF ] PNPMEM C:\WINDOWS\System32\drivers\pnpmem.sys
13:36:51.0695 0x15d0 PNPMEM - ok
13:36:51.0726 0x15d0 [ 75690F495CEDBEF3D5989828AEEAE832, 3257E7261DF8F39CA4988BBED3060B9E8A5988978F66A4B1409E08F65B262FED ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
13:36:51.0773 0x15d0 PNRPAutoReg - ok
13:36:51.0804 0x15d0 [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
13:36:51.0835 0x15d0 PNRPsvc - ok
13:36:51.0851 0x15d0 PolicyAgent - ok
13:36:51.0867 0x15d0 Power - ok
13:36:51.0867 0x15d0 PptpMiniport - ok
13:36:52.0085 0x15d0 [ AD62FCEC1CB8ECD7C0E3DFD2FA79FDE4, 6372FC5E78A2DDB8AE6EB73BEB5C0D4056FB6BE9F231A36BAC37AE970F5EB247 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
13:36:52.0382 0x15d0 PrintNotify - ok
13:36:52.0414 0x15d0 [ A60202AE474E2173ED91118DD73ADAAD, 6AE315E1DD9E3B03E48B8848FCB0CDD506080F0012DE478BA99D102F91E968E6 ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
13:36:52.0445 0x15d0 PrintWorkflowUserSvc - ok
13:36:52.0460 0x15d0 Processor - ok
13:36:52.0476 0x15d0 ProfSvc - ok
13:36:52.0507 0x15d0 [ E4BF8BE7B3711BCBBC95EE983C0236F4, A71C09D83034C96F7ED4DB58F7388F8A13C7FD1A3F41FE8EEC553C42B65DFFC6 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
13:36:52.0554 0x15d0 Psched - ok
13:36:52.0585 0x15d0 [ 29F12CD3F77B65C7E37F8517395B13D2, 690517756A21B3DE4CF4A027AA712FC62DB6F5F2E89B4D2DE220A29C4A36878B ] PushToInstall C:\WINDOWS\system32\PushToInstall.dll
13:36:52.0632 0x15d0 PushToInstall - ok
13:36:52.0664 0x15d0 [ 8AB5F41584C98047ABEF490FC1E31F7E, F8480F9D9C1A60901975C529CC0911ED592834AB1068FADD88B15E6497A59221 ] QWAVE C:\WINDOWS\system32\qwave.dll
13:36:52.0710 0x15d0 QWAVE - ok
13:36:52.0726 0x15d0 [ 00F72861538B6C4E925A21BAE397A49D, 6847E2332CC8573850428CC7E3A73B2DA0274977F53BDDF7DBA68D223A501CC4 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
13:36:52.0757 0x15d0 QWAVEdrv - ok
13:36:52.0773 0x15d0 Ramdisk - ok
13:36:52.0773 0x15d0 RasAcd - ok
13:36:52.0789 0x15d0 RasAgileVpn - ok
13:36:52.0804 0x15d0 RasAuto - ok
13:36:52.0804 0x15d0 Rasl2tp - ok
13:36:52.0804 0x15d0 RasMan - ok
13:36:52.0804 0x15d0 RasPppoe - ok
13:36:52.0820 0x15d0 RasSstp - ok
13:36:52.0820 0x15d0 rdbss - ok
13:36:52.0851 0x15d0 [ 206AB796793FDBD518B82E2F308A7176, ED0DBDE7106970F217F4FB1FB184B6795A16356C879C17E0910840F64F292809 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
13:36:52.0882 0x15d0 rdpbus - ok
13:36:52.0929 0x15d0 [ 52A6CC99F5934CFAE88353C47B6193E7, 37F6991FA526036866E8CFC938A16750644AD764FA52BB102B11B5D594DB7E96 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
13:36:52.0945 0x15d0 RDPDR - ok
13:36:52.0992 0x15d0 [ 0600DF60EF88FD10663EC84709E5E245, 48572DC0C644E13BD1713E29E522763EB4E00337ACA64D1392960D17EAF8923A ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
13:36:52.0992 0x15d0 RdpVideoMiniport - ok
13:36:53.0054 0x15d0 [ 65652EFAAF4A8A59E60A2D7BE15317E8, 83A9A8506EF4769625EF0EF43B93906A6FBD9133E52C12B17A68B89DAC68D026 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
13:36:53.0085 0x15d0 rdyboost - ok
13:36:53.0085 0x15d0 ReFS - ok
13:36:53.0085 0x15d0 ReFSv1 - ok
13:36:53.0148 0x15d0 [ 980F60634FAF9C58FC468AF9AA609D68, 7BA03FE851F78D5DC9062ACEADF194ACB4F8F56C9D496B17D846CE1E4373B404 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
13:36:53.0195 0x15d0 RemoteAccess - ok
13:36:53.0242 0x15d0 [ 106E630F1B2A8BF2BBD4508D9B166406, FAFBE21EC61B97B4B825285EBA0F661382A95119E1740EE4FB9A1F6FB3C0F5F7 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
13:36:53.0289 0x15d0 RemoteRegistry - ok
13:36:53.0335 0x15d0 [ 53BE6D9C36A9CB95A1568C24D44A8A34, DD8245F87B9D4203F56595D6ABF9F1E74EA071D4B7BB0469A293CA9E20BDA246 ] RetailDemo C:\WINDOWS\system32\RDXService.dll
13:36:53.0382 0x15d0 RetailDemo - ok
13:36:53.0429 0x15d0 [ 3D4F4CCE0364CD3F1B539D2630686F24, 620EFC53D6F5279AEF4748FAE22F7239E7855D1F5C79B85F6CB54EF51C516408 ] rhproxy C:\WINDOWS\System32\drivers\rhproxy.sys
13:36:53.0460 0x15d0 rhproxy - ok
13:36:53.0492 0x15d0 [ ADA13EBD9C23C51876A5B2EADF7F2E29, D08E6A907DE5DC6F51CA71CBF7886FE7D8C6FB09154B633D86CDBE9C311361A0 ] RmSvc C:\WINDOWS\System32\RMapi.dll
13:36:53.0539 0x15d0 RmSvc - ok
13:36:53.0554 0x15d0 RpcEptMapper - ok
13:36:53.0570 0x15d0 [ 19EC4D05E01FE350B3494CEA122D64EB, 09FF60A8F22D66796257E33F4CFD6059D4A11A3173A7691718E9FE841E15ABA2 ] RpcLocator C:\WINDOWS\system32\locator.exe
13:36:53.0617 0x15d0 RpcLocator - ok
13:36:53.0617 0x15d0 RpcSs - ok
13:36:53.0648 0x15d0 [ FFFB16EF6E0B8B5F7F19B425923E7D12, 27C2882AC7B27BAC5A4051C2C9326A6D289F297158DE7A3A93E8B09378DC91AA ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
13:36:53.0664 0x15d0 rspndr - ok
13:36:53.0695 0x15d0 [ A2939E69027B97105014434BFBFF7195, 9DC09BE94415564D0E80431223BDA1C59E3555AB5267DD3F64E71D4A18C8553A ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
13:36:53.0773 0x15d0 s3cap - ok
13:36:53.0789 0x15d0 SamSs - ok
13:36:53.0804 0x15d0 sbp2port - ok
13:36:53.0851 0x15d0 [ D48F36EA4B4E8237B24E33B18D76EB2A, 128E754F15FDB00D218FB23431BF0FBDC65D64EEF294D72535B0C07EB5472136 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
13:36:53.0898 0x15d0 SCardSvr - ok
13:36:53.0945 0x15d0 [ 1B1FB3D8403E621F2B9201EF414E21D9, 5EFBEA5DC09CD5F151EF224BE2FF2C985D19301B17E5C16F5D00CB2852DAF8BF ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
13:36:53.0976 0x15d0 ScDeviceEnum - ok
13:36:53.0992 0x15d0 [ 0070C2DC6563C48EDA63A282748F3FCD, 12C8505DDD05994641B2B19666D7A54E12A21F6894913342A9BA5D148F193BE0 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
13:36:54.0038 0x15d0 scfilter - ok
13:36:54.0101 0x15d0 [ 9D13410D7B4D76AA2EA73EC8CA0E0190, 7C46D202683F34F1C07D9D297E9A239376800DC8C84FE1585FE7FC723B6EBBA0 ] Schedule C:\WINDOWS\system32\schedsvc.dll
13:36:54.0163 0x15d0 Schedule - ok
13:36:54.0163 0x15d0 scmbus - ok
13:36:54.0210 0x15d0 [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
13:36:54.0242 0x15d0 SCPolicySvc - ok
13:36:54.0242 0x15d0 sdbus - ok
13:36:54.0273 0x15d0 [ 9EF09DE84CE20B787C02395394AC2A7E, 17019B74506D26707EBC342365008A9BB5AACA381FB60ABA85F34D153FB0682C ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
13:36:54.0289 0x15d0 SDFRd - ok
13:36:54.0335 0x15d0 [ 01607A2FAB0068450A06C90AF755D57E, 9615261063475045CBC99F17BD3A4919198D0F77CA9E4EC7B13826E514BC8543 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
13:36:54.0445 0x15d0 SDRSVC - ok
13:36:54.0460 0x15d0 sdstor - ok
13:36:54.0507 0x15d0 [ 44B1F4F200B4D3AE8B53290101148AFC, 34F18FEDE525BB398371329CA9F93BD3D88C30E23FCA576978D94EC67513228C ] seclogon C:\WINDOWS\system32\seclogon.dll
13:36:54.0554 0x15d0 seclogon - ok
13:36:54.0601 0x15d0 [ 1E8CC4964FEECEE44D720A5130075F79, 75656541633FE90045183C68F4A81F1AA305E4A03CFBF7C50F226F18000924D5 ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
13:36:54.0648 0x15d0 SecurityHealthService - ok
13:36:54.0663 0x15d0 [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64 C:\WINDOWS\system32\drivers\semav6msr64.sys
13:36:54.0679 0x15d0 semav6msr64 - ok
13:36:54.0726 0x15d0 [ 7D7ED932B6417D8687D1D972989B310B, A5DF3B6CEE97DD110FD1BC542CC5A5313B2F447E5FCC40DF6EFB9D7D49CD792C ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
13:36:54.0835 0x15d0 SEMgrSvc - ok
13:36:54.0882 0x15d0 [ CA614C9FBC8307AB1DC937F3393899E2, 4833CC631FA30E4D4B45BBC2CE41DE72B332B6A1FFD23B7DBFD6EDD6BC1A2ED8 ] SENS C:\WINDOWS\System32\sens.dll
13:36:54.0929 0x15d0 SENS - ok
13:36:54.0960 0x15d0 Sense - ok
13:36:55.0179 0x15d0 [ 46AEFFC68BEAF89805B95CC6F9529C2E, 7A6A38A329E82F684191561479604142BBB35121822A5CDD828819C606F2A60A ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
13:36:55.0273 0x15d0 SensorDataService - ok
13:36:55.0320 0x15d0 [ 2B81117E9C3E20BBAA2CB5467D000F77, AC0DF8E635908026EE43EE0444DEF61481E211737A85A473D64EC8BB214D1135 ] SensorService C:\WINDOWS\system32\SensorService.dll
13:36:55.0445 0x15d0 SensorService - ok
13:36:55.0492 0x15d0 [ DF94FAAEC4CDAA3886A0169E660C984B, 54BB09459D59B5DDA24D72821840FA7A71A194EA464E09DFDE021B24CB27FCAD ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
13:36:55.0554 0x15d0 SensrSvc - ok
13:36:55.0585 0x15d0 SerCx - ok
13:36:55.0585 0x15d0 SerCx2 - ok
13:36:55.0585 0x15d0 Serenum - ok
13:36:55.0585 0x15d0 Serial - ok
13:36:55.0601 0x15d0 sermouse - ok
13:36:55.0648 0x15d0 [ 87340BC77470B34F11A9E558B591DB08, FD91561FE5951B4F59FEE23707E1ACE31293E508EF734A5CDB0F34D332EFDDF7 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
13:36:55.0710 0x15d0 SessionEnv - ok
13:36:55.0726 0x15d0 sfloppy - ok
13:36:55.0757 0x15d0 [ 1941F5CA54C469E16957587FD56ED842, D356547A9702A50AEB5F7765AC44668EEA913563A422ABBD0427EC22833A5B78 ] SgrmAgent C:\WINDOWS\system32\drivers\SgrmAgent.sys
13:36:55.0789 0x15d0 SgrmAgent - ok
13:36:55.0820 0x15d0 [ D3170A3F3A9626597EEE1888686E3EA6, 9321991C441B095DF15D24C8AE58F87EE5A3242532E8C023D0F78B2F96FEE6B7 ] SgrmBroker C:\WINDOWS\system32\SgrmBroker.exe
13:36:55.0835 0x15d0 SgrmBroker - ok
13:36:55.0882 0x15d0 [ AC1D97F89F2EC7E334A406603A686973, D230059C1CB400CCA62438603356F058B40E17DE4C7BD4DADDBB981E4F5E4C9C ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
13:36:55.0929 0x15d0 SharedAccess - ok
13:36:56.0023 0x15d0 [ 0BE15FDA358837ABD88DC72AA75C75CD, 3990FA051E7C280B446C8A749FCEE04E384230CC5E286B4E7080B1737E5730DD ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
13:36:56.0070 0x15d0 SharedRealitySvc - ok
13:36:56.0273 0x15d0 [ 63B104867F70F0D81125C37989146960, 468431098DD9B91F1C58551CEB4DBE6E1C456FFE845E302571B970EF05AE03A8 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
13:36:56.0320 0x15d0 ShellHWDetection - ok
13:36:56.0367 0x15d0 [ F6D90D09D2BCFA2B5E492BFECA40EDE4, 7B427335943C1EFDE482D59F3A23149FCD45BB014643BEF620A708720383C4A8 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
13:36:56.0398 0x15d0 shpamsvc - ok
13:36:56.0429 0x15d0 SiSRaid2 - ok
13:36:56.0429 0x15d0 SiSRaid4 - ok
13:36:56.0460 0x15d0 smphost - ok
13:36:56.0539 0x15d0 [ A3BEF2736E902B9DCA68554F4E10E08C, 5C7590D8F2D637B6D4A5F68945D8350B1C3D48EBE1B2C36658361900C9425611 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
13:36:56.0601 0x15d0 SmsRouter - ok
13:36:56.0617 0x15d0 [ 577EC13EB5215325E9B9FC51FB56A974, 1D7A0245A3C474BCD4EC69704040FB50C0E086DB1711C5B7FC4D9C4A7909DAB9 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
13:36:56.0648 0x15d0 SNMPTRAP - ok
13:36:56.0663 0x15d0 spaceport - ok
13:36:56.0695 0x15d0 [ FE1776E587227120DC04EAEC45473245, 9DEBD997D275065481EEEDD2310479F2021D53B64AA6D5CEEA70E9BB8C9856C7 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
13:36:56.0710 0x15d0 SpatialGraphFilter - ok
13:36:56.0710 0x15d0 SpbCx - ok
13:36:56.0726 0x15d0 spectrum - ok
13:36:56.0773 0x15d0 [ C05A19A38D7D203B738771FD1854656F, 3A832F3CBA33682EAA18ABB721BF2D5A6FE9AC853038C684C264700DEB52AA65 ] Spooler C:\WINDOWS\System32\spoolsv.exe
13:36:56.0835 0x15d0 Spooler - ok
13:36:57.0007 0x15d0 [ FEEC8055C5986182C717DD888000AEF6, E09B7B1DE43A226842A4B8C591D712E51585BC7E8A39CFB8852CBF16D234C3A6 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
13:36:57.0226 0x15d0 sppsvc - ok
13:36:57.0242 0x15d0 srv2 - ok
13:36:57.0242 0x15d0 srvnet - ok
13:36:57.0289 0x15d0 [ 1AEA66706573E8CCD6038369FE37F237, A62CAFE205D5B4C9F8528EDDA4E20BA4E2D1E231F2B183FE70EFE6458B2D5460 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
13:36:57.0335 0x15d0 SSDPSRV - ok
13:36:57.0413 0x15d0 [ 5EE518DFADC18573E681BB78833E93FA, E98CCD3E2ADA265D6E3CF48CDBFE5C3067E0546F179F23B77C267F65CEB978EE ] ssh-agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
13:36:57.0523 0x15d0 ssh-agent - ok
13:36:57.0523 0x15d0 SstpSvc - ok
13:36:57.0710 0x15d0 [ BDFDF0A5B3622E4320C72D5B9619C9B2, EC0B8A80302B118D6148B9B4488D3E0D220B23FFC9F28F9956F3D46265CBEF14 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
13:36:57.0913 0x15d0 StateRepository - ok
13:36:57.0929 0x15d0 stexstor - ok
13:36:57.0976 0x15d0 [ EB2C25A3700309F3F67D9334CF33A36C, 9262778566EEEA810AD32CD660DEA841797BD9F874252CC5445D917FF159280B ] stisvc C:\WINDOWS\System32\wiaservc.dll
13:36:58.0007 0x15d0 stisvc - ok
13:36:58.0023 0x15d0 storahci - ok
13:36:58.0038 0x15d0 storflt - ok
13:36:58.0038 0x15d0 stornvme - ok
13:36:58.0054 0x15d0 storqosflt - ok
13:36:58.0070 0x15d0 StorSvc - ok
13:36:58.0070 0x15d0 storufs - ok
13:36:58.0070 0x15d0 storvsc - ok
13:36:58.0085 0x15d0 svsvc - ok
13:36:58.0148 0x15d0 swenum - ok
13:36:58.0163 0x15d0 swprv - ok
13:36:58.0195 0x15d0 [ A2A42A570524C975259E3B81C4D80DCA, 4B2A6295E46DD2042B3C741D9519A0376687B30711F2DA8B9B81A039E46229F9 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
13:36:58.0273 0x15d0 Synth3dVsc - ok
13:36:58.0335 0x15d0 [ 62492FAAC26223E8A21E79A2331A3F10, 164C2650EAD344B6DFF95B8275436231E7994B7F06ACB3DA19054849BED61FD2 ] SysMain C:\WINDOWS\system32\sysmain.dll
13:36:58.0413 0x15d0 SysMain - ok
13:36:58.0429 0x15d0 SystemEventsBroker - ok
13:36:58.0476 0x15d0 [ CE9975A9E0DFBEFECECE218D2674C1CD, 20ABA9B78FF40C89A757ED2B4AE2F8BE5F4C6C257AA00A324849D68ACA59A264 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
13:36:58.0507 0x15d0 TabletInputService - ok
13:36:58.0570 0x15d0 [ E38C7C4D57B1438F70A1B913870E8665, EEBE640E31F3D9126FD2F58EB93051FE4EEA591223DFAB9E918DEBE879718B95 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
13:36:58.0617 0x15d0 TapiSrv - ok
13:36:58.0632 0x15d0 Tcpip - ok
13:36:58.0632 0x15d0 Tcpip6 - ok
13:36:58.0663 0x15d0 [ 085F8A5F09E64CC27309AF160EF4F9BA, DB3DFD3059836A9FB26FE924E9F2B960E454F4B20D8862266DFDA3168D610FD8 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
13:36:58.0679 0x15d0 tcpipreg - ok
13:36:58.0695 0x15d0 tdx - ok
13:36:58.0726 0x15d0 [ B2C4D7CB291293CAC636748E695D111E, 5E0AA8147EFDA5D21CEE8AE254F74A974B0ADAF298F569CAA73AC4E3B758438A ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
13:36:58.0757 0x15d0 terminpt - ok
13:36:58.0788 0x15d0 [ 10ADC3589E50B1ED8452C86E0CBE8248, BE82341A12EA83D9EFADC9AC35CF16D327F8499C99107DCDE88DD0F5DF84523C ] TermService C:\WINDOWS\System32\termsrv.dll
13:36:58.0867 0x15d0 TermService - ok
13:36:58.0913 0x15d0 [ 1A0A0F6A139148AFDC4622046D4B3CBD, 8FC2FB99B70A3A5B2F1D757A2F0E3085B1D242B792A35070E1DB3871A275329E ] Themes C:\WINDOWS\system32\themeservice.dll
13:36:58.0945 0x15d0 Themes - ok
13:36:58.0992 0x15d0 [ 811910E891A6DB4A864AE119EB71218C, 2CBB6159E2ACAE4BA73892A4F7F8A3981C159083C29F1A1D548C59FB713B9D74 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
13:36:59.0023 0x15d0 TieringEngineService - ok
13:36:59.0054 0x15d0 TimeBrokerSvc - ok
13:36:59.0117 0x15d0 [ 673FB0E68AADCCF840AC7A56A9B38150, A9A1CF08D544A488ECABBFBD994C3A8CEB8CFE86A098DAB8533430BABDEA27EB ] TokenBroker C:\WINDOWS\System32\TokenBroker.dll
13:36:59.0210 0x15d0 TokenBroker - ok
13:36:59.0226 0x15d0 TPM - ok
13:36:59.0257 0x15d0 [ A5C0F857C38278A90E953A24E1701196, 1A646E47013946CCE41C798A494C6D266AEFC8A8D6EB65CD8848E72106687E38 ] TrkWks C:\WINDOWS\System32\trkwks.dll
13:36:59.0304 0x15d0 TrkWks - ok
13:36:59.0382 0x15d0 TrustedInstaller - ok
13:36:59.0429 0x15d0 [ 0D721F40C179EC5737C15E551F22C69B, BBA04E11C3D9150C60F74D8B1A3F444BDE0C19857BB7C45D58448F641082DE1A ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
13:36:59.0507 0x15d0 TsUsbFlt - ok
13:36:59.0523 0x15d0 [ DE1296871208D1F13B7AC57C4B1FA46C, D18709F65E372A47AE114ECFD6A45E6736089B4A8E719E2FB5D831D9415E995D ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
13:36:59.0538 0x15d0 TsUsbGD - ok
13:36:59.0585 0x15d0 [ 3A84A09CBC42148A0C7D00B3E82517F1, 75E609AC991C96E31F55E723925EAF9A363DC5B3324FFD4CFCB701189369D701 ] tsusbhub C:\WINDOWS\system32\drivers\tsusbhub.sys
13:36:59.0648 0x15d0 tsusbhub - ok
13:36:59.0679 0x15d0 [ BC938ABBF586272BD4063CA51F09149F, 06EB662948D212ACDF930C3CD01C6381A6FB152AC0F1628C86764F0973ABA1CB ] tunnel C:\WINDOWS\system32\drivers\tunnel.sys
13:36:59.0726 0x15d0 tunnel - ok
13:36:59.0773 0x15d0 [ E94996BB8F323AF02860196C1400AD30, DE605439FC5B59C1064DF05F63C94D7C275482C1C66BEC74FA4A83F61C2051FC ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
13:36:59.0820 0x15d0 tzautoupdate - ok
13:36:59.0820 0x15d0 UASPStor - ok
13:36:59.0851 0x15d0 [ 00C4396DE1CD3502884BB2E2B6D6861C, 39F6BF25096ACE29CAF964DCA15078F47986F645DF49FB502A2CDF2C05C89AAB ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
13:36:59.0882 0x15d0 UcmCx0101 - ok
13:36:59.0929 0x15d0 [ ED9CBD1541C8AFDAA9B8255A384E2B53, D970F5E976CEBE0BCDF07B9E155EDB5B3C225812991779748CD04A9C4852DF3D ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
13:36:59.0960 0x15d0 UcmTcpciCx0101 - ok
13:36:59.0992 0x15d0 [ F58F1BC6A6972437CE18516F8ACCEB9F, 2C619D1E2E80662FA463EE48E3D41C8437A81B0F68EE67A0839A93DEDCD2E0B2 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
13:37:00.0023 0x15d0 UcmUcsi - ok
13:37:00.0054 0x15d0 Ucx01000 - ok
13:37:00.0054 0x15d0 UdeCx - ok
13:37:00.0054 0x15d0 udfs - ok
13:37:00.0070 0x15d0 UEFI - ok
13:37:00.0085 0x15d0 [ AD58EA78772B8163CFDE9BF671B6F8F1, E8304179B6B52B143846AEF80C7B2D577125742EA2DFF09F8AC5F37F4E28793E ] UevAgentDriver C:\WINDOWS\system32\drivers\UevAgentDriver.sys
13:37:00.0101 0x15d0 UevAgentDriver - ok
13:37:00.0163 0x15d0 [ F7E36C20DB953DFF4FDDB817904C0E48, 2C5EDE0807D8A5EC4B6E0FE0C308B37DBBDE12714FD9ADC4CE3EF4E0A5692207 ] UevAgentService C:\WINDOWS\system32\AgentService.exe
13:37:00.0257 0x15d0 UevAgentService - ok
13:37:00.0288 0x15d0 [ 588B9212DEE84F5192C09A147AA5C316, 80C70FD489D72015FCF8AFBE649F6C77F40B613882A1F031A2DAE088B9B4F67B ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
13:37:00.0304 0x15d0 Ufx01000 - ok
13:37:00.0320 0x15d0 UfxChipidea - ok
13:37:00.0335 0x15d0 ufxsynopsys - ok
13:37:00.0335 0x15d0 umbus - ok
13:37:00.0351 0x15d0 UmPass - ok
13:37:00.0382 0x15d0 [ 0D806415E1F86E7C1C192261C247EF0D, 640CB73D9ACC3B6E0F2A2A5A4587375F05A7519081BEC510B926A8A4A496C3B9 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
13:37:00.0429 0x15d0 UmRdpService - ok
13:37:00.0523 0x15d0 [ EAEC69961D9D8B39FEA44D56F7FB259D, 43FEB15A32B353B6F3C8E5F1072FF9507F2FA7799A414F30FEA0B8C47999D969 ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
13:37:00.0617 0x15d0 UnistoreSvc - ok
13:37:00.0663 0x15d0 [ 2362D5C18120FAB9CE5BD1F73EE33758, D9AB5D5BEAF95F62A204CE8A3B8B3B6C9C1E85FB5425CA2AADCBB4770EDCDF30 ] upnphost C:\WINDOWS\System32\upnphost.dll
13:37:00.0710 0x15d0 upnphost - ok
13:37:00.0757 0x15d0 [ 49A5E1B43C59DC0E363AD9C2D7D10BE4, B903C1C24DAF316AF9D8C1770687DE0A24ACDA4EFE47845E13BE99985609B7CE ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
13:37:00.0788 0x15d0 UrsChipidea - ok
13:37:00.0804 0x15d0 [ 53F1DA2D92D1D8CE4BB9D33E58D7DF01, CD3F4B92EDA042FE696C59D67BEB711C7AF0EB5979AD5F4110297C47454EBBFA ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
13:37:00.0835 0x15d0 UrsCx01000 - ok
13:37:00.0882 0x15d0 [ 09518A324B95BBC0B472BD5A472CB916, B3C6BF8C84268C02CC43E5C6B37648F9691B6038D275F4BEBA7B5E9ECA046181 ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
13:37:00.0898 0x15d0 UrsSynopsys - ok
13:37:00.0929 0x15d0 usbccgp - ok
13:37:00.0960 0x15d0 [ 250D21958EE5F45CD13FE6BE3788EE70, C0EF097EE2ED91950BD3A6881AB08698E85C4ABABC4F7520F7E92E70CA454D4E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
13:37:00.0976 0x15d0 usbcir - ok
13:37:00.0992 0x15d0 usbehci - ok
13:37:01.0007 0x15d0 usbhub - ok
13:37:01.0007 0x15d0 USBHUB3 - ok
13:37:01.0007 0x15d0 usbohci - ok
13:37:01.0038 0x15d0 [ 692C0BA4109C8F78392A299369F51129, A675E11CD4794693D0B65A06E85F264199506A4C6EDBB68503163EED389B8D1F ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
13:37:01.0070 0x15d0 usbprint - ok
13:37:01.0070 0x15d0 usbser - ok
13:37:01.0070 0x15d0 USBSTOR - ok
13:37:01.0085 0x15d0 usbuhci - ok
13:37:01.0085 0x15d0 USBXHCI - ok
13:37:01.0163 0x15d0 [ CE0E3BA8FC974BEE5BE20E4F43A1C583, E19DE81559FD92D1F7B0ADB4297926E6971F7FCB642E11758D361FC2A22C33BB ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
13:37:01.0257 0x15d0 UserDataSvc - ok
13:37:01.0288 0x15d0 UserManager - ok
13:37:01.0335 0x15d0 [ FCB8DD20046D231611EC4D3E466BAD45, 6344100EE466325AEB73570EBB102C653BDF51F151EE1808D58D502BED468AB0 ] uSHAREitSvc C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe
13:37:01.0335 0x15d0 uSHAREitSvc - ok
13:37:01.0413 0x15d0 [ 6103984EBC387D6D27BA003EED63217D, 7F9BD12F75F98E593C753A3397EE8F9E59D944BC4EFBC52279A14BA93A7FA9AE ] UsoSvc C:\WINDOWS\system32\usocore.dll
13:37:01.0492 0x15d0 UsoSvc - ok
13:37:01.0554 0x15d0 [ 3E283D06357616CD4117CC15BDB7C4C3, ACE50702EE61C9F93855720037898F19E509D45982F9173643EDA455F54FB9E7 ] VacSvc C:\WINDOWS\System32\vac.dll
13:37:01.0585 0x15d0 VacSvc - ok
13:37:01.0585 0x15d0 VaultSvc - ok
13:37:01.0585 0x15d0 vdrvroot - ok
13:37:01.0601 0x15d0 vds - ok
13:37:01.0617 0x15d0 VerifierExt - ok
13:37:01.0632 0x15d0 vhdmp - ok
13:37:01.0648 0x15d0 vhf - ok
13:37:01.0648 0x15d0 vmbus - ok
13:37:01.0663 0x15d0 VMBusHID - ok
13:37:01.0679 0x15d0 [ C9F69EBA06A703CE726CC6FC0AEFB5E9, 53E441D9D6017CC4BB75F41C6CB9DA79DE500CACBDDE58104D1857A2B749C373 ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
13:37:01.0710 0x15d0 vmgid - ok
13:37:01.0773 0x15d0 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
13:37:01.0851 0x15d0 vmicguestinterface - ok
13:37:01.0867 0x15d0 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
13:37:01.0898 0x15d0 vmicheartbeat - ok
13:37:01.0898 0x15d0 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
13:37:01.0929 0x15d0 vmickvpexchange - ok
13:37:01.0945 0x15d0 [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
13:37:01.0992 0x15d0 vmicrdv - ok
13:37:01.0992 0x15d0 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
13:37:02.0023 0x15d0 vmicshutdown - ok
13:37:02.0023 0x15d0 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
13:37:02.0054 0x15d0 vmictimesync - ok
13:37:02.0054 0x15d0 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
13:37:02.0085 0x15d0 vmicvmsession - ok
13:37:02.0101 0x15d0 [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
13:37:02.0117 0x15d0 vmicvss - ok
13:37:02.0132 0x15d0 volmgr - ok
13:37:02.0132 0x15d0 volmgrx - ok
13:37:02.0148 0x15d0 volsnap - ok
13:37:02.0148 0x15d0 volume - ok
13:37:02.0163 0x15d0 [ CB90DACF9194DD9D60A2C1DBFBC1E0D1, BE454495C79857FD8DF4ABAF5BDB7D076467BBC27B31E87FA9D920F2001B670D ] vpci C:\WINDOWS\System32\drivers\vpci.sys
13:37:02.0179 0x15d0 vpci - ok
13:37:02.0179 0x15d0 vsmraid - ok
13:37:02.0210 0x15d0 VSS - ok
13:37:02.0210 0x15d0 VSTXRAID - ok
13:37:02.0210 0x15d0 vwifibus - ok
13:37:02.0226 0x15d0 vwififlt - ok
13:37:02.0242 0x15d0 W32Time - ok
13:37:02.0273 0x15d0 [ 1C8447EFBC2B36B1CFE889E519F46A6E, 2601185B01909682FB921400C26BE6391AC93F72E84E70E2F49B4059987E191E ] WaaSMedicSvc C:\WINDOWS\System32\WaaSMedicSvc.dll
13:37:02.0335 0x15d0 WaaSMedicSvc - ok
13:37:02.0351 0x15d0 WacomPen - ok
13:37:02.0382 0x15d0 [ 25FAB8A2CFFA21FDB472AB3AE6C17A57, C97E651111643F32FD5B94BEDA31D62E6FF83CA0644FFE8BA98463EC9EA6EF9B ] WalletService C:\WINDOWS\system32\WalletService.dll
13:37:02.0413 0x15d0 WalletService - ok
13:37:02.0445 0x15d0 wanarp - ok
13:37:02.0445 0x15d0 wanarpv6 - ok
13:37:02.0476 0x15d0 [ 395447583F42FD840520EE87AE439D74, 984AE1EE8BA3B8926C6FC94BC22DE9061C90C15135EA56D0F16C1D3C4EF8DAF8 ] WarpJITSvc C:\WINDOWS\System32\Windows.WARP.JITService.dll
13:37:02.0507 0x15d0 WarpJITSvc - ok
13:37:02.0523 0x15d0 wbengine - ok
13:37:02.0570 0x15d0 [ A7C39DF528040967C2C281AB5A9DB5D0, B300F663DD45393BB86A1BFBE2EF47CD2315552B2410E3AE3F60E8294DC3E4A9 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
13:37:02.0617 0x15d0 WbioSrvc - ok
13:37:02.0663 0x15d0 [ 8A304D6CDC067922448CBA1EBB9FFCA8, DE40DD3A32DFF22C477F38B5E2224D55B8CCF2499EFFE0A8E9923728295BAEC1 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
13:37:02.0679 0x15d0 wcifs - ok
13:37:02.0726 0x15d0 [ 2BCA9BABB5CEC329E604AE9C1DBA9D5B, 315C72B80A5E6278A725E7BD2DE0C8A2751C2A3F9B4D82F7A034B1ADDE687507 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
13:37:02.0788 0x15d0 Wcmsvc - ok
13:37:02.0820 0x15d0 wcncsvc - ok
13:37:02.0835 0x15d0 [ FCA1B5465213EF4DE373A1F7E76D260E, 2548A9D11027871AD0290FDADF1E42E828E6120ECE925B12BAB3F09E25172489 ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
13:37:02.0882 0x15d0 wcnfs - ok
13:37:02.0913 0x15d0 [ 042ABE47A7BA6722AA5B61E267B28DFC, 07CE195F12B5234F4FA10A08E18CB51CDAF179CC1C32581872C28F57835CE1BE ] WdBoot C:\WINDOWS\system32\drivers\wd\WdBoot.sys
13:37:02.0960 0x15d0 WdBoot - ok
13:37:02.0960 0x15d0 Wdf01000 - ok
13:37:02.0992 0x15d0 [ C8C75E56CDDBCDF597055343B641C910, A26556923165B84DC481B9924FF6AE57C7022E07AF1FC2E1FC1B14F12EF85CCF ] WdFilter C:\WINDOWS\system32\drivers\wd\WdFilter.sys
13:37:03.0007 0x15d0 WdFilter - ok
13:37:03.0038 0x15d0 [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
13:37:03.0085 0x15d0 WdiServiceHost - ok
13:37:03.0101 0x15d0 [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
13:37:03.0132 0x15d0 WdiSystemHost - ok
13:37:03.0148 0x15d0 wdiwifi - ok
13:37:03.0163 0x15d0 [ EAF4FB729E94561EE31BDE5BEF869C65, 73290250B565E0A3F453BC45E69FF16A1D964E372A15401A2D3E2CDEB4670B38 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
13:37:03.0179 0x15d0 WdmCompanionFilter - ok
13:37:03.0210 0x15d0 [ 318AE771614EE4919ED68830C13EA2AE, BFC40724B94623348EFF185BD415893E7F521F58D8F5139913D469D66D9C6CF3 ] WdNisDrv C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
13:37:03.0226 0x15d0 WdNisDrv - ok
13:37:03.0460 0x15d0 [ F41413EEE16B618FB03EAB487A7DC0B7, E59FFC2EE80DB61564EAE0B35759BF6E750FD909104C12DD085112A7A5853319 ] WdNisSvc C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\NisSrv.exe
13:37:03.0554 0x15d0 WdNisSvc - ok
13:37:03.0601 0x15d0 [ BDCC510E85F7AF152E2DFF030A526EA2, 67830B42DE20EBB30DD33093F30FBA166B27D3C1F25B52DABE1BC436671A1882 ] WebClient C:\WINDOWS\System32\webclnt.dll
13:37:03.0632 0x15d0 WebClient - ok
13:37:03.0679 0x15d0 [ 506F0A1CCABF4428733CF854BCBB6832, 859A7E21ABB93A0AD538AAF93D32E31B961EA6012C24567B4C76A9ED8FD4AD46 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
13:37:03.0741 0x15d0 Wecsvc - ok
13:37:03.0773 0x15d0 [ D8D727E8311C86B2A993A9006A453BAC, AD6C93F5ED51C621841DF68A25D5932578FADB83689FB668D056F316A8AA749D ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
13:37:03.0804 0x15d0 WEPHOSTSVC - ok
13:37:03.0851 0x15d0 [ 30B4568D058E17500E7BF88AECEDF3F1, 612597DFAF63E55ACB80789483CBCF0E5AC5FF7607C478C61E5A86D77B169E9E ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
13:37:03.0913 0x15d0 wercplsupport - ok
13:37:03.0929 0x15d0 WerSvc - ok
13:37:03.0992 0x15d0 [ 0427A785512BB39BEA530DC5367A9A03, 8ED29AE0FDB65D4E1D8CD3FA1783D74EF7B01AB30DD1090C917A74AC88FD4C3E ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
13:37:04.0038 0x15d0 WFDSConMgrSvc - ok
13:37:04.0085 0x15d0 [ C16F011763DF92A6B62705DE8FEAB5B9, EAB25EBC9910F5A6C9F082B11D68F9A616B7349590BDB8F1C1040802E4ADF97C ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
13:37:04.0117 0x15d0 WFPLWFS - ok
13:37:04.0132 0x15d0 [ 752F5931696914DF2EC0B27275C38458, 83415E7BE50D9548785FBF6550FA679E425B5990F303E2D74513275A5E1DC828 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
13:37:04.0163 0x15d0 WiaRpc - ok
13:37:04.0179 0x15d0 WIMMount - ok
13:37:04.0210 0x15d0 [ DD005C7745BE7F0CDB8B17E9CA1FB796, 29C429BC839CE6B88365DADEEC01B7F0629AFF4FE7E555C18692CCE5858D74D8 ] WinDefend C:\ProgramData\Microsoft\Windows Defender\platform\4.16.17656.18052-0\MsMpEng.exe
13:37:04.0226 0x15d0 WinDefend - ok
13:37:04.0257 0x15d0 [ EC7C1A7397988EFAF37BF685CA25525D, 50DA7D63CDE618D6426649AED250CEBE229CBBAC718C4E3CD882D816839B4CE9 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
13:37:04.0273 0x15d0 WindowsTrustedRT - ok
13:37:04.0320 0x15d0 [ 5F0EDDA201630E132C2251BC9DA85023, 842B5CBA8C33616345EDC2F91B560416AAEAAB15A8CE1F36978B251CE4CBDA16 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
13:37:04.0351 0x15d0 WindowsTrustedRTProxy - ok
13:37:04.0366 0x15d0 WinHttpAutoProxySvc - ok
13:37:04.0382 0x15d0 WinMad - ok
13:37:04.0413 0x15d0 Winmgmt - ok
13:37:04.0460 0x15d0 [ 48194110C410B335AC985D9194275A1C, 1CE64B9DD2DB4CCB3916AA4F4C5F8C71C647ABF7845D284019725761138B8A8B ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
13:37:04.0601 0x15d0 WinNat - ok
13:37:04.0726 0x15d0 [ C57185CC62AA13E4F5A989D904CC9A16, 993F27F710148335C4244AB74D4B1D232DEDB0E3D82E39093A1E422C72283D31 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
13:37:04.0898 0x15d0 WinRM - ok
13:37:04.0945 0x15d0 [ 6FA3D810FE082001B16ADE19829F1E8E, 64B420FC14AB3194D4D2907EA5BE741456928E7E3CB9CBA50FEB8677A43B1971 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
13:37:04.0960 0x15d0 WINUSB - ok
13:37:04.0976 0x15d0 WinVerbs - ok
13:37:04.0992 0x15d0 wisvc - ok
13:37:05.0023 0x15d0 WlanSvc - ok
13:37:05.0101 0x15d0 [ DB98D3F6AA7655AC8AE76745E553BD46, F5DA82BC6DFC3ADCAEB6634A976C15451382B5535F78EE267B5F8E37A9135FDC ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
13:37:05.0273 0x15d0 wlidsvc - ok
13:37:05.0351 0x15d0 [ 59F6A50CD336D0ADD22E3F1FC0D73957, A62469B30325965735FE76AE7D83E5D829AE09D7F0996CC0B42604E68426B088 ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
13:37:05.0445 0x15d0 wlpasvc - ok
13:37:05.0476 0x15d0 WmiAcpi - ok
13:37:05.0492 0x15d0 wmiApSrv - ok
13:37:05.0507 0x15d0 WMPNetworkSvc - ok
13:37:05.0554 0x15d0 [ E122AD60BF4D7E4B28CCBABF33B28C1F, 1ABABE62FCC1B1A837540EE66F3EB0CE062962F05247002D61CFDE6ABB8E7E87 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
13:37:05.0585 0x15d0 Wof - ok
13:37:05.0695 0x15d0 [ 0D3303BDBC591ECF113601D7853A1AA7, 437CF89541696E0B1A8056F4A5189642FC76D762113ED4F71458AF4D72FC3E9A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
13:37:05.0788 0x15d0 workfolderssvc - ok
13:37:05.0866 0x15d0 [ 7328299647F28A62D39F9B546BD10C02, 0BD08E05D7FF1D4BF122FF4043B4AFC019183A22FF1E6F0C973DC87471D2EB7E ] WpcMonSvc C:\WINDOWS\System32\WpcDesktopMonSvc.dll
13:37:05.0960 0x15d0 WpcMonSvc - ok
13:37:06.0007 0x15d0 [ 25180559693250D7B7FF16A6BE7AC9BE, 1872BC298C3ED6A204B3BA2AB13D08EB9DAE5B30B7F83CA7A67BFDECA8D043AD ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
13:37:06.0085 0x15d0 WPDBusEnum - ok
13:37:06.0101 0x15d0 [ 15C1131EA0216F799C86B03EDAE0BE45, 39F50C084407BC3B498714B74DDA5D63E0539681F324A18ABBED3CD0DE5D52AA ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
13:37:06.0116 0x15d0 WpdUpFltr - ok
13:37:06.0163 0x15d0 [ 096969606BB5C4822AB020081EA07FC5, 522F372834B0497215F45ACBC417DA10DCE45C6D3C7099E47BBA18700C294B22 ] WpnService C:\WINDOWS\system32\WpnService.dll
13:37:06.0195 0x15d0 WpnService - ok
13:37:06.0241 0x15d0 [ 8B694BC50D2D2B98311283CFE5B40EE6, 734F8985CAD99E8635ACF09309D958D2B7FB05C6FF54DBE3623DC071BECE3413 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
13:37:06.0273 0x15d0 WpnUserService - ok
13:37:06.0288 0x15d0 ws2ifsl - ok
13:37:06.0320 0x15d0 [ DCB549367EB94CD8AFAA28E3F77F6493, 9FD2C6E03F398E76403502CFC94EB8EBD2F90ED5E95ABA5E86C1B7F63601C43C ] wscsvc C:\WINDOWS\System32\wscsvc.dll
13:37:06.0351 0x15d0 wscsvc - ok
13:37:06.0366 0x15d0 WSearch - ok
13:37:06.0382 0x15d0 wuauserv - ok
13:37:06.0398 0x15d0 [ 813DC18CC654CFB1875074139B0FEFD3, 87901841AFD9224BFEC06A712BE3C2371E16D3571210D4792F91034A2B926A06 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
13:37:06.0413 0x15d0 WudfPf - ok
13:37:06.0460 0x15d0 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFRd C:\WINDOWS\system32\drivers\WudfRd.sys
13:37:06.0507 0x15d0 WUDFRd - ok
13:37:06.0507 0x15d0 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
13:37:06.0538 0x15d0 WUDFWpdFs - ok
13:37:06.0632 0x15d0 [ FAFE3B08208AA28C82BC42731B4EEBE8, 333D9CBE6B3492BC30A7B64C1F83494B38AD2CE7C832C1D68FEBD2EB8029230D ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
13:37:06.0757 0x15d0 WwanSvc - ok
13:37:06.0804 0x15d0 [ 51D3A1E2285E2E931A553281BBA10E81, 8B371AF5E7717C53780A5C2F68400412C4DB0F01AC6551476FF062B83A7D0AC8 ] xbgm C:\WINDOWS\system32\xbgmsvc.exe
13:37:06.0835 0x15d0 xbgm - ok
13:37:06.0882 0x15d0 [ DB952AD196A9548CF5235A71E5197F3F, 6C51EB14B2808665FCB999F376A97018F6B0A91EE6E63A25C044EA59A5713EE1 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
13:37:06.0976 0x15d0 XblAuthManager - ok
13:37:07.0038 0x15d0 [ 8C0DD7BFFF5A81AEC26AD720057F5451, 4503D4DD540DB9977BBFF3BF7E92BE9778578B769972CF8A54AF0F1FF5C79BF5 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
13:37:07.0116 0x15d0 XblGameSave - ok
13:37:07.0148 0x15d0 [ 0AA38B54EB292CB3EB13FFF948473DBA, C5256ABC0A4A2117EC6F1C88B5BFDBECAE673AD47639A274BFFF92A46452E9B0 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
13:37:07.0179 0x15d0 xboxgip - ok
13:37:07.0195 0x15d0 [ C7FEC5C0377E5598BA919B29731CA45F, C153C62742B6F981905AEF7C464761E5894260F26EE164968B21D93979376378 ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
13:37:07.0226 0x15d0 XboxGipSvc - ok
13:37:07.0304 0x15d0 [ 3A94BD93CD2D9C34725D924230B502A5, 87AF2061D348FFFA190D0E50E6860903BED46968CF64B7765D8D80127C702E6A ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
13:37:07.0382 0x15d0 XboxNetApiSvc - ok
13:37:07.0429 0x15d0 [ CE1F78B5C1F14F74242008B2B3153FA2, 682D1F32DD1BBEB031D5129CE40D9C77D3C6CF4FB5979F1918B2482AF617B5BE ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
13:37:07.0460 0x15d0 xinputhid - ok
13:37:07.0476 0x15d0 ================ Scan global ===============================
13:37:07.0538 0x15d0 [ Global ] - ok
13:37:07.0538 0x15d0 ================ Scan MBR ==================================
13:37:07.0554 0x15d0 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:37:08.0038 0x15d0 \Device\Harddisk0\DR0 - ok
13:37:08.0038 0x15d0 ================ Scan VBR ==================================
13:37:08.0038 0x15d0 [ 40E53065F32E6EC40E05AD771E6B1814 ] \Device\Harddisk0\DR0\Partition1
13:37:08.0038 0x15d0 \Device\Harddisk0\DR0\Partition1 - ok
13:37:08.0054 0x15d0 [ B544C20BB98ACE5A219F658C14EEC884 ] \Device\Harddisk0\DR0\Partition2
13:37:08.0054 0x15d0 \Device\Harddisk0\DR0\Partition2 - ok
13:37:08.0054 0x15d0 ================ Scan generic autorun ======================
13:37:08.0148 0x15d0 SecurityHealth - ok
13:37:08.0195 0x15d0 [ 6A59AE2735639095CD93E58B0893914C, A1BFC257313185BD4BE63275C1B58877151C31DE3173EADE685199E9D28A23D9 ] C:\WINDOWS\system32\igfxtray.exe
13:37:08.0210 0x15d0 IgfxTray - ok
13:37:08.0241 0x15d0 [ 4341A0AE66759EDC080D92DAA0D9B341, A17D7A56627ECBE7D23E634A9E726BA2E3682A7EB75659AE68A426FF2954C717 ] C:\WINDOWS\system32\hkcmd.exe
13:37:08.0257 0x15d0 HotKeysCmds - ok
13:37:08.0288 0x15d0 [ 5451A9DA41DA19CDD467616492D4096F, 54CBA128702FFF112AE8BA4B187D00CC3ABAB68D3EB1B915193E50523D4DA73F ] C:\WINDOWS\system32\igfxpers.exe
13:37:08.0304 0x15d0 Persistence - ok
13:37:08.0320 0x15d0 Logitech Download Assistant - ok
13:37:08.0898 0x15d0 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
13:37:09.0523 0x15d0 OneDriveSetup - ok
13:37:09.0601 0x15d0 [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
13:37:09.0695 0x15d0 WAB Migrate - ok
13:37:10.0210 0x15d0 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
13:37:10.0632 0x15d0 OneDriveSetup - ok
13:37:10.0679 0x15d0 [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
13:37:10.0710 0x15d0 WAB Migrate - ok
13:37:11.0226 0x15d0 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
13:37:11.0648 0x15d0 OneDriveSetup - ok
13:37:12.0195 0x15d0 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
13:37:12.0616 0x15d0 OneDriveSetup - ok
13:37:12.0648 0x15d0 [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
13:37:12.0679 0x15d0 WAB Migrate - ok
13:37:12.0679 0x15d0 Waiting for KSN requests completion. In queue: 256
13:37:13.0710 0x15d0 AV detected via SS2: Windows Defender, windowsdefender:// ( ), 0x61100 ( enabled : updated )
13:37:13.0804 0x15d0 Win FW state via NFP2: enabled ( trusted )
13:37:13.0913 0x15d0 ============================================================
13:37:13.0913 0x15d0 Scan finished
13:37:13.0913 0x15d0 ============================================================
13:37:13.0929 0x156c Detected object count: 0
13:37:13.0929 0x156c Actual detected object count: 0
Themen zu pup.optional.legacy kann nicht entfernt werden
Zum Thema pup.optional.legacy kann nicht entfernt werden - mache ich!
ich hoffe dass du meine nachfragerei nicht als lästig empfindest denn ich möchte deine anweisungen auch sehr gerne verstehen....
zb.: kaspersky antivir soll ich entfernen obwohl das programm - pup.optional.legacy kann nicht entfernt werden...
12.06.2018, 12:45
Hybrid-Darstellung
